Премини към съдържанието
  • Добре дошли!

    Добре дошли в нашите форуми, пълни с полезна информация. Имате проблем с компютъра или телефона си? Публикувайте нова тема и ще намерите решение на всичките си проблеми. Общувайте свободно и открийте безброй нови приятели.

    Моля, регистрирайте се за да публикувате тема и да получите пълен достъп до всички функции.

     

Препоръчан отговор


Здравейте, понеже нещо товареше системата при броузване - мишката и станицата забива, прескача и т.н.  реших да пусна една проверка с Malwarebytes  но при инсталиране връща грешка след няколко рестарта и опити - прикаченият файл . Свалена е от оригиналният сайт, включително и през препратката от важната тема тук. 

Често имам над 15-20 таба отворени постоянно, до сега не е имало такъв проблем със забиване - курсора не движи после го показва направо на новата позиция понеже го мърдам постоянно докато прескочи.

От известно време, машината изпиуква неясно защо 2-5 пъти дневно, което май се появи след като махнах батерията - единият елемент е подут значително - може би двоен размер в средата, и един има леко подут. Махнах батерията "от страх" да не стане нещо но тъй като явно не ми се занимава конкретно да вземам батерия сега  и отново я монтирах поне да не изключва при спиране на ток или друго. 

Също така не можах да открия темата за разлини програми които пазят от копачи. В няколко теми бяха писали, че има отделна тема за това но така и не я открих, а исках да пусна поне проверка защото свалих някои игри от зеленчука.org

Прикачам логовете от сканирането съгласно правилата на раздела с надежда да са "чисти"

 

Untitled.png

Addition.txt FRST.txt

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Здравейте..! Да започнем с Malwarebytes..:

Следвайте тази инструкция за да деинсталирате и инсталирате отново Malwarebytes с помоща на Malwarebytes Support Tool

https://support.malwarebytes.com/hc/en-us/articles/360039023473

Понеже нямам преведена инструкция на български език ...ако срещнете затруднения  пишете да помагам..!

 

 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове
преди 10 минути, Zizurona написа:

Ето репорта от MB 

Да разбирам че Malwarebytes вече работи ...!?!

Още малко сканирания:

 

BY4dvz9.png Сканиране с AdwCleaner


Изтеглете AdwCleaner   и го запишете на вашия работен плот.

  •     Кликнете два пъти върху AdwCleaner.exe, за да го стартирате.
  •     Кликнете върху Сканиране  (Scan Now ) ...

                         -  Когато сканирането приключи, ще се отвори прозорецът с резултати от сканиране.
                         -  Кликнете върху Отказ ( Cancel ) (в този момент не се опитвайте да поставите под карантина нищо, което е намерено)

  •  Сега щракнете върху раздела Log Files ...

                            - Кликнете два пъти върху най-новия дневник на сканиране (в дневниците за сканиране има префикс [S0 *], където * се заменя с число)
                            - Ще се отвори файл , съдържащ резултатите от сканирането.

  •         Моля, публикувайте съдържанието на файла в следващия си отговор.

+

 Сканиране с SecurityCheck by glax24

  • Изтеглете SecurityCheck by glax24 от тук и запомнете инструмента на десктопа .
  • Стартирате програмата (ако използвате Windows XP) или стартирате с десен бутон на мишката от името на администратор (ако използватеWindows Vista/7/8/10)
  • Изчакайте да приключи сканирането.Ще се отвори в текстов файл с име SecurityCheck.txt. Копирайте съдържанието на  този файл  следващия си пост
  • Можете да намерите този файл в основната директория на системния диск в папка с име SecurityCheck, напр. C:\SecurityCheck\SecurityCheck.txt

 

В следващия си отговор, моля, включете:

  •  AdwCleaner [S0 *]. ТХТ
  •  SecurityCheck.txt

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Да, Malwarebytes се инсталира успешно и уж работи.

 ADWC лога май изглежда добре и SC лога също?

В този пост с превенцията  има ли някой друг инструмент за добавяне/като вид защита/ или "по-нова" версия на написаното?

 

 

 

AdwCleaner[S00].txt SecurityCheck.txt


Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Има едни папки за почистване....:

 

image.png.6fcef101eb078529302a75d847ca1452.png AdwCleaner - почистване

  •     Кликнете два пъти върху AdwCleaner.exe, за да го стартирате.
  •     Щракнете върху Scan Now (Сканиране )
  •     Когато сканирането приключи, ще се отвори прозорецът с резултати от сканиране.
  •     Моля, уверете се, че всички квадратчета са маркирани и щракнете върху  Quarantine ( Карантина)

                              -  Щракнете върху  Next ( Напред)

                             - Ако на вашето устройство е намерен някакъв предварително инсталиран софтуер, ще се отвори прозорец с подкана ...

                                             -   Кликнете върху OK, за да го затворите

                               - Проверете всички предварително инсталирани софтуерни елементи, които искате да премахнете (ако не ви създават проблем, препоръчвам да не избирате никакви)

                               - Кликнете върху Quarantine  (Карантина)

  •     Ще се появи подкана да запазите работата си ...

                               -   Щракнете върху Continue  (Продължи) , когато сте готови да продължите.

  •     Ще се появи подкана за рестартиране на вашия компютър ...

                                 -  Щракнете върху Restart Now  (Рестартиране сега)

  •     След като компютърът ви се рестартира ...

                        - Ако не се отвори автоматично, моля, стартирайте ADWCleaner ...

                       -  Кликнете върху раздела  Log Files ( Файлове...)

                       - Щракнете двукратно върху най-новия дневник  ( дневници имат префикс [C0 *], където * се заменя с число, най-новото сканиране ще има най-голям брой)

                       - Ще се отвори файл , съдържащ резултатите от премахването.

                       - Моля, публикувайте съдържанието на файла в следващия си отговор.

 

Цитат
Google Chrome v.79.0.3945.130 Warning! Download Update

Обновете си Google Chrome ...!

 

=====================================================================================================================================================

В следващия си отговор, моля, включете:

  •     AdwCleaner [C0 *]. ТХТ

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Да видим последно за контрол..?

 

FRST сканиране

    Щракнете двукратно върху FRST.exe / FRST64.exe, за да го стартирате.
    Натиснете бутона за image.png.e4ea07ecfc9acbc1a7ac79c624db8810.png сканиране.
    Когато приключи, той ще създаде  два лог файла с името FRST.txt и Addition.txt, в същата директория, от която е стартиран инструментът.
    Моля, копирайте и поставете журналите в следващия си отговор.

 

pfNZP4A.png&key=0a487e0a7cff89c690a32d13  Дневници 

В следващия си отговор, моля да включите (като копирате целите съдържания ) следните дневници:

  • FRST.txt (копирате цялото съдържание)
  • Addition.txt (копирате цялото съдържание)

Сподели този отговор


Линк към този отговор
Сподели в други сайтове
преди 39 минути, Zizurona написа:

Резултата!

?.....не виждам дневниците...!!!

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

FRST 

Цитат

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-02-2020
Ran by Misho (administrator) on DESKTOP-2J7TFG9 (Acer Aspire V5-573G) (21-02-2020 11:48:30)
Running from G:\Програми
Loaded Profiles: Misho (Available Profiles: Misho)
Platform: Windows 10 Pro Version 1909 18363.657 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Misho\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19081.28230.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12002.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-07-01] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-24] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935400 2015-05-30] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-04] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe [700896 2020-01-08] (MiniTool Software Limited -> )
HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  --profile-directory=Default --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session --flag-switches (the data entry has 130 more characters).
HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Misho\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Misho\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\RunOnce: [Uninstall 19.232.1124.0005\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Misho\AppData\Local\Microsoft\OneDrive\19.232.1124.0005\amd64"
HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\RunOnce: [Uninstall 19.232.1124.0005] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Misho\AppData\Local\Microsoft\OneDrive\19.232.1124.0005"
HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\MountPoints2: {1cee8447-4780-11ea-b6d6-a0a8cd3414fc} - "I:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\MountPoints2: {1cee845a-4780-11ea-b6d6-a0a8cd3414fc} - "I:\HiSuiteDownLoader.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.116\Installer\chrmstp.exe [2020-02-20] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {066B2819-A1C4-40CC-94AD-8EF7426C3B71} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128024 2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A9DB495-C8D0-459E-AFDD-19170390AF45} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158760 2020-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E885D81-9E7F-4714-8189-DAB87DEAC0A4} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018616 2020-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {24F311B7-8F43-44AC-8728-0569E8437C5C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {375D671D-4141-462F-87AE-2EC865915AA6} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018616 2020-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C6AB710-58C6-4271-AF23-BA14BF993003} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7F7A3F64-008F-4724-91BC-F09AA421116A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24568904 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {94256414-7A3E-4D81-B8DB-04233A323B74} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe [585600 2014-04-08] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
Task: {A8D6E3F2-8A89-4CD9-95BE-9E1F319A8263} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64920 2020-02-04] (Microsoft Corporation -> Microsoft)
Task: {AA86BF1C-97E0-44C4-8E02-B3ECA28D9A59} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe [700896 2020-01-08] (MiniTool Software Limited -> )
Task: {B418B93D-5A86-4E5D-B236-BF0436C1677A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BB0B6520-3F2C-4E47-8F25-0905FD4563E5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24568904 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C631B26D-79BF-4861-8ABF-EA9C65C5B61C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-04] (Google LLC -> Google LLC)
Task: {D707DB39-72CE-4F13-93B8-7303F4039BFC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128024 2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0DBEEE2-A972-4F8C-A462-1B34583F6451} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-04] (Google LLC -> Google LLC)
Task: {F2FFC165-E500-4E85-B45D-9221C8E32105} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158760 2020-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {F654413A-60BD-4958-8EB6-2BA65B9FA8AC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5bd69f33-ff4f-4536-8333-bba39060fff7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d50f6ad4-1e3e-487a-a371-e696c832eedc}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-02-13] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default [2020-02-21]
CHR HomePage: Default -> hxxp://www.google.bg/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Google Translate) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-02-04]
CHR Extension: (Slides) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-04]
CHR Extension: (Docs) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-04]
CHR Extension: (Google Drive) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-04]
CHR Extension: (YouTube) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-04]
CHR Extension: (eyeCare - Protect your vision) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeeningnfkaonkonalpcicgemnnijjhn [2020-02-06]
CHR Extension: (Disable HTML5 Autoplay) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\efdhoaajjjgckpbkoglidkeendpkolai [2020-02-04]
CHR Extension: (Sheets) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-04]
CHR Extension: (Marlies Dekkers) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepnljgdbelppefncogilfbjikmnbhjm [2020-02-04]
CHR Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2020-02-04]
CHR Extension: (Google Docs Offline) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-04]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-02-05]
CHR Extension: (Pathuku - Connect the lines) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkiilmogcdkeefnbemdagpmcediekadb [2020-02-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-04]
CHR Extension: (Gmail) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-02-04]
CHR Extension: (Chrome Media Router) - C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-20]
CHR Profile: C:\Users\Misho\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-04]
CHR Profile: C:\Users\Misho\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-04]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11096432 2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [529696 2019-04-24] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [370064 2015-10-01] (Intel Corporation - pGFX -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-02-19] (Malwarebytes Inc -> Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2020-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [240296 2015-05-30] (Synaptics Incorporated -> Synaptics Incorporated)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [239392 2019-04-24] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [47008 2016-07-26] (Intel(R) Smart Connect software -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-02-20] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2020-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-02-20] (Malwarebytes Inc -> Malwarebytes)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3485696 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvacwu.inf_amd64_31f4ef4821269ebb\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2019-05-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-05-30] (MiniTool Solution Ltd -> )
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-06-06] (Realtek Semiconductor Corp -> Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [752856 2015-05-30] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-05-30] (Synaptics Incorporated -> Synaptics Incorporated)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-20 11:39 - 2020-02-20 11:39 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-02-20 11:39 - 2020-02-20 11:39 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-02-20 10:45 - 2020-02-20 10:45 - 000000000 ____D C:\SecurityCheck
2020-02-20 10:44 - 2020-02-20 10:44 - 000530435 _____ (glax24 (safezone.cc)) C:\Users\Misho\Desktop\SecurityCheck.exe
2020-02-20 10:03 - 2020-02-20 11:38 - 000000000 ____D C:\AdwCleaner
2020-02-20 10:01 - 2020-02-20 10:01 - 008356016 _____ (Malwarebytes) C:\Users\Misho\Desktop\AdwCleaner.exe
2020-02-19 22:31 - 2020-02-19 22:31 - 000003980 _____ C:\Users\Misho\Desktop\mbst scan 19.02.2020 exported.txt
2020-02-19 22:29 - 2020-02-19 22:30 - 000003980 _____ C:\Users\Misho\Desktop\mbst scan 19.02.2020.txt
2020-02-19 22:09 - 2020-02-19 22:09 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-02-19 22:09 - 2020-02-19 22:09 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-02-19 22:09 - 2020-02-19 22:09 - 000002933 _____ C:\Users\Misho\Desktop\mbst-clean-results.txt
2020-02-19 22:09 - 2020-02-19 22:09 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-02-19 22:09 - 2020-02-19 22:09 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-02-19 22:09 - 2020-02-19 22:09 - 000000000 ____D C:\Users\Misho\AppData\Local\mbamtray
2020-02-19 22:09 - 2020-02-19 22:09 - 000000000 ____D C:\Users\Misho\AppData\Local\mbam
2020-02-19 22:09 - 2020-02-19 22:09 - 000000000 ____D C:\Users\Misho\AppData\Local\cache
2020-02-19 22:09 - 2020-02-19 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-02-19 22:09 - 2020-02-19 22:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-02-19 22:04 - 2020-02-19 22:04 - 002279424 _____ (Farbar) C:\Users\Misho\Downloads\FRSTEnglish.exe
2020-02-19 14:39 - 2020-02-19 22:05 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-18 08:50 - 2020-02-18 08:50 - 000028889 _____ C:\Users\Misho\Desktop\Поздрав към слунцето.odt
2020-02-15 23:18 - 2020-02-15 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eidos
2020-02-15 23:18 - 2020-02-15 23:18 - 000000000 ____D C:\Program Files (x86)\Eidos
2020-02-14 12:49 - 2020-02-14 12:49 - 000001259 _____ C:\Users\Misho\Desktop\New Features of Heroes III In the Wake of Gods.lnk
2020-02-14 12:47 - 2020-02-14 12:49 - 000000000 ____D C:\Users\Misho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\New Life of Heroes
2020-02-14 12:47 - 2020-02-14 12:48 - 000001220 _____ C:\Users\Misho\Desktop\Heroes III In the Wake of Gods.lnk
2020-02-14 12:33 - 2020-02-14 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3DO
2020-02-14 12:33 - 2020-02-14 12:33 - 000000000 ____D C:\Program Files (x86)\3DO
2020-02-14 01:47 - 2020-02-14 01:47 - 000000000 ____D C:\ProgramData\ssh
2020-02-14 01:46 - 2020-02-14 03:05 - 000000000 ____D C:\Program Files (x86)\Quake III Arena
2020-02-14 01:46 - 2020-02-14 01:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quake III Arena
2020-02-14 00:34 - 2020-02-14 00:34 - 005502464 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2020-02-14 00:34 - 2020-02-14 00:34 - 004308480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2020-02-14 00:34 - 2020-02-14 00:34 - 001541632 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 025900032 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 022635008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 019850240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 019813376 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 018026496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 017787904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 009929016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 008013824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 007905208 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 007754752 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 007600448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 007263992 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 007259648 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 007017472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 006519752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 006435840 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 006284800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 006231200 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 006167552 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 006083832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 005912064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 005764664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 005112320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 005041664 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 004856832 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 004615376 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 004575232 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 004562896 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 004538880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 004470784 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 004348616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 004005888 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003969536 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003967888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 003820032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003792384 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003728896 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 003703296 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003590968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 003550208 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003525592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003484672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003372440 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003263488 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003243080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 003110400 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002988552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 002870272 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002861568 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002800128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 002773776 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002766088 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-02-14 00:33 - 2020-02-14 00:33 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-02-14 00:33 - 2020-02-14 00:33 - 002714624 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 002703872 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002584008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002561536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002493720 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002314952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002305536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002284544 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002260176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002230232 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002225160 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002125904 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002084576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002071552 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 002032128 _____ C:\Windows\system32\rdpnano.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001999960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001916744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001858560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001841152 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001835128 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001830200 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001757096 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-02-14 00:33 - 2020-02-14 00:33 - 001748480 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001743680 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001726480 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001693184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001687040 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001664696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001664680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001657856 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001655880 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001602560 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001562424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001540096 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001512320 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 001505592 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001489064 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001482040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 001481216 _____ (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001480192 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 001417760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001413912 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001412096 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001398584 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 001394168 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001372160 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001366128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-02-14 00:33 - 2020-02-14 00:33 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001300280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 001284096 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001283592 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-02-14 00:33 - 2020-02-14 00:33 - 001273856 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001272360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001260544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001218120 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 001216000 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 001214976 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001213752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001195008 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001182232 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 001170960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001154448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001151816 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001149928 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 001105776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001098720 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001097216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001084216 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001083904 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001083392 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001077264 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 001060352 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001051448 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001026792 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001009664 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 001000960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000996352 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000974336 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSSO.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000928120 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000923136 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000913408 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000904504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000892488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000891736 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000890368 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000875448 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000874296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000857088 _____ C:\Windows\system32\MBR2GPT.EXE
2020-02-14 00:33 - 2020-02-14 00:33 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000851968 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000843776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000839680 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000828216 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000824848 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000804872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000803840 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000788992 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000784384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000783480 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000774664 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000768488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000758800 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000747320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000737280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000732200 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000716288 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000705536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000704512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.FileExplorer.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000685056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000679368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000678928 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000673080 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000670720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000661816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000646656 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000642008 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000637968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000637440 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000617784 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000610816 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000605184 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000599552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000598528 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000597816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000589592 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000587064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000568120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000558592 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000545432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000542288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000537608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000535552 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000518456 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000516648 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000516544 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000510768 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000500736 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-02-14 00:33 - 2020-02-14 00:33 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000490496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000490496 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000477496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-02-14 00:33 - 2020-02-14 00:33 - 000476672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000467952 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000465208 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000459896 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000453432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000450560 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000441072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000437776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000422912 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000422008 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-02-14 00:33 - 2020-02-14 00:33 - 000416056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000415808 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\DispBroker.Desktop.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000405632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000399360 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000375504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000369504 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000368128 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000366416 _____ (Microsoft Corporation) C:\Windows\system32\mfsensorgroup.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000355840 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000350720 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SpeechPrivacy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000335448 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000324616 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\rdpviewerax.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000311096 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000309248 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000300392 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000296760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000282112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000274464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpviewerax.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000268800 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\DAFMCP.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000259984 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000247856 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-02-14 00:33 - 2020-02-14 00:33 - 000222208 _____ (Microsoft Corporation) C:\Windows\system32\Winlangdb.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000220984 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000210744 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000203776 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000199480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000194064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000193800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000190464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000190256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-02-14 00:33 - 2020-02-14 00:33 - 000186880 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000186672 _____ (Microsoft Corporation) C:\Windows\system32\BCP47mrm.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000184832 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngOnline.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000179720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000174392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppvVemgr.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000165832 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Winlangdb.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000157696 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000155648 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AppExecutionAlias.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000153912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppvVfs.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_BackgroundApps.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000150536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000143160 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000138040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppVStrm.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000133464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47mrm.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000132624 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\globinputhost.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000128528 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000127280 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationControlCSP.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000117264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\NetDriverInstall.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000107832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingExperienceMEM.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000106808 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000099712 _____ (Microsoft Corporation) C:\Windows\system32\FsIso.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000097080 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\globinputhost.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000093496 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\keyiso.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000089912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000089328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000088352 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSystray.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000084496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetDriverInstall.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000072816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000071480 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keyiso.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000063288 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthHost.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguageProfileCallback.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000059221 _____ C:\Windows\system32\srms.dat
2020-02-14 00:33 - 2020-02-14 00:33 - 000058880 _____ C:\Windows\system32\runexehelper.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\SrTasks.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\mcicda.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000047208 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\Websocket.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguageProfileCallback.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000042512 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcicda.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000037392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Websocket.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\mciwave.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000032056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2020-02-14 00:33 - 2020-02-14 00:33 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciwave.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\lstelemetry.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciseq.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000021520 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000020944 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000019768 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\icsunattend.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\bindflt.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-02-14 00:33 - 2020-02-14 00:33 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\dstokenclean.exe
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-02-14 00:33 - 2020-02-14 00:33 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-02-14 00:28 - 2020-01-16 07:07 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-02-14 00:28 - 2020-01-16 06:23 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-02-13 01:37 - 2020-02-14 01:46 - 000000524 _____ C:\Windows\QIII.INI
2020-02-13 01:37 - 2020-02-13 01:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mplayer.com
2020-02-13 01:37 - 2020-02-13 01:37 - 000000000 ____D C:\Program Files (x86)\Mplayer
2020-02-13 01:36 - 1998-10-29 16:45 - 000306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2020-02-13 01:32 - 2020-02-13 01:32 - 000000000 ____D C:\Users\Misho\AppData\Roaming\NVIDIA
2020-02-13 00:33 - 2020-02-13 00:41 - 000000000 ____D C:\New folder
2020-02-09 21:20 - 2020-02-09 21:53 - 000001083 _____ C:\Users\Misho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk
2020-02-09 21:20 - 2020-02-09 21:20 - 000000936 _____ C:\Users\Misho\Desktop\4K Video Downloader.lnk
2020-02-09 21:20 - 2020-02-09 21:20 - 000000000 ____D C:\Users\Misho\AppData\Local\4kdownload.com
2020-02-09 21:20 - 2020-02-09 21:20 - 000000000 ____D C:\Program Files\4KDownload
2020-02-06 22:16 - 2020-02-06 22:16 - 000000000 ____D C:\Users\Misho\AppData\LocalLow\Temp
2020-02-06 19:16 - 2020-02-06 19:16 - 000000000 ____D C:\Users\Misho\.templateengine
2020-02-06 18:15 - 2020-02-06 18:15 - 000000000 ____D C:\Users\Misho\AppData\Local\IsolatedStorage
2020-02-06 15:44 - 2020-02-06 15:44 - 000001800 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2019.lnk
2020-02-06 15:07 - 2020-02-21 11:48 - 000000000 ____D C:\FRST
2020-02-06 10:25 - 2020-02-06 10:52 - 000007598 _____ C:\Users\Misho\AppData\Local\Resmon.ResmonCfg
2020-02-06 10:01 - 2020-02-17 09:48 - 000000000 ____D C:\Windows\files
2020-02-06 09:39 - 2020-02-06 09:40 - 000000000 ____D C:\Users\Misho\AppData\Local\TeamViewer
2020-02-06 09:39 - 2020-02-06 09:39 - 000000000 ____D C:\Users\Misho\AppData\Roaming\TeamViewer
2020-02-06 09:35 - 2020-02-06 09:35 - 000000000 ____D C:\Program Files (x86)\NuGet
2020-02-06 09:27 - 2020-02-06 09:27 - 000000000 ____D C:\Users\Misho\.dotnet
2020-02-06 09:19 - 2020-02-06 09:27 - 000000000 ____D C:\Program Files\dotnet
2020-02-06 09:19 - 2020-02-06 09:19 - 000000000 ____D C:\Program Files (x86)\dotnet
2020-02-06 09:05 - 2020-02-06 09:05 - 000000000 ____D C:\Users\Misho\AppData\Roaming\NuGet
2020-02-05 21:16 - 2020-02-07 16:18 - 000000000 ____D C:\Users\Misho\AppData\Local\CrashDumps
2020-02-05 16:33 - 2020-02-05 16:33 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2020-02-05 16:33 - 2016-09-09 20:25 - 000269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-02-05 16:33 - 2016-09-09 20:25 - 000261920 _____ C:\Windows\system32\vulkan-1.dll
2020-02-05 16:33 - 2016-09-09 20:25 - 000110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-02-05 16:33 - 2016-09-09 20:24 - 000125216 _____ C:\Windows\system32\vulkaninfo.exe
2020-02-05 16:32 - 2016-12-29 15:10 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2020-02-05 16:31 - 2017-01-17 05:54 - 034717624 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2020-02-05 16:31 - 2017-01-17 05:53 - 028209080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2020-02-05 16:31 - 2017-01-17 05:53 - 000951224 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-02-05 16:31 - 2017-01-17 05:53 - 000904752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-02-05 16:31 - 2017-01-17 05:53 - 000448568 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-02-05 16:31 - 2017-01-17 05:53 - 000397240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-02-05 16:31 - 2017-01-17 05:52 - 040134192 _____ C:\Windows\system32\nvcompiler.dll
2020-02-05 16:31 - 2017-01-17 05:52 - 002961336 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-02-05 16:31 - 2017-01-17 05:52 - 002594744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-02-05 16:31 - 2017-01-17 05:52 - 001964600 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437654.dll
2020-02-05 16:31 - 2017-01-17 05:52 - 001598392 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437654.dll
2020-02-05 16:31 - 2017-01-17 05:52 - 001047096 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-02-05 16:31 - 2017-01-17 05:52 - 000985136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 035233328 _____ C:\Windows\SysWOW64\nvcompiler.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 011017016 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 010907368 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 009246824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 009000336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 000818680 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 000698544 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 000586784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 000407240 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-02-05 16:31 - 2017-01-17 05:51 - 000339144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-02-05 16:31 - 2017-01-17 05:50 - 010453152 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-02-05 16:31 - 2017-01-17 05:50 - 008847016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-02-05 16:31 - 2017-01-17 05:50 - 003509152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-02-05 16:31 - 2017-01-17 05:50 - 000658584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2020-02-05 16:31 - 2017-01-17 01:37 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2020-02-05 16:31 - 2017-01-17 01:37 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2020-02-05 15:19 - 2020-02-05 15:19 - 000000000 ____D C:\Users\Misho\Documents\Custom Office Templates
2020-02-05 14:14 - 2020-02-05 14:14 - 000000000 ____D C:\Users\Misho\AppData\Local\ElevatedDiagnostics
2020-02-05 14:00 - 2020-02-06 09:40 - 000000000 ____D C:\Users\Misho\AppData\Local\D3DSCache
2020-02-05 10:32 - 2020-02-14 00:40 - 000000000 ____D C:\Windows\system32\MRT
2020-02-05 10:32 - 2020-02-14 00:37 - 120407888 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-02-05 10:32 - 2020-02-05 10:32 - 000286720 _____ (Microsoft Corporation) C:\Windows\system32\DirectML.Debug.dll
2020-02-05 10:32 - 2020-02-05 10:32 - 000201216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DirectML.Debug.dll
2020-02-04 22:00 - 2020-02-04 22:00 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2020-02-04 21:24 - 2020-02-04 21:24 - 000000000 ____D C:\Users\Misho\source
2020-02-04 20:47 - 2020-02-19 17:45 - 000000000 ____D C:\Users\Misho\AppData\Local\.IdentityService
2020-02-04 20:47 - 2020-02-07 11:44 - 000000000 ____D C:\Users\Misho\Documents\Visual Studio 2019
2020-02-04 20:45 - 2020-02-04 20:45 - 000000000 ____D C:\Users\Misho\AppData\Local\Package Cache
2020-02-04 20:45 - 2020-02-04 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.7
2020-02-04 20:44 - 2020-02-04 20:44 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2020-02-04 20:44 - 2020-02-04 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2020-02-04 20:44 - 2020-02-04 20:44 - 000000000 ____D C:\Program Files\Application Verifier
2020-02-04 20:44 - 2020-02-04 20:44 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2020-02-04 20:42 - 2019-03-18 19:20 - 000415232 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\DXCpl.exe
2020-02-04 20:42 - 2019-03-18 19:18 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\perf_gputiming.dll
2020-02-04 20:42 - 2019-03-18 18:12 - 000274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf_gputiming.dll
2020-02-04 20:42 - 2019-03-18 18:09 - 000390656 _____ (Windows (R) Win 7 DDK provider) C:\Windows\SysWOW64\DXCpl.exe
2020-02-04 20:42 - 2019-03-18 15:49 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\DxToolsReportGenerator.dll
2020-02-04 20:42 - 2019-03-18 15:29 - 000095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DxToolsReportGenerator.dll
2020-02-04 20:42 - 2019-03-18 15:19 - 017826304 _____ (Microsoft Corporation) C:\Windows\system32\DXCaptureReplay.dll
2020-02-04 20:42 - 2019-03-18 15:19 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsProxyStub.dll
2020-02-04 20:42 - 2019-03-18 15:18 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\VSD3DWARPDebug.dll
2020-02-04 20:42 - 2019-03-18 15:17 - 001165312 _____ (Microsoft Corporation) C:\Windows\system32\DXCap.exe
2020-02-04 20:42 - 2019-03-18 15:15 - 000331264 _____ (Microsoft Corporation) C:\Windows\system32\DXGIDebug.dll
2020-02-04 20:42 - 2019-03-18 15:14 - 004825600 _____ (Microsoft Corporation) C:\Windows\system32\d3d12SDKLayers.dll
2020-02-04 20:42 - 2019-03-18 15:14 - 001367040 _____ (Microsoft Corporation) C:\Windows\system32\d3d11_3SDKLayers.dll
2020-02-04 20:42 - 2019-03-18 15:14 - 000173568 _____ (Microsoft Corporation) C:\Windows\system32\DXToolsReporting.dll
2020-02-04 20:42 - 2019-03-18 15:12 - 000188416 _____ (Microsoft Corporation) C:\Windows\system32\DXToolsMonitor.dll
2020-02-04 20:42 - 2019-03-18 15:12 - 000165888 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsCapture.dll
2020-02-04 20:42 - 2019-03-18 15:10 - 013938688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXCaptureReplay.dll
2020-02-04 20:42 - 2019-03-18 15:09 - 002007552 _____ (Microsoft Corporation) C:\Windows\system32\DXToolsOfflineAnalysis.dll
2020-02-04 20:42 - 2019-03-18 15:09 - 000095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VSD3DWARPDebug.dll
2020-02-04 20:42 - 2019-03-18 15:09 - 000041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsProxyStub.dll
2020-02-04 20:42 - 2019-03-18 15:08 - 004849152 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsRemoteEngine.exe
2020-02-04 20:42 - 2019-03-18 15:08 - 000565248 _____ (Microsoft Corporation) C:\Windows\system32\d2d1debug3.dll
2020-02-04 20:42 - 2019-03-18 15:08 - 000235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXGIDebug.dll
2020-02-04 20:42 - 2019-03-18 15:07 - 005729280 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsDesktopEngine.exe
2020-02-04 20:42 - 2019-03-18 15:06 - 000904192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXCap.exe
2020-02-04 20:42 - 2019-03-18 15:06 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\VsGraphicsExperiment.dll
2020-02-04 20:42 - 2019-03-18 15:06 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXToolsMonitor.dll
2020-02-04 20:42 - 2019-03-18 15:05 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXToolsReporting.dll
2020-02-04 20:42 - 2019-03-18 15:04 - 003587072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsRemoteEngine.exe
2020-02-04 20:42 - 2019-03-18 15:04 - 003557376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d12SDKLayers.dll
2020-02-04 20:42 - 2019-03-18 15:04 - 000434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1debug3.dll
2020-02-04 20:42 - 2019-03-18 15:03 - 004476928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsDesktopEngine.exe
2020-02-04 20:42 - 2019-03-18 15:03 - 001084416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11_3SDKLayers.dll
2020-02-04 20:42 - 2019-03-18 15:02 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsExperiment.dll
2020-02-04 20:42 - 2019-03-18 15:00 - 001412608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXToolsOfflineAnalysis.dll
2020-02-04 20:42 - 2019-03-18 15:00 - 000122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VsGraphicsCapture.dll
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\3082
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\2052
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1055
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1049
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1046
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1045
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1042
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1041
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1040
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1036
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1033
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1031
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1029
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\SysWOW64\1028
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\3082
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\2052
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1055
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1049
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1046
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1045
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1042
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1041
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1040
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1036
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1033
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1031
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1029
2020-02-04 20:41 - 2020-02-04 20:46 - 000000000 ____D C:\Windows\system32\1028
2020-02-04 20:40 - 2020-02-04 20:40 - 000000000 ____D C:\Program Files\IIS
2020-02-04 20:40 - 2020-02-04 20:40 - 000000000 ____D C:\Program Files (x86)\IIS
2020-02-04 20:39 - 2020-02-04 20:39 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2020-02-04 20:39 - 2020-02-04 20:39 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2020-02-04 20:38 - 2020-02-06 15:44 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2020-02-04 20:38 - 2020-02-06 09:35 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-02-04 20:38 - 2020-02-04 20:38 - 000001799 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2020-02-04 20:38 - 2020-02-04 20:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2020-02-04 20:38 - 2020-02-04 20:38 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-02-04 20:38 - 2020-02-04 20:38 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-02-04 18:50 - 2020-02-06 15:49 - 000000000 ____D C:\Users\Misho\AppData\Roaming\Visual Studio Setup
2020-02-04 18:50 - 2020-02-04 20:38 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2020-02-04 18:50 - 2020-02-04 18:50 - 000001359 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2020-02-04 18:50 - 2020-02-04 18:50 - 000000000 ____D C:\Users\Misho\AppData\Roaming\vstelemetry
2020-02-04 18:50 - 2020-02-04 18:50 - 000000000 ____D C:\Users\Misho\AppData\Roaming\vs_installershell
2020-02-04 18:50 - 2020-02-04 18:50 - 000000000 ____D C:\Users\Misho\AppData\Local\ServiceHub
2020-02-04 18:46 - 2020-02-04 18:46 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2020-02-04 18:30 - 2019-12-10 17:38 - 009854408 ____R C:\Windows\OInstall.exe
2020-02-04 18:23 - 2020-02-04 18:23 - 000000420 _____ C:\Users\Misho\Desktop\This PC - Shortcut.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002413 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002401 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000002393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2020-02-04 18:12 - 2020-02-04 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-02-04 18:11 - 2020-02-04 18:11 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-02-04 18:10 - 2020-02-15 22:31 - 000000000 ____D C:\Program Files\Microsoft Office
2020-02-04 18:10 - 2020-02-04 18:10 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-02-04 06:39 - 2020-02-20 15:53 - 000000000 ____D C:\Users\Misho\AppData\Roaming\qBittorrent
2020-02-04 06:39 - 2020-02-04 06:39 - 000000000 ____D C:\Users\Misho\AppData\Local\qBittorrent
2020-02-04 06:38 - 2020-02-04 06:38 - 000000000 ____D C:\Users\Misho\AppData\Roaming\WinRAR
2020-02-04 06:36 - 2020-02-04 06:36 - 000000000 ____D C:\Users\Misho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-02-04 06:36 - 2020-02-04 06:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-02-04 06:35 - 2020-02-04 06:36 - 000000000 ____D C:\Program Files\WinRAR
2020-02-04 06:05 - 2020-02-04 04:31 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-02-04 05:50 - 2020-02-19 21:31 - 000000000 ____D C:\Users\Misho\AppData\Roaming\vlc
2020-02-04 05:47 - 2020-02-04 05:47 - 000000000 ____D C:\Users\Misho\AppData\Roaming\KMP
2020-02-04 05:45 - 2020-02-14 00:56 - 000000000 ____D C:\Program Files\KMPlayer 64X
2020-02-04 05:44 - 2020-02-04 05:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-02-04 05:44 - 2020-02-04 05:44 - 000000000 ____D C:\Program Files\VideoLAN
2020-02-04 05:27 - 2020-02-04 05:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-02-04 05:27 - 2020-02-04 05:27 - 000000000 ____D C:\Program Files\qBittorrent
2020-02-04 05:21 - 2020-02-04 05:22 - 025763945 _____ (The qBittorrent project) C:\Users\Misho\Downloads\qbittorrent_4.2.1_x64_setup.exe
2020-02-04 04:27 - 2020-02-20 11:17 - 000002326 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-04 04:27 - 2020-02-20 11:17 - 000002326 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-02-04 04:27 - 2020-02-20 11:17 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-04 04:24 - 2020-02-05 08:11 - 000003420 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-04 04:24 - 2020-02-05 08:11 - 000003296 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-04 04:24 - 2020-02-04 05:27 - 000000000 ____D C:\Users\Misho\AppData\Local\Google
2020-02-04 04:24 - 2020-02-04 04:26 - 000000000 ____D C:\Program Files (x86)\Google
2020-02-04 03:19 - 2020-02-04 03:19 - 000002180 _____ C:\Windows\PWCMDLST.BAK
2020-02-04 03:15 - 2020-02-04 03:15 - 000000000 ____D C:\Users\Misho\AppData\Roaming\QtProject
2020-02-04 03:15 - 2019-05-30 01:20 - 003600896 _____ C:\Windows\system32\pwNative.exe
2020-02-04 03:15 - 2019-05-30 01:20 - 000019152 _____ C:\Windows\system32\pwdrvio.sys
2020-02-04 03:15 - 2019-05-30 01:20 - 000012504 _____ C:\Windows\system32\pwdspio.sys
2020-02-04 03:14 - 2020-02-05 13:35 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 11
2020-02-04 03:14 - 2020-02-04 03:14 - 000003184 _____ C:\Windows\system32\Tasks\MiniToolPartitionWizard
2020-02-04 03:14 - 2020-02-04 03:14 - 000001028 _____ C:\Users\Public\Desktop\MiniTool Partition Wizard.lnk
2020-02-04 03:14 - 2020-02-04 03:14 - 000001028 _____ C:\ProgramData\Desktop\MiniTool Partition Wizard.lnk
2020-02-04 03:14 - 2020-02-04 03:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 11
2020-02-04 03:09 - 2019-03-19 01:19 - 004164608 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0002.dll
2020-02-04 03:09 - 2019-03-19 01:17 - 000180736 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0002.dll
2020-02-04 03:09 - 2019-03-19 01:07 - 000134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NlsData0002.dll
2020-02-04 03:09 - 2019-03-19 01:05 - 001915392 _____ (Microsoft Corporation) C:\Windows\system32\MLS2.dll
2020-02-04 03:09 - 2019-03-19 01:00 - 001875968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MLS2.dll
2020-02-04 03:07 - 2020-02-21 08:09 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-02-04 03:07 - 2020-02-21 08:09 - 000000000 __SHD C:\Users\Misho\IntelGraphicsProfiles
2020-02-04 03:07 - 2020-02-04 03:07 - 000000200 _____ C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2020-02-04 03:07 - 2020-02-04 03:07 - 000000000 ____D C:\Intel
2020-02-04 03:00 - 2020-02-04 03:00 - 000000000 ____D C:\Users\Misho\AppData\Local\OneDrive
2020-02-04 02:56 - 2020-02-08 13:15 - 000000000 ____D C:\Users\Misho\AppData\Local\PlaceholderTileLogoFolder
2020-02-04 02:40 - 2020-02-04 02:40 - 000000000 ____D C:\Users\Misho\AppData\Local\NVIDIA
2020-02-04 02:32 - 2020-02-20 11:39 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-04 02:32 - 2016-12-29 15:16 - 006384576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2020-02-04 02:32 - 2016-12-29 15:16 - 002475968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2020-02-04 02:32 - 2016-12-29 15:16 - 001762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2020-02-04 02:32 - 2016-12-29 15:16 - 000546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2020-02-04 02:32 - 2016-12-29 15:16 - 000392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2020-02-04 02:32 - 2016-12-29 15:16 - 000083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2020-02-04 02:32 - 2016-12-29 15:16 - 000069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2020-02-04 02:32 - 2016-12-22 01:59 - 007651057 _____ C:\Windows\system32\nvcoproc.bin
2020-02-04 02:31 - 2020-02-04 02:31 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-02-04 02:31 - 2015-10-01 06:39 - 000105472 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-02-04 02:31 - 2015-10-01 06:39 - 000099856 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-02-04 02:30 - 2017-01-17 05:50 - 003972960 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-02-04 02:30 - 2017-01-17 01:37 - 000042296 _____ C:\Windows\system32\nvinfo.pb
2020-02-04 02:30 - 2015-06-11 23:01 - 011095184 ____N (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2020-02-04 02:30 - 2015-06-11 23:01 - 001898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435324.dll
2020-02-04 02:30 - 2015-06-11 23:01 - 001557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435324.dll
2020-02-04 02:30 - 2015-06-11 23:01 - 000177088 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2020-02-04 02:30 - 2015-06-11 23:01 - 000155464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2020-02-04 02:14 - 2020-02-04 02:14 - 000000000 ____D C:\Users\Misho\AppData\Local\PeerDistRepub
2020-02-04 01:53 - 2020-02-04 01:53 - 000000000 ___HD C:\Users\Misho\MicrosoftEdgeBackups
2020-02-04 01:52 - 2020-02-04 01:52 - 000000000 ____D C:\Windows\SysWOW64\sda
2020-02-04 01:52 - 2015-05-30 00:35 - 000752856 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsPer.sys
2020-02-04 01:52 - 2014-10-21 03:50 - 000083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2020-02-04 01:52 - 2014-01-27 23:39 - 009890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2020-02-04 01:49 - 2020-02-04 01:49 - 000000000 ____D C:\Users\Misho\AppData\Roaming\Synaptics
2020-02-04 01:47 - 2020-02-04 01:47 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2020-02-04 01:47 - 2020-02-04 01:47 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2020-02-04 01:47 - 2020-02-04 01:47 - 000000000 ____D C:\Program Files\Synaptics
2020-02-04 01:41 - 2015-06-06 02:54 - 000895256 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2020-02-04 01:41 - 2015-06-06 02:54 - 000091272 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2020-02-04 01:35 - 2020-02-04 01:35 - 000815728 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2020-02-04 01:35 - 2020-02-04 01:35 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-02-04 01:35 - 2020-02-04 01:35 - 000000000 ____D C:\Users\Misho\AppData\Roaming\Intel Corporation
2020-02-04 01:33 - 2020-02-04 01:33 - 000000000 ____D C:\Users\Misho\Intel
2020-02-04 01:33 - 2020-02-04 01:33 - 000000000 ____D C:\Program Files\DIFX
2020-02-04 01:30 - 2020-02-04 01:30 - 000001333 _____ C:\Users\Misho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HD Audio Manager.lnk
2020-02-04 01:25 - 2020-02-04 01:25 - 032931716 _____ C:\Windows\system32\Drivers\rtkhdasetting.zip
2020-02-04 01:25 - 2020-02-04 01:25 - 000003342 _____ C:\Windows\system32\Tasks\DolbySelectorTask
2020-02-04 01:25 - 2020-02-04 01:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2020-02-04 01:25 - 2020-02-04 01:25 - 000000000 ____D C:\Program Files\Dolby Digital Plus
2020-02-04 01:24 - 2020-02-04 01:24 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2020-02-04 01:24 - 2020-02-04 01:24 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2020-02-04 01:24 - 2020-02-04 01:24 - 000000000 ____D C:\Windows\system32\DAX2
2020-02-04 01:24 - 2020-02-04 01:24 - 000000000 ____D C:\Program Files\Realtek
2020-02-04 01:23 - 2015-07-08 05:13 - 004514008 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2020-02-04 01:23 - 2015-07-08 01:54 - 035222128 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2020-02-04 01:23 - 2015-07-07 02:05 - 002930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2020-02-04 01:23 - 2015-07-02 04:18 - 001749208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2020-02-04 01:23 - 2015-07-01 02:04 - 000184688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2020-02-04 01:23 - 2015-06-27 06:10 - 001310936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2020-02-04 01:23 - 2015-06-25 09:41 - 000349528 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2020-02-04 01:23 - 2015-06-23 00:43 - 002702552 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2020-02-04 01:23 - 2015-06-18 00:45 - 003234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2020-02-04 01:23 - 2015-05-16 05:27 - 002918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2020-02-04 01:23 - 2015-01-20 04:10 - 072113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2020-02-04 01:23 - 2014-11-11 23:44 - 000631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2020-02-04 01:23 - 2014-08-15 05:16 - 005804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2020-02-04 01:23 - 2014-04-10 22:19 - 002041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2020-02-04 01:23 - 2013-10-11 21:31 - 000947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2020-02-04 01:23 - 2013-08-15 01:36 - 000662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2020-02-04 01:23 - 2013-08-15 01:35 - 000663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2020-02-04 01:23 - 2012-09-01 05:18 - 007164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2020-02-04 01:23 - 2012-09-01 05:17 - 000434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2020-02-04 01:23 - 2012-09-01 05:17 - 000141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2020-02-04 01:23 - 2012-09-01 05:17 - 000124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2020-02-04 01:23 - 2012-09-01 05:17 - 000075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2020-02-04 01:23 - 2011-12-21 01:32 - 000331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2020-02-04 01:23 - 2011-11-23 02:28 - 000014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2020-02-04 01:23 - 2011-09-03 00:21 - 000221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2020-02-04 01:23 - 2011-09-03 00:21 - 000081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2020-02-04 01:23 - 2011-09-03 00:21 - 000078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2020-02-04 01:23 - 2010-11-08 17:31 - 000375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2020-02-04 01:23 - 2010-11-08 17:31 - 000310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2020-02-04 01:23 - 2010-11-08 17:31 - 000310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2020-02-04 01:23 - 2010-11-08 17:31 - 000204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2020-02-04 01:23 - 2010-11-08 17:31 - 000101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2020-02-04 01:23 - 2010-11-08 17:31 - 000078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2020-02-04 01:23 - 2010-09-27 19:34 - 000318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2020-02-04 01:23 - 2010-07-23 02:48 - 000074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2020-02-04 01:23 - 2009-11-24 19:55 - 000518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2020-02-04 01:23 - 2009-11-24 19:55 - 000211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2020-02-04 01:23 - 2009-11-24 19:55 - 000198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2020-02-04 01:23 - 2009-11-24 19:55 - 000155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2020-02-04 01:22 - 2020-02-15 23:18 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-02-04 01:22 - 2020-02-06 10:20 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-02-04 01:22 - 2020-02-04 01:25 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-02-04 01:22 - 2015-06-26 03:43 - 002461528 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2020-02-04 01:22 - 2015-06-25 09:41 - 000944984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2020-02-04 01:22 - 2015-06-09 02:13 - 002825944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2020-02-04 01:22 - 2015-05-26 01:18 - 003195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2020-02-04 01:22 - 2014-12-09 17:42 - 006255888 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2020-02-04 01:22 - 2014-12-09 17:42 - 001933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2020-02-04 01:22 - 2014-12-09 17:42 - 000349968 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2020-02-04 01:22 - 2014-12-09 17:42 - 000298768 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2020-02-04 01:22 - 2014-09-24 21:31 - 007087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2020-02-04 01:22 - 2014-09-24 21:31 - 001939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2020-02-04 01:22 - 2014-09-24 21:31 - 000315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2020-02-04 01:22 - 2014-09-24 21:31 - 000261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2020-02-04 01:22 - 2014-06-09 20:59 - 000560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2020-02-04 01:22 - 2013-10-11 22:47 - 000113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2020-02-04 01:22 - 2012-03-08 21:47 - 000108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 001756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 001568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 001486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2020-02-04 01:22 - 2011-05-31 19:42 - 000241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2020-02-04 01:21 - 2020-02-04 01:21 - 000000000 ___HD C:\Windows\system32\WLANProfiles
2020-02-04 01:21 - 2020-02-04 01:21 - 000000000 ____D C:\Users\Misho\AppData\Roaming\Intel
2020-02-04 01:20 - 2020-02-06 10:11 - 000000000 ____D C:\ProgramData\Intel
2020-02-04 01:20 - 2020-02-06 10:11 - 000000000 ____D C:\Program Files (x86)\Intel
2020-02-04 01:18 - 2020-02-05 16:32 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-02-04 00:53 - 2020-02-04 02:30 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-02-04 00:46 - 2020-02-04 00:46 - 000000000 ____D C:\Users\Misho\AppData\Local\Comms
2020-02-04 00:45 - 2020-02-07 01:10 - 000000000 ____D C:\ProgramData\Packages
2020-02-04 00:44 - 2020-02-05 16:32 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-02-04 00:40 - 2020-02-06 10:11 - 000000000 ____D C:\ProgramData\Package Cache
2020-02-04 00:40 - 2020-02-06 10:11 - 000000000 ____D C:\Program Files\Intel
2020-02-04 00:38 - 2020-02-21 09:45 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3563391899-1325047852-2353453536-1001
2020-02-04 00:38 - 2020-02-21 09:45 - 000000000 ___RD C:\Users\Misho\OneDrive
2020-02-04 00:37 - 2020-02-04 00:37 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-02-04 00:36 - 2020-02-04 02:56 - 000000000 ____D C:\Users\Misho\AppData\Local\MicrosoftEdge
2020-02-04 00:35 - 2020-02-14 01:48 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-02-04 00:35 - 2020-02-14 01:48 - 000000000 ___RD C:\Users\Misho\3D Objects
2020-02-04 00:35 - 2020-02-04 00:35 - 000000000 ____D C:\Users\Misho\AppData\Roaming\Adobe
2020-02-04 00:35 - 2020-02-04 00:35 - 000000000 ____D C:\Users\Misho\AppData\Local\Publishers
2020-02-04 00:34 - 2020-02-14 01:00 - 000000000 ____D C:\Users\Misho\AppData\Local\Packages
2020-02-04 00:34 - 2020-02-13 01:41 - 000000000 ____D C:\Users\Misho\AppData\Local\VirtualStore
2020-02-04 00:34 - 2020-02-04 00:35 - 000000000 ____D C:\Users\Misho\AppData\Local\ConnectedDevicesPlatform
2020-02-04 00:33 - 2020-02-21 09:45 - 000002367 _____ C:\Users\Misho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-04 00:33 - 2020-02-17 22:54 - 000000000 ____D C:\Users\Misho
2020-02-04 00:33 - 2020-02-04 00:33 - 000000020 ___SH C:\Users\Misho\ntuser.ini
2020-02-04 00:32 - 2020-02-20 14:54 - 000797848 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-04 00:31 - 2020-02-04 00:31 - 000000000 ____D C:\Windows\minidump
2020-02-04 00:31 - 2020-02-04 00:31 - 000000000 ____D C:\Windows\CSC
2020-02-04 00:25 - 2020-02-04 00:25 - 000000000 _SHDL C:\Documents and Settings
2020-02-04 00:19 - 2020-01-09 23:24 - 002874368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-02-04 00:16 - 2020-02-04 18:14 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-02-04 00:16 - 2020-02-04 00:16 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2020-02-04 00:15 - 2020-02-20 14:51 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-02-04 00:15 - 2020-02-20 11:39 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-04 00:15 - 2020-02-14 01:48 - 000439016 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-04 00:15 - 2020-02-04 00:15 - 000000000 ____D C:\Windows\ServiceProfiles
2020-02-04 00:14 - 2020-02-06 07:39 - 000000000 ____D C:\Windows\Panther

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-21 11:39 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-21 10:05 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness
2020-02-20 14:54 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2020-02-20 13:13 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-20 11:38 - 2019-03-19 06:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-02-19 22:09 - 2019-03-19 06:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-02-16 02:09 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\LiveKernelReports
2020-02-15 22:32 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ___RD C:\Windows\PrintDialog
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SystemResources
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\oobe
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Dism
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-02-14 01:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\bcastdvr
2020-02-14 01:47 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\servicing
2020-02-14 00:40 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\CbsTemp
2020-02-13 02:06 - 2019-03-19 07:00 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2020-02-13 02:06 - 2019-03-19 07:00 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2020-02-13 02:06 - 2019-03-19 07:00 - 000060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2020-02-13 02:06 - 2019-03-19 07:00 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2020-02-13 02:06 - 2019-03-19 07:00 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2020-02-13 02:06 - 2019-03-19 07:00 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2020-02-13 02:06 - 2019-03-19 07:00 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2020-02-13 02:06 - 2019-03-19 07:00 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2020-02-13 02:06 - 2019-03-19 07:00 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2020-02-13 02:06 - 2019-03-19 07:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2020-02-13 02:06 - 2019-03-19 07:00 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2020-02-13 02:06 - 2019-03-19 06:57 - 000472064 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2020-02-13 02:06 - 2019-03-19 06:57 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2020-02-13 02:06 - 2019-03-19 06:57 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2020-02-13 02:06 - 2019-03-19 06:57 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2020-02-13 02:06 - 2019-03-19 06:57 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2020-02-13 02:06 - 2019-03-19 06:57 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2020-02-13 02:06 - 2019-03-19 06:57 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2020-02-06 10:07 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\NDF
2020-02-04 17:21 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\appcompat
2020-02-04 07:57 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-02-04 03:10 - 2019-03-19 08:22 - 000000000 ____D C:\Windows\OCR
2020-02-04 02:31 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\Help
2020-02-04 02:06 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\USOPrivate
2020-02-04 02:03 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2020-02-04 00:32 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ServiceState
2020-02-04 00:31 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\spool
2020-02-04 00:31 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\FxsTmp
2020-02-04 00:17 - 2019-03-19 06:37 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-02-04 00:14 - 2019-03-19 06:49 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2020-02-03 22:56 - 2019-03-19 06:56 - 000835688 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-02-03 22:56 - 2019-03-19 06:56 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories ========

2020-02-06 10:25 - 2020-02-06 10:52 - 000007598 _____ () C:\Users\Misho\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

 

 

Adition 


 

Цитат

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Misho (21-02-2020 11:49:50)
Running from G:\Програми
Windows 10 Pro Version 1909 18363.657 (X64) (2020-02-03 22:30:53)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3563391899-1325047852-2353453536-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3563391899-1325047852-2353453536-503 - Limited - Disabled)
Guest (S-1-5-21-3563391899-1325047852-2353453536-501 - Limited - Disabled)
Misho (S-1-5-21-3563391899-1325047852-2353453536-1001 - Administrator - Enabled) => C:\Users\Misho
WDAGUtilityAccount (S-1-5-21-3563391899-1325047852-2353453536-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4K Video Downloader 4.11 (HKLM\...\{2DC070EE-D256-4564-BC7C-A78085F22080}) (Version: 4.11.3.3420 - Open Media LLC)
Application Verifier x64 External Package (HKLM\...\{10CA1677-8F02-3131-F25C-780BAB52E468}) (Version: 10.1.18362.1 - Microsoft) Hidden
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{5FD1DF50-FBB1-4888-8F8F-4ECDC78909C4}) (Version: 4.8.03928 - Microsoft Corporation) Hidden
Commandos 3 - Destination Berlin (HKLM-x32\...\{C270BC04-1540-4673-960F-A546B2C860CD}) (Version:  - )
DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc)
Entity Framework 6.2.0 Tools  for Visual Studio 2019 (HKLM-x32\...\{7C2070BF-8E07-4B5F-A182-FADB0B95AB39}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Heroes of Might and Magic® III Complete (HKLM-x32\...\Heroes of Might and Magic® III) (Version:  - )
icecap_collection_neutral (HKLM-x32\...\{985FBEB2-DBE9-407D-B1E9-B07E0E4D0CBC}) (Version: 16.4.29430 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{1C86330F-D72E-4268-B461-758854BC4A52}) (Version: 16.4.29430 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{9E7C1C9B-6E2E-4057-857D-62F7F5ABE36B}) (Version: 16.4.29430 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{F5C67FC5-BF18-4304-9268-A971876B245A}) (Version: 16.4.29411 - Microsoft Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4248 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{d9e230c1-06bb-4b78-a9f1-c1ddce14e6fc}) (Version: 18.11.0 - Intel Corporation)
IntelliTraceProfilerProxy (HKLM-x32\...\{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 - Microsoft Corporation) Hidden
Kits Configuration Installer (HKLM-x32\...\{63AAA877-5536-9481-2385-28A082100D78}) (Version: 10.1.18362.1 - Microsoft) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft .NET Core SDK 3.1.101 (x64) from Visual Studio (HKLM\...\{9A50B769-0AE9-4F79-94F2-C4A1FDDC0137}) (Version: 3.1.101.014848 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - bg-bg (HKLM\...\ProPlusRetail - bg-bg) (Version: 16.0.12430.20264 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.12430.20264 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0008 - Microsoft Corporation)
Microsoft Project Professional 2016 - bg-bg (HKLM\...\ProjectProRetail - bg-bg) (Version: 16.0.12430.20264 - Microsoft Corporation)
Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.12430.20264 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM\...\{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32\...\{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft Visio Professional 2016 - bg-bg (HKLM\...\VisioProRetail - bg-bg) (Version: 16.0.12430.20264 - Microsoft Corporation)
Microsoft Visio Professional 2016 - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.12430.20264 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.4.1080.1113 - Microsoft Corporation)
Microsoft Web Deploy 4.0 (HKLM\...\{BBCDB523-F5B7-4E53-A911-C85191E3BDF0}) (Version: 10.0.2606 - Microsoft Corporation)
MiniTool Partition Wizard Free 11 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Software Limited)
MSI Development Tools (HKLM-x32\...\{DB4DB790-64DD-1902-4BF2-833B3B6DBCA1}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
NVIDIA Graphics Driver 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20264 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12430.20264 - Microsoft Corporation) Hidden
Python 3.7.5 (64-bit) (HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\...\{5e6d7bfa-46e9-4496-9ccd-e15816be8f0a}) (Version: 3.7.5150.0 - Python Software Foundation)
Python 3.7.5 Core Interpreter (64-bit symbols) (HKLM\...\{8186EDC2-D02C-4561-BD11-55F3B9C363FF}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Core Interpreter (64-bit) (HKLM\...\{6DC6BC71-F1FB-412D-A16A-2FE8C463E89F}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Development Libraries (64-bit) (HKLM\...\{5A54B213-36D8-40CB-9E55-D20864AEF3C8}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Documentation (64-bit) (HKLM\...\{B33E7CE3-8BFE-4F55-8505-2F74D97392C4}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Executables (64-bit symbols) (HKLM\...\{3AA7C0A6-97EC-41C9-B2F8-37BCA749D9C9}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Executables (64-bit) (HKLM\...\{8864B390-4DFB-43AB-934B-F02C48577666}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 pip Bootstrap (64-bit) (HKLM\...\{2E590D5A-4E40-4C9C-AFF8-7CB80F085752}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Standard Library (64-bit symbols) (HKLM\...\{8159776E-5D9A-457B-BAA5-AD306A89D3C9}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Standard Library (64-bit) (HKLM\...\{45CB356A-C0DF-430E-B75F-7764DBA06DF9}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Tcl/Tk Support (64-bit symbols) (HKLM\...\{10FB2B6E-BDA1-479F-9844-FF3A9C8ED166}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Tcl/Tk Support (64-bit) (HKLM\...\{42DC5149-4088-4217-8F86-487FA8B953FC}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Test Suite (64-bit symbols) (HKLM\...\{A5AC50DE-D446-4AF2-8D83-8BC548B57C31}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Test Suite (64-bit) (HKLM\...\{1822F1DC-2972-499D-9FE2-C27395C06766}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Utility Scripts (64-bit) (HKLM\...\{EFF40415-0D5B-4CBA-9080-3EE2DADB527C}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{4E5F47AD-2588-4BE3-9DC2-0F9CD283A3DF}) (Version: 3.7.6860.0 - Python Software Foundation)
qBittorrent 4.2.1 (HKLM-x32\...\qBittorrent) (Version: 4.2.1 - The qBittorrent project)
Quake III Arena (HKLM-x32\...\Quake III Arena) (Version:  - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.21277 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
SDK ARM Additions (HKLM-x32\...\{73681F86-CD86-4208-572F-959B45430B04}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{67EE3804-9642-62BA-EBF1-B1561FB4ECBE}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.4 - Synaptics Incorporated)
TypeScript SDK (HKLM-x32\...\{4E95B929-510E-46C8-8FFC-278A90496A5C}) (Version: 3.7.4.0 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (HKLM-x32\...\{13952D7A-B7B3-F4F8-5F29-5CD18E8168B7}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{74CBC330-ED16-31B9-E8BE-0C6A8E67DE32}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{847D4DAF-0182-265B-324F-406462E8A90D}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{54FE4D23-11A2-F1C4-76E9-79C8FB40A4A1}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{9F7B0D96-881D-8850-C303-43F3A08E6902}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{6F54BF87-2EE6-FA6D-431D-33A665992D49}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{A8059244-ADC7-4A76-9EEA-E0562F480BDE}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32\...\773292b3) (Version: 16.4.29728.190 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VS Immersive Activate Helper (HKLM-x32\...\{78500789-0EBE-4490-BE43-F9EF8250BF42}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{4137D3AB-5B44-4AC9-83A4-5273F2E2547E}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{D8B26CBD-15D2-440B-BCBD-5616D74EFC7D}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{BAF91847-0A64-405E-98EC-A0BA6FB4BC4E}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{597EE310-E88F-49D9-ADD5-DB6677766E7B}) (Version: 16.4.29709 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{95E79BBC-97FD-4FEB-91B5-CC0231324812}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{709D609A-B91C-4C1C-890B-966470991D67}) (Version: 16.4.29709 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{6BC9BFD7-46B4-46CF-B248-DEC2B7E2028B}) (Version: 16.4.29709 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{692A0FB3-E6A2-4D41-AC03-4136B4312DC0}) (Version: 16.3.29209 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{ABBD10CA-0CFA-4D76-B033-F76C55A54336}) (Version: 16.4.29411 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{E47B4703-2337-4ED0-BA24-3EC08D643684}) (Version: 16.4.29411 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{472A5337-3393-436B-8656-00810D36BD67}) (Version: 16.4.29709 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{EC04CD66-C03A-470D-B0D2-4BBC87F6382D}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{92B3118C-3214-4BFA-89A0-5FF5EDFA2AEA}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WinAppDeploy (HKLM-x32\...\{8E3AE0EF-D067-700C-BDB4-10D5552155DC}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Windows Driver Package - Broadcom Corporation (bcbtums) Bluetooth  (06/30/2015 12.0.1.653) (HKLM\...\96DD37B5CEC116731F3341757CD752145849002A) (Version: 06/30/2015 12.0.1.653 - Broadcom Corporation)
Windows SDK AddOn (HKLM-x32\...\{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.18362.1 (HKLM-x32\...\{126dedf0-cc0e-4b48-9ece-806b0e437195}) (Version: 10.1.18362.1 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{E67F1F03-FB4A-3D61-8999-E6A4C4B26F34}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{7EF010FF-7800-28BA-FF49-2D219EC7BA82}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{36AE12FB-4349-6EAA-B6E4-5F4E06FA8AE8}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{6B03A6A4-643C-57CE-CA6F-4E19BF47497A}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{918A448F-59E8-FBF5-B087-D3F07160C7E0}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{66483041-F590-EC46-4AF0-EE39C62FB680}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{9C61E6D2-C43E-6746-B519-6185558C4A24}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{6B37CC5B-78DF-5050-2215-68479716A587}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{250D5341-0879-4016-399C-BBCD87B80E95}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-07] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2020-02-07] (Microsoft Studios) [MS Ad]
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-08] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Misho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\New Life of Heroes\Heroes Zone.lnk -> C:\Program Files (x86)\3DO\Heroes 3 Complete\h3zone.bat ()
Shortcut: C:\Users\Misho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\New Life of Heroes\WoG Zone.lnk -> C:\Program Files (x86)\3DO\Heroes 3 Complete\wogzone.bat ()
ShortcutWithArgument: C:\Users\Misho\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --enable-features=PasswordImport

==================== Loaded Modules (Whitelisted) =============

2015-06-24 02:00 - 2015-06-24 02:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-06-24 02:00 - 2015-06-24 02:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKCU\Environment\\Path -> %USERPROFILE%\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-3563391899-1325047852-2353453536-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1A67288E-4EF3-4E14-BBE2-F8118C7248DD}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{C41B51B0-3ED2-4F63-B5D3-AA735FBB6CBA}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{35EDDAD1-42FA-4DDF-802D-5659CF378EF0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{48BB0883-756E-484B-BF8C-15532AA68392}C:\windows\temp\files\bin\kmss.exe] => (Allow) C:\windows\temp\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{E5024F68-F9EF-4FE4-9BBE-C6A532D493F8}C:\windows\temp\files\bin\kmss.exe] => (Allow) C:\windows\temp\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{142AAE3F-6292-418F-A4FA-0B853867041D}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{DC8A530D-2F1F-4A5A-9531-9C3C3D9AEE78}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{91AFFECA-AF8D-4FEF-B454-823E8AC8C560}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{F0E202CB-E810-45D8-B152-D7A0BAFF1775}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{41C91838-D748-40DD-86D1-6F40AF8709C0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{6EA38BE7-A31A-4023-9723-BA467AFA271A}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{74730206-9073-4FA5-8BB0-5968BB6F300B}I:\quake3.exe] => (Allow) I:\quake3.exe No File
FirewallRules: [UDP Query User{D144212F-BB48-4D3C-8912-DDC2CBB8BA21}I:\quake3.exe] => (Allow) I:\quake3.exe No File
FirewallRules: [TCP Query User{E57053E1-A262-4339-B569-F46AED78046E}C:\program files (x86)\quake iii arena\quake3.exe] => (Block) C:\program files (x86)\quake iii arena\quake3.exe () [File not signed]
FirewallRules: [UDP Query User{D8FC6C0A-C77A-4B82-BE3D-AF483812E850}C:\program files (x86)\quake iii arena\quake3.exe] => (Block) C:\program files (x86)\quake iii arena\quake3.exe () [File not signed]
FirewallRules: [TCP Query User{5DD85EF3-3629-4AD7-B064-E52FA2CCCD63}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{8FDA2F3B-2175-4DCE-BDA5-404669FA7BF7}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe No File
FirewallRules: [{EA854B44-31FB-4C32-8E34-691AFEA0F0A1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:442.2 GB) (Free:358.82 GB) (81%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/18/2020 07:23:31 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: The required buffer size is greater than the buffer size passed to the Collect function of the "C:\Windows\System32\perfts.dll" Extensible Counter DLL for the "LSM" service. The given buffer size was 30424 and the required size was 30648.

Error: (02/11/2020 09:54:07 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: The required buffer size is greater than the buffer size passed to the Collect function of the "C:\Windows\System32\perfts.dll" Extensible Counter DLL for the "LSM" service. The given buffer size was 16216 and the required size was 33224.

Error: (02/09/2020 09:20:19 PM) (Source: MsiInstaller) (EventID: 10005) (User: DESKTOP-2J7TFG9)
Description: Product: 4K Video Downloader 4.11 -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2755. The arguments are: 110, G:\Програми\4kvideodownloader_4.11.3_x64.msi,

Error: (02/09/2020 09:19:44 PM) (Source: MsiInstaller) (EventID: 10005) (User: DESKTOP-2J7TFG9)
Description: Product: 4K Video Downloader 4.11 -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2755. The arguments are: 110, G:\Програми\4kvideodownloader_4.11.3_x64.msi,

Error: (02/09/2020 09:05:07 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: The required buffer size is greater than the buffer size passed to the Collect function of the "C:\Windows\System32\perfts.dll" Extensible Counter DLL for the "LSM" service. The given buffer size was 27224 and the required size was 30832.

Error: (02/08/2020 12:25:06 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: The required buffer size is greater than the buffer size passed to the Collect function of the "C:\Windows\System32\perfts.dll" Extensible Counter DLL for the "LSM" service. The given buffer size was 30304 and the required size was 30648.

Error: (02/07/2020 04:17:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Jorney.exe, version: 1.0.0.0, time stamp: 0x5dedc13b
Faulting module name: KERNELBASE.dll, version: 10.0.18362.535, time stamp: 0x50cc8d5a
Exception code: 0xe0434352
Fault offset: 0x000000000003a839
Faulting process id: 0x45c
Faulting application start time: 0x01d5ddc1624c04b4
Faulting application path: C:\Users\Misho\source\repos\Exercise Complex Check\Jorney\bin\Debug\netcoreapp3.1\Jorney.exe
Faulting module path: C:\Windows\System32\KERNELBASE.dll
Report Id: 778fb2e4-aec3-480f-948e-da10c59d39dc
Faulting package full name: 
Faulting package-relative application ID:

Error: (02/07/2020 04:17:58 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Jorney.exe
CoreCLR Version: 4.700.19.60701
.NET Core Version: 3.1.1
Description: The process was terminated due to an unhandled exception.
Exception Info: System.FormatException: Input string was not in a correct format.
   at System.Number.ThrowOverflowOrFormatException(ParsingStatus status, TypeCode type)
   at System.Double.Parse(String s)
   at Jorney.Program.Main(String[] args) in C:\Users\Misho\source\repos\Exercise Complex Check\Jorney\Program.cs:line 9


System errors:
=============
Error: (02/20/2020 11:38:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Microsoft Office Click-to-Run Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (02/20/2020 11:38:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 1000 milliseconds: Restart the service.

Error: (02/20/2020 11:38:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel Bluetooth Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (02/20/2020 11:38:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The SynTPEnh Caller Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (02/20/2020 11:38:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel(R) HD Graphics Control Panel Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (02/17/2020 12:01:52 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 11:53:08 AM on ‎2/‎17/‎2020 was unexpected.

Error: (02/14/2020 12:29:22 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2J7TFG9)
Description: The server {0134A8B2-3407-4B45-AD25-E9F7C92A80BC} did not register with DCOM within the required timeout.

Error: (02/14/2020 12:27:22 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2J7TFG9)
Description: The server {0134A8B2-3407-4B45-AD25-E9F7C92A80BC} did not register with DCOM within the required timeout.


Windows Defender:
===================================
Date: 2020-02-20 10:44:20.912
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=!#UACTrigger.A&threatid=268489355&enterprise=0
Name: !#UACTrigger.A
ID: 268489355
Severity: Severe
Category: Trojan
Path: amsiuac:_pid:00001860
Detection Origin: Unknown
Detection Type: Concrete
Detection Source: AMSI UAC provider
Process Name: Unknown
Security intelligence Version: AV: 1.309.1326.0, AS: 1.309.1326.0, NIS: 1.309.1326.0
Engine Version: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-02-20 10:44:20.897
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D!ml&threatid=2147749373&enterprise=0
Name: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Severity: Severe
Category: Trojan
Path: amsiuac:_pid:00001860
Detection Origin: Unknown
Detection Type: Concrete
Detection Source: AMSI UAC provider
Process Name: Unknown
Security intelligence Version: AV: 1.309.1326.0, AS: 1.309.1326.0, NIS: 1.309.1326.0
Engine Version: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-02-20 10:43:25.331
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D!ml&threatid=2147749373&enterprise=0
Name: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Misho\Desktop\SecurityCheck.exe; webfile:_C:\Users\Misho\Desktop\SecurityCheck.exe|http://tools.safezone.cc/glax24/SecurityCheck/SecurityCheck.exe|pid:11148,ProcessStart:132266505987421200
Detection Origin: Internet
Detection Type: FastPath
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.309.1326.0, AS: 1.309.1326.0, NIS: 1.309.1326.0
Engine Version: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-02-20 10:14:51.447
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D!ml&threatid=2147749373&enterprise=0
Name: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Misho\Desktop\SecurityCheck.exe; webfile:_C:\Users\Misho\Desktop\SecurityCheck.exe|http://tools.safezone.cc/glax24/SecurityCheck/SecurityCheck.exe|pid:11148,ProcessStart:132266505987421200
Detection Origin: Internet
Detection Type: FastPath
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.309.1326.0, AS: 1.309.1326.0, NIS: 1.309.1326.0
Engine Version: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-02-20 10:08:55.048
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D!ml&threatid=2147749373&enterprise=0
Name: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Misho\Desktop\SecurityCheck.exe; webfile:_C:\Users\Misho\Desktop\SecurityCheck.exe|http://tools.safezone.cc/glax24/SecurityCheck/SecurityCheck.exe|pid:11148,ProcessStart:132266505987421200
Detection Origin: Internet
Detection Type: FastPath
Detection Source: Downloads and attachments
Process Name: Unknown
Security intelligence Version: AV: 1.309.1326.0, AS: 1.309.1326.0, NIS: 1.309.1326.0
Engine Version: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-02-13 01:47:50.578
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.309.634.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16700.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 

Date: 2020-02-13 01:47:50.578
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.309.634.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16700.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 

Date: 2020-02-13 01:47:50.577
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.309.634.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16700.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 

Date: 2020-02-13 01:47:50.569
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.309.634.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16700.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 

Date: 2020-02-13 01:47:50.568
Description: 
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.309.634.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16700.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 

==================== Memory info =========================== 

BIOS: Insyde Corp. V2.28 04/16/2014
Motherboard: Acer Dazzle_HW
Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 62%
Total physical RAM: 8072.27 MB
Available physical RAM: 3044.67 MB
Total Virtual: 9352.27 MB
Available Virtual: 2889.44 MB

==================== Drives ================================

Drive 😄 () (Fixed) (Total:442.2 GB) (Free:358.82 GB) NTFS
Drive d: (Recovery) (Fixed) (Total:4.13 GB) (Free:3.7 GB) NTFS
Drive e: (E) (Fixed) (Total:119.37 GB) (Free:119.28 GB) NTFS
Drive f: () (Fixed) (Total:0.78 GB) (Free:0.75 GB) FAT32
Drive g: () (Fixed) (Total:350 GB) (Free:284.09 GB) NTFS
Drive h: () (Fixed) (Total:461.51 GB) (Free:131.45 GB) NTFS

\\?\Volume{77c04d36-1a48-4f49-b339-e145c785e093}\ (Recovery) (Fixed) (Total:0.52 GB) (Free:0.14 GB) NTFS
\\?\Volume{ef2fc023-e0e9-4872-9ae8-6ace192abc2b}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 447.1 GB) (Disk ID: 0758CD48)

Partition: GPT.

==================== End of Addition.txt =======================

 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Като изключим че :

Цитат

ATTENTION: System Restore is disabled

...дневниците не показват наличие на зловреден софтуер..!

На този етап какви проблеми наблюдавате..! Как се държи системата  ви ..?

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Вентилатора работи доста често и продължително и без някакви сериозни натоварвания. Хрома забива на моменти. Охлаждането е чисто /отворите на вентилаторите/, може би е необходимо да се подмени.

Щом няма зловреден софтуер явно е проблем с моят софтуер и подозирам, че е свързано с хрома, някоя добавка или друго. В началото мислех за някой "копач" и от там да ми прави проблеми но не знам как да разбера дали е така.  Както писах в първия пост, все още не можах да намеря темата за  програми които ги блокират и евентуално да си избера някоя...

 

 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Добре ще прегледам още веднъж дневниците..!

А това може да е проблем със синхронизирането...Вероятно синхронизирате Chrome с други устройства..!
Изключете синхронизирането на Google Chrome с облака:

https://forums.malwarebytes.com/topi...ys-comes-back/

Нулиране на Google Chrome:

Забележка: тази стъпка ще върне някои настройки на браузъра Chrome по подразбиране.
За пълен списък на това, което се премахва по време на нулиране на Chrome, вижте  тук за повече информация.

  • Отворете Google Chrome.
  • Щракнете върху иконата на менюто в горния десен ъгъл на прозореца на Chrome  и изберете Настройки.
  • Под Нулиране и почистване изберете Настройки за нулиране.
  • Изберете Reset Settings, за да потвърдите нулирането.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове
на 22.02.2020 г. в 8:19, icotonev написа:

 

Направено!

 

Хрома няма синхронизации с други устройства.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

...Супер ..и резултата е..? Има ли промяна ...Как се държи Chrome..?

 

ESET онлайн скенер

Изтеглете  ESET Online Scanner и го запишете на вашия работен плот.

  •     Щракнете с десния бутон върху esetonlinescanner_enu.exe и изберете  Run as Administrator  ( Изпълни като администратор).
  •     Когато инструментът се отвори, щракнете върху  Get Started ( Започнете).
  •     Прочетете и приемете лицензионното споразумение.
  •     В прозореца  Welcome to ESET Online Scanner щракнете върху Get Started (Започнете).
  •     Изберете дали искате да изпратите анонимни данни на ESET.
  •     Забележка: Ако видите екрана Welcome Back to ESET Online Scanner"  (Добре дошли в онлайн скенера на ESET) , щракнете върху  Computer Scan  ( Сканиране на компютър ) > Full Scan  (Пълно сканиране).
  •     Кликнете върху опцията за Full Scan ( Пълно сканиране).
  •     Изберете Enable ESET to detect and remove potentially unwanted applications  (Активиране на ESET, за да открие и премахне потенциално нежелани приложения), след което щракнете върху Start scan  (Старт на сканиране).
  •     ESET  ще започне да сканира вашия компютър. Това може да отнеме известно време.
  •     Когато сканирането приключи и ако са открити заплахи, изберете Save scan log (Запазване на дневника на сканиране). Запазете го на работния плот като eset.txt. Кликнете върху Continue  (Продължи).
  •     ESET Онлайн скенер може да попита дали искате да включите функцията за периодично сканиране. Кликнете върху  Continue ( Продължи).
  •     На следващия екран можете да оставите отзиви за програмата, ако желаете. Поставете отметка в квадратчето за  Delete application data on closing ( изтриване на данни от приложението при затваряне). Ако оставите обратна връзка, щракнете върху Submit and continue (Изпращане и продължете). Ако не, Close without feedback (Затворете без обратна връзка).
  •   Отворете дневника от сканирането от вашия работен плот (eset.txt) и копирайте и поставете съдържанието му в следващия си отговор.

================================================================================================================================

В следващия си отговор, моля, включете:

  •  eset.txt

 

 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Няма промяна. 

Също така и безпричинно форсиране на вентилаторите в покой на машината.  

С онлайн скенера ли да дам или да инсталирам ESET NOD32 Antivirus ISP Edition с легален продуктов ключ?

/нали имаше някакво условие по време на диагностиката да не се слага нищо/

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Предпочитам ESET онлайн скенер ..за да видя и тук резултата и  да търсим какво причинява проблема..!

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

2/23/2020 22:21:29 PM
Сканирани файлове: 349843
Открити файлове: 2
Почистени файлове: 2
Общо време на сканиране 01:18:05
Състояние на сканиране: Готово


C:\Windows\OInstall.exe    вариант на Win32/HackTool.KMSAuto.E потенциално опасно приложение    почистен чрез изтриване
G:\от 50 гб хард\От Служебният\New Folder\Игри\Warcraft III Reign of Chaos & The Frozen Thron\Warcraft III Reign of Chaos & The Frozen Throne.exe    вариант на Win32/Delf.QZL троянски кон    почистен чрез изтриване
 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Хм..и тук нищо притеснително от зловреден характер..!

 

Сканиране с TDSSKiller
 
kaspersky.gif  Моля, изтеглете последната версия на TDSSKiller оттук и я запазете на вашиядекстоп (задължително).
 

  • Кликнете на TDSSKiller.exe за да стартирате приложението
  • Натиснете бутона Start Scan.
  •  Не използвайте компютъра по време на сканирането
  •  Ако сканирането завърши с нищо не е намерено, щракнете върху Затвори, за да излезете.
  • Проверката не би трябвало да отмене повече от 2 минути.
  • Ако подозрителен обект бъде засечен, действието по подразбиране ще бъде Skip, кликнете върху Continue.
  • Ако зловредни обекти бъдат намерени, тогава от падащото меню ще имате три възможности.
    Бъдете сигурни, че избраното действие е Cure и натиснете върху Continue >Рестартирайте за да бъде завършена поправката.

    Забележка: Ако Cure бутона не е наличен от възможностите, тогава моля изберете Skip бутона, не избирайте Delete освен ако не сте инструктирани затова.

Лог файл ще бъде създаден в свободната директория на дял 😄 . Потърсете за лог с името "TDSSKiller.[Version]_[Date]_[Time]_log.txt" и копирайте съдържанието му в следващия си пост.

 

===============================================================================================================================================

 

image.png.8a3c74f8693c9558651e122063e8bb9e.png

Изтеглете Process Explorer  от тук:

https://live.sysinte...com/procexp.exe

Запазете го на десктопа си, след това го стартирайте ( десен бутон и Run As Administrator).

  • Сега изберете  View => Select Column => маркирайте  Verified Signer => OK
  • След това  Options => Verify Image Signatures

Кликнете два пъти  над колоната на CPU, за да подредите нещата по възходящ ред натоварването  на процесора (най -високите стойности отгоре)

Изчакайте минута след това: 
 
От менюто File => изберете Save  As => Save. Запомнете името на  файла. Отворете файла на работния плот и копирайте и поставете текста в следващия си отговор.

 

===================================================================================================================================================

image.png.b275dfe74939a89c06ae5e0b881e547c.png   Изтеглете Speccy  и го запазете на работния плот. 

  • Щракнете с десния бутон върху .zip файла и изберете Extract All. 
  • Извлечете файла на работния плот. 
  • Щракнете с десния бутон върху Speccy.exe (32 бита) или Speccy64.exe (64 бита) и изберете Run as Administrator. 
  • Когато инструментът се отвори, кликнете върху Файл> Публикуване на снимка. 
  • Кликнете върху Да, след това изберете Копиране в клипборда. 
  • В следващия си отговор, моля, поставете (Ctrl + V) връзката към моментната снимка на Speccy.

 

 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Snapshot-a 

http://speccy.piriform.com/results/WQtWZhLVRjuR5f4WzONLokH

Гледам, че пише два слота за РАМ а на дъното различавам 1 брой? 

За други "разминавания" не обърнах внимание.

 

Process Explorer

Цитат

Process    CPU    Private Bytes    Working Set    PID    Description    Company Name    Verified Signer
System Idle Process    93.15    60 K    8 K    0            
procexp (1)64.exe    2.39    50,352 K    70,992 K    10040    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    (Verified) Microsoft Corporation
chrome.exe    0.86    89,444 K    122,448 K    2992    Google Chrome    Google LLC    (Verified) Google LLC
dwm.exe    0.68    58,096 K    64,252 K    9992    Desktop Window Manager    Microsoft Corporation    (Verified) Microsoft Windows
Interrupts    0.46    0 K    0 K    n/a    Hardware Interrupts and DPCs        
MsMpEng.exe    0.40    198,656 K    153,940 K    3736    Antimalware Service Executable    Microsoft Corporation    (Verified) Microsoft Windows Publisher
chrome.exe    0.37    55,336 K    85,700 K    10904    Google Chrome    Google LLC    (Verified) Google LLC
csrss.exe    0.31    2,384 K    5,736 K    1620    Client Server Runtime Process    Microsoft Corporation    (Verified) Microsoft Windows Publisher
chrome.exe    0.29    105,640 K    173,308 K    10868    Google Chrome    Google LLC    (Verified) Google LLC
System    0.24    196 K    116 K    4            
nvtray.exe    0.20    5,824 K    14,476 K    11244    NVIDIA Settings    NVIDIA Corporation    (Verified) NVIDIA Corporation
svchost.exe    0.16    2,624 K    12,916 K    1396    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
explorer.exe    0.09    58,000 K    127,464 K    6748    Windows Explorer    Microsoft Corporation    (Verified) Microsoft Windows
ddp.exe    0.09    35,312 K    6,640 K    3196    Dolby Digital Plus Profile Selector    Dolby Laboratories Inc.    (Verified) Dolby Laboratories, Inc.
ctfmon.exe    0.06    4,240 K    14,712 K    7996    CTF Loader    Microsoft Corporation    (Verified) Microsoft Windows
chrome.exe    0.05    288,796 K    314,356 K    11184    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe    0.04    73,288 K    100,824 K    9752    Google Chrome    Google LLC    (Verified) Google LLC
WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe    0.03    15,204 K    37,792 K    7288    WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe    Microsoft Corporation    (Verified) Microsoft Windows
chrome.exe    0.03    22,856 K    39,568 K    6224    Google Chrome    Google LLC    (Verified) Google LLC
svchost.exe    0.02    8,820 K    15,756 K    352    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
chrome.exe    0.02    71,248 K    99,120 K    4424    Google Chrome    Google LLC    (Verified) Google LLC
taskhostw.exe    0.01    6,700 K    16,324 K    2920    Host Process for Windows Tasks    Microsoft Corporation    (Verified) Microsoft Windows
chrome.exe    0.01    56,792 K    95,424 K    2712    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe    0.01    49,560 K    87,556 K    276    Google Chrome    Google LLC    (Verified) Google LLC
lsass.exe    0.01    7,072 K    16,536 K    792    Local Security Authority Process    Microsoft Corporation    (Verified) Microsoft Windows Publisher
chrome.exe    0.01    35,316 K    63,380 K    9412    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe    < 0.01    36,656 K    62,440 K    10776    Google Chrome    Google LLC    (Verified) Google LLC
NvBackend.exe    < 0.01    3,288 K    10,972 K    8304    NVIDIA Backend    NVIDIA Corporation    (Verified) NVIDIA Corporation
SynTPEnh.exe    < 0.01    4,872 K    15,896 K    1740    Synaptics TouchPad 64-bit Enhancements    Synaptics Incorporated    (Verified) Synaptics Incorporated
SearchIndexer.exe    < 0.01    30,972 K    42,244 K    3772    Microsoft Windows Search Indexer    Microsoft Corporation    (Verified) Microsoft Windows
services.exe    < 0.01    5,272 K    8,548 K    780    Services and Controller app    Microsoft Corporation    (Verified) Microsoft Windows Publisher
mbamtray.exe    < 0.01    16,280 K    34,440 K    9588    Malwarebytes Tray Application    Malwarebytes    (Verified) Malwarebytes Inc
svchost.exe    < 0.01    1,316 K    5,412 K    456    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
nvxdsync.exe    < 0.01    9,188 K    22,252 K    10072    NVIDIA User Experience Driver Component    NVIDIA Corporation    (Verified) NVIDIA Corporation
MBAMService.exe    < 0.01    65,564 K    55,372 K    3764    Malwarebytes Service    Malwarebytes    (Verified) Malwarebytes Inc
svchost.exe    < 0.01    10,124 K    19,160 K    2324    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
YourPhone.exe    Suspended    18,436 K    716 K    5616            (No signature was present in the subject)
WmiPrvSE.exe        12,056 K    18,544 K    7320    WMI Provider Host    Microsoft Corporation    (Verified) Microsoft Windows
WinStore.App.exe    Suspended    20,624 K    416 K    3420    Store    Microsoft Corporation    (No signature was present in the subject) Microsoft Corporation
winlogon.exe        2,624 K    9,456 K    3348    Windows Logon Application    Microsoft Corporation    (Verified) Microsoft Windows
wininit.exe        1,592 K    6,280 K    636    Windows Start-Up Application    Microsoft Corporation    (Verified) Microsoft Windows Publisher
Video.UI.exe    Suspended    19,840 K    420 K    9088            (No signature was present in the subject)
updatechecker.exe        33,756 K    4,788 K    4080            (Verified) MiniTool Software Limited
SystemSettings.exe    Suspended    25,288 K    744 K    7692    Settings    Microsoft Corporation    (Verified) Microsoft Windows
SynTPHelper.exe        1,056 K    4,268 K    7064    Synaptics Pointing Device Helper    Synaptics Incorporated    (Verified) Synaptics Incorporated
SynTPEnhService.exe        1,168 K    4,160 K    3720    64-bit Synaptics Pointing Enhance Service    Synaptics Incorporated    (Verified) Synaptics Incorporated
svchost.exe        3,440 K    7,948 K    2476    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,496 K    8,940 K    1312    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        15,088 K    32,248 K    960    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        5,264 K    19,176 K    5528    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,840 K    10,924 K    4912    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        8,364 K    16,636 K    2140    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,972 K    7,144 K    3280    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,804 K    7,864 K    632    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        4,608 K    11,232 K    2272    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        3,868 K    13,944 K    2608    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,364 K    8,148 K    3820    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        18,304 K    27,004 K    3548    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,732 K    5,628 K    1168    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,128 K    6,860 K    2028    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,976 K    11,072 K    1056    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        3,676 K    21,756 K    9248    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        12,488 K    12,996 K    1656    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        6,108 K    16,508 K    2232    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,428 K    8,852 K    2800    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,392 K    7,828 K    8516    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,580 K    9,848 K    1296    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,716 K    6,056 K    2780    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        7,136 K    18,840 K    1076    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        3,096 K    8,364 K    2572    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,604 K    11,160 K    2616    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        4,944 K    19,604 K    3696    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        10,308 K    13,208 K    3224    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        33,156 K    42,624 K    3540    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        3,924 K    18,140 K    8968    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,088 K    7,856 K    1176    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,580 K    10,660 K    1196    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,776 K    6,908 K    2968    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        8,084 K    31,348 K    9492    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,096 K    7,224 K    1564    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        3,384 K    14,956 K    4864    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        6,416 K    14,400 K    1468    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,292 K    10,128 K    11040    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,664 K    5,684 K    1536    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        4,716 K    7,644 K    1880    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,252 K    6,704 K    4664    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        4,204 K    12,900 K    8152    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        4,336 K    9,820 K    6728    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,044 K    9,316 K    6464    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,260 K    9,544 K    2176    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,688 K    9,580 K    1772    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,804 K    7,068 K    5064    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,196 K    5,832 K    4976    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        3,440 K    11,156 K    4252    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,928 K    7,076 K    3656    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,636 K    5,436 K    3872    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,624 K    5,652 K    3648    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,360 K    5,140 K    3676    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        3,684 K    11,756 K    3568    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        6,048 K    15,596 K    3532    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,788 K    13,112 K    2740    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,244 K    9,188 K    2132    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,504 K    6,244 K    2060    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,792 K    7,056 K    2116    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,932 K    7,444 K    2124    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,464 K    6,360 K    1724    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,380 K    10,076 K    1972    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,080 K    11,308 K    1288    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,956 K    10,920 K    1184    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,792 K    11,668 K    1480    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,968 K    7,432 K    1752    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        956 K    3,664 K    920    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,836 K    11,288 K    5448    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,520 K    6,320 K    8096    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,092 K    7,960 K    5332    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        2,908 K    8,024 K    1148    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        6,180 K    9,116 K    9564    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        1,264 K    4,984 K    2104    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
svchost.exe        5,120 K    18,200 K    5696    Host Process for Windows Services    Microsoft Corporation    (Verified) Microsoft Windows Publisher
StartMenuExperienceHost.exe        21,132 K    52,724 K    4520            (Verified) Microsoft Windows
spoolsv.exe        5,600 K    12,268 K    3184    Spooler SubSystem App    Microsoft Corporation    (Verified) Microsoft Windows
smss.exe        1,176 K    1,140 K    320    Windows Session Manager    Microsoft Corporation    (Verified) Microsoft Windows Publisher
SkypeBackgroundHost.exe    Suspended    2,060 K    752 K    10508    Microsoft Skype    Microsoft Corporation    (No signature was present in the subject) Microsoft Corporation
SkypeApp.exe    Suspended    17,872 K    868 K    7188    SkypeApp    Microsoft Corporation    (No signature was present in the subject) Microsoft Corporation
sihost.exe        8,612 K    36,484 K    7876    Shell Infrastructure Host    Microsoft Corporation    (Verified) Microsoft Windows
ShellExperienceHost.exe    Suspended    22,244 K    46,744 K    7744    Windows Shell Experience Host    Microsoft Corporation    (Verified) Microsoft Windows
SgrmBroker.exe        3,400 K    6,308 K    9136    System Guard Runtime Monitor Broker Service    Microsoft Corporation    (Verified) Microsoft Windows Publisher
SecurityHealthSystray.exe        1,704 K    8,420 K    10896    Windows Security notification icon    Microsoft Corporation    (Verified) Microsoft Windows
SecurityHealthService.exe        4,684 K    14,844 K    7408    Windows Security Health Service    Microsoft Corporation    (Verified) Microsoft Windows Publisher
SearchUI.exe    Suspended    104,832 K    89,840 K    4676    Search and Cortana application    Microsoft Corporation    (Verified) Microsoft Windows
RuntimeBroker.exe        10,680 K    36,408 K    7052    Runtime Broker    Microsoft Corporation    (Verified) Microsoft Windows
RuntimeBroker.exe        2,336 K    10,496 K    8380    Runtime Broker    Microsoft Corporation    (Verified) Microsoft Windows
RuntimeBroker.exe        1,596 K    7,532 K    2640    Runtime Broker    Microsoft Corporation    (Verified) Microsoft Windows
RuntimeBroker.exe        3,708 K    16,000 K    2676    Runtime Broker    Microsoft Corporation    (Verified) Microsoft Windows
RuntimeBroker.exe        6,048 K    23,116 K    476    Runtime Broker    Microsoft Corporation    (Verified) Microsoft Windows
RuntimeBroker.exe        1,512 K    6,864 K    1092    Runtime Broker    Microsoft Corporation    (Verified) Microsoft Windows
RuntimeBroker.exe        1,544 K    6,752 K    10960    Runtime Broker    Microsoft Corporation    (Verified) Microsoft Windows
Registry        7,616 K    82,328 K    96            
RAVCpl64.exe        4,428 K    13,320 K    10328    Realtek HD Audio Manager    Realtek Semiconductor    (Verified) Realtek Semiconductor Corp
RAVBg64.exe        5,848 K    13,748 K    7020    HD Audio Background Process    Realtek Semiconductor    (Verified) Realtek Semiconductor Corp
procexp (1).exe        4,292 K    11,048 K    7612    Sysinternals Process Explorer    Sysinternals - www.sysinternals.com    (Verified) Microsoft Corporation
OneDrive.exe        27,780 K    59,640 K    4004    Microsoft OneDrive    Microsoft Corporation    (Verified) Microsoft Corporation
OfficeClickToRun.exe        38,748 K    38,992 K    3780    Microsoft Office Click-to-Run (SxS)    Microsoft Corporation    (Verified) Microsoft Corporation
nvtray.exe        2,628 K    9,956 K    2432    NVIDIA Settings    NVIDIA Corporation    (Verified) NVIDIA Corporation
NVDisplay.Container.exe        2,896 K    9,984 K    3728    NVIDIA Container    NVIDIA Corporation    (Verified) NVIDIA Corporation
NisSrv.exe        5,880 K    10,132 K    6308    Microsoft Network Realtime Inspection Service    Microsoft Corporation    (Verified) Microsoft Windows Publisher
MicrosoftEdgeSH.exe    Suspended    3,880 K    11,300 K    4752    Microsoft Edge Web Platform    Microsoft Corporation    (Verified) Microsoft Windows
MicrosoftEdgeCP.exe    Suspended    5,796 K    22,016 K    4524    Microsoft Edge Content Process    Microsoft Corporation    (Verified) Microsoft Windows
MicrosoftEdge.exe    Suspended    26,024 K    10,020 K    760    Microsoft Edge    Microsoft Corporation    (Verified) Microsoft Corporation
Memory Compression        840 K    135,348 K    2152            
igfxTray.exe        2,944 K    10,716 K    7192            (Verified) Intel Corporation - pGFX
igfxHK.exe        2,256 K    8,148 K    7364    igfxHK Module    Intel Corporation    (Verified) Intel Corporation - pGFX
igfxEM.exe        3,276 K    11,488 K    3264    igfxEM Module    Intel Corporation    (Verified) Intel Corporation - pGFX
igfxCUIService.exe        2,224 K    8,844 K    1872    igfxCUIService Module    Intel Corporation    (Verified) Intel Corporation - pGFX
ibtsiva.exe        1,040 K    4,228 K    3712    Intel(R) Wireless Bluetooth(R) iBtSiva Service    Intel Corporation    (Verified) Intel(R) Wireless Connectivity Solutions
IAStorIcon.exe        21,192 K    30,692 K    10308    IAStorIcon    Intel Corporation    (Verified) Intel Corporation - Rapid Storage Technology
IAStorDataMgrSvc.exe        29,808 K    40,028 K    9032    IAStorDataSvc    Intel Corporation    (Verified) Intel Corporation - Rapid Storage Technology
fontdrvhost.exe        2,484 K    6,148 K    7752    Usermode Font Driver Host    Microsoft Corporation    (Verified) Microsoft Windows
fontdrvhost.exe        1,416 K    2,820 K    952    Usermode Font Driver Host    Microsoft Corporation    (Verified) Microsoft Windows
dllhost.exe        1,656 K    6,876 K    10876    COM Surrogate    Microsoft Corporation    (Verified) Microsoft Windows
dllhost.exe        4,992 K    12,260 K    1240    COM Surrogate    Microsoft Corporation    (Verified) Microsoft Windows
dllhost.exe        3,096 K    9,932 K    7628    COM Surrogate    Microsoft Corporation    (Verified) Microsoft Windows
dasHost.exe        3,800 K    9,256 K    9288    Device Association Framework Provider Host    Microsoft Corporation    (Verified) Microsoft Windows
csrss.exe        1,776 K    5,404 K    520    Client Server Runtime Process    Microsoft Corporation    (Verified) Microsoft Windows Publisher
chrome.exe        40,776 K    72,312 K    2108    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        37,748 K    73,040 K    10428    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        22,012 K    45,696 K    9848    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        334,680 K    347,788 K    7816    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        39,256 K    65,764 K    8924    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        12,564 K    22,296 K    9352    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        31,916 K    64,972 K    9544    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        17,156 K    35,952 K    1616    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        16,180 K    33,096 K    9208    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        6,756 K    16,576 K    1968    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        1,656 K    6,368 K    1900    Google Chrome    Google LLC    (Verified) Google LLC
chrome.exe        1,964 K    8,636 K    8316    Google Chrome    Google LLC    (Verified) Google LLC
Calculator.exe    Suspended    23,380 K    19,220 K    11044            (No signature was present in the subject)
browser_broker.exe        1,588 K    7,748 K    9416    Browser_Broker    Microsoft Corporation    (Verified) Microsoft Windows
ApplicationFrameHost.exe        25,344 K    39,448 K    10096    Application Frame Host    Microsoft Corporation    (Verified) Microsoft Windows

 

 

TDSSKiller

 

Цитат

18:26:24.0467 0x1f90  TDSS rootkit removing tool 3.1.0.28 Apr  9 2019 21:11:46
18:26:24.0467 0x1f90  UEFI system
18:26:30.0404 0x1f90  ============================================================
18:26:30.0404 0x1f90  Current date / time: 2020/02/24 18:26:30.0404
18:26:30.0404 0x1f90  SystemInfo:
18:26:30.0404 0x1f90  
18:26:30.0404 0x1f90  OS Version: 10.0.18363 ServicePack: 0.0
18:26:30.0404 0x1f90  Product type: Workstation
18:26:30.0404 0x1f90  ComputerName: DESKTOP-2J7TFG9
18:26:30.0404 0x1f90  UserName: Misho
18:26:30.0404 0x1f90  Windows directory: C:\Windows
18:26:30.0404 0x1f90  System windows directory: C:\Windows
18:26:30.0404 0x1f90  Running under WOW64
18:26:30.0404 0x1f90  Processor architecture: Intel x64
18:26:30.0404 0x1f90  Number of processors: 4
18:26:30.0404 0x1f90  Page size: 0x1000
18:26:30.0404 0x1f90  Boot type: Normal boot
18:26:30.0404 0x1f90  CodeIntegrityOptions = 0x0000C001
18:26:30.0404 0x1f90  ============================================================
18:26:30.0450 0x1f90  KLMD registered as C:\Windows\system32\drivers\62096659.sys
18:26:30.0450 0x1f90  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 18362.1, osProperties = 0x19
18:26:30.0497 0x1f90  System UUID: {1970670A-5706-B26E-D54E-84980F5EFABD}
18:26:30.0654 0x1f90  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:26:30.0654 0x1f90  Drive \Device\Harddisk1\DR1 - Size: 0x6FC86D6000 ( 447.13 Gb ), SectorSize: 0x200, Cylinders: 0xE401, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:26:30.0654 0x1f90  ============================================================
18:26:30.0654 0x1f90  \Device\Harddisk0\DR0:
18:26:30.0654 0x1f90  GPT partitions:
18:26:30.0669 0x1f90  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {77C04D36-1A48-4F49-B339-E145C785E093}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x108800
18:26:30.0669 0x1f90  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {EF2FC023-E0E9-4872-9AE8-6ACE192ABC2B}, Name: EFI system partition, StartLBA 0x109000, BlocksNum 0x32000
18:26:30.0669 0x1f90  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {C7459B84-C97B-4F60-976F-A73F9ACDFF3D}, Name: Microsoft reserved partition, StartLBA 0x13B000, BlocksNum 0x8000
18:26:30.0669 0x1f90  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {90F3E39A-2566-4988-9879-21BFA1787B1F}, Name: Basic data partition, StartLBA 0x143000, BlocksNum 0xEEBD800
18:26:30.0669 0x1f90  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {899D0E89-4186-4819-95FA-894436C0D16A}, Name: Basic data partition, StartLBA 0xF000800, BlocksNum 0x2BC00000
18:26:30.0669 0x1f90  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {5606878C-8C99-4999-B46F-14493885B8EE}, Name: Basic data partition, StartLBA 0x3AC00800, BlocksNum 0x39B06000
18:26:30.0669 0x1f90  MBR partitions:
18:26:30.0669 0x1f90  \Device\Harddisk1\DR1:
18:26:30.0669 0x1f90  GPT partitions:
18:26:30.0669 0x1f90  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {00002F1D-B8A0-15C7-F9DA-D5013A5E0000}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x844366
18:26:30.0669 0x1f90  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {00003789-B360-1710-F9DA-D501126F0000}, Name: EFI system partition, StartLBA 0x845000, BlocksNum 0x1900A4
18:26:30.0669 0x1f90  \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {00003D27-1F40-17EC-F9DA-DD014E7A0000}, Name: Microsoft reserved partition, StartLBA 0x9D5800, BlocksNum 0x8000
18:26:30.0669 0x1f90  \Device\Harddisk1\DR1\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {0008893B-8950-AD12-FADA-DD0176121100}, Name: Basic data partition, StartLBA 0x9DD800, BlocksNum 0x37465800
18:26:30.0669 0x1f90  MBR partitions:
18:26:30.0669 0x1f90  ============================================================
18:26:30.0669 0x1f90 😄 <-> \Device\Harddisk1\DR1\Partition4
18:26:33.0278 0x1f90  E: <-> \Device\Harddisk0\DR0\Partition4
18:26:33.0278 0x1f90 😧 <-> \Device\Harddisk1\DR1\Partition1
18:26:33.0278 0x1f90  F: <-> \Device\Harddisk1\DR1\Partition2
18:26:33.0310 0x1f90  G: <-> \Device\Harddisk0\DR0\Partition5
18:26:33.0357 0x1f90  H: <-> \Device\Harddisk0\DR0\Partition6
18:26:33.0357 0x1f90  ============================================================
18:26:33.0372 0x1f90  Initialize success
18:26:33.0372 0x1f90  ============================================================
18:26:37.0653 0x1b28  ============================================================
18:26:37.0653 0x1b28  Scan started
18:26:37.0653 0x1b28  Mode: Manual; 
18:26:37.0653 0x1b28  ============================================================
18:26:37.0653 0x1b28  KSN ping started
18:26:37.0753 0x1b28  KSN ping finished: true
18:26:38.0423 0x1b28  ================ Scan BIOS =================================
18:26:38.0423 0x1b28  BIOS info: vendor = Insyde Corp., version = V2.28, releaseDate = 04/16/2014
18:26:38.0423 0x1b28  Base board info: manufacturer = Acer, product = Dazzle_HW, version = Type2 - A01 Board Version
18:26:38.0876 0x1b28  [ 1790DEA0DB91454B24C96A30A18A9FAF, E517292039730761E4C2C932D85768A30D9C243870E01B4F618F67862BD041AC ] BIOS
18:26:38.0876 0x1b28  BIOS - ok
18:26:38.0876 0x1b28  ================ Scan system memory ========================
18:26:38.0876 0x1b28  System memory - ok
18:26:38.0876 0x1b28  ================ Scan services =============================
18:26:38.0923 0x1b28  [ 214FD47FAA4CA006B575B65AC7604E3A, 071F296DAD21044232A52350496BC77C0E5C0EE799FC387D9D730664F6A4B67E ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
18:26:38.0939 0x1b28  1394ohci - ok
18:26:38.0946 0x1b28  [ 4A8F6E456977488CC4C77149792340E9, 6E8D7D4360543D1CB2343B4C323063A6BF69CEA364FB205114753B337DB4806F ] 3ware           C:\Windows\system32\drivers\3ware.sys
18:26:38.0946 0x1b28  3ware - ok
18:26:38.0962 0x1b28  [ D77CEF562DB337187D63766B689360BA, 0A528EB3BA5A0481A4F189F44569FE5B651A7CC4106370AD029A569939BDF4DC ] AarSvc          C:\Windows\System32\AarSvc.dll
18:26:38.0962 0x1b28  AarSvc - ok
18:26:38.0993 0x1b28  [ 4EC1CE67D6DF47C05C9400332BB6699C, 6418C8A428F9DDCC634573E4D729092E0E6B9C12AA8CDDDA98372BC3DEDA7BA7 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:26:39.0009 0x1b28  ACPI - ok
18:26:39.0009 0x1b28  [ 97CD5E972FA665A42E9C087B1DFAE6E6, A0F1FB5AECE906F59DF1B3291F49C42F90AF1AEB1E7CFC1D2CC0049C794223D9 ] AcpiDev         C:\Windows\System32\drivers\AcpiDev.sys
18:26:39.0009 0x1b28  AcpiDev - ok
18:26:39.0009 0x1b28  [ D5294DC5293B58E1B400984AC326FF3B, 31810584C1D53F075D5A823FC4AFFC3E021941281F1F03959B84002ED52AFB5D ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
18:26:39.0024 0x1b28  acpiex - ok
18:26:39.0024 0x1b28  [ 8E4182F6A345D2D85F9AC3BCBBD7F18C, D4EE54871113EAD4754AB58222D7E4A3B1DEF80B4B6F5524B1B4BB901340FF7D ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
18:26:39.0024 0x1b28  acpipagr - ok
18:26:39.0024 0x1b28  [ 48D460FAA6929BC81869CC7299A6B70A, 32A3A96B2708148B8F5461E666995BE9119F61C73DAB5EC373D014F0F13D0297 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
18:26:39.0024 0x1b28  AcpiPmi - ok
18:26:39.0040 0x1b28  [ B9EDE7133F52C0B989A66CA3B39AA588, 16F189B1D5AB90D981C6EBC1B4794EBA5D53FF1AD3A3A13720C927889C5C38F3 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
18:26:39.0040 0x1b28  acpitime - ok
18:26:39.0040 0x1b28  [ E4EBF97A193047430CE5DE7485991CEF, CEA08E5CF9B9654841C502D676FC62E244906AF5761877C719810DA2D88CE236 ] Acx01000        C:\Windows\system32\drivers\Acx01000.sys
18:26:39.0056 0x1b28  Acx01000 - ok
18:26:39.0089 0x1b28  [ 126384CA8ADA5F1E061CAE75581CEE8F, C3E2085B7A50928780CB4F693643C76E623417227E3B564F4EF5DC9AB6F66976 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
18:26:39.0105 0x1b28  ADP80XX - ok
18:26:39.0120 0x1b28  [ 694F41E5B935AD1538CFC3F52532A899, 335CE71E517D2A1CD4E7CFEB7A03A80396A5A8B6C80E83665BC6B90056D08BD8 ] AFD             C:\Windows\system32\drivers\afd.sys
18:26:39.0136 0x1b28  AFD - ok
18:26:39.0136 0x1b28  [ 033DE3E43A9FC3F02B04E791148D0F11, D7037CF10A5829DD94DD9866FBAB222FC04FDF2691E5E23BC451217E693AEAD7 ] afunix          C:\Windows\system32\drivers\afunix.sys
18:26:39.0136 0x1b28  afunix - ok
18:26:39.0151 0x1b28  [ 1772CB571F5CAB57E407CB1DCE570D4B, 9193187D102B336D665FD1C67EF1E94EEF204F7B2321EBB076322B2BB39E7985 ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
18:26:39.0167 0x1b28  ahcache - ok
18:26:39.0167 0x1b28  [ 232B30ECEFBB1BEC07F2DF21D46DCDB6, BC840D8E3473A100BE396CDF977E4909303E3F9E2086DB4ABCED249ACF7F17D9 ] AJRouter        C:\Windows\System32\AJRouter.dll
18:26:39.0167 0x1b28  AJRouter - ok
18:26:39.0167 0x1b28  [ FADF878C0D61D07170C91C891EBC72B2, 896D685EF63B0041558A51096506FD915A99B3FE2D524E6834C1F996383134DB ] ALG             C:\Windows\System32\alg.exe
18:26:39.0183 0x1b28  ALG - ok
18:26:39.0183 0x1b28  [ 55578CF027B0AE9F0D653B209C9F1B6D, 46A53925BAA34FA9D87E7C3157504A4557D81CD8B8608E7AB6CAF02F482F7792 ] amdgpio2        C:\Windows\System32\drivers\amdgpio2.sys
18:26:39.0183 0x1b28  amdgpio2 - ok
18:26:39.0183 0x1b28  [ A6B00F4CD34F26B22B1B97D454567DA1, F70FED4807BBDA94170F6B060FDB27A3B5DED6982665F7A854A1DAEE370B8005 ] amdi2c          C:\Windows\System32\drivers\amdi2c.sys
18:26:39.0183 0x1b28  amdi2c - ok
18:26:39.0198 0x1b28  [ 0D8417FA650DC4797B6887ED7C7B98EB, E8D8868D6E9D947EC8B3661CF3F199B4D37515EC7005253367899FB6DB0C8860 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
18:26:39.0198 0x1b28  AmdK8 - ok
18:26:39.0214 0x1b28  [ F59B38434ABADE857DA389F38FEBD061, 9520C41FDC69301A1A4CAA68CEF3ECC64F3CF40C20471DA2910D88F954D15063 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
18:26:39.0214 0x1b28  AmdPPM - ok
18:26:39.0214 0x1b28  [ 6BA3FF67D317AF6A6946CCF4E80B5B33, A8E375860F06374F3A9DCACDB99D5D574C8430C07E71D5D60A0FACC24C49B669 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:26:39.0230 0x1b28  amdsata - ok
18:26:39.0230 0x1b28  [ 3FD087BF35CFC998037DF2534ED9CBC2, 71C4D8924AAEBE362C167E18F4C1B38D5151D70AD05F75DCC3EB748A37DD5C95 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:26:39.0245 0x1b28  amdsbs - ok
18:26:39.0245 0x1b28  [ B6AF8AAE55DC50EA0610FCFF92133952, D990C7A19D2C4CDFA4E08EC64941BAD0F378D23BFC5D93026CCACC97A283A2C9 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:26:39.0245 0x1b28  amdxata - ok
18:26:39.0261 0x1b28  [ 4E8E32057AA60133C15B8D8CA110A186, 025D2114D40CBC840BC2F8D413F022A2BC143F21155DFE10112ABE7FC408EB5C ] AppID           C:\Windows\system32\drivers\appid.sys
18:26:39.0263 0x1b28  AppID - ok
18:26:39.0263 0x1b28  [ 34F6D0A9692590838D867A26FD83B257, 52F54C8BCCE6155B1D703AF261540A6D5843A460809FC630B59637B5885604FD ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:26:39.0263 0x1b28  AppIDSvc - ok
18:26:39.0279 0x1b28  [ EF69FEA1735E79ADE0CC1619C505FEA3, DAE80991CFAFF970DA3CD5FC76F7B9FCC94C0D68F896B39FAFB1BD62B1A4B930 ] Appinfo         C:\Windows\System32\appinfo.dll
18:26:39.0279 0x1b28  Appinfo - ok
18:26:39.0279 0x1b28  [ 5C8B1D3954F8ED849C68CD6D98636605, 8784FD6DD92B118659BED6FE0C3EAA0488C2ADD371DA5A02D4A22B61AC6900EF ] applockerfltr   C:\Windows\system32\drivers\applockerfltr.sys
18:26:39.0279 0x1b28  applockerfltr - ok
18:26:39.0294 0x1b28  [ 57EEEC521B7CA488A2C0C627B1F8DB75, 682D79792FDA28C693FAB026C65E434080E8FC12811628BC894F1AC29FFBFEC1 ] AppMgmt         C:\Windows\System32\appmgmts.dll
18:26:39.0294 0x1b28  AppMgmt - ok
18:26:39.0326 0x1b28  [ 2D7826A4C6C3DE9668DEC67FA352ADBB, 6AA4B4D43C351C1CA7EA7F75C56906B039369ACF18443508A3A86BDAFC6A8AF8 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
18:26:39.0326 0x1b28  AppReadiness - ok
18:26:39.0522 0x1b28  [ 63D3B1DF43B6DFDB0EB9DCA99A323A5B, AC0249B6B6A7E05CAFCFC490B84AE9A7DE5515B3A58EE6AC1CFEFABE790FB6A1 ] AppVClient      C:\Windows\system32\AppVClient.exe
18:26:39.0537 0x1b28  AppVClient - ok
18:26:39.0553 0x1b28  [ 8FA9A06482202DC0D2C93F01EA4ACC89, 561E46D2EA7442498500F5187F90889A82BF169FD47BF9F3D497FE856CE2ABB9 ] AppvStrm        C:\Windows\system32\drivers\AppvStrm.sys
18:26:39.0553 0x1b28  AppvStrm - ok
18:26:39.0553 0x1b28  [ CA7518C52B2D648163570B543E4889CB, 147FAB2381304C93E574FB14C05837701B94EA98C23780ED425689AC872A6F0E ] AppvVemgr       C:\Windows\system32\drivers\AppvVemgr.sys
18:26:39.0568 0x1b28  AppvVemgr - ok
18:26:39.0568 0x1b28  [ ABE96FE0ABC35A947CEE3ED18705ADCD, A7343D8C1F927B16E852FEB5A4645F3397BC28A8B831462009FD851B02FDE9E9 ] AppvVfs         C:\Windows\system32\drivers\AppvVfs.sys
18:26:39.0568 0x1b28  AppvVfs - ok
18:26:39.0646 0x1b28  [ A7E6B75805693D019A7D09CFAFC4BF6A, 2D9B48487D3903863EEF94D2102F8E7AC65090776D59AE04CC6B975EE9FBD72B ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
18:26:39.0725 0x1b28  AppXSvc - ok
18:26:39.0725 0x1b28  [ A05FF69C88EAB79E51430E6982BCC6F0, 728622D57C390DC8C6D883D148D14DB4DB3E94EF99B726F4ABDD552F32347B30 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:26:39.0725 0x1b28  arcsas - ok
18:26:39.0756 0x1b28  [ F19C92E8396CB3BED513EFF9CE0D5923, B4BA4191FE3AED317DA65D599F1CEB634FA7780AA222B12326A1DA75F0522B4D ] AssignedAccessManagerSvc C:\Windows\System32\assignedaccessmanagersvc.dll
18:26:39.0771 0x1b28  AssignedAccessManagerSvc - ok
18:26:39.0787 0x1b28  [ A6275119CE5EC54FDBC62C307503F767, D6E6A2D68EE31F13D92A9D7620E3DB46A6BC4415703E35D47769982BFD9A25DD ] AsyncMac        C:\Windows\System32\drivers\asyncmac.sys
18:26:39.0787 0x1b28  AsyncMac - ok
18:26:39.0787 0x1b28  [ 6CB8D419AD7A2D7D5373A7DDE2664D5C, CFCABE0691BCA004DD3678468592CFD51AA9BBA318D96A54D8C5BAA1AA62683B ] atapi           C:\Windows\system32\drivers\atapi.sys
18:26:39.0787 0x1b28  atapi - ok
18:26:39.0803 0x1b28  [ BC4E5214B808D2E770D791CED9CD623B, 49B05CC0AADE54DA6C695F567202768FFA1F4B04774E06FAF2A47E66A4C917B7 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
18:26:39.0818 0x1b28  AudioEndpointBuilder - ok
18:26:39.0865 0x1b28  [ 183C4C226AAA5B27DC484F696D2CC767, 991EC4A38C4BB64FA51DC880ED04E4A52C55D63ABF16A67610D9FF1E0B1EDFC2 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
18:26:39.0898 0x1b28  Audiosrv - ok
18:26:39.0913 0x1b28  [ 23410CD6AD97FDF3FD465ACBB6C170E2, 31259CB3F2009157A59266854B2FAF2A90057D9BDFF24EBBEAD868D23F6567F6 ] autotimesvc     C:\Windows\System32\autotimesvc.dll
18:26:39.0913 0x1b28  autotimesvc - ok
18:26:39.0913 0x1b28  [ 764F44181B6092E4FA1B16F88E9571DC, E9491AB60827CF56B02D7D1D631AB5B34A9564DF24924EF261EA6565120CEF98 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:26:39.0930 0x1b28  AxInstSV - ok
18:26:39.0945 0x1b28  [ A1FF5E48350A1C3332190CA008916F0E, 403639275459836DD9B243B16FD226951157A9EE6B295A0C0947249C3DEDD8E8 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
18:26:39.0945 0x1b28  b06bdrv - ok
18:26:39.0961 0x1b28  [ 96ECA99B219CBB4F7C95176E492F53BF, 8189D0DBA3331145FB99D4EE188DE48799F0940DE79D46FB9444914C5B4D4146 ] bam             C:\Windows\system32\drivers\bam.sys
18:26:39.0961 0x1b28  bam - ok
18:26:39.0977 0x1b28  [ 2EA5A34CE470500BC36B02BD25836B2C, E2F6EE196A580F1AEF6145FE476692CF5053C31C742972E7BDECE30142623054 ] BasicDisplay    C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys
18:26:39.0977 0x1b28  BasicDisplay - ok
18:26:39.0977 0x1b28  [ A48DAFD906B1912D738A9A90559EF5F3, 3ED950F996552E94D23F9B42300B11D46659F99621B8215EAA7A157B03640F2F ] BasicRender     C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys
18:26:39.0993 0x1b28  BasicRender - ok
18:26:40.0024 0x1b28  [ FEEAA31D7AAC2119B4AE5C340490524B, EA975CD0935916961F3F131B07A799983D6AE0617F687EFC21C1404D43FC1F7E ] BcastDVRUserService C:\Windows\System32\BcastDVRUserService.dll
18:26:40.0040 0x1b28  BcastDVRUserService - ok
18:26:40.0055 0x1b28  [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
18:26:40.0055 0x1b28  bcmfn2 - ok
18:26:40.0071 0x1b28  [ 77FCD2D8339007BC914AF1DBAE5C6BC8, 1E6F69D0AA496E1D9C7DFA67986AC7CB4149C74B5C46EDACE5D078C94E3F0649 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:26:40.0086 0x1b28  BDESVC - ok
18:26:40.0086 0x1b28  [ A5D43CA19863A29D219C3C588D936FFC, EECA12E6D5BB7C827BE0B7E5C4484BECEEDF53E5E9BF81B7EEBE7EC43CA8AD53 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:26:40.0086 0x1b28  Beep - ok
18:26:40.0102 0x1b28  [ D7654CCF919B8BD04B6D4972459F01B2, 47A108ECCB27192091286728D400E2FA1F0C56692B546636D6343A95D29E18C0 ] BFE             C:\Windows\System32\bfe.dll
18:26:40.0118 0x1b28  BFE - ok
18:26:40.0133 0x1b28  [ DB98C485C672CD9C3FCCB944055D3311, 2061FE65646DE71E56FDCEF860AF92AB370E1DA73307460A2A4B8744DA16D57A ] bindflt         C:\Windows\system32\drivers\bindflt.sys
18:26:40.0133 0x1b28  bindflt - ok
18:26:40.0165 0x1b28  [ 0BF638DE99C7F4E45228C6325293E2DD, 90E6E72587C99BF786F7837894A21DEF696B8C975EF35962040F743B733163BD ] BITS            C:\Windows\System32\qmgr.dll
18:26:40.0197 0x1b28  BITS - ok
18:26:40.0212 0x1b28  [ EAF35F231112E4FB5FA1B64F817E5708, 6FEA61162DC849EEDBE899EE95B1D1BD6D22382D06AD3D7093B67628F8FEB855 ] BluetoothUserService C:\Windows\System32\Microsoft.Bluetooth.UserService.dll
18:26:40.0228 0x1b28  BluetoothUserService - ok
18:26:40.0228 0x1b28  [ EE14F8F0269DB5C26D3DAD7B1A65894B, F1BFA7B723B324F78B8DED1597BAD8091FF0298BC8DBAC29FB793F2D33F5456C ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:26:40.0244 0x1b28  bowser - ok
18:26:40.0244 0x1b28  [ 0339E495F3EBC438DEE1DD299E06CEDC, 8B9C45F6830D4DE85D6117216294479B4ABC35304BEE23917BC670BA140AC384 ] BrokerInfrastructure C:\Windows\System32\psmsrv.dll
18:26:40.0259 0x1b28  BrokerInfrastructure - ok
18:26:40.0275 0x1b28  [ B9A68F85FB7AB4FE1EF51591DF9ABD6C, CC94B55344883B5058DD1FA23C26257EF1740CB07FA9E218E86D7CFB3C69242A ] BTAGService     C:\Windows\System32\BTAGService.dll
18:26:40.0290 0x1b28  BTAGService - ok
18:26:40.0306 0x1b28  [ CCA2505C9EB10CDABDC9FEE10D812F02, 8B0F65F411C463CBC68B8039D4795A3D3A356F6F18FF165F2C14439BD8FB569A ] BthA2dp         C:\Windows\System32\drivers\BthA2dp.sys
18:26:40.0322 0x1b28  BthA2dp - ok
18:26:40.0322 0x1b28  [ 42C9AFF4636ACE3DCFB79FEF85345545, CD11AE283264371906D8FAA0F959F13F8CD4A46D5A0D9AFAC657E2FE0F1634C0 ] BthAvctpSvc     C:\Windows\System32\BthAvctpSvc.dll
18:26:40.0337 0x1b28  BthAvctpSvc - ok
18:26:40.0337 0x1b28  [ 106123BBB49CB8CE937FD61CF26C3C9B, 050B310375CE300EC41D012B04EB258B95892BBE4E3A8B9F6CF8A22AD7604BB9 ] BthEnum         C:\Windows\System32\drivers\BthEnum.sys
18:26:40.0337 0x1b28  BthEnum - ok
18:26:40.0353 0x1b28  [ 217DFC97A0AF56251085ED974C976480, 77F99A5CF7BF894B813982E61EC1FC6D33EDDE8253C7169F8E33475D2FCF010B ] BthHFAud        C:\Windows\System32\drivers\BthHfAud.sys
18:26:40.0353 0x1b28  BthHFAud - ok
18:26:40.0353 0x1b28  [ 48AE897A64019A816D694241BF62E266, E2F7F0318DC412497AD4906314C08488979F9B9D84AB5FAB404461D324B50A27 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
18:26:40.0369 0x1b28  BthHFEnum - ok
18:26:40.0375 0x1b28  [ 9E958ED983C0DD9C690248084219C2DE, 2F6DE7E74D1F82FAF07A513AF8A5F9307A05715D261A276B874575EED903F4EF ] BthLEEnum       C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
18:26:40.0378 0x1b28  BthLEEnum - ok
18:26:40.0378 0x1b28  [ AF935DF213BEA3BAEDD40E524BB6E4F6, A0CD330C43B6D474A1BDE48C44EFA74D5232F02E09535616AA7A3B279CDDA8F2 ] BthMini         C:\Windows\System32\drivers\BTHMINI.sys
18:26:40.0378 0x1b28  BthMini - ok
18:26:40.0378 0x1b28  [ 98C477D98674C799758B3C6E9950E11A, D864987FC3DEA86E713539DD440B7FB981FF2F41BD2840BF12601411C8CF5099 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
18:26:40.0393 0x1b28  BTHMODEM - ok
18:26:40.0393 0x1b28  [ BCD11BDC707A4A2563774476AF6FCCBB, 8D55D6211A3839827EE2EF788F6B75A935E52C1E56E5E73A2B5F46E73EAD37FD ] BthPan          C:\Windows\System32\drivers\bthpan.sys
18:26:40.0393 0x1b28  BthPan - ok
18:26:40.0425 0x1b28  [ 9EE2677BD8520DB004F665EF709936DB, CACC6B5F473906AC7EE276B10189FD8BFE72BD631822702793C0857FAB3A44F5 ] BTHPORT         C:\Windows\System32\drivers\BTHport.sys
18:26:40.0456 0x1b28  BTHPORT - ok
18:26:40.0472 0x1b28  [ E947884C5B5A5FDE7F13D0D16EEA45EE, DED2C9D51A4BA68554B7990CA71D1BD298BCBB8F7804394EC4ECFE10183D8C79 ] bthserv         C:\Windows\system32\bthserv.dll
18:26:40.0472 0x1b28  bthserv - ok
18:26:40.0472 0x1b28  [ DB77227DFDC89599B5BC605A8E1CA6B1, 3FFFE8B3309EAFDF09DA9CC5D743E36F93E1C606A36FE7FA1CED1B239EFF6012 ] BTHUSB          C:\Windows\System32\drivers\BTHUSB.sys
18:26:40.0487 0x1b28  BTHUSB - ok
18:26:40.0487 0x1b28  [ 600CA7D3C456198089558B142D86C065, F33B5A9513170297D4AF12DDD44CA195204DE398737B341537CBAE9D6F08005D ] bttflt          C:\Windows\system32\drivers\bttflt.sys
18:26:40.0487 0x1b28  bttflt - ok
18:26:40.0487 0x1b28  [ 58F44FD7BA873AAA8FE6C9473702492B, 44114E8906CB70BD426442D67534FE7105B257CD35F08C7D02DB1D5ECBF2F6C5 ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys
18:26:40.0503 0x1b28  buttonconverter - ok
18:26:40.0503 0x1b28  [ D3FC817DA4694E586135A3221811B409, B889FD8F588023358AA3EC0017CB5392D9F4F8A8B5DB637BE18A044C8C7982C4 ] CAD             C:\Windows\System32\drivers\CAD.sys
18:26:40.0503 0x1b28  CAD - ok
18:26:40.0518 0x1b28  [ 771A2F98EA940349AA0B490DD35156E5, DD6645D0089C8638B47364C747CF3340D319DB8630720174AB7EBC59983E7A2A ] camsvc          C:\Windows\system32\CapabilityAccessManager.dll
18:26:40.0518 0x1b28  camsvc - ok
18:26:40.0534 0x1b28  [ C240AF291AC69BF55C33DC9820338D66, 8A9E78820CD0594721B8462EDBC68D64D2A7FDE9F8EA8642ABC181733B685DA3 ] CaptureService  C:\Windows\System32\CaptureService.dll
18:26:40.0534 0x1b28  CaptureService - ok
18:26:40.0565 0x1b28  [ 1F8DEF3E9D4A1225D2275E6AA3A7744A, D0ABFAE305AB4CB7B15493DA486A48FD67903DB9B8F2522F6C6E1BFFE9246384 ] cbdhsvc         C:\Windows\System32\cbdhsvc.dll
18:26:40.0581 0x1b28  cbdhsvc - ok
18:26:40.0597 0x1b28  [ 3E9C20ED02FAA6D194C060BC6E7D587E, FDF9996AFE6EA77FB3FBF5C4D021C2669203D05495F6A36E01A3B08BB296B14C ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:26:40.0597 0x1b28  cdfs - ok
18:26:40.0612 0x1b28  [ 99C7075EC8DB304DBAE728B5C7C288AD, 5EAEA826E018903D3BCD5A0FD08ED80A3528D659CD0C7DD2456ED5C962A4CFC9 ] CDPSvc          C:\Windows\System32\CDPSvc.dll
18:26:40.0628 0x1b28  CDPSvc - ok
18:26:40.0643 0x1b28  [ 0CD86DF5805D6DCD09B930A7E7BFF156, B7A171E88B9FF66AEA94895F92639027A5DE25AB9D7A6AFC5601B6942FCC9E05 ] CDPUserSvc      C:\Windows\System32\CDPUserSvc.dll
18:26:40.0643 0x1b28  CDPUserSvc - ok
18:26:40.0659 0x1b28  [ 81E3779064C04790E30F25770F0AEADD, E7460E7C556D9C1497B9962838E3E1D261AA39392BB2501C67B2DDB870AF2EBB ] cdrom           C:\Windows\System32\drivers\cdrom.sys
18:26:40.0659 0x1b28  cdrom - ok
18:26:40.0675 0x1b28  [ F738B75E685601069A0A3F8C30CF4F47, CA063889D35F2C1CA38BA3E057EF1C1261E6D710A95527DF3523C0A26F97ACC4 ] CertPropSvc     C:\Windows\System32\certprop.dll
18:26:40.0675 0x1b28  CertPropSvc - ok
18:26:40.0691 0x1b28  [ E5259475D04AA9C04D2B44DB0BAC05D8, D474C0AC0D6FCD11D94C10B6D0B756918B61A326046EF49D82B8A89A98294F70 ] cht4iscsi       C:\Windows\system32\drivers\cht4sx64.sys
18:26:40.0697 0x1b28  cht4iscsi - ok
18:26:40.0728 0x1b28  [ C748EE7BCE13820DB957C79B64219992, 4503B96BFE7C7A6DDB183E7590EC32D698AEC3F75A71B7AC368EEAC87D03B2E8 ] cht4vbd         C:\Windows\System32\drivers\cht4vx64.sys
18:26:40.0775 0x1b28  cht4vbd - ok
18:26:40.0775 0x1b28  [ B7FCEF757304710463D78C1155764BA7, 35F30E3016742879CD51A3786DE5EAE685BFCE9ECFA4F05942625A207CBBAD83 ] circlass        C:\Windows\System32\drivers\circlass.sys
18:26:40.0775 0x1b28  circlass - ok
18:26:40.0790 0x1b28  [ 362291ED9494E5C6995ECC6BCC191D2B, C0FD7CE1B430EC83BDCFDFF45B6A15CBDB9766BBFB1777F1FD866BFAB0ABBD7E ] CldFlt          C:\Windows\system32\drivers\cldflt.sys
18:26:40.0806 0x1b28  CldFlt - ok
18:26:40.0806 0x1b28  [ 3E1CE22362CB8DA91CC79E09B723E062, 9FA43C3CF522548D9AF7458823DD1CF41A63BBC3B28D0746C84F3869DE41E41C ] CLFS            C:\Windows\system32\drivers\CLFS.sys
18:26:40.0822 0x1b28  CLFS - ok
18:26:41.0043 0x1b28  [ 9205F45828B072301E716BD82D7175F7, C63523AE1FBDCCE4784664709B3A8A0DAB2BF0B2A7B80D9E50875755F2F84D46 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
18:26:41.0309 0x1b28  ClickToRunSvc - ok
18:26:41.0356 0x1b28  [ DE025075ED17693DF0C6B6517F460148, C6ADE836B3665F0A6F07B2037D42463BF6FD99F7EF4A72D55C1DC32148DCCAFF ] ClipSVC         C:\Windows\System32\ClipSVC.dll
18:26:41.0377 0x1b28  ClipSVC - ok
18:26:41.0377 0x1b28  [ 61F6E1DB8CC17FFDEC5DDE1715320729, 18701706C0CC83B9719921D304A4659BB764CCB6C0A097D9035138DAB166719A ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
18:26:41.0377 0x1b28  CmBatt - ok
18:26:41.0392 0x1b28  [ A47AB918DD77B629B6C41064DDA431DD, C4569A738D7CD211AE5CA143E5AB3B3816A3D181DF4DEFD845DFE03C35846A4A ] CNG             C:\Windows\system32\Drivers\cng.sys
18:26:41.0408 0x1b28  CNG - ok
18:26:41.0423 0x1b28  [ 6FD42010608BC1B77D60947175E0BFD9, 81C84FB81A0A6AAC064CC6E12AD60FE0CF667440621BCA191FF83C2F66EFD2CF ] cnghwassist     C:\Windows\system32\DRIVERS\cnghwassist.sys
18:26:41.0423 0x1b28  cnghwassist - ok
18:26:41.0423 0x1b28  [ 54789D18CB08EBB83C3BF07E87928F1F, DCD7FEEF65F3E7B0FF675243CAEFF400FFF8CEB6F7650984A6BF1F72C3D42ABF ] CompositeBus    C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys
18:26:41.0423 0x1b28  CompositeBus - ok
18:26:41.0439 0x1b28  COMSysApp - ok
18:26:41.0439 0x1b28  [ 77FE273FA6FFE487E689194DB20ACAE2, EFA8E4F01E77F3D83A5212CE2F6097EEFEE433653685BDBBF07A2E17CC8AE178 ] condrv          C:\Windows\system32\drivers\condrv.sys
18:26:41.0439 0x1b28  condrv - ok
18:26:41.0455 0x1b28  [ 31D59C0A7B2549F578FC82B5ED9661FD, 5E19CC0D30ED4BF2BA0B0E163C4DC7B7CFB18C0004C2FE3452243ED9D6871AB6 ] ConsentUxUserSvc C:\Windows\System32\ConsentUxClient.dll
18:26:41.0457 0x1b28  ConsentUxUserSvc - ok
18:26:41.0472 0x1b28  [ 64C146E79B02051548A3D2790071C96A, 86F31D86E4E6E692E2FD195C0D1B02B3F720688491A330C98E124E55E1FB492A ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
18:26:41.0488 0x1b28  CoreMessagingRegistrar - ok
18:26:41.0582 0x1b28  [ 700A193A1555B083E3A08F5D3A844925, 974F7F0C78289EFE821407E418EB65A022D6445DED8EA112B9866784AF0221EE ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
18:26:41.0597 0x1b28  cphs - ok
18:26:41.0613 0x1b28  [ 868B7A47689F43A27D3BD5CBAD723055, 8BA047B7009FEF2B4487BC558AE83551CB8F7082E8D0F700D0C39142EF56F09D ] CredentialEnrollmentManagerUserSvc C:\Windows\system32\CredentialEnrollmentManager.exe
18:26:41.0613 0x1b28  CredentialEnrollmentManagerUserSvc - ok
18:26:41.0629 0x1b28  [ 868B7A47689F43A27D3BD5CBAD723055, 8BA047B7009FEF2B4487BC558AE83551CB8F7082E8D0F700D0C39142EF56F09D ] CredentialEnrollmentManagerUserSvc_49a9697 C:\Windows\system32\CredentialEnrollmentManager.exe
18:26:41.0629 0x1b28  CredentialEnrollmentManagerUserSvc_49a9697 - ok
18:26:41.0644 0x1b28  [ 0C757F912068DD931C2BB80845702779, 9FE5843B1943814B61DD859B313CDC739E0B24CBDC2DDD55D16895E4D445C0D9 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:26:41.0644 0x1b28  CryptSvc - ok
18:26:41.0660 0x1b28  [ B57D1A23B93D45F6485DE13167D85198, 7C5A651FE9BB20290372BE1F0646EE58BF2D3C3C4C06CF5BA9B9CA0280F4E031 ] CSC             C:\Windows\system32\drivers\csc.sys
18:26:41.0675 0x1b28  CSC - ok
18:26:41.0691 0x1b28  [ D1E156D0823810D24E6EEAF8E503C040, BA8597A59C3A0341E3E49D3D4717C2E856BF8D1E55F91957308C729803D89A96 ] CscService      C:\Windows\System32\cscsvc.dll
18:26:41.0707 0x1b28  CscService - ok
18:26:41.0707 0x1b28  [ D32047ED7F2718871AFC215FFF4760C2, A3F954BC3C22EEEC50610039CB8E6082C1533AE5C92C12C85BAF3569D499A7BE ] dam             C:\Windows\system32\drivers\dam.sys
18:26:41.0722 0x1b28  dam - ok
18:26:41.0754 0x1b28  [ 9996195077AE83EF7A57C58E136F551E, F3B56B78B05D15179A2917F6B614922D6418B61E5F93257E7B81D3AE8056A706 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:26:41.0769 0x1b28  DcomLaunch - ok
18:26:41.0785 0x1b28  [ 84D865A4A6560C39C8F92397BA4CC617, D0C6960578E76ED470A627C690EAF00883B23893EA523B62BF2E4E56409D4CAE ] defragsvc       C:\Windows\System32\defragsvc.dll
18:26:41.0800 0x1b28  defragsvc - ok
18:26:41.0800 0x1b28  [ 1FFBA1554A8CA99C2D38AC678CF1E535, A653DB152FE998EFC0EE0F6173DC68738555AF7D2EEC1108F4080074BABA7F07 ] DeviceAssociationBrokerSvc C:\Windows\System32\deviceaccess.dll
18:26:41.0816 0x1b28  DeviceAssociationBrokerSvc - ok
18:26:41.0832 0x1b28  [ 8AB0C55A78B0C18991ACC62C13167DDD, D7E24A6611FEBA7F69E1261B00DE4AB45019EE525B28F45F6AE20E6E11670D52 ] DeviceAssociationService C:\Windows\system32\das.dll
18:26:41.0832 0x1b28  DeviceAssociationService - ok
18:26:41.0847 0x1b28  [ C28BA33FE1373DE12B5FC1873FFAE4BE, 54D6EC2E21DFBA341EFE237ABDB08F00EA8A2479124750C3719375FC628459D8 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
18:26:41.0847 0x1b28  DeviceInstall - ok
18:26:41.0947 0x1b28  [ 6683A03C986D00273C67ADB1B249D7ED, 9FF5976B82C2186D336B5B970CC7B25898679F801CA79414C990D851FF43AE15 ] DevicePickerUserSvc C:\Windows\System32\Windows.Devices.Picker.dll
18:26:41.0950 0x1b28  DevicePickerUserSvc - ok
18:26:41.0966 0x1b28  [ BF9F78C84DB3F84149FAF6867DB52490, DF6D17EEA5BCFF87C73E21D841E95CE5DB15ECDA05F9C7379E978814014B29AE ] DevicesFlowUserSvc C:\Windows\System32\DevicesFlowBroker.dll
18:26:41.0982 0x1b28  DevicesFlowUserSvc - ok
18:26:41.0997 0x1b28  [ DC2944BD2B4DBA7AE74A32D8B57C554C, C33FA2CBD29137CB86B856F010166B59D4756A34308EC872B90AFB47493341E7 ] DevQueryBroker  C:\Windows\system32\DevQueryBroker.dll
18:26:41.0997 0x1b28  DevQueryBroker - ok
18:26:41.0997 0x1b28  [ D974C10E19DDC10622E30904AEE16FA3, 02A219750F23F183A8E2927AF0EFF8DCD631529FA618A704BE090E94057120AB ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
18:26:41.0997 0x1b28  Dfsc - ok
18:26:42.0013 0x1b28  [ 02147FE1CB895CE623D32408C549DD04, 84406AE8281A87705EA4082641BA08262C27BFDE46676B8D3175F2585AF05C42 ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:26:42.0028 0x1b28  Dhcp - ok
18:26:42.0028 0x1b28  [ 47FE173DD6AC6234E40DDA4A9A2F6AC6, 6A8CAFC6E2E2A4F9B23B1031886E3C70349416BA478300F612358D69F5D988FE ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
18:26:42.0028 0x1b28  diagnosticshub.standardcollector.service - ok
18:26:42.0044 0x1b28  [ 720ABE3F8938902E9F0B512318975551, 3F23CCB61AC437C1A672D8236347045F92759ACCF3EA73B4877363FB169FE91C ] diagsvc         C:\Windows\system32\DiagSvc.dll
18:26:42.0044 0x1b28  diagsvc - ok
18:26:42.0138 0x1b28  [ 1A75FC8DB7FE268039855795B2B98C0A, 2D9CC255C282D68BC43F3A21299A174F5A41EA91401C45BDB4CBC72039D93E4A ] DiagTrack       C:\Windows\system32\diagtrack.dll
18:26:42.0200 0x1b28  DiagTrack - ok
18:26:42.0216 0x1b28  [ F13316A14B8E7319C5DCD77A439BCCCF, 25035525DD878A7C00816AE654D5160609601EE726BD2CF0595D0AB8336DFC86 ] disk            C:\Windows\system32\drivers\disk.sys
18:26:42.0216 0x1b28  disk - ok
18:26:42.0232 0x1b28  [ 0E71A704D20B10275B28DBEE1AF7D95E, 97DE31280CB3F2A63A9504511EE737D8211D5ECE90065A9D7CDCB97698790018 ] DispBrokerDesktopSvc C:\Windows\System32\DispBroker.Desktop.dll
18:26:42.0232 0x1b28  DispBrokerDesktopSvc - ok
18:26:42.0263 0x1b28  [ 8300CE8326DF8842EC47A103A3D462A5, AA083E6E00FE9782F101B85C2FE93DE7DD89E1BB123765EDE7A936D5CF511FF0 ] DisplayEnhancementService C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
18:26:42.0294 0x1b28  DisplayEnhancementService - ok
18:26:42.0310 0x1b28  [ 15926BEA8C8B2BA0A89CCE8ABFDB4513, F2A8445D94A5017F1AB699C3A26A8CF8806EBF134E83EF649479F5E5DCE69A1C ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll
18:26:42.0325 0x1b28  DmEnrollmentSvc - ok
18:26:42.0341 0x1b28  [ 0F4ABC6AEF95AC1E50D3F36808DE4C3D, 2A9B58065318AEA1E54DBD4E11A35DF8202D859B77E486D4E8706FE6BDD25FD5 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
18:26:42.0341 0x1b28  dmvsc - ok
18:26:42.0341 0x1b28  [ A4F5D5C81B9690B8ACB8798A5C711D31, A30F92686E84544CE1D36682F4E81836BDDAE9C1F08C2524BAB9671F7B5CD14C ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
18:26:42.0341 0x1b28  dmwappushservice - ok
18:26:42.0357 0x1b28  [ 22460A37FA73F13DA804E501BA9DC769, 99AFA28E046C583D16DF4F27BE5769306F00D46E3FB0606624570B33D82018A6 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:26:42.0372 0x1b28  Dnscache - ok
18:26:42.0373 0x1b28  [ 6C039C82B977F5BFE3FA576D28C15D5A, CBC12A9CC7D7BC399C87CE7D0088416AC50FC270604C6D1B9E76D51150837172 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:26:42.0385 0x1b28  dot3svc - ok
18:26:42.0385 0x1b28  [ FC37ABA7F9026FFB255CEC78AC2410E4, EEBE379C184D39F821BB0B11EB3F7A68EBEF2964CACCCC0197A79A1E770FBCA5 ] DPS             C:\Windows\system32\dps.dll
18:26:42.0401 0x1b28  DPS - ok
18:26:42.0401 0x1b28  [ 8D6B2A26E72E260860FC46593E67E94F, 30AC8EA9784DA08F30784C70D1B711E65F73BFEBA6389C80A023BAADC584CD7B ] drmkaud         C:\Windows\System32\drivers\drmkaud.sys
18:26:42.0401 0x1b28  drmkaud - ok
18:26:42.0401 0x1b28  [ 5C438FD023BB99268C291E2A0F670AF9, 27FC507B3B50EBC30C9AB068D2165B982CDD02C9A3AE9D80C478848710F0562A ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
18:26:42.0416 0x1b28  DsmSvc - ok
18:26:42.0416 0x1b28  [ CE06775BD98FDF4E2DA40F5C92FC70AF, 0102E78F904E46924D44E5EE29F18404CCD477AC48944A5B5C0C51C83D4F175E ] DsSvc           C:\Windows\System32\DsSvc.dll
18:26:42.0432 0x1b28  DsSvc - ok
18:26:42.0432 0x1b28  [ 6A34FC162F61E26010BD0BF0F211C4A2, 9BFEEE32F77CAC78D8395024CB342E07E64B370ACE9CD5AB6C9B63689A2F70C0 ] DusmSvc         C:\Windows\System32\dusmsvc.dll
18:26:42.0448 0x1b28  DusmSvc - ok
18:26:42.0526 0x1b28  [ DE1AC64E418C2F215E96C89164F8FF6C, AA3208BBA800C3997C500428D432FBCEF9406F45A28DC13109A9BD748DB5D901 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:26:42.0588 0x1b28  DXGKrnl - ok
18:26:42.0604 0x1b28  [ F48869A7BE7437F4742DD9D4126FD770, 4F3D3F167B0846F97255F4549DC5EB9DACCD9FE2A5AC1E4658366AB2B8A9C420 ] Eaphost         C:\Windows\System32\eapsvc.dll
18:26:42.0604 0x1b28  Eaphost - ok
18:26:42.0684 0x1b28  [ E326127FB5622481C00EA40401039B2D, 87912CFA98C696211A430B86B607B03EC7D7A9CC34D0D34BD80B2F579AB76D73 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
18:26:42.0778 0x1b28  ebdrv - ok
18:26:42.0793 0x1b28  [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] EFS             C:\Windows\System32\lsass.exe
18:26:42.0793 0x1b28  EFS - ok
18:26:42.0793 0x1b28  [ 8A00A8300D25BAEFBB718436D55207B7, 076652CED4C4A0F7B1F0D17C4A6F43A8B017E5C5AB092306AC5AA8BACE2F19F2 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
18:26:42.0809 0x1b28  EhStorClass - ok
18:26:42.0809 0x1b28  [ C31E54032B1B24F561535228F7714F85, 1DC6FAEE368B867518A12D2AC7421E6685EF527B1716535DA29A5213398DBC22 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
18:26:42.0809 0x1b28  EhStorTcgDrv - ok
18:26:42.0825 0x1b28  [ 910F199C081D8D7471173333265982E3, 5F0388D48A39494FD7CFEB7DDB2EC20E04B5CA46BCCFC473D5007A6B8200BF80 ] embeddedmode    C:\Windows\System32\embeddedmodesvc.dll
18:26:42.0828 0x1b28  embeddedmode - ok
18:26:42.0844 0x1b28  [ ADBA0456A915EFCD6B35F298D185A976, CE1A8985CC8F4DA3CD08FAE7EC91BF3C8891031AC29FA30C01222C489BEA1CD0 ] EntAppSvc       C:\Windows\system32\EnterpriseAppMgmtSvc.dll
18:26:42.0844 0x1b28  EntAppSvc - ok
18:26:42.0859 0x1b28  [ 122DD638F997E3EB08E442DACFEE0D78, 9667489726ED7B30270EFEEC57008EAA22FDCDBF162FD2E741E026051D17B09F ] ErrDev          C:\Windows\System32\drivers\errdev.sys
18:26:42.0859 0x1b28  ErrDev - ok
18:26:42.0910 0x1b28  [ DFA69405D7B213F7CE3EB2BCE64AAE6D, D28545039E7ECDF38AFF3D1D2DAE3BFF9CDF790D267FEDC78428512E4AB4024B ] EventLog        C:\Windows\System32\wevtsvc.dll
18:26:42.0942 0x1b28  EventLog - ok
18:26:42.0957 0x1b28  [ B35DF93E24892EE15363AFAA678AF78E, 77418D8D8D349915B1ED60C8716F59276B20EF27B60C6B2B567033113E71E3EF ] EventSystem     C:\Windows\system32\es.dll
18:26:42.0957 0x1b28  EventSystem - ok
18:26:42.0973 0x1b28  [ E25A3F31BDAB7D8C9D17390852A4CD96, 9B276776C67D354C969E30BC4D9501355E10568F0A87E9029DFBD5C587003188 ] exfat           C:\Windows\system32\drivers\exfat.sys
18:26:42.0989 0x1b28  exfat - ok
18:26:42.0989 0x1b28  [ 7CBC5EB3E9A9AD5D204F79D1030524DD, 34DEA9E0D1180B7109EB9030515561CCECDF3BB7504FF1AA62B555DFC89C40A2 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:26:43.0004 0x1b28  fastfat - ok
18:26:43.0020 0x1b28  [ C6F56E6CF1822CFB9D8F85870453675E, 0257954D0C8978C7E163C918A79A5D35AA7626D9D5236BA55FEAA3EB5A44DBEF ] Fax             C:\Windows\system32\fxssvc.exe
18:26:43.0035 0x1b28  Fax - ok
18:26:43.0035 0x1b28  [ F2F45F7B58EDBA2255AA0D0EDCE16C0F, 3B8961E134D73788A83855D949B4956A13EFC9EA500227475052D3BC7511016D ] fdc             C:\Windows\System32\drivers\fdc.sys
18:26:43.0035 0x1b28  fdc - ok
18:26:43.0051 0x1b28  [ 574937AAC16BC828BA35DA6639972660, BCC1431B0062AFA56B2A754EC381FD3BDDF0864929BB16B174E13827D2088D9C ] fdPHost         C:\Windows\system32\fdPHost.dll
18:26:43.0051 0x1b28  fdPHost - ok
18:26:43.0051 0x1b28  [ 5414A54236322C5ED8691CEC1A38EF80, A66E093F96383FAD9AB11C350A9712D64016F3EF7753124ABA368F969B74B276 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:26:43.0051 0x1b28  FDResPub - ok
18:26:43.0068 0x1b28  [ 9AC5E05D599A49DC91E2F438F93D719F, E3D583CA50ECDAC508EBC1642F5565DD42541E4E9C7AE1B709A042CB1A3A0CC0 ] fhsvc           C:\Windows\system32\fhsvc.dll
18:26:43.0068 0x1b28  fhsvc - ok
18:26:43.0068 0x1b28  [ 35E6FE3288B6147F844B1845564FF161, 167F38BBDE88FDF7F30A626D7E1AF59006FE936D40D14C27FAEBDFCB2ECB6DAF ] FileCrypt       C:\Windows\system32\drivers\filecrypt.sys
18:26:43.0068 0x1b28  FileCrypt - ok
18:26:43.0084 0x1b28  [ 5F4FB09BC4D33E6E3793AEA41D555697, 501AA763CA8E7BC2A5C760254A58E1732BD8616F72FD908A413E85E8148B07D6 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:26:43.0084 0x1b28  FileInfo - ok
18:26:43.0084 0x1b28  [ 75ABB7E381E36922230D55670B26D21A, 4F30A8FAD774DC669AEB2046C29A4E6C5C24ED7C99D034B3E97DED2F85001960 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:26:43.0084 0x1b28  Filetrace - ok
18:26:43.0099 0x1b28  [ D346C0E0F62FCE6669783C3D8B527F74, 311ADE3C376D3687CEA236BB1D14E0C579A0C3E50CCB5E4EEF7DB5AB28570FC3 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
18:26:43.0099 0x1b28  flpydisk - ok
18:26:43.0115 0x1b28  [ 3E149E6CF0C5CA47C89FABAEE220922E, B2D4AA7665BBEE84A0A4B4B522DA662D893A0D29CE6E60BF5EA2C3E9BA74678F ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:26:43.0115 0x1b28  FltMgr - ok
18:26:43.0162 0x1b28  [ 686DDF0A080D2B1DFDCB41CEFBC75330, D9545335123C6BDDDAAB2C0961346048606E26CE612C553A17AE6E678553E423 ] FontCache       C:\Windows\system32\FntCache.dll
18:26:43.0193 0x1b28  FontCache - ok
18:26:43.0224 0x1b28  [ B32400D8D7922E5D177233348F4CDC21, 55D7A7B9F37BCA73CA3CA0C72F4BC42D0A2EE342945A7533A3844DB86F2F371C ] FrameServer     C:\Windows\system32\FrameServer.dll
18:26:43.0240 0x1b28  FrameServer - ok
18:26:43.0240 0x1b28  [ 9640EC828267B5BC7E587D581E3FCEA0, 996B4FDAE249E4BC4A9BA3935586AC8F93F243DD9C697DE6EA6EFC6120C80BB7 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:26:43.0248 0x1b28  FsDepends - ok
18:26:43.0248 0x1b28  [ 8DC43B0CC985D4FD9155739BD774471D, FCB9BF96A463A5D0A876BC5775F756268452FF284500A33D83DB20047BD08CF3 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:26:43.0248 0x1b28  Fs_Rec - ok
18:26:43.0264 0x1b28  [ 2E9974F4F6E81EF6A2C67DB6C6AA6932, 5E6A84FD095160EE2CEB3094F31975659BC44320EA13DB55354B28164E8F6721 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:26:43.0279 0x1b28  fvevol - ok
18:26:43.0295 0x1b28  [ EF8A6E4DDD8A6F5840B96C1C238B59EC, 55BD969E15AE16EABC399D99AA48FB7A9CF7FDB73CAD8B2A79095B37B3731C75 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
18:26:43.0295 0x1b28  gencounter - ok
18:26:43.0310 0x1b28  [ 56694161233F5A703E2C875BF4265407, 0427C583537E9CC4FA6110B826ACC64930F86A4F3BBEA4FE272F489219D1409E ] genericusbfn    C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys
18:26:43.0310 0x1b28  genericusbfn - ok
18:26:43.0326 0x1b28  [ 3E59BC58C9030044AF155550CB0E6653, 17F17C994F94862BE87A9DAD05F2437E3293EEE9702CA9D7FE8601BACC2F5338 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.116\elevation_service.exe
18:26:43.0357 0x1b28  GoogleChromeElevationService - ok
18:26:43.0357 0x1b28  [ 66ACDC2BF5346E2FC24AD20207AD43B7, EBD873D28714D7B504ADF96A6BF0F13A39ED9BCA021DABB09C5CDF5BC1B461CC ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
18:26:43.0373 0x1b28  GPIOClx0101 - ok
18:26:43.0397 0x1b28  [ 2A6EEA251877EB33048A0E8A320F505C, 46CB246E11BA91985F59C77CCDE2725313BA4F57A8D298AEDBED83EBA84BDAA1 ] gpsvc           C:\Windows\System32\gpsvc.dll
18:26:43.0413 0x1b28  gpsvc - ok
18:26:43.0429 0x1b28  [ ECF72E76711455EEB362E2E175395F87, 14E3D4396678303BACA9EE6A60869CE3EBBCEF58E71B25FA077D6DA4F94F1390 ] GpuEnergyDrv    C:\Windows\system32\drivers\gpuenergydrv.sys
18:26:43.0429 0x1b28  GpuEnergyDrv - ok
18:26:43.0429 0x1b28  [ 7A9DDF886942F5C791360BD76B06D874, 6550823ACF882D115B3922CD34C54479D0B2662CD187B98D5D4F203154C1947D ] GraphicsPerfSvc C:\Windows\System32\GraphicsPerfSvc.dll
18:26:43.0429 0x1b28  GraphicsPerfSvc - ok
18:26:43.0444 0x1b28  [ 5E4C9F20D557E3D5F4804F27410EDA07, 3A47EAAD360F0C5C8B9D49CE17B89C27ADFA8D0BF65FFFFD5CB4088DF0F5964C ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:26:43.0444 0x1b28  gupdate - ok
18:26:43.0460 0x1b28  [ 5E4C9F20D557E3D5F4804F27410EDA07, 3A47EAAD360F0C5C8B9D49CE17B89C27ADFA8D0BF65FFFFD5CB4088DF0F5964C ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:26:43.0460 0x1b28  gupdatem - ok
18:26:43.0476 0x1b28  [ 543F752593EB8943A2A7F483C51723F5, 1272DD24BBAB7E65346260DA733C92E69F09386DDB21354B26DEAD1025BCEBF0 ] HdAudAddService C:\Windows\System32\drivers\HdAudio.sys
18:26:43.0476 0x1b28  HdAudAddService - ok
18:26:43.0476 0x1b28  [ 7F2568836476437410BC7E9E003CFD74, 15E4D6BBD17C56F1813FAA9F62E636949FEBDFB3AE5F89711D075FC35A3BBEDA ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
18:26:43.0492 0x1b28  HDAudBus - ok
18:26:43.0492 0x1b28  [ 23CB986FD6DC1D8022831254C609E481, D5669912870A3E498C576D24DBC61918364055AC90715C2ADF08C7572AE1EC57 ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
18:26:43.0492 0x1b28  HidBatt - ok
18:26:43.0492 0x1b28  [ 98DB60B4CC713C73E3BFCD8521210B26, 18C1A04761CCA4D591C37C57F6F5625781437458F8CB073A7D55184527609731 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
18:26:43.0507 0x1b28  HidBth - ok
18:26:43.0507 0x1b28  [ F5468C4442990B23D99FEA900B63338F, 90495D0A53F8E635E3999B297DC719294BBF08A57E5596049DE10903EDAF54A5 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
18:26:43.0507 0x1b28  hidi2c - ok
18:26:43.0507 0x1b28  [ 34642FB049036D8BAAA42C922A82CCBC, FAB504F789B8AD00D54BA7AFC9D6141E22BF2A35218D7F57260E5233B5609166 ] hidinterrupt    C:\Windows\System32\drivers\hidinterrupt.sys
18:26:43.0523 0x1b28  hidinterrupt - ok
18:26:43.0523 0x1b28  [ C789878B45C886DBD967826B491C9C19, 29ACA42E3B8307078D03FD77831A534DE3EFF38A20ABB08EDF81089A94E2E585 ] HidIr           C:\Windows\System32\drivers\hidir.sys
18:26:43.0523 0x1b28  HidIr - ok
18:26:43.0523 0x1b28  [ ACA51FC51A8D0959D3FF0E822A760E77, 2D780AA5D36E6A95CF1F0513B0BCAEC94ED2B9CC85CD071F630F3DC9B068086D ] hidserv         C:\Windows\system32\hidserv.dll
18:26:43.0523 0x1b28  hidserv - ok
18:26:43.0539 0x1b28  [ B3ACD7D2D86A046DB549B922D663DEA2, 1B4281916B27EAB16D8F40CFC754EB2EFE9AA769CC9EFF9C51EB9E60F1B8FC61 ] hidspi          C:\Windows\System32\drivers\hidspi.sys
18:26:43.0539 0x1b28  hidspi - ok
18:26:43.0539 0x1b28  [ E6FB73DDF8BB4DF3F9BAE8D650ED2540, 6419EA5EA3F5FB0091335A784C3F133503C085C4E33A6C44557AB98F9F0B8495 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
18:26:43.0539 0x1b28  HidUsb - ok
18:26:43.0554 0x1b28  [ A195E0255B056E2968B3A4BE21588E35, 769CAAE42AC023E8B9167F6FFE23D35C77FBB4276309E9F72494B056B43E2258 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:26:43.0554 0x1b28  HpSAMD - ok
18:26:43.0586 0x1b28  [ 20A06C843EEC6D62521A9B40C79FF5CF, 1C51550CEBDF75BE9CD01F43EF326953E0D8373F9121C326851B30C8F4DF1049 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:26:43.0617 0x1b28  HTTP - ok
18:26:43.0617 0x1b28  [ 6E7C4CAE43DA57A46DE9AC07D3400719, 3F5552758C8DF6D3C2A06FB19A3DB104916E2DCBD0C85DF15A40463EE5E0A614 ] hvcrash         C:\Windows\System32\drivers\hvcrash.sys
18:26:43.0617 0x1b28  hvcrash - ok
18:26:43.0632 0x1b28  [ 2B51ABC2AD3A5D1476D2833F8F03239A, 05F01D07F21EFFEBA25D82E7E7988405A0E8ED3D2AA6AF80BF207EDF0490B347 ] HvHost          C:\Windows\System32\hvhostsvc.dll
18:26:43.0632 0x1b28  HvHost - ok
18:26:43.0632 0x1b28  [ DAC480B78602C636D495F119E823D420, 6703CBBEEEC75F82A46B133A45103D2FF1C3580A36DDD31AAADB5E8809DB986E ] hvservice       C:\Windows\system32\drivers\hvservice.sys
18:26:43.0632 0x1b28  hvservice - ok
18:26:43.0648 0x1b28  [ C1AE2929CAD05CD2AA1FA835B06023A0, 4FA13362C7132114904C31EE2D96AED773BD0473FF73713B6D8C1030A4C2FE13 ] HwNClx0101      C:\Windows\system32\Drivers\mshwnclx.sys
18:26:43.0648 0x1b28  HwNClx0101 - ok
18:26:43.0648 0x1b28  [ 14B973B22FAE5AF8101303FCC8F18161, C54656B82D9E2FFAFE2E239D807906EB10ED95313849133D946EF0F36533A33C ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:26:43.0648 0x1b28  hwpolicy - ok
18:26:43.0664 0x1b28  [ 4B0CB29B31E937AAC09EC0E66B03A70B, 351BD5B31B4256ABBDE0C414C0CCA10A84139023C0459C0AE8C9B9FF375E49D2 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
18:26:43.0664 0x1b28  hyperkbd - ok
18:26:43.0664 0x1b28  [ 454416484E10579883D0DE1CE13E695D, 1EB9269A57C176FFF386FE89298369EDA2028D57CA08C03CC09AE8E111A309DD ] HyperVideo      C:\Windows\System32\drivers\HyperVideo.sys
18:26:43.0664 0x1b28  HyperVideo - ok
18:26:43.0679 0x1b28  [ B475892255B02D33CF29B24FBD4AFDC9, 1678F2C246A6BCB434970C6E6394AD257D49BA3943AC46018359128099D82D35 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
18:26:43.0683 0x1b28  i8042prt - ok
18:26:43.0683 0x1b28  [ 9E5AECAB5F05218D9AC923E7CEA1CE15, FAAA46F22944E043A90AE6E9F0F86AF187FC2819C563DA375B2A409347BB2C35 ] iagpio          C:\Windows\System32\drivers\iagpio.sys
18:26:43.0683 0x1b28  iagpio - ok
18:26:43.0683 0x1b28  [ 48EDB9B5DAB7D294951A520330F13715, 9296A14590DFD94A3C728CAF3CA91BA211F27974F9CFF8417CDDC00D1453315C ] iai2c           C:\Windows\System32\drivers\iai2c.sys
18:26:43.0698 0x1b28  iai2c - ok
18:26:43.0698 0x1b28  [ 6C3EDE394C71D5A67A504F55E35B6F47, 6FF5D13EF69E8FBCB4772C7B5C4D5770C78E0B29F9164FA1611EFDE91CE876BE ] iaLPSS2i_GPIO2  C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys
18:26:43.0698 0x1b28  iaLPSS2i_GPIO2 - ok
18:26:43.0714 0x1b28  [ 806D14CEAF25E5F2DFCBA8E7E33B86BB, 2141DE558461B592D4111A0388D1AAC8062FA72CD1E2A2D2D68279A9633288E9 ] iaLPSS2i_GPIO2_BXT_P C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
18:26:43.0714 0x1b28  iaLPSS2i_GPIO2_BXT_P - ok
18:26:43.0714 0x1b28  [ 87DDDAE1693484BD0A210C877BDA00C2, E353D90D0B79A70F976FD5EA1CB7E25A97835E25116962EA035424715B2F43FE ] iaLPSS2i_GPIO2_CNL C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys
18:26:43.0714 0x1b28  iaLPSS2i_GPIO2_CNL - ok
18:26:43.0730 0x1b28  [ 8D3E3C431367E3BA632B4396CA662E1A, 71FDC25244298D62A335769D6ED43394C33FBD8DB05AA54CA924A2977F37858F ] iaLPSS2i_GPIO2_GLK C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys
18:26:43.0730 0x1b28  iaLPSS2i_GPIO2_GLK - ok
18:26:43.0730 0x1b28  [ 149F1260537C4F68C3F67C363B62F3C5, 3F1F9EC7571D0F82D3F5BBA298965491260708F05EBAAA2CC23483521A5FF079 ] iaLPSS2i_I2C    C:\Windows\System32\drivers\iaLPSS2i_I2C.sys
18:26:43.0745 0x1b28  iaLPSS2i_I2C - ok
18:26:43.0745 0x1b28  [ 3E641E905A6DBF29CBA1E72BBE349808, BF354297A55713D9E2DD4044D42810C007733EE54D5A80D58B96DD279D92C716 ] iaLPSS2i_I2C_BXT_P C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
18:26:43.0745 0x1b28  iaLPSS2i_I2C_BXT_P - ok
18:26:43.0761 0x1b28  [ B78D6AF79045B0DAB58596AF75037516, F99CAA667A832173BE4C879712360937BF7267CEAF88D5C4798A500861E4018A ] iaLPSS2i_I2C_CNL C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys
18:26:43.0761 0x1b28  iaLPSS2i_I2C_CNL - ok
18:26:43.0777 0x1b28  [ 2ED3B41C7CB4101ACB15D84D8AB5AA9D, A92487129B81376471C842B9932FF3A7B3ABBBB89797978E3FDEAF71A6FD5E3F ] iaLPSS2i_I2C_GLK C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys
18:26:43.0777 0x1b28  iaLPSS2i_I2C_GLK - ok
18:26:43.0777 0x1b28  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
18:26:43.0777 0x1b28  iaLPSSi_GPIO - ok
18:26:43.0792 0x1b28  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
18:26:43.0792 0x1b28  iaLPSSi_I2C - ok
18:26:43.0823 0x1b28  [ 12859E1215AA083A42E7ADCDE5C061D1, 262F9C65C3FA7EB69C4FA7C6547E1C79DB49697A083309909BC78726A116557F ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
18:26:43.0855 0x1b28  iaStorA - ok
18:26:43.0870 0x1b28  [ 92175FB164CDD9A49821DCE51D9E2699, 140358A5529D3E1495607B61D1326B76679EFB0E3392A3486000D82FD21926FC ] iaStorAVC       C:\Windows\system32\drivers\iaStorAVC.sys
18:26:43.0886 0x1b28  iaStorAVC - ok
18:26:43.0886 0x1b28  [ 14E3DB5ADA7E2187A404129F4E5CE336, 5925C8E9DC00A6C682D6A3B37C6EBF2C325D37C8E4BF584F0B5AAC5A7B666E47 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
18:26:43.0902 0x1b28  IAStorDataMgrSvc - ok
18:26:43.0902 0x1b28  [ E027678E8F76B2225C64CD186986E249, C5B41E88E4EC5DAE4FDCBF02B160026C1A8B4E1624B5B2AA4EA9E3A9DC514A47 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:26:43.0917 0x1b28  iaStorV - ok
18:26:43.0933 0x1b28  [ B9D28B4AF5C5D472DB6659B787811CF3, 944C27097141BED73C053D648E59E6A1F4FAD6823550741F1132AE325B70D681 ] ibbus           C:\Windows\System32\drivers\ibbus.sys
18:26:43.0980 0x1b28  ibbus - ok
18:26:43.0995 0x1b28  ibtsiva - ok
18:26:43.0995 0x1b28  [ 2F75E1BC774A0A286615E1428E387790, 9C7845C015C69962D84DCBA842FA088CA7FE9FB074769C4813B6BFFCBD1236E6 ] ibtusb          C:\Windows\system32\DRIVERS\ibtusb.sys
18:26:44.0011 0x1b28  ibtusb - ok
18:26:44.0011 0x1b28  [ B33F26DCC3E07ACC95DD146F3078BAB2, 7A17DA5FACB61A3C64F7DC15DEE86F8235B2C55E55519E5C25D1FDF06ADF67F6 ] icssvc          C:\Windows\System32\tetheringservice.dll
18:26:44.0027 0x1b28  icssvc - ok
18:26:44.0152 0x1b28  [ 548712979B0BA12ECE2D8549797593D4, 6809412A76DE30C914A65BB8546E436AD540E00610D5D13FDE486C4446E95C24 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
18:26:44.0261 0x1b28  igfx - ok
18:26:44.0277 0x1b28  [ BA1BA1C9E40BCEB88678747C1E7C256F, C85CC690D353FCEBFD243304C25EEAA2BC13DB1E2A4C8C65371F455511540959 ] igfxCUIService2.0.0.0 C:\Windows\system32\igfxCUIService.exe
18:26:44.0292 0x1b28  igfxCUIService2.0.0.0 - ok
18:26:44.0308 0x1b28  [ AA66B1519DE1DEF3D72EF4216F636E0A, 53FED87B6A63548FBA2897FD174580CC7791C8174AFED7FA294B1C6035649D6B ] IKEEXT          C:\Windows\System32\ikeext.dll
18:26:44.0339 0x1b28  IKEEXT - ok
18:26:44.0339 0x1b28  [ 7EDB7CCEDC86F03D3254274564DB0E99, 58C7B50D8306E3B2334634DDF81B99B61E2EBF4D35B3E43BE02C7BEFECA77E0C ] IndirectKmd     C:\Windows\System32\drivers\IndirectKmd.sys
18:26:44.0339 0x1b28  IndirectKmd - ok
18:26:44.0449 0x1b28  [ 51127F96B5571E453D12E45D7C5EE152, D6280D40352FAF395F8AC77BA1717584488DB7196DB628723299F2EC95637433 ] InstallService  C:\Windows\system32\InstallService.dll
18:26:44.0495 0x1b28  InstallService - ok
18:26:44.0664 0x1b28  [ D172E06EFE08DF148155A59DB716C1B6, F059B0B37C5E944D70626E9F029BC6311029E0A9D778C9C75DDDDC59A5AF1605 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:26:44.0757 0x1b28  IntcAzAudAddService - ok
18:26:44.0773 0x1b28  [ D97D001DA974DF9EE4DF9FDC9E5840AB, 8B2C30B5FF050B9C313A41B6826D21E3615F44DB18F33B5664AF35DE1B56BA33 ] IntcDAud        C:\Windows\System32\drivers\IntcDAud.sys
18:26:44.0789 0x1b28  IntcDAud - ok
18:26:44.0789 0x1b28  [ A0A315EAF4617BED7B154DE5059F4ED6, 2A2213632C0382046CB546BED76BEF1139A9241EBE903D336082557F3740ACC8 ] intelide        C:\Windows\system32\drivers\intelide.sys
18:26:44.0789 0x1b28  intelide - ok
18:26:44.0804 0x1b28  [ B3E270140879C45BF2B32D5EBE7A614A, E3D2471A83553B48D3715BA700FAE24A2751D18A349240C1E7EDA3549902390D ] intelpep        C:\Windows\system32\drivers\intelpep.sys
18:26:44.0804 0x1b28  intelpep - ok
18:26:44.0820 0x1b28  [ 8D6ADFE99C1DC577C74B0148E70ED5BB, 3CB473C80B1F0B4BF32D5F76A600A972D4AFB5E62882FB09F48B6D40F3285F07 ] intelpmax       C:\Windows\System32\drivers\intelpmax.sys
18:26:44.0820 0x1b28  intelpmax - ok
18:26:44.0820 0x1b28  [ 2ED1E741D4633DEAA6F84006EFD58A4F, 13B8BD64EB21C19526B05AAA9DF2B766BE81898158EDBE67026D0365BD0439F2 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
18:26:44.0835 0x1b28  intelppm - ok
18:26:44.0835 0x1b28  [ A89BF4378628224DA411A76FF6913E95, 2572614EB43DA5BE591B8484CD05D4F8FB991BF3331A976A87A03DC3585FB100 ] iorate          C:\Windows\system32\drivers\iorate.sys
18:26:44.0835 0x1b28  iorate - ok
18:26:44.0835 0x1b28  [ 02A2D46896B4312F084D5095D00B6DE7, 0D27C86EC5B2D9DEC9F88729AB16F79638769455179ABE23C86A519858104176 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:26:44.0851 0x1b28  IpFilterDriver - ok
18:26:44.0867 0x1b28  [ 0EB4405D79E1463454A79D42CCBC95E8, 83581555B7E99E34CCC09A1E5909F00D8BED61C345A2F3E47915C1594943B226 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:26:44.0882 0x1b28  iphlpsvc - ok
18:26:44.0898 0x1b28  [ 4BAA9037E2D4544906A7E9BDFE0CFCB5, 2E9A4BD67408B4193D4BDD2E934739BFE7F3FD0F0B649F44E861C5EF49F82A0F ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
18:26:44.0898 0x1b28  IPMIDRV - ok
18:26:44.0898 0x1b28  [ 5E05C0FEA671B910FEBC634E796C38B5, 7531CA77A2586E6F7085E1776EB6E5B665EAE3782C5EA7C2B7E5D3039F922397 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:26:44.0914 0x1b28  IPNAT - ok
18:26:44.0914 0x1b28  [ 3BB90B22F0D8A58B261A1B1AE6B80EAD, 6F5246DAA62C8F4E318E88EDAA48CD9ABD00591111F1E3F421E3E8D1D3377AF7 ] IPT             C:\Windows\System32\drivers\ipt.sys
18:26:44.0914 0x1b28  IPT - ok
18:26:44.0929 0x1b28  [ 5B4848FF9C6D605563BE8E21D4D2F70F, 394335BF90F7761515914A63D0F9DA122465D755D1C0E27329289228E15384FD ] IpxlatCfgSvc    C:\Windows\System32\IpxlatCfg.dll
18:26:44.0929 0x1b28  IpxlatCfgSvc - ok
18:26:44.0929 0x1b28  [ 054FE6D33A16F8CE82DCBA85AEE69B76, 3EA2188A9E5568B415CBB02B06A96DECDB37B9F07489145921CD34501823B704 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:26:44.0929 0x1b28  isapnp - ok
18:26:44.0945 0x1b28  [ BEEE3BA3612ACAB58CEDABD6AAD10BAA, E67BCE12CE26676A2A48A9FE623F25991D210F748C700745F59B2E88B36B9333 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
18:26:44.0945 0x1b28  iScsiPrt - ok
18:26:44.0960 0x1b28  [ 1ECC1A421B0AEBF9A6934451FBFD7848, 1A8DDEC42831C12760CF27FA02EDD06D5CCE25A606E2DECB7D8487B5961B11AC ] ISCT            C:\Windows\System32\drivers\ISCTD64.sys
18:26:44.0960 0x1b28  ISCT - ok
18:26:44.0960 0x1b28  [ 7C65B40F45AD2545443D009A837D7893, BD0A1831377E965414278C1BC813B008B52B6674B03994A6ADD4DEC43F568276 ] ItSas35i        C:\Windows\system32\drivers\ItSas35i.sys
18:26:44.0960 0x1b28  ItSas35i - ok
18:26:44.0976 0x1b28  [ A6C674D09B6231702D1DE55E26441BA8, 395DEEACDA99CC90B567FB493F613FC2C34ABF4A34A158E173367F550AE31D87 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
18:26:44.0976 0x1b28  kbdclass - ok
18:26:44.0976 0x1b28  [ FC6793F3CEA0B44CB516BEE39CA47538, A211547E85B488DDEA3D9FA6080CA9014FB08EAA7C72D54E561D159909F548F6 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
18:26:44.0976 0x1b28  kbdhid - ok
18:26:44.0992 0x1b28  [ B773A19F81C442DF6FE7C6271ED7CFF4, DCF1CEC745A9B6D8B8A4C031707FA6E618B522B4C4D7D51725BB2ED691DED48F ] kdnic           C:\Windows\System32\drivers\kdnic.sys
18:26:44.0992 0x1b28  kdnic - ok
18:26:44.0992 0x1b28  [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] KeyIso          C:\Windows\system32\lsass.exe
18:26:44.0992 0x1b28  KeyIso - ok
18:26:45.0007 0x1b28  [ 761E3C7936C0DC4C3F669E9795480361, DCBDFEC0C785A42A92FB61F1FB158A78B00F3268E4329818140D82AEF7282C9E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:26:45.0007 0x1b28  KSecDD - ok
18:26:45.0007 0x1b28  [ 40047F9803520015A2BD065AB3E36B21, 2E6DF774882E69A28D40E3F17025925751577529486C647BFBCFBC296B97087F ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:26:45.0023 0x1b28  KSecPkg - ok
18:26:45.0023 0x1b28  [ 85F56430EDB7F15D7E74562B4B9F45ED, 8546D87E71206BE9DEEB7885152554719A322B5BBC5C02A56193F16E4A516FB9 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:26:45.0023 0x1b28  ksthunk - ok
18:26:45.0039 0x1b28  [ 2A4F33C288355AF81387C4030C00FEBB, 2A2263CD1670D14DE27F7B5FA70E4037ADFE00A65D93A0C6B3C584435FD93FCE ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:26:45.0039 0x1b28  KtmRm - ok
18:26:45.0054 0x1b28  [ 7445884AB1995E1605840E5C8947DDA3, FC7817855F8CA8616BD5A941992468E6EB7FFFCAA21E332C3E4B832E7CA92EF4 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:26:45.0070 0x1b28  LanmanServer - ok
18:26:45.0070 0x1b28  [ 4B63205E92415FC3B12DCC23DB446CD5, EE41C199C14F51A7D6F6DE23ED49612CDD2F1B5530193FD990C1CA163423E9B2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:26:45.0085 0x1b28  LanmanWorkstation - ok
18:26:45.0085 0x1b28  [ C74D6825D4F8F587AFBFE4CFAFA6CCE2, 8E00369E9DF24BAB5314B7BFC748A5413124654DA9CA37DE90B9309FD68139AE ] lfsvc           C:\Windows\System32\lfsvc.dll
18:26:45.0085 0x1b28  lfsvc - ok
18:26:45.0101 0x1b28  [ 1DDE097A358F533F58060B49A06B0AA4, F392D6EB5FD31A5A063E0DD091C3438A6C02DBBBDE12515C663BEB815F17587B ] LicenseManager  C:\Windows\system32\LicenseManagerSvc.dll
18:26:45.0101 0x1b28  LicenseManager - ok
18:26:45.0101 0x1b28  [ A0D1856F57DFCF58D8A9E23D8B205886, 228803C88590C8AC10A1730CADA38A48DEB0236FDC6695673D70C40F91F3948D ] lltdio          C:\Windows\system32\drivers\lltdio.sys
18:26:45.0117 0x1b28  lltdio - ok
18:26:45.0117 0x1b28  [ 27DA2D87DA23C2AB3328AFBA945DFEF4, E3E570EB6B9AF06B1CC1EB09DA7E660F4BCE3EF40842D143BE0611F7DE4B2BC3 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:26:45.0132 0x1b28  lltdsvc - ok
18:26:45.0132 0x1b28  [ 21DCCE84ACEE6DF560A54901460B1974, 2EE4A5C334CAD770B5A4BE77D0FDF10F084B10FCC9DFAF434338224B263A23B6 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:26:45.0132 0x1b28  lmhosts - ok
18:26:45.0148 0x1b28  [ 8EC5966393F3D2FB1F3663D47F059571, 0EC6328DE76D3817972BF1EBE897473D55B62D4EBFB8B1FE087FE3D2073B0446 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:26:45.0148 0x1b28  LSI_SAS - ok
18:26:45.0148 0x1b28  [ B3A55D8E17DC2CEC64C55031B60692E5, B4E9CC96946149FB6ADEE7FA52C5C01E02843AB932A1ED1747E42B8519DCAFE7 ] LSI_SAS2i       C:\Windows\system32\drivers\lsi_sas2i.sys
18:26:45.0164 0x1b28  LSI_SAS2i - ok
18:26:45.0164 0x1b28  [ 08F9429D6D41E0D217C415D052BC84D6, 823597418DAA875AF30B2EBD5B2C224170E1589B2A841EB879144BAD51B3A8CF ] LSI_SAS3i       C:\Windows\system32\drivers\lsi_sas3i.sys
18:26:45.0164 0x1b28  LSI_SAS3i - ok
18:26:45.0179 0x1b28  [ 21A85C6B86AF33EDED64F556D2DB7E32, 64B72F8B3967DF9B5BC2F83BB410ED9A4D68E824EFFFD35E4E615335D05DA286 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
18:26:45.0179 0x1b28  LSI_SSS - ok
18:26:45.0285 0x1b28  [ BDA93061DADEAEFB75CC2FD0D54CDC4C, 2FB16DE5EB8A1DB9E489B16C0AFC60CD0B645C48D8528A09D02A571933E43F34 ] LSM             C:\Windows\System32\lsm.dll
18:26:45.0300 0x1b28  LSM - ok
18:26:45.0316 0x1b28  [ B1F6D849F8DDF1406454899C1BF5A1C5, 15E66A2DC64AAF1810C26827E2E95FD6393DEA843034A0CAA51AE9580CCBB822 ] luafv           C:\Windows\system32\drivers\luafv.sys
18:26:45.0316 0x1b28  luafv - ok
18:26:45.0332 0x1b28  [ 41744BD2D3FBA7BD8C910913152A88C4, AF91CB5A27E25A72F6DC8BB8D87202543E17D1BBBB30B950D597A75DD2748984 ] LxpSvc          C:\Windows\System32\LanguageOverlayServer.dll
18:26:45.0332 0x1b28  LxpSvc - ok
18:26:45.0347 0x1b28  [ 1294A83A7E61544E5C3678A40237F842, 120EC51CAA8D917E6B6FBD1E22E7AC59858C148EADA9B3F81EB03D82DD608EFD ] MapsBroker      C:\Windows\System32\moshost.dll
18:26:45.0347 0x1b28  MapsBroker - ok
18:26:45.0363 0x1b28  [ 7B1EFA88175EFB47970D274E671C8BE8, EE9E0C2DB1F4E358C1ECB9740E096AFB9271B85B84E6DFA3016E52635CCFFE5E ] mausbhost       C:\Windows\System32\drivers\mausbhost.sys
18:26:45.0363 0x1b28  mausbhost - ok
18:26:45.0378 0x1b28  [ 822938D041A15C2FF4841C656D94F604, 0077D7CB82B14423BD831E833F60CCE0239198E32200CD41051276E00C995BE8 ] mausbip         C:\Windows\System32\drivers\mausbip.sys
18:26:45.0378 0x1b28  mausbip - ok
18:26:45.0378 0x1b28  [ 6763B94A3364C2C72EFE47766D248F3C, 8055D28FF1261221F95336EF0575D7C571AF7A08A4940167B20C731D8E509554 ] MBAMChameleon   C:\Windows\System32\Drivers\MbamChameleon.sys
18:26:45.0394 0x1b28  MBAMChameleon - ok
18:26:45.0394 0x1b28  [ 31E4AC0C3D3BAC32082304BD43560760, 228CA2A510BB8BBF0E0AB29455BB0961B82774FF74E664BB20A864758B8B0904 ] MbamElam        C:\Windows\system32\DRIVERS\MbamElam.sys
18:26:45.0394 0x1b28  MbamElam - ok
18:26:45.0539 0x1b28  [ 3C6F0D0A69269D79EAAE6525C9802141, 65A265E68B32D5EB87EB256581962F7F75548CEBC78CB330C62E3E8A511C1012 ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
18:26:45.0650 0x1b28  MBAMService - ok
18:26:45.0666 0x1b28  [ A1CB214CAD55EFE911245FD79AD01CD3, 0A05F9FF66B0829769075F6EBC1668003913F2A08A78322E70464BDA95F7EDC9 ] MBAMSwissArmy   C:\Windows\System32\Drivers\mbamswissarmy.sys
18:26:45.0666 0x1b28  MBAMSwissArmy - ok
18:26:45.0682 0x1b28  [ AD72EA72A524720D6FAA09DCAEEF3990, 671646DAA2522ECB0B57930B7A526AA14861756C85643A8D79980D4EDC311CAD ] MbbCx           C:\Windows\system32\drivers\MbbCx.sys
18:26:45.0697 0x1b28  MbbCx - ok
18:26:45.0697 0x1b28  [ 1BB90BE197FB0D96185B1E3A78177A57, F0EAC8FE2C696022AFC21B3546450C90CD19C65F390ED460421A6F3F588F8A4B ] megasas         C:\Windows\system32\drivers\megasas.sys
18:26:45.0697 0x1b28  megasas - ok
18:26:45.0697 0x1b28  [ AEF3EA8036FF17BF8BD9403B1D76A876, 949358C4BFB2C4AEA4FDE9F26E9A5263DD50423BD17A3B830119875BC14211EC ] megasas2i       C:\Windows\system32\drivers\MegaSas2i.sys
18:26:45.0713 0x1b28  megasas2i - ok
18:26:45.0714 0x1b28  [ 91680A3466B271AAE802452BDE032380, 95C5EA5F6741C63443F6046585716CBFB61F5A905C288C64CB69E09AC3AF2079 ] megasas35i      C:\Windows\system32\drivers\megasas35i.sys
18:26:45.0714 0x1b28  megasas35i - ok
18:26:45.0730 0x1b28  [ 721FC491970364F1065C791629323502, A6997BA88BDD70D266A62728460254D5B6E4FF1737E7F2DCF4D0C1F332D089D2 ] megasr          C:\Windows\system32\drivers\megasr.sys
18:26:45.0746 0x1b28  megasr - ok
18:26:45.0746 0x1b28  [ F1E754DEEB3369BCCE2228D5C10DE101, ECC894FCF4C3F2364883BA55242C432E9E416D93E71B67985DF24ECB39F9BAC4 ] MEIx64          C:\Windows\System32\drivers\TeeDriverW8x64.sys
18:26:45.0761 0x1b28  MEIx64 - ok
18:26:45.0761 0x1b28  [ F1DE8D5576D0200A808C3475FC6E90A5, B6E9793FB86425042DD547E07AB86B17E18092BD24B8D1782784BCA9834467C8 ] MessagingService C:\Windows\System32\MessagingService.dll
18:26:45.0771 0x1b28  MessagingService - ok
18:26:45.0771 0x1b28  [ 41A35E2FFC5F68F2345CAFDBA29D59E3, DCF1E7EE3A79A670E8AE9B2F83013F01F52DDB23CDAC0BEDCD874543E99F1B9F ] Microsoft_Bluetooth_AvrcpTransport C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
18:26:45.0771 0x1b28  Microsoft_Bluetooth_AvrcpTransport - ok
18:26:45.0802 0x1b28  [ 3FFE0858D0E44AD01151A1D20EFE8C6E, 44AD3E4453992289720B09B4C43725C07F8E16ACD3A2065080B0B59CBD56FC27 ] mlx4_bus        C:\Windows\System32\drivers\mlx4_bus.sys
18:26:45.0818 0x1b28  mlx4_bus - ok
18:26:45.0833 0x1b28  [ CABA725AA198FB1B8FC88BC863BC6C4E, F4A467FFFEA42EC236E7CAFC22DDCE630608722B7DE84806D1C97DCE7A66756E ] MMCSS           C:\Windows\system32\drivers\mmcss.sys
18:26:45.0833 0x1b28  MMCSS - ok
18:26:45.0833 0x1b28  [ BD0744EA7533D420236F4958CDC88332, 5FCEA3BA97DC951485851BC0C299BDBD8F6195F8F5BF90F399EFC0F64C79FD42 ] Modem           C:\Windows\system32\drivers\modem.sys
18:26:45.0833 0x1b28  Modem - ok
18:26:45.0849 0x1b28  [ EDB215B68C29FEBA90E0A1A665321AD2, F779C2AE25C8CD7BEE10E71F6F3641C72BF8F1B8074C808887131D29E29BC507 ] monitor         C:\Windows\System32\drivers\monitor.sys
18:26:45.0849 0x1b28  monitor - ok
18:26:45.0849 0x1b28  [ 2636838B7F077F20C9FE4EB6C4762887, 152B4D9DCA39CEBE703ACACFCD4D020EA65E503BA417811C5168BBD64FD51840 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
18:26:45.0849 0x1b28  mouclass - ok
18:26:45.0865 0x1b28  [ A461B82FE51C46FA77C124190E1A24E5, A0A1854783D9415892F5BCAF02BB5D0005C321CC051D8262D7C042A21E694EEB ] mouhid          C:\Windows\System32\drivers\mouhid.sys
18:26:45.0865 0x1b28  mouhid - ok
18:26:45.0865 0x1b28  [ B85C904F394A8F13159541CFEB131B85, 502C3915B2ECCC02EECB262144B7E259FC740C43854E13CFF51D9319DDF8C7C8 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:26:45.0865 0x1b28  mountmgr - ok
18:26:45.0880 0x1b28  [ 4F42CBB27A7B4AA26BE4DCCA6C25D136, 0987ABF8212CDC420B0F40E040E4097D414D389DC0010DD58167593E31C6E97D ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:26:45.0884 0x1b28  mpsdrv - ok
18:26:45.0899 0x1b28  [ 4D877C9393F2A61096F020BF9682F8FA, 6BE5876EC27B3B5C58854570B5236CAD497B08704A9B7CEBC0D407639AF36369 ] mpssvc          C:\Windows\system32\mpssvc.dll
18:26:45.0931 0x1b28  mpssvc - ok
18:26:45.0931 0x1b28  [ 6D7E0D16C4158099E4DD6D7F1E4DC8B3, 746F8D13D57209F099BB0B20DDE134F04197998ADDD6FA0DD4ED9931D45EFACF ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:26:45.0946 0x1b28  MRxDAV - ok
18:26:45.0962 0x1b28  [ 29B1D7ED2CD18C3789EA0A32CF430FF5, 8B02CEAAC580169C2B711DFAEB0A5FBFE715828B7E95E2CD7F90FED88DEF804F ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:26:45.0965 0x1b28  mrxsmb - ok
18:26:45.0981 0x1b28  [ 710910E698147124BEC28202D75F7F37, 9E5575BD18F00585955F8674EE82B61DE77F643875D52BF099F876DF47985750 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:26:45.0981 0x1b28  mrxsmb20 - ok
18:26:45.0996 0x1b28  [ 90F0B61C3A11A7D2E718FC70EDF55942, A0DB00D8C0D2928D2004CEAE96B2F6971FD909FD149B56F74F110203A314A7D2 ] MsBridge        C:\Windows\system32\drivers\bridge.sys
18:26:45.0996 0x1b28  MsBridge - ok
18:26:45.0996 0x1b28  [ DC59FE37CFF118B6DAC426FE9923B32C, 8DDC6D67A14B549946D103F2A5E7B1EB23C68BB6E7B8ECBC192365C7323EC458 ] MSDTC           C:\Windows\System32\msdtc.exe
18:26:46.0012 0x1b28  MSDTC - ok
18:26:46.0012 0x1b28  [ FD79E6397F6915348FC7797018B496EF, 0D94E9498CF5CB5E9BF5537C0510DB7922380745335DF99AF8A1F34EC8134A5A ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:26:46.0012 0x1b28  Msfs - ok
18:26:46.0027 0x1b28  [ 5CC4AE59BAC4DDE8C0ECB05A4A965D19, 56618151F45271CDAE0E6EAF9E5358B1B0E46761633234E14E7571722449443D ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
18:26:46.0031 0x1b28  msgpiowin32 - ok
18:26:46.0031 0x1b28  [ 22813FD068277CC4994CB3FB5547AA23, AA5FCFEE8161EA12ED65FAB5A662EE3BFF5B7D725DEFF081FCB45C534FAC976A ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:26:46.0031 0x1b28  mshidkmdf - ok
18:26:46.0031 0x1b28  [ ED11DC4C201FF6C06F171E18B379B589, 37E1901ECF54A22D016B844B68847B3894EDCA7854D713C46951BD41684735BB ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
18:26:46.0031 0x1b28  mshidumdf - ok
18:26:46.0046 0x1b28  [ B96409D62458CF2D45895A8B112B1E24, 73E57262DCA69935FB93A5D6FBDB7D516C80532924E49325275839A84FA4F620 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:26:46.0046 0x1b28  msisadrv - ok
18:26:46.0046 0x1b28  [ 7A11436A666D4CDD1D650FBC92738C8C, A45F0037374FA16D032D8AB31343CAA005393931542884C58187CE18BC8A1848 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:26:46.0046 0x1b28  MSiSCSI - ok
18:26:46.0062 0x1b28  msiserver - ok
18:26:46.0062 0x1b28  [ E3B4680BAB18D0898E80C6E4FE05BF55, 2F215EB0122A796674123241D7F34849B4A77E9376A373968D5ADAFAB4D428B2 ] MSKSSRV         C:\Windows\System32\drivers\MSKSSRV.sys
18:26:46.0071 0x1b28  MSKSSRV - ok
18:26:46.0071 0x1b28  [ D65874265E85BEF4E54740FB69803430, 5A368710766359A45B9E5ED0C381D2B3DD971C4D4BA563EAF2464AC3E372F7DE ] MsLldp          C:\Windows\system32\drivers\mslldp.sys
18:26:46.0071 0x1b28  MsLldp - ok
18:26:46.0071 0x1b28  [ FAFA1781D123CD9B2542719DD523177D, FDDA2690AE37D970935A74CBD54492331E520DBC0D4C8484812E75678AE7383C ] MSPCLOCK        C:\Windows\System32\drivers\MSPCLOCK.sys
18:26:46.0071 0x1b28  MSPCLOCK - ok
18:26:46.0087 0x1b28  [ 031C0DAF57390C77A409E00031548827, ECB8E06EC52F84C206C77D605B07DEED2CA0B150E4645CF870E2DBE6CE8573F7 ] MSPQM           C:\Windows\System32\drivers\MSPQM.sys
18:26:46.0087 0x1b28  MSPQM - ok
18:26:46.0102 0x1b28  [ D766C72E3A6BCDC2510267BA84501539, 0A560E8B8D5D76D453F3198E6A5D773B1A07599446AACF09DE431C110865D1B8 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:26:46.0102 0x1b28  MsRPC - ok
18:26:46.0118 0x1b28  [ D0DA113BA6B5D41C6577BE96A74D1397, DF8FE1CB0CF7C9011050FFF20F7A5687E824AFDEAA4D4BD737B1E7D560EA9DF1 ] MsSecFlt        C:\Windows\system32\drivers\mssecflt.sys
18:26:46.0118 0x1b28  MsSecFlt - ok
18:26:46.0133 0x1b28  [ 84AB9DA4C598BE81A7D0B88C8AE2DF41, A52BDE35B576B48EEECE245D9FD28FFDEAD402C17BC411A92849BEC93C7A1AAA ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
18:26:46.0133 0x1b28  mssmbios - ok
18:26:46.0133 0x1b28  [ E13D4B1DD649D69E974C51B2D550E4FC, 1D5DECC4CC515D74625283D4703F9D9A4B1EE013DA61CCB736690F63906B2E7D ] MSTEE           C:\Windows\System32\drivers\MSTEE.sys
18:26:46.0133 0x1b28  MSTEE - ok
18:26:46.0133 0x1b28  [ EA16B406DCEF72848A1E2BA9B32469CF, ABF2B0A6B03AF147C04A0E7E788E866D9B84BE1EB7D7ED25641F7BF0B3C25138 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
18:26:46.0133 0x1b28  MTConfig - ok
18:26:46.0149 0x1b28  [ CEA4A7C14A65A7F1D10A089FE60FD9EC, D57693FFBF6FF55DCE758B034618499C214739F68FD8CBCE12CD3AFEBF739113 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:26:46.0149 0x1b28  Mup - ok
18:26:46.0149 0x1b28  [ 62F9AE1AB6F9B3825A4DB481E2613940, 02B4D85EB99AFF67BBBF2BD29E3747BBDD627F09F1F0FE62E5BF9AF6062C2E27 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
18:26:46.0165 0x1b28  mvumis - ok
18:26:46.0180 0x1b28  [ D727DD8EA3CD56115F9BDD5C33F9D1B9, 888B19C1348A307BDFF84477D7B2A84D721A37689AA124536D12BDC26BCED4B5 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:26:46.0196 0x1b28  NativeWifiP - ok
18:26:46.0212 0x1b28  [ 3509BB296C4E2F8D71089C17DFB6CEAF, 2F1A77B938104698AC6D9E4F0184AE53745998C232EEA7BC7CD42A4ED21006F7 ] NaturalAuthentication C:\Windows\System32\NaturalAuth.dll
18:26:46.0243 0x1b28  NaturalAuthentication - ok
18:26:46.0243 0x1b28  [ C8A90D48FB91BB96583322053FF67D2E, 97950F7F9E7BAE1BB1CC009D6227868E5623B7AC82D6C42563AB99499CC751F5 ] NcaSvc          C:\Windows\System32\ncasvc.dll
18:26:46.0243 0x1b28  NcaSvc - ok
18:26:46.0258 0x1b28  [ DF5A8E0E5E3FE297FCBC0F9F7E7DF4AC, 24C777939766DFEC356A2B17D842F2E5098101202B2FA083F9927B7692A5A0E2 ] NcbService      C:\Windows\System32\ncbservice.dll
18:26:46.0275 0x1b28  NcbService - ok
18:26:46.0275 0x1b28  [ 9EB402A3A00433B271C2DE5B904AA770, 4E95FECBF1C71F7CB574651FA2B1F8B23AE16543887D80432D178809A5833C42 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
18:26:46.0290 0x1b28  NcdAutoSetup - ok
18:26:46.0290 0x1b28  [ 323CE279076206EB4B1EC4FE85A81FEB, F224109E7A447EB98266D24270ADAB4D71681018FCCA1B3405686D2776ED0376 ] ndfltr          C:\Windows\System32\drivers\ndfltr.sys
18:26:46.0340 0x1b28  ndfltr - ok
18:26:46.0371 0x1b28  [ FC41148DBCEDAD1012FCCABC9F118A25, 1A18BF9A9EB27F15C2052A4406E2F47C334F51031951B70205C4285D55618871 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:26:46.0404 0x1b28  NDIS - ok
18:26:46.0404 0x1b28  [ FFB60317CFDA978621A5F8C54450AF01, 37CF86500841AAA866E9F06D5953FDDCF8D05226E0E7FCCA8FE32D7BFC60C60B ] NdisCap         C:\Windows\system32\drivers\ndiscap.sys
18:26:46.0419 0x1b28  NdisCap - ok
18:26:46.0419 0x1b28  [ 50CA50122E9DE4F82B71C9F09A929700, 2061193E7CFE78D455CEA5EA288633E9633D59707C7D2C123121E9A0EB304B6E ] NdisImPlatform  C:\Windows\system32\drivers\NdisImPlatform.sys
18:26:46.0419 0x1b28  NdisImPlatform - ok
18:26:46.0419 0x1b28  [ 4FB78EEE9A0A57FFED051596EE75C0AD, 89020FE6821FAD1C00BCBB51793E4EE2A7780822850E7559E2488E74C26F27A6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:26:46.0435 0x1b28  NdisTapi - ok
18:26:46.0435 0x1b28  [ 5F74158F98277E08CEA499AC7041A798, 517338614196FC5F0F70F6AC8C89590D093912D33F46D0D580CDFA6E8E8F919B ] Ndisuio         C:\Windows\system32\drivers\ndisuio.sys
18:26:46.0435 0x1b28  Ndisuio - ok
18:26:46.0435 0x1b28  [ 44FB0EB6FD78309E8A6A767B91AF3374, DB4E3333A64CF4B6E3A1EACC14D44BE264ACC89773CDE1449D8752D9A3D2811F ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
18:26:46.0451 0x1b28  NdisVirtualBus - ok
18:26:46.0451 0x1b28  [ E7F6AC29B5359F78169AD5C82925332D, 64314C66DE2A03941CB6B741F1C3EBE0BA5F08D1633008FCCD2928C64D682DC9 ] NdisWan         C:\Windows\System32\drivers\ndiswan.sys
18:26:46.0451 0x1b28  NdisWan - ok
18:26:46.0466 0x1b28  [ E7F6AC29B5359F78169AD5C82925332D, 64314C66DE2A03941CB6B741F1C3EBE0BA5F08D1633008FCCD2928C64D682DC9 ] ndiswanlegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
18:26:46.0466 0x1b28  ndiswanlegacy - ok
18:26:46.0482 0x1b28  [ C91AE4E1A91B338F85D2F64667F0C6AA, FF3FB1764DC5B95B6238DE8BB7152B14FADE799B2D712499C7CA758C204E9071 ] NDKPing         C:\Windows\system32\drivers\NDKPing.sys
18:26:46.0482 0x1b28  NDKPing - ok
18:26:46.0482 0x1b28  [ 272BB37E2437E88920B5C0B19E9E280B, 2D3D744D7FD4A38E741DC2DFB0A964ECE5EE60C8DBCF1EC2666B7EB73F617C45 ] ndproxy         C:\Windows\system32\DRIVERS\NDProxy.sys
18:26:46.0498 0x1b28  ndproxy - ok
18:26:46.0498 0x1b28  [ 340AC1BF4E5727DC58E16E9F0806B36F, 5BFB10B9BAECBCBC6C8E61FF3E9D82CB3F1779681268687AFB742B015C5F1740 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
18:26:46.0498 0x1b28  Ndu - ok
18:26:46.0513 0x1b28  [ 53FF0E34116C7835CB795C15341C2ECC, CE332489445F9DF1737AAAFDDD58610C5237C4510F09B8F76B5157A52272ED30 ] NetAdapterCx    C:\Windows\system32\drivers\NetAdapterCx.sys
18:26:46.0513 0x1b28  NetAdapterCx - ok
18:26:46.0529 0x1b28  [ 42F0CF6F74257A58D8F1EA68EA7782B8, 7BF400D21BF8098CBC2B697FBE5E680DF22CC77379299F2F15B71DAEE4D04F7F ] NetBIOS         C:\Windows\system32\drivers\netbios.sys
18:26:46.0529 0x1b28  NetBIOS - ok
18:26:46.0544 0x1b28  [ 729ED379D3A960CFBE02C7634651AC63, 734FD9F077F413CDC07F0218C75B24806BA1B82F7A3C32C16E45C48C1EBA51C9 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:26:46.0544 0x1b28  NetBT - ok
18:26:46.0544 0x1b28  [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] Netlogon        C:\Windows\system32\lsass.exe
18:26:46.0560 0x1b28  Netlogon - ok
18:26:46.0560 0x1b28  [ 3F961F54818A1849A306C6E9B2E059F6, 1BCCCB3516B2CC0BDD6E135FAB53AA29B50D68079460464D291B6336ACB6DF36 ] Netman          C:\Windows\System32\netman.dll
18:26:46.0576 0x1b28  Netman - ok
18:26:46.0591 0x1b28  [ 4DC9D9165214817FD772420E6794D2C8, 69158E420BC175EB957FCA641C9AE6B764F9D86C6F240463683B3691C7F8F9F9 ] netprofm        C:\Windows\System32\netprofmsvc.dll
18:26:46.0607 0x1b28  netprofm - ok
18:26:46.0623 0x1b28  [ 52C81BF18B4DE114AFAD3FB92EF626B6, D290D1840890E5CD9088852EF00951462A790C97E32C7BD0F04600F927F49E47 ] NetSetupSvc     C:\Windows\System32\NetSetupSvc.dll
18:26:46.0623 0x1b28  NetSetupSvc - ok
18:26:46.0642 0x1b28  [ A35D38A33A4DE8EA83FBD73524DAA0D2, 092705C17D057E86EA25B269819CCFFD21A2F72A8563CFBE2941A38559E13620 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:26:46.0642 0x1b28  NetTcpPortSharing - ok
18:26:46.0642 0x1b28  [ 9A623CA1E98A73B95F7C3F8C965C683B, 7D238029E620512F6B7D695735C371F60EE5EA2632D989766C12CD1D436EBA72 ] netvsc          C:\Windows\System32\drivers\netvsc.sys
18:26:46.0657 0x1b28  netvsc - ok
18:26:46.0735 0x1b28  [ 1F91B1E5FD41BDC3DF8AFFB81C8AA277, B8CB13863C1F0C589C008E191A393DF241F3067DD7CADE02B3B7D36B28BBA2ED ] NETwNb64        C:\Windows\System32\drivers\Netwbw02.sys
18:26:46.0798 0x1b28  NETwNb64 - ok
18:26:46.0829 0x1b28  [ 009CFEA73B021463EB8287C23D6812E6, 881B026ADF6C66FA01ADD65B1A8E56D914AB737B04633F085CA557634953C6A0 ] NgcCtnrSvc      C:\Windows\System32\NgcCtnrSvc.dll
18:26:46.0836 0x1b28  NgcCtnrSvc - ok
18:26:46.0867 0x1b28  [ A3E88BA1F249E819AE625645552B93F5, CBB304348C61A9FDA4F7F2FD46CE6EDDC61898C44626E45A6B1F0C5D4147DEB7 ] NgcSvc          C:\Windows\system32\ngcsvc.dll
18:26:46.0883 0x1b28  NgcSvc - ok
18:26:46.0899 0x1b28  [ D14351719263EE34F441A8A454795EB9, F55FD29A39E1F756AD9C278CDF024A1B1E690FD897E0E3BFFD20455C01686491 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:26:46.0914 0x1b28  NlaSvc - ok
18:26:46.0914 0x1b28  [ 744DE5F3E878FA12739C0BD98A972153, D0179A8B31EB86B2C677C0AA3390F61510AE2F6CE48E42801F3B1352B4A291ED ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:26:46.0914 0x1b28  Npfs - ok
18:26:46.0930 0x1b28  [ 2F0A6D060CB7A32A96004A5A8A61E9FE, D450F549C380C9DA4663ADA1777F6687C7461D82DCB6C739FA708870B4118964 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
18:26:46.0930 0x1b28  npsvctrig - ok
18:26:46.0930 0x1b28  [ 7A92D9DB681E48655475F9D071E34950, BCE27B53E265DDC75B3372F26DC017669378C85C1B1CF8145D8A582A737BE25F ] nsi             C:\Windows\system32\nsisvc.dll
18:26:46.0930 0x1b28  nsi - ok
18:26:46.0945 0x1b28  [ 7B37EF7E59C204DF60105C70BBE0D27E, 20EFC058E1BA0DECC1E7001ADB5AAE299DE684B1114E1B66CEB5B78A746384DD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:26:46.0945 0x1b28  nsiproxy - ok
18:26:47.0007 0x1b28  [ E8DFE36C062380E6ED402B7574E1516B, D9717F11B74450EAF9BB0835DB4D49C3AEC3F9F5841857E17A24DBA72559B61B ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:26:47.0054 0x1b28  Ntfs - ok
18:26:47.0054 0x1b28  [ 7DE33B6BCD2113B39090D005BA5CFE9E, 1E84F2E321BB303320F6A40CC1EF22328BC162C9E433E4559F7D42160058EA78 ] Null            C:\Windows\system32\drivers\Null.sys
18:26:47.0054 0x1b28  Null - ok
18:26:47.0069 0x1b28  [ F7E5F5D6F7A645A263F71D53F4B0EFD1, 6ED8BA49AA366F8DAF2186E2418635E6C85B80E40F3BA1455087955466447DFE ] nvdimm          C:\Windows\System32\drivers\nvdimm.sys
18:26:47.0069 0x1b28  nvdimm - ok
18:26:47.0351 0x1b28  [ 4D56E475D32437ECF663CE944D7E0D3F, 22F4E20D066A750ECC1C2566A0D93FE059CA16CF8A0D26002A1B721E26D443D7 ] nvlddmkm        C:\Windows\System32\DriverStore\FileRepository\nvacwu.inf_amd64_31f4ef4821269ebb\nvlddmkm.sys
18:26:47.0591 0x1b28  nvlddmkm - ok
18:26:47.0623 0x1b28  [ 34185B2FFC507E1C93F1A90CC7F74ACD, 1AA777B0963100512399D12FCECA596A06F59BA17ED8C3B8148243BAA9F8CF76 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:26:47.0623 0x1b28  nvraid - ok
18:26:47.0623 0x1b28  [ 516681B5A77104029F18468E5428678F, D864C5AEBBF819D31842D1C1825543558C4CC07711A71B01AB3C7B3480FB6782 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:26:47.0638 0x1b28  nvstor - ok
18:26:47.0638 0x1b28  [ 464C685801474077A3BA79529E6459E1, 48E3C12D68E4E4AB7B622F742BBFB8564482E33C20532AF4004D0298BA270691 ] OneSyncSvc      C:\Windows\System32\APHostService.dll
18:26:47.0654 0x1b28  OneSyncSvc - ok
18:26:47.0669 0x1b28  [ C5D067FC00BFEA4FC7793C7C15FDEB38, D481B512C11C51826FF4ED375F0AF03737B9F3FB6D7806F771380CC53BC35D34 ] ose64           c:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:26:47.0716 0x1b28  ose64 - ok
18:26:47.0732 0x1b28  [ E71271E27F8F1AFC93606866C205AC0F, 657745689991EE70BEAEE684986099D0014DB166CEC3232E837396DEB01A2717 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:26:47.0732 0x1b28  p2pimsvc - ok
18:26:47.0748 0x1b28  [ 63971F9592E9264CDD944E120CBAAF8A, D582C28E9F43D4ADEE2BB7DA69A889136E76B663CE06FD3051C017D47BF7604C ] p2psvc          C:\Windows\system32\p2psvc.dll
18:26:47.0763 0x1b28  p2psvc - ok
18:26:47.0763 0x1b28  [ AC682BC99BECA3A6C8C71234A9BC4225, 1FB6177AD97EDDA35D8F30ACE2FE2996A07DA62999A788146A4FAB70A6E25CBE ] Parport         C:\Windows\System32\drivers\parport.sys
18:26:47.0779 0x1b28  Parport - ok
18:26:47.0779 0x1b28  [ 5DBF579E410726F43BB9F0DCFEFDA1CB, FA46720715BFC0B4EB85151071A069D0B2DBC8F581DC99AD3F876D4879D71CE3 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:26:47.0779 0x1b28  partmgr - ok
18:26:47.0811 0x1b28  [ 8B35736DED2C6AE500BB4115B8BCC627, 167C3A11EDD2F37A5E4FC53205D2FCFA8F019BDC02A993EC3A5B5E98A3AC4912 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:26:47.0811 0x1b28  PcaSvc - ok
18:26:47.0826 0x1b28  [ 0B877667323D8434CA8717F82BBF1433, 7383EB571D258EDE4B4A1D7F2E80C1A394AB61B12471ED0B5F816E133B4E50A7 ] pci             C:\Windows\system32\drivers\pci.sys
18:26:47.0842 0x1b28  pci - ok
18:26:47.0842 0x1b28  [ 7EDA3D7F6ED0E9B27B451155FBB857C3, 5C4853ECAA74F35E2C2260E0D681D81B798E716E75DC74E970A8885C99F68DF1 ] pciide          C:\Windows\system32\drivers\pciide.sys
18:26:47.0842 0x1b28  pciide - ok
18:26:47.0858 0x1b28  [ C98DC1ACC9D5C4754BE83E28233369B9, 8FF4F1001D71E531FB8F7FB7E5F8CC485FE5DE9FF580B3E1BD6764D9ABB377A5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:26:47.0858 0x1b28  pcmcia - ok
18:26:47.0858 0x1b28  [ 9B7C96AB92C3EA3D6D7DE2291FDC0893, A3682D50AD47BF713B036E01A103BAD0DF668D87B81B85CA3AA3E0B5588E487B ] pcw             C:\Windows\system32\drivers\pcw.sys
18:26:47.0858 0x1b28  pcw - ok
18:26:47.0873 0x1b28  [ ACAB4BE5EF4A94BE69ABC9BEB32D0208, B54378C005F455B7896D4429ABA6A796537C1288A44AC2CEC81217576F905F91 ] pdc             C:\Windows\system32\drivers\pdc.sys
18:26:47.0873 0x1b28  pdc - ok
18:26:47.0904 0x1b28  [ 095D67AD5263822A20B1C11BE21E18BC, BD85B637CC5527AFE28B036FF14C07C0B6A38BBA58FC00937B286823BE20A02F ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:26:47.0920 0x1b28  PEAUTH - ok
18:26:47.0983 0x1b28  [ DD862D97C38953177C798BEC6707512B, A897D851EB0F0A38D09015F33666E041D228DA919CF4F4FB07CB6618F80D3527 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
18:26:48.0014 0x1b28  PeerDistSvc - ok
18:26:48.0029 0x1b28  [ 3EDF20F5B059DD88ED7DBAF40CF31CA7, 4460E7CEF33CABD01263AA975E512A0622B305B9B74DDACC90EDC8CCABAAD745 ] perceptionsimulation C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe
18:26:48.0029 0x1b28  perceptionsimulation - ok
18:26:48.0029 0x1b28  [ 5AAC1089AC330F737B445158094FD4B0, 51292603648329B34BC747E7815407DA0B0A89E7D837A4D75A3B6F31EAD61AE8 ] percsas2i       C:\Windows\system32\drivers\percsas2i.sys
18:26:48.0029 0x1b28  percsas2i - ok
18:26:48.0045 0x1b28  [ 12E63DAE1AEFAF7C7C3A533184B14C11, 488BDFB0D73B3E77D10FFD4A403A98771FA2029CCE1BB4950E77DA264E422FA0 ] percsas3i       C:\Windows\system32\drivers\percsas3i.sys
18:26:48.0045 0x1b28  percsas3i - ok
18:26:48.0092 0x1b28  [ 0EC027E95D4B022102940FA3CD930E46, A802DE40D4F9FEA20516D4D8BA65942F48E47546DEB116C75B7A9EDB1F2EAAC6 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:26:48.0095 0x1b28  PerfHost - ok
18:26:48.0126 0x1b28  [ 0CB5CA2CF0539502E5019BED31A4DD3D, B73118184BC8ED4664DB045907BABA893F2B81627C66DAE3E65185A6FE08B030 ] PhoneSvc        C:\Windows\System32\PhoneService.dll
18:26:48.0142 0x1b28  PhoneSvc - ok
18:26:48.0142 0x1b28  [ D4AE23C2024C079A8B3F3A11229B19D2, D94A6399B8508EF9DF09FB9E8FD237958CA4A6D32B43E25E6034003704561520 ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll
18:26:48.0157 0x1b28  PimIndexMaintenanceSvc - ok
18:26:48.0157 0x1b28  [ 0E3A1170D5698CACE6B6A4E72B04A5D0, 888697CA316A710C966025961CF5CB5E44FF1E23C0E8DD3E3055EB7278C5E514 ] PktMon          C:\Windows\system32\drivers\PktMon.sys
18:26:48.0157 0x1b28  PktMon - ok
18:26:48.0204 0x1b28  [ 8059D6CF7FD1D34B61D1880A20F58B1C, 716640B11B9192BD58355E2076742199B314CA222FF932919D1548C31710ACDF ] pla             C:\Windows\system32\pla.dll
18:26:48.0235 0x1b28  pla - ok
18:26:48.0235 0x1b28  [ C28BA33FE1373DE12B5FC1873FFAE4BE, 54D6EC2E21DFBA341EFE237ABDB08F00EA8A2479124750C3719375FC628459D8 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:26:48.0235 0x1b28  PlugPlay - ok
18:26:48.0251 0x1b28  [ 26C53135EE0B51441B17AE473962303F, 8DFA17C92F1DF6F49B28E828EFD7444CA7F366F666BB7B3EEC46A3BD678E7642 ] pmem            C:\Windows\System32\drivers\pmem.sys
18:26:48.0251 0x1b28  pmem - ok
18:26:48.0251 0x1b28  [ 4689DC2AEF21B8764CC4F4AD6712210A, 9D2747224CA01271EA7665AF3636C5F9507EF5C70033D5EC8C923D1AC5C8A31B ] PNPMEM          C:\Windows\System32\drivers\pnpmem.sys
18:26:48.0267 0x1b28  PNPMEM - ok
18:26:48.0267 0x1b28  [ 65272396F9B8D1F01E020639E1AC5DC3, 852FEA677D3D500BC208BE0C6E759EC668AD9DD6D694119ABE736DEB3D136F32 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:26:48.0267 0x1b28  PNRPAutoReg - ok
18:26:48.0282 0x1b28  [ E71271E27F8F1AFC93606866C205AC0F, 657745689991EE70BEAEE684986099D0014DB166CEC3232E837396DEB01A2717 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:26:48.0282 0x1b28  PNRPsvc - ok
18:26:48.0298 0x1b28  [ 4FC9AC0B06074E1669FBF126C593A153, ABB0DEF921BCB84DE1BEFA6EACDFD4E0081F141E7F542CB3983593B97CE61371 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:26:48.0314 0x1b28  PolicyAgent - ok
18:26:48.0314 0x1b28  [ 3DC43052FC990C7A0F3697F6E9142273, 058C5FCBA09D603C48BEC6F2F9982D1D0C490915A79D304B90718A3823E69192 ] portcfg         C:\Windows\System32\drivers\portcfg.sys
18:26:48.0314 0x1b28  portcfg - ok
18:26:48.0329 0x1b28  [ ECDAC2087A7185F542CFE6D00D66CBEE, 5248CB6E0E431620747E7048868B08CB0D03BBB2E413A3C5235D2997169E3830 ] Power           C:\Windows\system32\umpo.dll
18:26:48.0329 0x1b28  Power - ok
18:26:48.0345 0x1b28  [ 627C7573539A6CD64E5C34D4F630A3B1, B1837DC01C4F5ECBC65F0D5CC4331CB30E620789B7CF00B77A50FA3F55481BDB ] PptpMiniport    C:\Windows\System32\drivers\raspptp.sys
18:26:48.0345 0x1b28  PptpMiniport - ok
18:26:48.0441 0x1b28  [ 6173803E45D401CB58BBD1BD34DFDA59, EF086494C47CF19CA8586C54AD5FE87F2CE2BD3D4D767EFA917110BEFDBFCF7A ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
18:26:48.0519 0x1b28  PrintNotify - ok
18:26:48.0535 0x1b28  [ 9CCFB9CA2C3CE919D1E47321D6188F6E, 0C9B1CD40B205704114F4160CA5AD91F10D3E8D15CF59A090EFD9F1617303DE6 ] PrintWorkflowUserSvc C:\Windows\System32\PrintWorkflowService.dll
18:26:48.0535 0x1b28  PrintWorkflowUserSvc - ok
18:26:48.0551 0x1b28  [ D37B66581DC3911C26DABDE507B3BD49, 7AA0EC5ABED05935765BCA267FA2BF97CB9D2222BEA96E895FCAEC6D5680541B ] Processor       C:\Windows\System32\drivers\processr.sys
18:26:48.0551 0x1b28  Processor - ok
18:26:48.0566 0x1b28  [ DB1F9ADFB92F6A3DF437CB9FFDAB2AE9, 03C906D99D5E9B6351F4C49A053E1EF4D792A31C0BB42461995B19FB2EB146FE ] ProfSvc         C:\Windows\system32\profsvc.dll
18:26:48.0582 0x1b28  ProfSvc - ok
18:26:48.0582 0x1b28  [ C0EF1DA7CB74EB2E0B87686AB7AA7454, 2053809FAD23211A336F30F306B5C11D93F6DE5E7A38CE021CD535E5E5EDE21D ] Psched          C:\Windows\system32\drivers\pacer.sys
18:26:48.0595 0x1b28  Psched - ok
18:26:48.0595 0x1b28  [ 34F064C964229611B694B5D01AAF4152, E15E4D37A07D3BC247D47FC429401A5FD97A2E1744ABE6BDBE8CE2BEECF8EE71 ] PushToInstall   C:\Windows\system32\PushToInstall.dll
18:26:48.0610 0x1b28  PushToInstall - ok
18:26:48.0610 0x1b28  [ C32ECB99AD25E9A04F01C8665DF29EF8, 0489B3DEC6A33E50D8A48A8DAD3F5B923A81F7300E4A71358D90D2879BAC9AA2 ] pwdrvio         C:\Windows\system32\pwdrvio.sys
18:26:48.0610 0x1b28  pwdrvio - ok
18:26:48.0626 0x1b28  [ D619356B955EEFA642F5FF72755E8B3C, 1FD54978A77ACD6FBF1236E177ED074894743A9141E4169FE9AFE28680FC93C5 ] pwdspio         C:\Windows\system32\pwdspio.sys
18:26:48.0626 0x1b28  pwdspio - ok
18:26:48.0626 0x1b28  [ E862021CE0B9DA301969D8843A6F6AD8, 03772F4AACB9F7F9D65E53A63F1247B36A3863444AFA28578B430445FFABF082 ] QWAVE           C:\Windows\system32\qwave.dll
18:26:48.0642 0x1b28  QWAVE - ok
18:26:48.0642 0x1b28  [ 00664026ACC782597B77AAAB5B65E715, F4B18D321BBAD9DF4EC7C44742FB65D09C70EE7AD26A30E26EE583305B643F82 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:26:48.0657 0x1b28  QWAVEdrv - ok
18:26:48.0657 0x1b28  [ E000172D517986EB493DBB0C42F76DCA, CE5D7D84972CA167F71F40502FE30C3AF6AB3F484D5582DAB0C2DFC361770EBE ] Ramdisk         C:\Windows\system32\DRIVERS\ramdisk.sys
18:26:48.0657 0x1b28  Ramdisk - ok
18:26:48.0657 0x1b28  [ 84E05BABA2B16499881D9E8BBC0779AC, 548E5BE36F836F8B955F186813CF512D0AF5B4FF7BC4D842D881A79520BE4B26 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:26:48.0657 0x1b28  RasAcd - ok
18:26:48.0673 0x1b28  [ 67676B73B90C2C9BCEBAB4C79BE0853F, 3347AD82152C78E7BE739B6040E85F020EDDDA96E18183DA085B87A594A1B656 ] RasAgileVpn     C:\Windows\System32\drivers\AgileVpn.sys
18:26:48.0673 0x1b28  RasAgileVpn - ok
18:26:48.0673 0x1b28  [ F9804C84CEA2184B1E61E61E897B369E, E266464AD299D738BA14BD38A0EAB1B67C9DE8858DB3A1DA0186385754757886 ] RasAuto         C:\Windows\System32\rasauto.dll
18:26:48.0688 0x1b28  RasAuto - ok
18:26:48.0688 0x1b28  [ 555E33527CC3C34620E49F5F86C8F7B0, 3E5EF22BA5CD091C55D71D66FA803C7990846887A1295A063A62F5088238538E ] Rasl2tp         C:\Windows\System32\drivers\rasl2tp.sys
18:26:48.0688 0x1b28  Rasl2tp - ok
18:26:48.0720 0x1b28  [ 83A9F4DFF9F507FA8D69C79E89E8BB86, 7443315FEBC694FEFCD26D1526E9D53148189ED7BF91DEFE501CFCF52BFEA219 ] RasMan          C:\Windows\System32\rasmans.dll
18:26:48.0735 0x1b28  RasMan - ok
18:26:48.0751 0x1b28  [ A5FBC5FD8026AE164ECAD4882B24486E, 4B757832CDAC4C269E618013146E5AA94371CCDCF1ED7426DBC2724458DC08FD ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:26:48.0751 0x1b28  RasPppoe - ok
18:26:48.0751 0x1b28  [ FE1C387B8C3BC89D907D3BB06F83315F, F5F219A3D68914571DCC514AD418F8681E03D120090E2ED39ED4557D6BD1F0AF ] RasSstp         C:\Windows\System32\drivers\rassstp.sys
18:26:48.0751 0x1b28  RasSstp - ok
18:26:48.0766 0x1b28  [ BD53419B153C595001B9406AC1BB8791, FCED12669987507AFA2E750F1A3929300A236CA27CA173ADDF8D7E26D5C01303 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:26:48.0782 0x1b28  rdbss - ok
18:26:48.0782 0x1b28  [ D02EA52890750A5980EE970586942695, 4E321C27D0DC476F27A3B0720BC1188F6E549D1FA7B7E77E6BDE5F869E983A08 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
18:26:48.0782 0x1b28  rdpbus - ok
18:26:48.0798 0x1b28  [ 51D49770FD9D2E1956833C1F4D992893, E8ADEE85A597786C6110A71B868C882C6BE4FA94904FAE6A6F779A24450F373B ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
18:26:48.0798 0x1b28  RDPDR - ok
18:26:48.0813 0x1b28  [ BB052B347D931BD4E002B94E271C18B5, 18719F5DEF8B30E48114FC189373474A206C1E4BF1338CD93EC8372612287022 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:26:48.0813 0x1b28  RdpVideoMiniport - ok
18:26:48.0829 0x1b28  [ CD3A6A87C682363E227F065B8E59D94C, F7174E6F5A7ECBEEBC68A79C500890C12F826A70594C46C7817A49D992C6F030 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:26:48.0829 0x1b28  rdyboost - ok
18:26:48.0876 0x1b28  [ CE154F12790AFD58D12B751A00953729, 96E1F56752DDBAB30EABEADFF39CBFD2CECEC4B9B7C8015F070298B4BAE0A0C0 ] ReFS            C:\Windows\system32\drivers\ReFS.sys
18:26:48.0907 0x1b28  ReFS - ok
18:26:48.0939 0x1b28  [ EB0BB6BAD926A1024D1025641C03FF9D, 57F4DF6141D5597A90FA7601C00904F6B4DF2E9067FD3B00B9D70F3CC40B1233 ] ReFSv1          C:\Windows\system32\drivers\ReFSv1.sys
18:26:48.0954 0x1b28  ReFSv1 - ok
18:26:48.0970 0x1b28  [ 656E36EF61C55C51B0D66BCFC1C310EA, FEED7642581996F0DF110ECD6D96BE5763B5A69BB581F2E13735BA9A70A9C68B ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:26:48.0986 0x1b28  RemoteAccess - ok
18:26:48.0986 0x1b28  [ 15D9B88C7258263375BA462B96E61860, 3209521819139C2DC44B45E31907B5249CC780A3B11F7029E8DE9E94C29B8296 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:26:49.0001 0x1b28  RemoteRegistry - ok
18:26:49.0017 0x1b28  [ 51304725CA84C6D40082A6FB0C29AFE9, BF6EEC43E5C2493BA0E67D8B4B43154D82F32916E378484B9D0CEF1DF1681458 ] RetailDemo      C:\Windows\system32\RDXService.dll
18:26:49.0032 0x1b28  RetailDemo - ok
18:26:49.0048 0x1b28  [ FF46B8795B06BAB591F082FBEF17DC91, 080098FED6F70BF410A5833D1AB991DEBF7D8549D49BA0958F0403A6A24D71E7 ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
18:26:49.0048 0x1b28  RFCOMM - ok
18:26:49.0048 0x1b28  [ E3DE6D17049E592A710284B4C811E7BF, 3290298073AE13C3AEB166E77B1B2F570607571385C585D52FC392968659181E ] rhproxy         C:\Windows\System32\drivers\rhproxy.sys
18:26:49.0048 0x1b28  rhproxy - ok
18:26:49.0064 0x1b28  [ 1DE7A310E67B46A010AF318A7DC67954, ECA4546E4E47A4239FF93F489C295E279E62A8A886812549C42AF2C930C2C3D2 ] RmSvc           C:\Windows\System32\RMapi.dll
18:26:49.0064 0x1b28  RmSvc - ok
18:26:49.0079 0x1b28  [ 9F8C24A7E07A8363D069F4D49993994C, 20042FA6280BC42FA10F585036E1945545EE1B99E141B469114686C065CFFD73 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:26:49.0079 0x1b28  RpcEptMapper - ok
18:26:49.0079 0x1b28  [ A089120B99842F0A3CE8AE586A31BD56, CDFAA0429D8EF28E7011CFEB00C8CB08F63A4AF53A1FA6D41D23F86D85D80CA5 ] RpcLocator      C:\Windows\system32\locator.exe
18:26:49.0079 0x1b28  RpcLocator - ok
18:26:49.0111 0x1b28  [ 9996195077AE83EF7A57C58E136F551E, F3B56B78B05D15179A2917F6B614922D6418B61E5F93257E7B81D3AE8056A706 ] RpcSs           C:\Windows\system32\rpcss.dll
18:26:49.0142 0x1b28  RpcSs - ok
18:26:49.0142 0x1b28  [ CCF4A5CEC8FA38035007AB19EB0EBE2E, 05C7701A1A2FCEDCD0F5EC6EF069F73C48D920448EFB010E5E7FBEEA3438F014 ] rspndr          C:\Windows\system32\drivers\rspndr.sys
18:26:49.0142 0x1b28  rspndr - ok
18:26:49.0173 0x1b28  [ D24810B8553828EF7A1273CE46097EAB, ACE75C3EBF6BFAAE7F7F43F5D18FB186286D13842AADFE3457D9655BDA165E78 ] rt640x64        C:\Windows\System32\drivers\rt640x64.sys
18:26:49.0189 0x1b28  rt640x64 - ok
18:26:49.0204 0x1b28  [ FEAB5D20ECE485D6C0BD9FC9846F32B8, 4F7A0E5621634BBB9421E5C1178FA7AA20A21F367741EF2EE60DF23E161983DA ] RTSPER          C:\Windows\system32\DRIVERS\RtsPer.sys
18:26:49.0220 0x1b28  RTSPER - ok
18:26:49.0236 0x1b28  [ 40CD5DB1671197EFBD5C3AB16B9B037C, A1DB4872DB0AF87E4E1F8506483200838E62B0FCE17E77ED9DEA47DE1C230C84 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
18:26:49.0236 0x1b28  s3cap - ok
18:26:49.0236 0x1b28  [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] SamSs           C:\Windows\system32\lsass.exe
18:26:49.0236 0x1b28  SamSs - ok
18:26:49.0251 0x1b28  [ C111AC7C9698EAC8DAEA3425DAD68F42, 2B1C2FBD95FF7C18B13114A573DC47991F1323C8280C006B27013717BA731788 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:26:49.0251 0x1b28  sbp2port - ok
18:26:49.0267 0x1b28  [ 6F1E358F693B1D389D7C12B271157D69, 4E8936B8BFBFFF1B5D27C67291DDF260D0F148676A86C3848B1F4A89DB06458B ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:26:49.0272 0x1b28  SCardSvr - ok
18:26:49.0288 0x1b28  [ 057C49628A9E9945CA5676F52464D931, 2B7461227992F2384D75416092D9FAD2A1AD37BACB5CBC2FC0B98FD3C864E61A ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
18:26:49.0288 0x1b28  ScDeviceEnum - ok
18:26:49.0288 0x1b28  [ E0891042C6FBF9FB1ED5133D745AD647, 3D7C64FA1C533D375B221FDE1929D53656875305E16F2FA6BC1E4F0EA6107426 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:26:49.0288 0x1b28  scfilter - ok
18:26:49.0319 0x1b28  [ E2A91295F3B3419961F2C3AAE5BE8313, E9A694C5E2CD8668F78CE55FC0BE0A765A8F0D2837245CE2CB0D17D301B13FB1 ] Schedule        C:\Windows\system32\schedsvc.dll
18:26:49.0330 0x1b28  Schedule - ok
18:26:49.0345 0x1b28  [ 374BCC5C90587174FC2FC50401630E5E, F6B086F1A73A17DBABD6022679E34B00A0DCB088C33386F6402354AFE11128B4 ] scmbus          C:\Windows\system32\drivers\scmbus.sys
18:26:49.0352 0x1b28  scmbus - ok
18:26:49.0352 0x1b28  [ F738B75E685601069A0A3F8C30CF4F47, CA063889D35F2C1CA38BA3E057EF1C1261E6D710A95527DF3523C0A26F97ACC4 ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:26:49.0352 0x1b28  SCPolicySvc - ok
18:26:49.0368 0x1b28  [ 803EBE4E65EAF3EE70754B07EF269FA5, 15F4460954125D31920430E9D9BF877533AACF0C0008AFED3120823674CD5AAC ] sdbus           C:\Windows\System32\drivers\sdbus.sys
18:26:49.0384 0x1b28  sdbus - ok
18:26:49.0384 0x1b28  [ 801D9B80964AC7240F82C452709E28F8, 061103B80623B2A406F14AC3635A1B73D70F2523A96765FB846531C2112B2999 ] SDFRd           C:\Windows\System32\drivers\SDFRd.sys
18:26:49.0393 0x1b28  SDFRd - ok
18:26:49.0393 0x1b28  [ 24407C609A56A7720111E7A4060D4516, 922874B120BB021F550E64F4D3BDBEF4177178EED6AD7C7D64240682564C88C8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:26:49.0408 0x1b28  SDRSVC - ok
18:26:49.0408 0x1b28  [ 14B11BF6B3B0D4D54C4F649DB701A597, CDC8546F068A87C434B4674DE0C031D6B22B0D9E9926C5D8852AAAB20010E77B ] sdstor          C:\Windows\System32\drivers\sdstor.sys
18:26:49.0408 0x1b28  sdstor - ok
18:26:49.0424 0x1b28  [ 512FD6039A256324A745DF4FA01D5D02, 5EDDB6B714C2D35085D09BFDA3FED3365385B949DD62C6A405EC161C9F9AC2EA ] seclogon        C:\Windows\system32\seclogon.dll
18:26:49.0424 0x1b28  seclogon - ok
18:26:49.0439 0x1b28  [ 7B0912BD92FC1BC8ABD7373F89A34B31, 4F275A91A7BFD4460581AAED161B6FF4EF6A91FEF8133E5188B3C3ADA841DC79 ] SecurityHealthService C:\Windows\system32\SecurityHealthService.exe
18:26:49.0455 0x1b28  SecurityHealthService - ok
18:26:49.0502 0x1b28  [ 4F88B110B25531EC1CC84D621B2C74EC, 10D9A19C15FD98216EABA9AB1468756CCD3E17C67146F77F5D262BD1657D79E8 ] SEMgrSvc        C:\Windows\system32\SEMgrSvc.dll
18:26:49.0518 0x1b28  SEMgrSvc - ok
18:26:49.0533 0x1b28  [ 84F8DAF82B643F63D5D6EF93F8F5BB95, B946740A87C875713829F4ED88C44B2D8ADF7132683CDF8E89B70D16B77B60B8 ] SENS            C:\Windows\System32\sens.dll
18:26:49.0533 0x1b28  SENS - ok
18:26:49.0533 0x1b28  Sense - ok
18:26:49.0564 0x1b28  [ EA7F202EE760B3F949191FDF86E553EA, B7D7EFF9F543B5DC37D69EC4665C031C6FCC2135E527301DEAC0A16766EE60E1 ] SensorDataService C:\Windows\System32\SensorDataService.exe
18:26:49.0596 0x1b28  SensorDataService - ok
18:26:49.0611 0x1b28  [ D83530B2386434C004C0E4E41DD61843, 2D66E1AA30E1CFF0471E515817B350D1A637D88934790295D2EDE03A9443F2C0 ] SensorService   C:\Windows\system32\SensorService.dll
18:26:49.0627 0x1b28  SensorService - ok
18:26:49.0627 0x1b28  [ 706087D7D9D2A5347F6B327B353E9E08, 9962FF6718615913C2C42E3C3C26C082E8D1E7FDAC7C7454E4CDCB14AA6948C8 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:26:49.0643 0x1b28  SensrSvc - ok
18:26:49.0643 0x1b28  [ E1F507DB004880A5903EF7522912331B, 6A4A5E471FCB51D180A616ED7655F9DF428BF4F83BD822B60CBCF8E156755284 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
18:26:49.0643 0x1b28  SerCx - ok
18:26:49.0658 0x1b28  [ F43CB691DE5A8595B1558EC70E11F238, BE978529263B17EB95923326580507D964A08122FAF17F4C880AB36C4AC7DCEE ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
18:26:49.0658 0x1b28  SerCx2 - ok
18:26:49.0658 0x1b28  [ 570C25D873C1BB07CEC1D244F540FBD7, B130072C4D67CECAE0530AE3BCDA3C2CE6E43915534D9DA07E9403E0E5932F71 ] Serenum         C:\Windows\System32\drivers\serenum.sys
18:26:49.0658 0x1b28  Serenum - ok
18:26:49.0674 0x1b28  [ 75643A5BE2FB697CACB327C98571C1E0, 2652E67FAA7D514056D81D29FB8D8CEE629002DCF32FEE6A49183514654D2292 ] Serial          C:\Windows\System32\drivers\serial.sys
18:26:49.0674 0x1b28  Serial - ok
18:26:49.0674 0x1b28  [ 408A7AF941752F2CF6113A5028F10479, 17AF544225C5A7560FBB962FF1515844CB1A7A5287278D7EB67B382EA03ACF7E ] sermouse        C:\Windows\System32\drivers\sermouse.sys
18:26:49.0674 0x1b28  sermouse - ok
18:26:49.0689 0x1b28  [ 0C1E0D0CD0B4683A27E27BC15A50921B, 55AD04803406E8A120C623E21E040AD7C7E1DBEAD9370887111FEEADFC78F0F4 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:26:49.0705 0x1b28  SessionEnv - ok
18:26:49.0705 0x1b28  [ B2CE0504DA72D0D6EB8A997D62852793, D5AF098A5EBE4929F30D397BAE69BCD15D0CC3A917EF61FB73F2E79078A7A51D ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
18:26:49.0721 0x1b28  sfloppy - ok
18:26:49.0721 0x1b28  [ C0F588AB65EE3869C38C1BD10A0AEF85, 8395188C4194A65B1106C0A9B1287DEB60513B1D5443DE6E55AB58C71EE49A1E ] SgrmAgent       C:\Windows\system32\drivers\SgrmAgent.sys
18:26:49.0721 0x1b28  SgrmAgent - ok
18:26:49.0736 0x1b28  [ C51AA0BB954EA45E85572E6CC29BA6F4, 2DF8A183B3DCA4DE156433280FD69B49E7B20B474211D7125FBE256CA25D769C ] SgrmBroker      C:\Windows\system32\SgrmBroker.exe
18:26:49.0736 0x1b28  SgrmBroker - ok
18:26:49.0768 0x1b28  [ FE0D66CC122CC7E0E704C54D7F07DA24, 175E656FD5D58F2F3781AE2424065786D9EED221B3664C246D2C08625921AFB3 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:26:49.0771 0x1b28  SharedAccess - ok
18:26:49.0790 0x1b28  [ 9BC0F13DAD4AF8C6C4EEDBBE17025F1F, 5B0813BCDD63AC9AB3326906C7A504414612EBA8B149722252FB55F44B64F2CD ] SharedRealitySvc C:\Windows\System32\SharedRealitySvc.dll
18:26:49.0805 0x1b28  SharedRealitySvc - ok
18:26:49.0821 0x1b28  [ 66E6C9C7AEB812EF3F7ED69143E8E287, 4C85FF6D3281EBD05DA823B6FD272EFA53C3AFD2C41A86E4684BB43E4FCF003A ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:26:49.0821 0x1b28  ShellHWDetection - ok
18:26:49.0837 0x1b28  [ B2E022EFC0BB678D37D4595BEC535BF5, 32F2DFBCA501D88BEC2103F3B181F04B45D8823B613684741AD5FE57C12B8295 ] shpamsvc        C:\Windows\system32\Windows.SharedPC.AccountManager.dll
18:26:49.0837 0x1b28  shpamsvc - ok
18:26:49.0837 0x1b28  [ E1FCDB9B82A224C4EB01F7A0C54DF557, 50F152B1469761C5065A7C4B2E3AB5FB2DC4D96F78B41B58CAC697E9A54C70C5 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:26:49.0852 0x1b28  SiSRaid2 - ok
18:26:49.0852 0x1b28  [ 0588849E68C841A706081A294E51E759, DCAD7CF4326DB5E307078CE819D704506E1205685AA8E9A9C14C24F8C0689FFA ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:26:49.0852 0x1b28  SiSRaid4 - ok
18:26:49.0868 0x1b28  [ 7A160562207FA446643277E75C6D697B, B6A34380356430BBEB4D3B23D0075E0E22DE6652CEFAB77C62BC8FF6981E7DE0 ] SmartSAMD       C:\Windows\system32\drivers\SmartSAMD.sys
18:26:49.0868 0x1b28  SmartSAMD - ok
18:26:49.0883 0x1b28  [ B15241350252D74581FE956F358478C5, 540802AF873C4B325D8E8E9CFC5026B7BC0CB44F96DBEF1886221C47F0EAE4D1 ] smbdirect       C:\Windows\system32\DRIVERS\smbdirect.sys
18:26:49.0883 0x1b28  smbdirect - ok
18:26:49.0883 0x1b28  [ D88FC13079D14E5403AED5F7D33A2015, E1528E77D411FD6617EB09A6D6060BCDEA8E1ABAFE64F2A2B3F7298E146B2C4E ] SmbDrvI         C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
18:26:49.0883 0x1b28  SmbDrvI - ok
18:26:49.0899 0x1b28  [ 7EC5BE35AFE354E89378300C2455FE69, 2D6355E532C00DC0DE11C52013FE971722CCA26F1ADF691D6B919C042A8DDF3B ] smphost         C:\Windows\System32\smphost.dll
18:26:49.0899 0x1b28  smphost - ok
18:26:49.0915 0x1b28  [ 0D5698724FA6A269B9379C41FE2C1333, BC8120380CE3A1603AF2D67CDA9040A11F12EC0E03D2A2AB6F28E8847D679A90 ] SmsRouter       C:\Windows\system32\SmsRouterSvc.dll
18:26:49.0930 0x1b28  SmsRouter - ok
18:26:49.0946 0x1b28  [ 78172782B1E1E26933D67A9DA912158C, 354CFFF20D10A00A1DEFCD1B6B225C5B258D98D8CD94FDD905678DF8A62EDE34 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:26:49.0946 0x1b28  SNMPTRAP - ok
18:26:49.0961 0x1b28  [ E2BA844230F364548420EDDF4C82E33F, 47F41937E088F500C4CAEF71F64EF19F7AF746593A7D678E579639935788BFEB ] spaceport       C:\Windows\system32\drivers\spaceport.sys
18:26:49.0977 0x1b28  spaceport - ok
18:26:49.0977 0x1b28  [ B0FC1C59BC63170BE57D66837FB6BEED, 58C979A655FA6EAD84DA6A0D606A917903C71A59D0D8CD16F2C7282CC76D5A2E ] SpatialGraphFilter C:\Windows\system32\drivers\SpatialGraphFilter.sys
18:26:49.0977 0x1b28  SpatialGraphFilter - ok
18:26:49.0993 0x1b28  [ D6E649E8482AA227B8F985116D115A9A, ADAD215D0F3A6FE046000FF9E7E7BDD6288438A8D6E7EEEF980205B73F32A990 ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
18:26:49.0993 0x1b28  SpbCx - ok
18:26:50.0008 0x1b28  [ 7F3921BA41FB025FD9285D795419B854, 000D624C339F3ECF346B9266702954AAA5EB038F68242CD5F8AB7ECF1090F032 ] spectrum        C:\Windows\system32\spectrum.exe
18:26:50.0040 0x1b28  spectrum - ok
18:26:50.0055 0x1b28  [ 217A5227E768CC42CF52B2902C7EFA8C, 13B3E4725F07A2371B7B45BB3E53ED14438ABC38CED045D50BFF3DC840680C59 ] Spooler         C:\Windows\System32\spoolsv.exe
18:26:50.0071 0x1b28  Spooler - ok
18:26:50.0165 0x1b28  [ 0C655B4E6A184BF4A845AE2B70D28A38, 422E41B173D8CBAD11B2AB4E529958B488A181C19662B7987991DF9A567E126B ] sppsvc          C:\Windows\system32\sppsvc.exe
18:26:50.0259 0x1b28  sppsvc - ok
18:26:50.0274 0x1b28  [ ABD8CC0564249E61A76D7FA402312714, 5C2300B06CC7F0CFCDDC5175D9FD5A4E3010E13677BB515B2A0F969393F345DF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:26:50.0290 0x1b28  srv2 - ok
18:26:50.0306 0x1b28  [ D4CC36C37C4418C34F11303AA83DDA5C, 38779B0382C31CFE77656C5123452B849986FB5DE759AB04BA0CBA957EEE3661 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:26:50.0306 0x1b28  srvnet - ok
18:26:50.0321 0x1b28  [ EC6EB8E7946753A3F71B92D06A52A36F, DD4A6A6AF19B6F11D96EE4DFE6C1BDD5A52A782D8915CC72D749554D37FEA823 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:26:50.0337 0x1b28  SSDPSRV - ok
18:26:50.0337 0x1b28  [ 9FFECD197D09FF33B00D5E5B78A48146, 79C03E83B42E3C0402680B47A2493C3C506E2D212062859BD7C4EBACA46F3AD5 ] ssh-agent       C:\Windows\System32\OpenSSH\ssh-agent.exe
18:26:50.0353 0x1b28  ssh-agent - ok
18:26:50.0368 0x1b28  [ 5778543F5A5201B9661AFDA420FF0AF6, 26AEBACD5C17F36DE6B6E893B2EFE0D0967813005F90A4ED95C72354152CC58B ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:26:50.0368 0x1b28  SstpSvc - ok
18:26:50.0472 0x1b28  [ 7B95F9C1FC5CFADC7F922E76DA711A9C, 38A637F56306BBEFB9EC7A2F487ECF9C7411E7DDC1CB215B5BF5FACC39DCFFC8 ] StateRepository C:\Windows\system32\windows.staterepository.dll
18:26:50.0566 0x1b28  StateRepository - ok
18:26:50.0582 0x1b28  [ 8BC164974B677F0D4ABFCA42ADADD14E, DA6FA13FB28779F2A5D8BFF25659A3659BF5AF5EFE0432D0F4CF8BCAF20F0D96 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:26:50.0582 0x1b28  stexstor - ok
18:26:50.0597 0x1b28  [ 1A9FD015C2C0C71385E770DBE8377583, E4576B079E6065DFAA94DACADA327A8A3F5F4CC4482FB057789FCCF48CB03A75 ] stisvc          C:\Windows\System32\wiaservc.dll
18:26:50.0613 0x1b28  stisvc - ok
18:26:50.0629 0x1b28  [ 0DBA29E779414EA9A28E491983FD9364, A2777033052FBBAFEDFA3F2667D311C56B169D815EA03A01294DE615FBFAF663 ] storahci        C:\Windows\system32\drivers\storahci.sys
18:26:50.0629 0x1b28  storahci - ok
18:26:50.0629 0x1b28  [ 8B2A9CF83531994775A1DA620AA234FB, DEEA990D633D621831D24A54E53AE6AE2F64AC3F983F411B436E48B6CAFFC3AD ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
18:26:50.0644 0x1b28  storflt - ok
18:26:50.0644 0x1b28  [ C53E35BB56BA2C3682EA812003CAF82E, E6E9D407003A3DDEC62C1B3CB4FE4EE72AC6D452BE62CF5903302A4FDE4FD523 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
18:26:50.0644 0x1b28  stornvme - ok
18:26:50.0660 0x1b28  [ 59D5626EC27D43039D76A6AA71CE5B01, A1D7EDE04A85129866560DB97E8F5F4F3A8E80B82ECB7BB347D1D1E84C4F32E0 ] storqosflt      C:\Windows\system32\drivers\storqosflt.sys
18:26:50.0660 0x1b28  storqosflt - ok
18:26:50.0691 0x1b28  [ A6CB5F72AC25C2D81C99A99479FFC236, 7C95B3480D1BB687414C07E5DF944CC353DE7452356FF9377C65B1695A9FECD1 ] StorSvc         C:\Windows\system32\storsvc.dll
18:26:50.0712 0x1b28  StorSvc - ok
18:26:50.0712 0x1b28  [ 82A7E0411D46526CA878651608CA2F89, E99D32A0A96606EB6431536B79A10BB57772C29435322C6E5418EC77C268E397 ] storufs         C:\Windows\system32\drivers\storufs.sys
18:26:50.0712 0x1b28  storufs - ok
18:26:50.0712 0x1b28  [ 868A36136BC87EB433CA0DC7394A8A3B, D4F04125A7A073798B35D6794C043FF8651C1AF126CE4B9AD122B3C4D7A14BF6 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
18:26:50.0728 0x1b28  storvsc - ok
18:26:50.0728 0x1b28  [ 763995562791AD56C4DCFD5B0746317B, F9E86B319309F7A5803CF5BCBCC76E5F13725884523A0A003EEB7006009C3940 ] svsvc           C:\Windows\system32\svsvc.dll
18:26:50.0728 0x1b28  svsvc - ok
18:26:50.0743 0x1b28  [ 8A9C14DE49EC3FC1CF4C906C6DD6EFC1, DD08E6F686696537783A90E6D1EC60F9FCF379E1FF9BADBFAD36E3841C8624D1 ] swenum          C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_1c567926e5b29133\swenum.sys
18:26:50.0743 0x1b28  swenum - ok
18:26:50.0759 0x1b28  [ 0D936D3B6AF7D118B3F8A36AF16C0846, 2460F708DE9F4792E247B8ED9612A8E4905DCA2C72DBF334820F4B9F15625495 ] swprv           C:\Windows\System32\swprv.dll
18:26:50.0775 0x1b28  swprv - ok
18:26:50.0775 0x1b28  [ D2C18148D3C16CCED6E176C646C13EFD, 0F454E2421CEC26340A63E5223508A7E170AEA90C9D21BC3C01C66B8F6D8FF2E ] Synth3dVsc      C:\Windows\System32\drivers\Synth3dVsc.sys
18:26:50.0775 0x1b28  Synth3dVsc - ok
18:26:50.0806 0x1b28  [ 94EFB93479FD9EF655BAB3B80EE5C998, 2686624447582C06E469245C1F25CD8E2E5F495A399A68C9D527B35CB1BBFB60 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
18:26:50.0806 0x1b28  SynTP - ok
18:26:50.0821 0x1b28  [ B867901FE0B2EA055F4AC83163DBAD68, F4856295944E6902C3C6F3A9D6DCF9355761D59408870CCBC09BEDE0E257EA0A ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
18:26:50.0837 0x1b28  SynTPEnhService - ok
18:26:50.0856 0x1b28  [ 46CF46BB6F819E067AF42D30C62C2DB0, 259DD10BFADF27A57BEB74D360B70512389379635478C16FB72D1E6EB1190F3E ] SysMain         C:\Windows\system32\sysmain.dll
18:26:50.0887 0x1b28  SysMain - ok
18:26:50.0887 0x1b28  [ E2F4812F664799182D39C4B30C62850C, 731A65566A402B6CBC6BA6898C4906D4FD0F6721238F149B4CEE0CB10AB35933 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
18:26:50.0903 0x1b28  SystemEventsBroker - ok
18:26:50.0918 0x1b28  [ D79C8F7F04616ADF654FBDA9847CF3EB, E7AFD9057D55A493B331981B62F8F08B78FB682DB7313F182036642858CDE6B5 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:26:50.0918 0x1b28  TabletInputService - ok
18:26:50.0934 0x1b28  [ 421D9344DC1B87485600ED07D52B05EB, D9FEEAB0BD3D1A15B91446FA9F32DC4AD7D2F8B190E7CEF6CCB044ACA4E5985C ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:26:50.0934 0x1b28  TapiSrv - ok
18:26:50.0996 0x1b28  [ 18E41C8A80DC1839D042A7699B174A5A, 2FADAF3A762E86C9E864BA4149540EFB0BCD2D6DCB0B0F350DB7A1B649C6E9AC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:26:51.0121 0x1b28  Tcpip - ok
18:26:51.0184 0x1b28  [ 18E41C8A80DC1839D042A7699B174A5A, 2FADAF3A762E86C9E864BA4149540EFB0BCD2D6DCB0B0F350DB7A1B649C6E9AC ] Tcpip6          C:\Windows\system32\drivers\tcpip.sys
18:26:51.0231 0x1b28  Tcpip6 - ok
18:26:51.0246 0x1b28  [ 6A6D4EE00469704BC0091AF5AC73C6DD, E2504FCFF084F8004BD5EA3735426D2DDEBF4372A7512EEFF4CB13076C77C213 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:26:51.0246 0x1b28  tcpipreg - ok
18:26:51.0246 0x1b28  [ 9AF99FB2DA176C88C68D886046C56B01, 8465D551BA060AAC7E178072899534F78BFCE35B69FA69CFACCEACCCB7BDAF4B ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:26:51.0263 0x1b28  tdx - ok
18:26:51.0263 0x1b28  [ BACB822DEC72FECEFC809449FD3C7CD3, 3F71D97CF24F74E315874DDB4BB2429B745F9E36E7EDFC0A37BCE8EB23947FA2 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
18:26:51.0263 0x1b28  terminpt - ok
18:26:51.0294 0x1b28  [ 977C8C10ECCF58A81A2AA5A859933EBA, 9A804200931D1FD3372E7D72ACF71245569C43413DC452F7F7B16537BA7FBD4F ] TermService     C:\Windows\System32\termsrv.dll
18:26:51.0310 0x1b28  TermService - ok
18:26:51.0325 0x1b28  [ 3B09BAB568BD4ED4B7A1998D47ECCF0C, E3668B4D57174032C36987AA97043E9F7D731E3E5D7A14EB10B5A18E339DCB09 ] Themes          C:\Windows\system32\themeservice.dll
18:26:51.0325 0x1b28  Themes - ok
18:26:51.0341 0x1b28  [ 00E0C9BF4808162AE2FC9E6C8BA50701, 7ABFD8534338904819797A8346C854100334ED79D3915A51B8CF1D3F9F335393 ] TieringEngineService C:\Windows\system32\TieringEngineService.exe
18:26:51.0341 0x1b28  TieringEngineService - ok
18:26:51.0357 0x1b28  [ AED022158618781B1816CEB14897E755, EC74A356E6AC9281AD99391C167B035AD7FFC84FB89C559DD9FD6DCB4917646A ] TimeBrokerSvc   C:\Windows\System32\TimeBrokerServer.dll
18:26:51.0357 0x1b28  TimeBrokerSvc - ok
18:26:51.0403 0x1b28  [ 4D3FCD7D96C512EF1F75A39C57417B45, C1B80A967810392E07819853C72CEDD925AFA10C447F614CE9822FC7086DBFE7 ] TokenBroker     C:\Windows\System32\TokenBroker.dll
18:26:51.0435 0x1b28  TokenBroker - ok
18:26:51.0435 0x1b28  [ 146CF660D2014380F2FEA73501DD8E6A, D9898A78A4F5E988929FCB082498B78620C7C9465E37BF532830D9B086E22991 ] TPM             C:\Windows\System32\drivers\tpm.sys
18:26:51.0450 0x1b28  TPM - ok
18:26:51.0450 0x1b28  [ F47972C77B03F421BE57CFEEE384D98B, 8015327D5DE0E632276B5F6B079DBBFB453872175E463ECC4814E4AA9EB8138C ] TrkWks          C:\Windows\System32\trkwks.dll
18:26:51.0466 0x1b28  TrkWks - ok
18:26:51.0466 0x1b28  [ 0ABBA689E78D931613ADB942C43B2CF1, AC1AB44E7408B9477AE23E086E5E8D83351F86860656500A0C390EB40588AB20 ] TroubleshootingSvc C:\Windows\system32\MitigationClient.dll
18:26:51.0482 0x1b28  TroubleshootingSvc - ok
18:26:51.0498 0x1b28  [ F6D147E2DBF91BE25A94843F0E240706, 894B7BDCBA846F1D98EA56C197E70E63EA948472D8B2738D34BBEB54F7411E07 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:26:51.0498 0x1b28  TrustedInstaller - ok
18:26:51.0498 0x1b28  [ 4D66CADB97981EE7390E95C5D59319F1, 0E0016522D5C4C0471A893ECD7E29F790DDB7895F4392BBE6142FBB17CE76407 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:26:51.0513 0x1b28  TsUsbFlt - ok
18:26:51.0513 0x1b28  [ C26F638642EF8203EC7113464A0CCA55, 50398A6FB2A333701395107549C4E5FFB567278A89C387088025E49CFA371F92 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
18:26:51.0513 0x1b28  TsUsbGD - ok
18:26:51.0529 0x1b28  [ A8D4B53D386487AB9CFCFD972764941C, 28A6372C64D1A274F3830E0EEAAF2CAB990D8AFD25511349C7BEB747ABC2172D ] tsusbhub        C:\Windows\System32\drivers\tsusbhub.sys
18:26:51.0529 0x1b28  tsusbhub - ok
18:26:51.0529 0x1b28  [ E524022894A7499E3C06C147B0BA7FDF, BBA4A87B6EC7BAA4355CA7A99BCB228EFDA91E4FE8CDC8D1C15B68981250765B ] tunnel          C:\Windows\system32\drivers\tunnel.sys
18:26:51.0544 0x1b28  tunnel - ok
18:26:51.0544 0x1b28  [ 3DD3418273A3E097E9302C672E975D08, C0ED745B87B64D7DCC54380C7B82A70A8E7C66AC8C2C5871E9074A1C10374215 ] tzautoupdate    C:\Windows\system32\tzautoupdate.dll
18:26:51.0560 0x1b28  tzautoupdate - ok
18:26:51.0560 0x1b28  [ 948B18AEBDBF85B5A022AE3DD44EF7ED, F45AF191367A4EA4CEE8C405A90AF191A70E81FE81B433528D293C8C04BFA72F ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
18:26:51.0560 0x1b28  UASPStor - ok
18:26:51.0576 0x1b28  [ 4CFC014F7268E18414D115D2915E7636, FE783E47F63494F15A13309DAB7F8E702E594ADC53E5E34CFD705EC065F31A10 ] UcmCx0101       C:\Windows\system32\Drivers\UcmCx.sys
18:26:51.0576 0x1b28  UcmCx0101 - ok
18:26:51.0591 0x1b28  [ C6ABD73AA3C86F3252E476FD34FC4D66, 98B1A2BD72021FD3CE338C253FFEC5DEBB333A265822663A17E85DD67E9790CE ] UcmTcpciCx0101  C:\Windows\system32\Drivers\UcmTcpciCx.sys
18:26:51.0591 0x1b28  UcmTcpciCx0101 - ok
18:26:51.0591 0x1b28  [ A10EF89D243B4A011E4A7618319B5D57, A048B1C4E7695E6E24EF3B0641C89BB908EB7B3D0047602B54740A4DE339AF83 ] UcmUcsiAcpiClient C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys
18:26:51.0591 0x1b28  UcmUcsiAcpiClient - ok
18:26:51.0607 0x1b28  [ 777028ECD134FD8A094F4613475F099B, 52D24A96D10A455816AE3EF3CD2E563B3899DAB336E405D6AE31F3551C17C0C1 ] UcmUcsiCx0101   C:\Windows\system32\Drivers\UcmUcsiCx.sys
18:26:51.0607 0x1b28  UcmUcsiCx0101 - ok
18:26:51.0623 0x1b28  [ D111694A8F376B645A9A24219B67C3B8, C272682D9D99F786C80A7339FDF79F1F826FC364B821F0DEB352690D91B237FE ] Ucx01000        C:\Windows\system32\drivers\ucx01000.sys
18:26:51.0623 0x1b28  Ucx01000 - ok
18:26:51.0623 0x1b28  [ F920FF63AD376001D8946FA22A8B598D, F2F95F9352CC89CD2E68D9483A82A3F789627A0472DA9DFBCE0E2245B2055D11 ] UdeCx           C:\Windows\system32\drivers\udecx.sys
18:26:51.0638 0x1b28  UdeCx - ok
18:26:51.0638 0x1b28  [ 0D3464F8E1D1CC638DCFBD935CBFDAEC, 16139D1C8CB34C69BAC27A0C8B7597C1AFABBB305216623CBEA601DDEA1A98B2 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:26:51.0654 0x1b28  udfs - ok
18:26:51.0654 0x1b28  [ B25FA421FC85C9A3F4AC81587B07A90E, EF3D1C17560DF9D9510A8D7CD639C18D3EBF13CD678440C81E6B3CF56BD1D1A4 ] UEFI            C:\Windows\System32\DriverStore\FileRepository\uefi.inf_amd64_4fcaf0fc6eaf7533\UEFI.sys
18:26:51.0654 0x1b28  UEFI - ok
18:26:51.0669 0x1b28  [ A9250ADFC71B9CBEE5BAD97CEE0C1EF0, 35B45E0A506991902C02884485E32EF52C3AF5EAC9170D256BA6F2B027DC30CE ] UevAgentDriver  C:\Windows\system32\drivers\UevAgentDriver.sys
18:26:51.0672 0x1b28  UevAgentDriver - ok
18:26:51.0766 0x1b28  [ 00EFFBF5C5E25799A2E5B49CAFDE86F4, EBB1CE157D405F9C681B0013C96997F1659C55040C96638C5C525A3C412DF377 ] UevAgentService C:\Windows\system32\AgentService.exe
18:26:51.0781 0x1b28  UevAgentService - ok
18:26:51.0797 0x1b28  [ 87D5D59B6AAC3ACCB6875D9666825C8E, 31B4ACDAB0B2E8CDB8C94D4F1C7939E6DA1A5495BD1751772B0C4D329B3E1DC0 ] Ufx01000        C:\Windows\system32\drivers\ufx01000.sys
18:26:51.0812 0x1b28  Ufx01000 - ok
18:26:51.0812 0x1b28  [ A872BEA2A958430B9BABE0F5A6259E5A, FB2BA7E4B01F88F5802819F153FBC52B3A417F5B832D94945628F7B08A8D3E5E ] UfxChipidea     C:\Windows\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_624eef84faf426d6\UfxChipidea.sys
18:26:51.0828 0x1b28  UfxChipidea - ok
18:26:51.0828 0x1b28  [ 86AD2D2C5AF22D8D13617F512EDA35B9, E021FC587F5CD82F5CBF1B4FD73FE57E50D480317BB4B21637A96D51B097081E ] ufxsynopsys     C:\Windows\System32\drivers\ufxsynopsys.sys
18:26:51.0828 0x1b28  ufxsynopsys - ok
18:26:51.0844 0x1b28  [ 6E08E87B46D3227C5AEC05AFD881ED83, D746C6E18AF1C2505F578A882D240E916EA59559F4A6F7591CECDAED160BDAB7 ] umbus           C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys
18:26:51.0844 0x1b28  umbus - ok
18:26:51.0859 0x1b28  [ 63C55C0E80F83D63EEB3BF6810DD8387, 72F104ADAC4A5E3137B429F752F72B947D95A246D7F7CA7F53426FFE944F0308 ] UmPass          C:\Windows\System32\drivers\umpass.sys
18:26:51.0859 0x1b28  UmPass - ok
18:26:51.0875 0x1b28  [ 79C0194B9F2FF312F1E2927D42E52105, 0FF203FAD727BCEB4C84957A0CD9FA93238BCDAE51AE70103D6B241D24642606 ] UmRdpService    C:\Windows\System32\umrdp.dll
18:26:51.0875 0x1b28  UmRdpService - ok
18:26:51.0911 0x1b28  [ CBD797C153711690954BCF807FA3F257, 59262DB1A4751C475E0491122A67DA273144192F3237B7B2A38A71268A75934C ] UnistoreSvc     C:\Windows\System32\unistore.dll
18:26:51.0926 0x1b28  UnistoreSvc - ok
18:26:51.0957 0x1b28  [ C7130D8E13400AE239252A82371F490C, 7F9148F08F7C009B31FFC48B3C499F498C0D872818876D16B49223F060BF3D13 ] upnphost        C:\Windows\System32\upnphost.dll
18:26:51.0973 0x1b28  upnphost - ok
18:26:51.0973 0x1b28  [ 9DCE4606E15FA465DE1AC453F46A85E6, 788C5B0FB8B7B7E041B3EB31C8FE5A909FA64E18EA609564CAFCB1BD52C98D86 ] UrsChipidea     C:\Windows\System32\DriverStore\FileRepository\urschipidea.inf_amd64_86da23c455846f41\urschipidea.sys
18:26:51.0973 0x1b28  UrsChipidea - ok
18:26:51.0973 0x1b28  [ A7BE0A24B7F11060394A3BFAE21C783F, 159E8ED944B7C3243AFC07BD85A36F9DA7DE6FBE66C2F3DA75D25C531663075B ] UrsCx01000      C:\Windows\system32\drivers\urscx01000.sys
18:26:51.0989 0x1b28  UrsCx01000 - ok
18:26:51.0989 0x1b28  [ F1DE82278E0A027980B598BD70CECD6A, F70027BBFBF71CCF06B733A64946F4526DA28C2DC7934BB9BC9C3DAAB0A8135B ] UrsSynopsys     C:\Windows\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_7302ce5d1420ed71\urssynopsys.sys
18:26:51.0989 0x1b28  UrsSynopsys - ok
18:26:52.0004 0x1b28  [ 7568EE93D647F65AC772852C9869E513, 72608E9FED569757D00444E6F6B63B17D693D7B5E7A5C643A119F80A64E0E7C3 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
18:26:52.0004 0x1b28  usbaudio - ok
18:26:52.0020 0x1b28  [ 61DFCE1DAB6503BC75032102F150D692, C55F112C42FD7A1ECB03D33C8D8E14AF69F9A7A4312BBBA031E9C5B1EC712FB5 ] usbaudio2       C:\Windows\System32\drivers\usbaudio2.sys
18:26:52.0023 0x1b28  usbaudio2 - ok
18:26:52.0023 0x1b28  [ E45B5A4D0CD7FAA616D2CF24BEAF5C99, B3D75CC944407F57B4C93D61E313FE60A42A2D18ECAAFD19DC09C49C540AD9FA ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
18:26:52.0039 0x1b28  usbccgp - ok
18:26:52.0039 0x1b28  [ 4A2A90FC52DD031BD5135BF2B6F95CDD, D15010BCC02CF48C63612F32E0F166311D713F2103B58224B87E1583AA25630C ] usbcir          C:\Windows\System32\drivers\usbcir.sys
18:26:52.0039 0x1b28  usbcir - ok
18:26:52.0055 0x1b28  [ A1EFF2E07889DB46C82520238D8225EF, 092B52141612B6643A744DF11BD45EEA846130B4251BA75E7016231B5DF45D11 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
18:26:52.0055 0x1b28  usbehci - ok
18:26:52.0070 0x1b28  [ F6656FC6BA03CD046F5F82D968F02CC0, 7D1605BE823DC0DC1EA9D330455BF18ED4A4AF993508EB2C38A7C137CCF643A5 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
18:26:52.0086 0x1b28  usbhub - ok
18:26:52.0102 0x1b28  [ 95235AF07E459393CF5B51AE665048B1, 48CE92C954052A556C195473A128CDBA6BA6A260CC346B609F833AF764A948BA ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
18:26:52.0117 0x1b28  USBHUB3 - ok
18:26:52.0117 0x1b28  [ A6FF43DEE42EF4B160976D8A3BCA2143, 3C06B624B3498DE9D9C7B5A139838E11179C413B2AFB5FCC04864AD190711A57 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
18:26:52.0117 0x1b28  usbohci - ok
18:26:52.0117 0x1b28  [ 11724C8F4354F87EC7F96CBCBD18A612, 0807A61EF7D56D5E208957F189D4A75E86DFB6A33FCBEEE46CCB93BB3602332A ] usbprint        C:\Windows\System32\drivers\usbprint.sys
18:26:52.0133 0x1b28  usbprint - ok
18:26:52.0133 0x1b28  [ 55CFD737A673108074914ED21F44CC0D, 4BB52E2C4DE005865BF5D1C31F2E25DAE4CB53B14A1EFF23589FA4E620DE50DF ] usbser          C:\Windows\System32\drivers\usbser.sys
18:26:52.0133 0x1b28  usbser - ok
18:26:52.0148 0x1b28  [ D575E148B38E2226E1DA27D0206B1006, D171BF1DF8E3DCB1C5E84F29142BF738382E2B457E48FC5A295A401F07E7FA7C ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
18:26:52.0148 0x1b28  USBSTOR - ok
18:26:52.0148 0x1b28  [ 194091B0D8079A66B64A017B3E3965C1, FE83A1B7A4CA5D37AED4552A41AC4DE618275AC6B0A438604F05ABA3B4D8178E ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
18:26:52.0148 0x1b28  usbuhci - ok
18:26:52.0164 0x1b28  [ 9C30C80855C05CA6DA0458AE9D67405F, 7588CD00BDB12E87ACBC10BDD0D1E8A7BCEA14E2452429D229227E63C03BB3FD ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
18:26:52.0180 0x1b28  usbvideo - ok
18:26:52.0195 0x1b28  [ AB60F9F41ECFCC1F67F28C9A75481590, 31899DB511748E4A8F5B6371A1741C64EBE30792672A86594ACF67FFFB67CFDE ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
18:26:52.0195 0x1b28  USBXHCI - ok
18:26:52.0242 0x1b28  [ 4AB290C4D42C77D1A395D44BF428E126, 3DCFEC698D93EEFEFA422DF12BBFF1A537A95EDFE251450011BDC77E503ED8AA ] UserDataSvc     C:\Windows\System32\userdataservice.dll
18:26:52.0273 0x1b28  UserDataSvc - ok
18:26:52.0305 0x1b28  [ 3CDA02F057095F94DC578E329746B74E, 7266151C13119EE95140D0B3E0DE13EB1742E649F644050648BFBB0DADA9AFF1 ] UserManager     C:\Windows\System32\usermgr.dll
18:26:52.0336 0x1b28  UserManager - ok
18:26:52.0352 0x1b28  [ 5DDFE2C6ADF1A2D1B48762580A90F9DB, A639E320FE7FE33A6FCE7AF53C01F9999B7246B9A344E2C588692995F22DAB64 ] UsoSvc          C:\Windows\system32\usosvc.dll
18:26:52.0352 0x1b28  UsoSvc - ok
18:26:52.0367 0x1b28  [ DA482A04D8A194EF5041F0090A774A17, B8111D10F9E33264ACA11B1AA97263F9721163D1F71A23E68F80D4CAA50C4245 ] VacSvc          C:\Windows\System32\vac.dll
18:26:52.0383 0x1b28  VacSvc - ok
18:26:52.0398 0x1b28  [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] VaultSvc        C:\Windows\system32\lsass.exe
18:26:52.0398 0x1b28  VaultSvc - ok
18:26:52.0398 0x1b28  [ F8B7332117B5D5944945FA9EDEB6E2FA, C419D3D50DE9B485F01278B044432CC1B326FD3A44CFBF3DF4E7780F483298AB ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:26:52.0398 0x1b28  vdrvroot - ok
18:26:52.0414 0x1b28  [ 774339D0AC38E93E136329C586749A9E, DFB0F5C163B45F769BE1F0DBF51254B67BFE191E37B049628A659381B445983A ] vds             C:\Windows\System32\vds.exe
18:26:52.0430 0x1b28  vds - ok
18:26:52.0445 0x1b28  [ 0DAEB3C122959420D6CC0EEBE4AAA301, B5CFC19968473A3618174E04B7B4EA9844A2C4E5B1BA91C88D96599EC85EB801 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
18:26:52.0445 0x1b28  VerifierExt - ok
18:26:52.0539 0x1b28  [ 3B2908EC5B61EFB0A4C1156213488115, C392FC8A492713369F9ADB90FE6A504D07E50A9598A22552113FDA41688D0659 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
18:26:52.0555 0x1b28  vhdmp - ok
18:26:52.0555 0x1b28  [ 7D2E55D69166E5ADD2E85E4D91B106EA, 37A58CE570C3B3F46F02B5582F335073107A417947A03335370BC4B760F3E193 ] vhf             C:\Windows\System32\drivers\vhf.sys
18:26:52.0555 0x1b28  vhf - ok
18:26:52.0570 0x1b28  [ FBC323E15CAE64D279DB0C406D6AE586, 3249F3BC3CA3882214DAB59AE996D74836298691526E7E3DDC5E6B3DD2E3A636 ] Vid             C:\Windows\System32\drivers\Vid.sys
18:26:52.0586 0x1b28  Vid - ok
18:26:52.0602 0x1b28  [ 8350086E9500068CC3A3213DF90B2AED, AC13372AADB3A0601B8550408394378791A1A85068F7B14948F900BBF2B8FC7B ] vmbus           C:\Windows\system32\drivers\vmbus.sys
18:26:52.0604 0x1b28  vmbus - ok
18:26:52.0604 0x1b28  [ 0D36DA7B9053AA928EBB0A791FA9AD98, D85A0613E5CF27C90A6248D4606DA61AC4F2A293F37A0814845619476EFFAF11 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
18:26:52.0604 0x1b28  VMBusHID - ok
18:26:52.0604 0x1b28  [ 32480E0760E0C3D21964CE3992001D5F, 135AE6162F52A314CB99F4A13DF78BE371280FAAC7EF85CD9B8D806460B7FA79 ] vmgid           C:\Windows\System32\drivers\vmgid.sys
18:26:52.0620 0x1b28  vmgid - ok
18:26:52.0620 0x1b28  [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmicguestinterface C:\Windows\System32\icsvc.dll
18:26:52.0635 0x1b28  vmicguestinterface - ok
18:26:52.0635 0x1b28  [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmicheartbeat   C:\Windows\System32\icsvc.dll
18:26:52.0651 0x1b28  vmicheartbeat - ok
18:26:52.0651 0x1b28  [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmickvpexchange C:\Windows\System32\icsvc.dll
18:26:52.0667 0x1b28  vmickvpexchange - ok
18:26:52.0667 0x1b28  [ E8D33D1EA66CF460A204007DFF2CC1D8, 40A57D316D6AEA01C3FD3C1E8CF0838F5047F05A885663F1F39316115F5E8FDC ] vmicrdv         C:\Windows\System32\icsvcext.dll
18:26:52.0682 0x1b28  vmicrdv - ok
18:26:52.0698 0x1b28  [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmicshutdown    C:\Windows\System32\icsvc.dll
18:26:52.0698 0x1b28  vmicshutdown - ok
18:26:52.0714 0x1b28  [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmictimesync    C:\Windows\System32\icsvc.dll
18:26:52.0714 0x1b28  vmictimesync - ok
18:26:52.0729 0x1b28  [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmicvmsession   C:\Windows\System32\icsvc.dll
18:26:52.0729 0x1b28  vmicvmsession - ok
18:26:52.0745 0x1b28  [ E8D33D1EA66CF460A204007DFF2CC1D8, 40A57D316D6AEA01C3FD3C1E8CF0838F5047F05A885663F1F39316115F5E8FDC ] vmicvss         C:\Windows\System32\icsvcext.dll
18:26:52.0745 0x1b28  vmicvss - ok
18:26:52.0760 0x1b28  [ C2BAD58D468241540D8722E1C6EB7134, 595921466DEB9D3FBB39C84B12324725776B1F789AA0A96EF87DECDF3B036384 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:26:52.0760 0x1b28  volmgr - ok
18:26:52.0776 0x1b28  [ 1594BC85AE1FA9C8ECD069BAE21B968C, 26D222B3CC2DA1F1F3BE63B65C57B6DD254B141CA99D34DBD4A35E40209B2EB7 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:26:52.0776 0x1b28  volmgrx - ok
18:26:52.0792 0x1b28  [ B4D173B92E4715CEC1FB8C830747852A, CBCF4B1E1870B270676A63A3004F2F85F0674DFA6EF97E46DD8D1B1CD0EB469D ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:26:52.0807 0x1b28  volsnap - ok
18:26:52.0807 0x1b28  [ 48AC7024857127BF09088853DB43FF93, 998E1134F40472DA39DD53FC9FA2EED9309606ACD34BBBF237E50C6DA11DE881 ] volume          C:\Windows\system32\drivers\volume.sys
18:26:52.0807 0x1b28  volume - ok
18:26:52.0823 0x1b28  [ CF1C674D2149ECCDF3C93EECA1EA2F61, 1F9CE82225402E4BD0A0E1167F039B805036FB87CD8D16A2DDE44A8A8FCD2045 ] vpci            C:\Windows\System32\drivers\vpci.sys
18:26:52.0823 0x1b28  vpci - ok
18:26:52.0823 0x1b28  [ 942B73A77ACB3099384A0754814EA9D9, 3FB26A47A3326B932254ACCCDA06C158BBF39C301051108084A7AC913DE03827 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:26:52.0839 0x1b28  vsmraid - ok
18:26:52.0867 0x1b28  [ C82C209DF1CFDA5C72B148DFC2FA5D1D, C4A4BB9B050D214D44119D6F39822E9E3B36EF7DA67471843C0856E090987B70 ] VSS             C:\Windows\system32\vssvc.exe
18:26:52.0898 0x1b28  VSS - ok
18:26:52.0914 0x1b28  [ 56783969F7CD2590BD17894EBF65E015, CE25CD5000FD43BD1913B03BE6548AF6AE525ADED6335A105760D2538572C844 ] VSStandardCollectorService150 C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe
18:26:52.0914 0x1b28  VSStandardCollectorService150 - ok
18:26:52.0914 0x1b28  [ A6CEC1A878536F3D5C82CFDF6E4CFCB9, A569744957E492042994C6F1312C8F4EC2F20A559BD8938A6A09C15230DEBBDC ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
18:26:52.0930 0x1b28  VSTXRAID - ok
18:26:52.0930 0x1b28  [ C347534CE40DB6D4878447302129BC73, 511747AD4C6FF8C2B568CD8AAEF1E49D67DABFCD8D639786F683DA338E8DD837 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
18:26:52.0930 0x1b28  vwifibus - ok
18:26:52.0945 0x1b28  [ 489782EABA27384E116243E60EFFEEE7, 510E97FAE86E9B0162E74D93A5F4ECDDAA9EFC5534AD755327B1402BFC9EEDFB ] vwififlt        C:\Windows\system32\drivers\vwififlt.sys
18:26:52.0945 0x1b28  vwififlt - ok
18:26:52.0945 0x1b28  [ 085766D55201E4C5C431D2F008676F37, 2850F1258AE3E1FA14399F100965E5A6474197A44277E246DAA8D8F409A93ECC ] vwifimp         C:\Windows\System32\drivers\vwifimp.sys
18:26:52.0945 0x1b28  vwifimp - ok
18:26:52.0961 0x1b28  [ 600A2AF8A6358F31962DDFEDA8883049, 7E4D5F180C090D665C03299E04FF2CB88D95BEDD253EDE139E2DF7B80D25C1AA ] W32Time         C:\Windows\system32\w32time.dll
18:26:52.0976 0x1b28  W32Time - ok
18:26:52.0992 0x1b28  [ E9B2224A2D7A5612A4396F77B05B301C, 4236C7C7D9827DEB21B2D96073805F6B17924C1FEB46A34A640F0DC6BB1B23EA ] WaaSMedicSvc    C:\Windows\System32\WaaSMedicSvc.dll
18:26:53.0008 0x1b28  WaaSMedicSvc - ok
18:26:53.0008 0x1b28  [ 0F428BDADB31C63BEC85FE65577BD84B, D0467601837108726E499EC59F1F1B3E386C7C41ACE49288B3E52BEB8F57EE29 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
18:26:53.0008 0x1b28  WacomPen - ok
18:26:53.0023 0x1b28  [ 0DC4909F3D4E5272CB0A5B2BB7CA06BB, 7D28C8CD903401F2B4435D6510391A39D7B7969E234EE9CB76CA06EC36EAC5AF ] WalletService   C:\Windows\system32\WalletService.dll
18:26:53.0033 0x1b28  WalletService - ok
18:26:53.0033 0x1b28  [ C878ADFAEBC91078BDD67DC75761C606, 104F4CE8FCDFA2508818C2DA926B7A78671618346936CC5D12A12A8BF4C5642F ] wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
18:26:53.0049 0x1b28  wanarp - ok
18:26:53.0049 0x1b28  [ C878ADFAEBC91078BDD67DC75761C606, 104F4CE8FCDFA2508818C2DA926B7A78671618346936CC5D12A12A8BF4C5642F ] wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:26:53.0049 0x1b28  wanarpv6 - ok
18:26:53.0049 0x1b28  [ FA45D9FF48626207024305DADAD40AAB, 79B388312F9B143DA75F7972EEAD2627329C9ACB49DF07307102A4BC3A111FEB ] WarpJITSvc      C:\Windows\System32\Windows.WARP.JITService.dll
18:26:53.0064 0x1b28  WarpJITSvc - ok
18:26:53.0095 0x1b28  [ 499F84004BC0700E5A842EF169FD61EE, 5BA6D4DA167807254F4321AEFBA2E2FE356A66347F1AE207A0B0932C19062EA2 ] wbengine        C:\Windows\system32\wbengine.exe
18:26:53.0127 0x1b28  wbengine - ok
18:26:53.0158 0x1b28  [ A49E17680E06B392CC6ECB47F01A6E64, 7B042F2A5CACA738631891C07044718C08543888F62BC4D03C931A7F33F87B19 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:26:53.0174 0x1b28  WbioSrvc - ok
18:26:53.0189 0x1b28  [ 4A41CB663563C8734572982179D92388, B335DEFC962712AD296B7DF75A362F80EF014408D290979B5DB093EF308C78E3 ] wcifs           C:\Windows\system32\drivers\wcifs.sys
18:26:53.0205 0x1b28  wcifs - ok
18:26:53.0220 0x1b28  [ 04F65888EACA3AFD14B5504700DE8224, 9E9FF81B0B1CB13AF410DE8D05C9638DF6B9EA879B5A4990504C2DB5BC4A98C7 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
18:26:53.0236 0x1b28  Wcmsvc - ok
18:26:53.0330 0x1b28  [ 7CEAE2332C6036D25E01A2F61C16824C, 011F017A0A5081D07A2B5B6D012B1BDECBEAF73EF1BC7CC533ACBFC2E94C1EFD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:26:53.0346 0x1b28  wcncsvc - ok
18:26:53.0346 0x1b28  [ B6F93B8B921662E81F9BA6A2AD014F86, EBEF2198FD97B405C9AB92F9FCD4478BF09B83BCF0B8C0BFEE76FA80AE4EB642 ] wcnfs           C:\Windows\system32\drivers\wcnfs.sys
18:26:53.0346 0x1b28  wcnfs - ok
18:26:53.0361 0x1b28  [ 64C55BE4745F25E5CFCDE0DCC722499D, 54B85BDE3AC57FF41C5DEF5AB15BDA0C5283BD328F3BFC007CF77EFA9A212FF0 ] WdBoot          C:\Windows\system32\drivers\wd\WdBoot.sys
18:26:53.0361 0x1b28  WdBoot - ok
18:26:53.0377 0x1b28  [ 13A2F7B0EEAC7D05F1A1BC41A239FDF6, 4A66E54C8B760BAA99826A47416ECAACF092530ECE5C361669BDC0843651BC38 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:26:53.0392 0x1b28  Wdf01000 - ok
18:26:53.0408 0x1b28  [ 9C94DF5000A2D815D6F321D3C5548B82, B2C47AADBBC9DA4477973937F12552FE82287B1F6111270FA4030C1496D87B4B ] WdFilter        C:\Windows\system32\drivers\wd\WdFilter.sys
18:26:53.0424 0x1b28  WdFilter - ok
18:26:53.0424 0x1b28  [ AA843CF3C016B79340C6FDACDA20D75D, 1BC8F5BBE7BCBB194406D74FD0EABE763F2F7BBBF6CBC81300355050AB44B675 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:26:53.0439 0x1b28  WdiServiceHost - ok
18:26:53.0439 0x1b28  [ AA843CF3C016B79340C6FDACDA20D75D, 1BC8F5BBE7BCBB194406D74FD0EABE763F2F7BBBF6CBC81300355050AB44B675 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:26:53.0439 0x1b28  WdiSystemHost - ok
18:26:53.0473 0x1b28  [ A09400A803B10A64422D8F9A6520D3A6, EE7A827E1F073CD6C8DD903DDFCB77DEDFB00629F789645378826EE95AFA7802 ] wdiwifi         C:\Windows\system32\DRIVERS\wdiwifi.sys
18:26:53.0488 0x1b28  wdiwifi - ok
18:26:53.0488 0x1b28  [ 35ED849BBAD731509E4E8D3A015CE5FA, 087494CA0B94BACB61B5EC7E5295FCB733EE47328A6A69D5942BF1324D50C499 ] WdmCompanionFilter C:\Windows\system32\drivers\WdmCompanionFilter.sys
18:26:53.0488 0x1b28  WdmCompanionFilter - ok
18:26:53.0504 0x1b28  [ 9FCA39510BC2ADC8D3E55BA153580011, 3461EC64D611969C66E7887936CCF5C38067BBF57F418268E954D54A095E7AE7 ] WdNisDrv        C:\Windows\system32\drivers\wd\WdNisDrv.sys
18:26:53.0504 0x1b28  WdNisDrv - ok
18:26:53.0570 0x1b28  [ 56754EE9AC2B7EFDA17E2176CDFEE685, 9B6AC35762F2E9F1A25A9F2654D8759C3ED1906B195D3259FDA87CE963FD5273 ] WdNisSvc        C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe
18:26:53.0664 0x1b28  WdNisSvc - ok
18:26:53.0680 0x1b28  [ 96F813A401A00A1C0477C0738DE64E3A, CF869EC31169D18697FADF82DE1F3E30C99A5870686F0C9CAA7591B3832800AD ] WebClient       C:\Windows\System32\webclnt.dll
18:26:53.0680 0x1b28  WebClient - ok
18:26:53.0695 0x1b28  [ D2432132ABE0F620939B667D4894A36F, BD68DB1FC98A163575420681D7E6BA043CF878055B11EB7BE72B46D0E5D4B1B5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:26:53.0695 0x1b28  Wecsvc - ok
18:26:53.0695 0x1b28  [ FAF9800B056767E9F525C143C90F4F9E, 16F3DFA02E227B157A64141D95B6DFE4C8F57D017430BF2D9F3466403AFBB8EA ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
18:26:53.0714 0x1b28  WEPHOSTSVC - ok
18:26:53.0714 0x1b28  [ EF30AE74107F96C8FEAD89F900FE18D0, F201C529CE7D9C9BDEC051864A46970A3E973140DF7E15862C026C8E3116D40D ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:26:53.0714 0x1b28  wercplsupport - ok
18:26:53.0729 0x1b28  [ 3BCA441E86403E6474CA5B13CF1E86B6, 86BF39D60F8EC4CD3B7BDD908CD072BB23CA395F43D8B8D579B688A458F6931D ] WerSvc          C:\Windows\System32\WerSvc.dll
18:26:53.0745 0x1b28  WerSvc - ok
18:26:53.0760 0x1b28  [ 5FB0717636A54C5C37082E79A6605902, 389B657CB93645CB2DEC3C576204EAAF284CD95956985E3278396D1D022972D7 ] WFDSConMgrSvc   C:\Windows\System32\wfdsconmgrsvc.dll
18:26:53.0776 0x1b28  WFDSConMgrSvc - ok
18:26:53.0792 0x1b28  [ 97460B0FBD9A2329E13D715AAA826D80, DE5EB3B1519B3D72F6A6F2952E4705529151E6E88AB51C27F963240A135CC0CF ] WFPLWFS         C:\Windows\system32\drivers\wfplwfs.sys
18:26:53.0792 0x1b28  WFPLWFS - ok
18:26:53.0807 0x1b28  [ 5CB480ABFD5C68B6D7CD7821F23BA7B8, F489FEB3E0543CDB607DAB099DCDA49A30580F734DBC0BC927999958C792C4E0 ] WiaRpc          C:\Windows\System32\wiarpc.dll
18:26:53.0807 0x1b28  WiaRpc - ok
18:26:53.0807 0x1b28  [ 5EFC1312EF40814D8F3AE9A6F8A21D8A, 8E93137FDEC76CD202242A6A2950286AF49345BAEA8F4E737BCAB133E447F38B ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:26:53.0823 0x1b28  WIMMount - ok
18:26:53.0823 0x1b28  [ 9090AD37AD5A71D5CE5167BCDF4AEAFA, F387EB88710BA33F50BDF9EEB7237D170C591CE41225A1359D14D4EB4B8EDD82 ] WinDefend       C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe
18:26:53.0839 0x1b28  WinDefend - ok
18:26:53.0854 0x1b28  [ 9FCCEAAF76F60F712C2DCEE6FC0B07A2, F4AE6C93FD8BE874ED6A5EC28DE4F74DC2ABA41010F0AEB248500FC0078F8606 ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys
18:26:53.0854 0x1b28  WindowsTrustedRT - ok
18:26:53.0854 0x1b28  [ C696815C9B8DD3F40454A949E30ECA0B, 85F15CA27389CC78701FBBCC974C3F8DF8D6F34CF3A717C9960D2621011C002C ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys
18:26:53.0854 0x1b28  WindowsTrustedRTProxy - ok
18:26:53.0885 0x1b28  [ F116389790D62B1099FBA5AB58CFE33F, A5EF6BF81D7B67413E71FABAD8B62A248D5EBD4F67DF1D3C83E4F9D7407E005D ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
18:26:53.0901 0x1b28  WinHttpAutoProxySvc - ok
18:26:53.0917 0x1b28  [ 9B3BD21B1FF32B20EE30FA4332D3AB6C, CDC5921946F9AD6EFBDFA09ECE90D4E4784BB77F0C5B170A3F1A6F7A29509ABD ] WinMad          C:\Windows\System32\drivers\winmad.sys
18:26:53.0917 0x1b28  WinMad - ok
18:26:53.0932 0x1b28  [ E7B5AC14EF3F0116D59E851A2F38DA74, 18327A5219C35791C8037AF5F717166467F7844202773D2C1CB10874BABE6DCD ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:26:53.0932 0x1b28  Winmgmt - ok
18:26:53.0948 0x1b28  [ 9EF055AE54CE409636176E9FDDFFBC34, 3B1548660F483122F2DA30D27E35ECAB83244458717AC53913F6DE353E319AB4 ] WinNat          C:\Windows\system32\drivers\winnat.sys
18:26:53.0948 0x1b28  WinNat - ok
18:26:53.0963 0x1b28  [ 99737333A5493750CC4CBB8C2BD323BB, 8EA82295AB6C02F03E4A969C152FF0347D1561D191644998CA9E9F0039820715 ] WinQuic         C:\Windows\system32\drivers\winquic.sys
18:26:53.0963 0x1b28  WinQuic - ok
18:26:53.0979 0x1b28  WinRing0_1_2_0 - ok
18:26:54.0043 0x1b28  [ 74E4D3C8A6EF62362187D0C6FC0DC49B, 4410019EE23E6869FBEFC3B1299EF8633E4E8D2EDCD6741779F19C2CD1AEEF85 ] WinRM           C:\Windows\system32\WsmSvc.dll
18:26:54.0090 0x1b28  WinRM - ok
18:26:54.0105 0x1b28  [ 7C8733775E291E3211F918A30B425742, EF4DC11990E88B19C8BB565B8E67CE9A146D69A4779D859474BA1EFFAC993280 ] WINUSB          C:\Windows\System32\drivers\WinUSB.SYS
18:26:54.0105 0x1b28  WINUSB - ok
18:26:54.0121 0x1b28  [ D130D6ED19268A74D6587C0D134B59EB, CBF4BE2A0789B3DE473CBE8EBC90A559826D642B503CFD26D1CEA8AAB33433E3 ] WinVerbs        C:\Windows\System32\drivers\winverbs.sys
18:26:54.0121 0x1b28  WinVerbs - ok
18:26:54.0137 0x1b28  [ B850D53C395A363648C4610AC3101D60, E1F6FDA2DA2D7BA78D52D43B3607C8FB208E0181BE63CEF2FBE3A856EAD242A5 ] wisvc           C:\Windows\system32\flightsettings.dll
18:26:54.0152 0x1b28  wisvc - ok
18:26:54.0217 0x1b28  [ E1E249E190D55FC8CAE9F770E2D6AD2D, D4FD73CCEB1951D3A4AB03C4FAEA2E2C407712F8B85450498499B3935612C28D ] WlanSvc         C:\Windows\System32\wlansvc.dll
18:26:54.0280 0x1b28  WlanSvc - ok
18:26:54.0396 0x1b28  [ A60DCC4F1CE38740F86B95E57B526545, D9F436579BFEA8147220B376FC038A6C2B6E39FEFECEA0647744945F2E0CF8C2 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
18:26:54.0428 0x1b28  wlidsvc - ok
18:26:54.0474 0x1b28  [ 06122A4C8860167431FB9D66CCC93D18, CBB2004CA69FA5B4069B75206D8A70EDFCDB57F955B8B07800EBA800E91ACBBB ] wlpasvc         C:\Windows\System32\lpasvc.dll
18:26:54.0678 0x1b28  wlpasvc - ok
18:26:54.0709 0x1b28  [ 479874582228961060B13E251FB2510D, 334F05CA91B69055D49BD385102C30D4A39E331182623F892B7AA5441013CF82 ] WManSvc         C:\Windows\system32\Windows.Management.Service.dll
18:26:54.0735 0x1b28  WManSvc - ok
18:26:54.0735 0x1b28  [ B4ABE535AB99C02E3678AA1ED5EC56B2, FC9A55CD935488CC0826E0A28C4D2EAB52C87C88D15B4D542A70BD3EDB355966 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
18:26:54.0735 0x1b28  WmiAcpi - ok
18:26:54.0750 0x1b28  [ 72260CE9438A7A9A8A5BA101EDA4D6BD, 8A221672E37FD7F30D35B3466CA9F1A473F9A77C27A5A16C6392BCEECCAFEA6F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:26:54.0750 0x1b28  wmiApSrv - ok
18:26:54.0750 0x1b28  WMPNetworkSvc - ok
18:26:54.0766 0x1b28  [ 1AAC4936E71E3895F7044DDE711C43F1, 0FB03F7CE4B8A7D01F488EA554C2BCD60457F5E55BD6969F84F7564327A233D9 ] Wof             C:\Windows\system32\drivers\Wof.sys
18:26:54.0766 0x1b28  Wof - ok
18:26:54.0829 0x1b28  [ EEF4A599B8A8BA3411A949F58826970B, 30EDEC66DD21F0253C8FFFCBD5C01EE238CDAF8935ED5ABC0E9FFD740B62DE4A ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
18:26:54.0875 0x1b28  workfolderssvc - ok
18:26:54.0922 0x1b28  [ 62379AA5716E01B442509D6FE366E424, CF877C30A4EDAC047190EC3C6FB9A6331374C5D15206EAD0105045A03169058D ] WpcMonSvc       C:\Windows\System32\WpcDesktopMonSvc.dll
18:26:55.0035 0x1b28  WpcMonSvc - ok
18:26:55.0050 0x1b28  [ A43EF2A9B957EC0B74721E262BB571B3, 324DDCCEDD14FA34C33A8E46557B5A6678252D4F8A98A3B9A6D5B6C0DFE24A22 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:26:55.0050 0x1b28  WPDBusEnum - ok
18:26:55.0066 0x1b28  [ 58CD56BD6647BCAD784D9EB172D3132B, 7343D35C3883B44575BAFABD15EF057172393C3A952AD1E26C9F4636BDE0F254 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
18:26:55.0066 0x1b28  WpdUpFltr - ok
18:26:55.0082 0x1b28  [ D516D659E846DCAB8F711597CFD961E1, 4DE29090646F4FA12884286669B6A66CAAEFD77DD8EADD91ADFD8EE85BAEE621 ] WpnService      C:\Windows\system32\WpnService.dll
18:26:55.0082 0x1b28  WpnService - ok
18:26:55.0097 0x1b28  [ B10C7C8714D4D279F56072EBAC17F6DD, E4E8328AA54976256824C5016499F11A8F44B9EEA9E83537B061EE32C5D0BB86 ] WpnUserService  C:\Windows\System32\WpnUserService.dll
18:26:55.0097 0x1b28  WpnUserService - ok
18:26:55.0097 0x1b28  [ F4754B705332FFB21375D11EDD0E063E, D9CDD8FD3D9EB4840A1AA34A3D3DADBF0DD18C56E0BC1E1973751AA594AA3AC3 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:26:55.0113 0x1b28  ws2ifsl - ok
18:26:55.0113 0x1b28  [ 31320670CC3C89B2504FCAC12D42801E, 0B20A7911DC384A473CF49E22E57DDD445740E7593D91319B6426DE5053DB8A8 ] wscsvc          C:\Windows\System32\wscsvc.dll
18:26:55.0129 0x1b28  wscsvc - ok
18:26:55.0129 0x1b28  WSearch - ok
18:26:55.0207 0x1b28  [ 46AD1C407B5B198180DE24E0569F8028, 1DE70EAB5AEB2E1B8BDAAD41C79B19830D071A0C8ACADDFB26F48214844363C1 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:26:55.0264 0x1b28  wuauserv - ok
18:26:55.0279 0x1b28  [ 28F033782B14D59DDBCA1E2FAE674B8A, 409E9B4F53BEC370AEB7D104FE929CD1DBA60C2AC83A4823FA82C67CED2BEC32 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:26:55.0279 0x1b28  WudfPf - ok
18:26:55.0295 0x1b28  [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
18:26:55.0300 0x1b28  WUDFRd - ok
18:26:55.0315 0x1b28  [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
18:26:55.0315 0x1b28  WUDFWpdFs - ok
18:26:55.0331 0x1b28  [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
18:26:55.0331 0x1b28  WUDFWpdMtp - ok
18:26:55.0362 0x1b28  [ 7E6BE7D68AFB2775B457E63BD8FDF1F5, 791EAFC039A3DF55EB16CE3DAEF34300F50993E8A418FFFF83345CBE32DDFC0F ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:26:55.0393 0x1b28  WwanSvc - ok
18:26:55.0425 0x1b28  [ 5A185AD39FBA3409D7AD7DDCDA29DBA0, 18B67F1B06B8A0626B04721FC88C79875713072EF354F67DEA4090BAC77903B7 ] XblAuthManager  C:\Windows\System32\XblAuthManager.dll
18:26:55.0456 0x1b28  XblAuthManager - ok
18:26:55.0487 0x1b28  [ 2F19D8B17B932AF9A5FAC588D6437773, F4DBBECD64D89CFD94ED2BD5883E980D134D2798D469F1B47164CDABF845425B ] XblGameSave     C:\Windows\System32\XblGameSave.dll
18:26:55.0503 0x1b28  XblGameSave - ok
18:26:55.0518 0x1b28  [ 384059930ED4037232D12DBD8CB99B95, 359B4993C2814B67F6631BE9903501401A7B8B87BF0012A88026E43185E1FA63 ] xboxgip         C:\Windows\System32\drivers\xboxgip.sys
18:26:55.0534 0x1b28  xboxgip - ok
18:26:55.0534 0x1b28  [ C7135FB498E924FD4F93A35B206D1256, 5B98528040BCBB9CC9BC1BEF54919C4435D4587A4A0CA5C9EF666E06C6CAA274 ] XboxGipSvc      C:\Windows\System32\XboxGipSvc.dll
18:26:55.0534 0x1b28  XboxGipSvc - ok
18:26:55.0565 0x1b28  [ 5A495E793B14CCD532182BFEF1D06207, D8B54268281F49F868A422700F974F4456E435795279A02095E0A5567DF90D4D ] XboxNetApiSvc   C:\Windows\system32\XboxNetApiSvc.dll
18:26:55.0596 0x1b28  XboxNetApiSvc - ok
18:26:55.0612 0x1b28  [ 4F6C56E15EDAD3E3CD7D839972F61BE0, C375862DDA538CD8DB8ED0F6C47A05E11C3AEAD564278CDD087058C88A4C3FB9 ] xinputhid       C:\Windows\System32\drivers\xinputhid.sys
18:26:55.0612 0x1b28  xinputhid - ok
18:26:55.0612 0x1b28  ================ Scan global ===============================
18:26:55.0612 0x1b28  [ B21455B8FF82C98410E1ECDCDC50A67E, 2518696AA3CD15AA0C324A008A87680555911B73DC0DAB6BB5C25230B1F97FD9 ] C:\Windows\system32\basesrv.dll
18:26:55.0628 0x1b28  [ 5D7E5826FF94D08CE87B197B0E99DDB4, FCA2A1651C8E8ED34E322BFE8D872A8FDE4C2CEC5545DD8EA2E2ADF7D13F3B2A ] C:\Windows\system32\winsrv.dll
18:26:55.0628 0x1b28  [ 0901C559D0731D97EDAA68D36660CE90, C82203C444FD09F0396CCD3DA249BD17F0035EBFF75A23853E5920735FB3DFDF ] C:\Windows\system32\sxssrv.dll
18:26:55.0659 0x1b28  [ BCCC12EB2EF644E662A63A023FB83F9B, 9090E0E44E14709FB09B23B98572E0E61C810189E2DE8F7156021BC81C3B1BB6 ] C:\Windows\system32\services.exe
18:26:55.0659 0x1b28  [ Global ] - ok
18:26:55.0659 0x1b28  ================ Scan MBR ==================================
18:26:55.0675 0x1b28  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
18:26:55.0696 0x1b28  \Device\Harddisk0\DR0 - ok
18:26:55.0696 0x1b28  [ 09CE7397AF23D4C0B331B89D0297CC7E ] \Device\Harddisk1\DR1
18:26:55.0696 0x1b28  \Device\Harddisk1\DR1 - ok
18:26:55.0696 0x1b28  ================ Scan VBR ==================================
18:26:56.0018 0x1b28  [ C3E11A32962E0CE8A8FE2E77159D6837 ] \Device\Harddisk0\DR0\Partition1
18:26:56.0018 0x1b28  \Device\Harddisk0\DR0\Partition1 - ok
18:26:56.0037 0x1b28  [ 96D6231D8A9FF5182970FBD8619A9528 ] \Device\Harddisk0\DR0\Partition2
18:26:56.0037 0x1b28  \Device\Harddisk0\DR0\Partition2 - ok
18:26:56.0037 0x1b28  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
18:26:56.0037 0x1b28  \Device\Harddisk0\DR0\Partition3 - ok
18:26:56.0037 0x1b28  [ 5DD091F168B22A2A4A914AD320617151 ] \Device\Harddisk0\DR0\Partition4
18:26:56.0037 0x1b28  \Device\Harddisk0\DR0\Partition4 - ok
18:26:56.0070 0x1b28  [ 64BC3E1729DDFAA5B69A282919F35C22 ] \Device\Harddisk0\DR0\Partition5
18:26:56.0070 0x1b28  \Device\Harddisk0\DR0\Partition5 - ok
18:26:56.0070 0x1b28  [ 7503044C4BF492E5373C72DE5C42705C ] \Device\Harddisk0\DR0\Partition6
18:26:56.0070 0x1b28  \Device\Harddisk0\DR0\Partition6 - ok
18:26:56.0086 0x1b28  [ 5D280B7412737E543F58B71B0127F714 ] \Device\Harddisk1\DR1\Partition1
18:26:56.0086 0x1b28  \Device\Harddisk1\DR1\Partition1 - ok
18:26:56.0086 0x1b28  [ 7E71D60EE1CDAF75A237694FEF22D37F ] \Device\Harddisk1\DR1\Partition2
18:26:56.0086 0x1b28  \Device\Harddisk1\DR1\Partition2 - ok
18:26:56.0086 0x1b28  [ 01A7CDC75EC98CA7AEFC3E19CE8C6355 ] \Device\Harddisk1\DR1\Partition3
18:26:56.0086 0x1b28  \Device\Harddisk1\DR1\Partition3 - ok
18:26:56.0086 0x1b28  [ 35DD393A6C286FB0B8C70AC6C32B5E29 ] \Device\Harddisk1\DR1\Partition4
18:26:56.0086 0x1b28  \Device\Harddisk1\DR1\Partition4 - ok
18:26:56.0102 0x1b28  ================ Scan generic autorun ======================
18:26:56.0102 0x1b28  [ 6600341AFD77470FB3468B759FAB3897, 7F2FE5ED8FA26F044DBBB0DB6B633C8FEAA2C683880D5C3842A5927F85A2D3BE ] C:\Windows\system32\SecurityHealthSystray.exe
18:26:56.0102 0x1b28  SecurityHealth - ok
18:26:56.0368 0x1b28  [ BF225BCD0EC2D85719C382019B5B4250, 7FE5A85209BD930FC1622600AB74E59854488986AA052A0D03D5FC7B361F247D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
18:26:56.0571 0x1b28  RtHDVCpl - ok
18:26:56.0618 0x1b28  [ DC64C1C5948E69DD5815BD5421DDED9B, F8BC8B0E92D9250EFE840CF87DB2C02821EF7EF456C726BE651E1755F37B306D ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
18:26:56.0649 0x1b28  RtHDVBg_Dolby - ok
18:26:56.0649 0x1b28  [ BAEDADCD6509201F82CE5B404AB14814, 8C39C18CE00DB254F370D9C4AA80E88BF67C457240F3D30A58E39DBF9B96F44B ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
18:26:56.0649 0x1b28  IAStorIcon - ok
18:26:56.0649 0x1b28  SynTPEnh - ok
18:26:56.0711 0x1b28  [ D9133D4157664B1E2ACFC2CD56CCB599, 0B2B8EE7D45962026A30833D3D7F59FB1FB07085904C2E77A10714F38910E462 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
18:26:56.0758 0x1b28  NvBackend - ok
18:26:56.0774 0x1b28  [ F17F59C871DBA0E4BDBE96E42BC34EF4, 38A5CE2D6CBDCCA26A04EA0BE3B887E830F2718DD35B2C6D3874618B57904BFB ] C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe
18:26:56.0805 0x1b28  MTPW - ok
18:26:56.0821 0x1b28  OneDriveSetup - ok
18:26:56.0836 0x1b28  OneDriveSetup - ok
18:26:56.0869 0x1b28  [ 2EB728F7FBE31BA47775CCFEDD034441, 5B443C117D829AE7315C2D9624917522196535ACB8EB12BB399C03B714615F7A ] C:\Users\Misho\AppData\Local\Microsoft\OneDrive\OneDrive.exe
18:26:56.0885 0x1b28  OneDrive - ok
18:26:56.0901 0x1b28  Waiting for KSN requests completion. In queue: 304
18:26:57.0977 0x1b28  AV detected via SS2: Windows Defender, windowsdefender:// (  ), 0x61100 ( enabled : updated )
18:26:57.0977 0x1b28  Win FW state via NFP2: enabled ( trusted )
18:26:58.0102 0x1b28  ============================================================
18:26:58.0102 0x1b28  Scan finished
18:26:58.0102 0x1b28  ============================================================
18:26:58.0117 0x0c1c  Detected object count: 0
18:26:58.0117 0x0c1c  Actual detected object count: 0
18:52:22.0104 0x0aa0  Deinitialize success
 

 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Ох..не знам вече какво да правя с вашия проблем ...Всичко изглежда наред ..При толкова сканирания все щях да го хвана зловредния софтуер ...но като няма такъв ...какво да кажа....!!! Остана да действаме по радикално :

 

Clean Boot (Чисто зареждане)

  • Натиснете Windows Key + R. Въведете msconfig и щракнете върху OK.
  • msconfig  ще се отвори. Щракнете върху раздела (Services) Услуги, след това поставете отметка в квадратчето Скриване на всички услуги на Microsoft (Hide all Microsoft services)  Изберете Деактивиране на всички (Disable all) .

 

ngcb39

 

  • Щракнете върху раздела Startup, след което изберете Open Task Manager. В диспечера на задачите отворете раздела Startup. Изберете всеки елемент за стартиране и щракнете върху Disable, докато всички не бъдат деактивирани.

 

TmjUWoe3u84egXgrY3oAmY-970-80.jpg

 

 

WMW7Erbmp8t7MxT4rHPGRG-970-80.jpg

 

3Hd7CT8XLDRW4YLxUhiDVX-970-80.jpg

 

  • Затворете диспечера на задачите и се върнете към MSConfig. Щракнете върху OK и рестартирайте компютъра.
  • Тествайте работата на вашия компютър.

Пишете как се държи машината ..!

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Малко по-добре е като че ли. 

Явно не е "зараза" щом не го засичате. В началото помислих, че е нещо от рода на копачите.

Компютъра го ползвам само и единствено за 5 апа - qbit, vlc, chrome, visual studio, heroes. Не включвам офис пакета, тъй като в момента не го използвам активно. 

След наблюдения започвам да подозирам флаш-а, проблемът се появява единствено в хром - примерно когато е пуснат ютуба, ако скролирам из фб с доста заредено съдаржание/не знам точно ли го описвам/  когато прецъкам някои от табовете да попрегледам нещо. Тогава имам прблеми  но най-странно ми е, че комбинацията alt+tab  си работи....

 Имам доста отворени таба 20-30 но до сега безпроблемно.

Ако прецените, затворете темата щом няма вирус. Аз ще опитам да оптимизирам уина и програмите с четене и налучкване. Може и да преинсталирам отново.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове
преди 30 минути, Zizurona написа:

Малко по-добре е като че ли. 

Здравейте..! Тоест в стартиран "чист " Windows...машината работи добре....Тогава е проблема е софтуерен и  по метода на изключването може да се разбере коя е проблемната програма...!

„чисто“ стартиране на Windows

 

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Не, не работи нормално. Същият проблем се наблюдава но не с голяма продължителност - по-кратко е и "по-леко".

В момента приме пиша  2-3 думи преди да се покажат тук. Стартирани са хром, висуал студиото и Speccy.

Сподели този отговор


Линк към този отговор
Сподели в други сайтове

Добавете отговор

Можете да публикувате отговор сега и да се регистрирате по-късно. Ако имате регистрация, влезте в профила си за да публикувате от него.
Бележка: Вашата публикация изисква одобрение от модератор, преди да стане видима за всички.

Гост
Напишете отговор в тази тема...

×   Вмъкнахте текст, който съдържа форматиране.   Премахни форматирането на текста

  Разрешени са само 75 емотикони.

×   Съдържанието от линка беше вградено автоматично.   Премахни съдържанието и покажи само линк

×   Съдържанието, което сте написали преди беше възстановено..   Изтрий всичко

×   You cannot paste images directly. Upload or insert images from URL.


  • Разглеждащи това в момента   0 потребители

    Няма регистрирани потребители разглеждащи тази страница.

  • Горещи теми в момента

  • Подобни теми

    • от Brightdaylight
      Здравейте, 
      Получих спам имейл в АБВ пощата ми, който ме изнудваше за 1100 лв в биткойн валута срещу изтриване на потенциален мой клип с нецензурно съдържание. Порчетох, че е измама, но все пак има риск за троянки кон в системата. Изпълних инструкциите от темата, но не мога да ги разчета, затова ги прикачвам тук
      Благодаря предварително!
       
      FRST.txt Addition.txt
    • от plamen10
      здравейте моля и в тази тема специалистите за помощ,проблемът е следният последно си спомням че имах няколко имейла от които единият отворих и на следващият ден при включване на компютъра таск менаджера показва 100% и непрекъснат сигнал след което се изключва сам, с много мъки успях да инсталирам Kaspersky и в момента е по добре,но все още ми товари много без да има основание предимно при гледане на клип в ютуб,качвам ви резултата от сканирането

    • от мирослав24
      Здравейте,открих наличието на софтуер за дистанционен достъп до компютъра си ,след като видях курсора на мишката да се движи по екрана.Не знам дали има промяна в работата на компютъра,поне не съм забелязал.Прилагам файловете при сканиране с FRST 
      FRST.txt Addition.txt
    • от Rumen Velev
      Това е темата която ме насочи тук, с подробна информация, какво да правя сега?
    • от #Darth Vader
      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-03-2020
      Ran by NightRider (administrator) on OUTPOST (01-04-2020 15:19:27)
      Running from C:\Users\NightRider\Desktop
      Loaded Profiles: NightRider (Available Profiles: NightRider)
      Platform: Windows 10 Pro Version 1909 18363.753 (X64) Language: Български (България)
      Default browser: FF
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
      ==================== Processes (Whitelisted) =================
      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
      (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avp.exe
      (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avpui.exe
      (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Windows Firewall Control\wfc.exe
      (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Windows Firewall Control\wfcs.exe
      (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
      (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CredentialEnrollmentManager.exe
      (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
      (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
      (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
      (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
      (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
      (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
      (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
      (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
      (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe
      (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe
      (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
      (Valve -> Valve Corporation) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
      (Valve -> Valve Corporation) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
      (Valve -> Valve Corporation) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
      (Valve -> Valve Corporation) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
      (Valve -> Valve Corporation) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
      (Valve -> Valve Corporation) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
      (Valve -> Valve Corporation) E:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
      (Valve -> Valve Corporation) E:\Games\Steam\steam.exe
      (VoodooSoft, LLC -> VoodooSoft, LLC ) C:\Program Files\VoodooShield\VoodooShield.exe
      (VoodooSoft, LLC -> VoodooSoft, LLC ) C:\Program Files\VoodooShield\VoodooShieldService.exe
      ==================== Registry (Whitelisted) ===================
      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
      HKLM\...\Run: [Malwarebytes Windows Firewall Control] => C:\Program Files\Malwarebytes\Windows Firewall Control\wfc.exe [647856 2020-01-05] (Malwarebytes Inc -> Malwarebytes)
      HKU\S-1-5-21-1903147458-2263829336-249963103-1001\...\Run: [Steam] => E:\Games\Steam\steam.exe [3370272 2020-03-27] (Valve -> Valve Corporation)
      ==================== Scheduled Tasks (Whitelisted) ============
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      Task: {221E7CE6-5148-42C5-A220-9EF6F74E9A63} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [739624 2018-04-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
      Task: {B4A41E61-B4EE-4894-B34F-69ED2CD1A78C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18233016 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
      Task: {B9473F12-BF68-46A8-ABB2-FCE28B5FCEC6} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2020-01-03] (Kaspersky Lab -> AO Kaspersky Lab)
      Task: {DAE116B0-629E-4A4B-B509-24E39DF374CC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
      Task: {E2964865-E1B7-4E2C-B492-BC9EB0C98BEE} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1724928 2020-01-21] () [File not signed]
      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
      Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
      ==================== Internet (Whitelisted) ====================
      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
      Tcpip\Parameters: [DhcpNameServer] 217.10.251.114
      Tcpip\..\Interfaces\{9706d7e1-ab22-4a95-8faa-594f0f5e1d81}: [NameServer] 1.1.1.1,1.0.0.1
      Tcpip\..\Interfaces\{9706d7e1-ab22-4a95-8faa-594f0f5e1d81}: [DhcpNameServer] 217.10.251.114
      Internet Explorer:
      ==================
      HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
      HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
      Edge:
      ======
      DownloadDir: C:\Users\NightRider\Downloads
      FireFox:
      ========
      FF DefaultProfile: 84toqkl3.default
      FF ProfilePath: C:\Users\NightRider\AppData\Roaming\Mozilla\Firefox\Profiles\84toqkl3.default [2020-01-17]
      FF ProfilePath: C:\Users\NightRider\AppData\Roaming\Mozilla\Firefox\Profiles\ujtk5yth.default-release [2020-04-01]
      FF Homepage: Mozilla\Firefox\Profiles\ujtk5yth.default-release -> about:blank
      FF Extension: (HTTPS Навсякъде) - C:\Users\NightRider\AppData\Roaming\Mozilla\Firefox\Profiles\ujtk5yth.default-release\Extensions\[email protected] [2020-03-28]
      FF Extension: (Privacy Badger) - C:\Users\NightRider\AppData\Roaming\Mozilla\Firefox\Profiles\ujtk5yth.default-release\Extensions\[email protected] [2020-02-20]
      FF Extension: (Kaspersky Protection) - C:\Users\NightRider\AppData\Roaming\Mozilla\Firefox\Profiles\ujtk5yth.default-release\Extensions\[email protected] [2020-02-15]
      FF Extension: (uBlock Origin) - C:\Users\NightRider\AppData\Roaming\Mozilla\Firefox\Profiles\ujtk5yth.default-release\Extensions\[email protected] [2020-03-10]
      FF Extension: (Black Pixel Firefox) - C:\Users\NightRider\AppData\Roaming\Mozilla\Firefox\Profiles\ujtk5yth.default-release\Extensions\{46f60d87-d458-4083-b2a6-d8165d1c296c}.xpi [2020-01-03]
      FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-01-03] <==== ATTENTION (Points to *.cfg file)
      FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-01-03] <==== ATTENTION
      Chrome:
      =======
      CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
      CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
      ==================== Services (Whitelisted) ===================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
      S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8402648 2020-01-04] (BattlEye Innovations e.K. -> )
      S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2020-01-04] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
      S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
      S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-02-28] (Malwarebytes Inc -> Malwarebytes)
      S3 mracsvc; C:\Windows\System32\mracsvc.exe [18997912 2020-01-05] (Mail.Ru LLC -> LLC Mail.Ru)
      S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
      R2 VoodooShieldService; C:\Program Files\VoodooShield\VoodooShieldService.exe [147968 2020-01-10] (VoodooSoft, LLC -> VoodooSoft, LLC )
      S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
      R2 wfcs; C:\Program Files\Malwarebytes\Windows Firewall Control\wfcs.exe [124592 2020-01-05] (Malwarebytes Inc -> Malwarebytes)
      S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
      R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
      ===================== Drivers (Whitelisted) ===================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
      S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [2836840 2020-01-05] (BattlEye Innovations e.K. -> )
      R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
      R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [79768 2020-02-12] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [145504 2020-02-12] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [93312 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
      S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
      R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [251512 2019-11-01] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [586496 2020-01-27] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1163216 2020-01-24] (Kaspersky Lab -> AO Kaspersky Lab)
      R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [203328 2020-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [998296 2020-02-12] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
      R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
      R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
      S3 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
      R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [251256 2020-01-03] (Kaspersky Lab -> AO Kaspersky Lab)
      R3 klupd_klif_kimul; C:\Windows\System32\Drivers\klupd_klif_kimul.sys [99152 2020-01-03] (Kaspersky Lab -> AO Kaspersky Lab)
      R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [306248 2020-01-03] (Kaspersky Lab -> AO Kaspersky Lab)
      R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [119744 2020-01-03] (Kaspersky Lab -> AO Kaspersky Lab)
      R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [204520 2020-01-03] (Kaspersky Lab -> AO Kaspersky Lab)
      S4 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [211048 2020-01-03] (Kaspersky Lab -> AO Kaspersky Lab)
      R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
      S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2020-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
      S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-03-31] (Malwarebytes Inc -> Malwarebytes)
      S3 mracdrv; C:\Windows\System32\drivers\mracdrv.sys [18234792 2020-01-05] (Mail.Ru LLC -> LLC Mail.Ru)
      R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\nvlddmkm.sys [23251968 2019-12-28] (NVIDIA Corporation -> NVIDIA Corporation)
      R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
      R3 RTL8023x64; C:\Windows\System32\drivers\Rtnic64.sys [51712 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation )
      R3 VSScanner; C:\Windows\System32\DRIVERS\vsscanner.sys [29752 2018-06-25] (Microsoft Windows Hardware Compatibility Publisher -> VoodooSoft, LLC)
      S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45960 2020-03-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
      S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [391392 2020-03-27] (Microsoft Windows -> Microsoft Corporation)
      S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-27] (Microsoft Windows -> Microsoft Corporation)
      ==================== NetSvcs (Whitelisted) ===================
      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ==================== One month (created) ===================
      (If an entry is included in the fixlist, the file/folder will be moved.)
      2020-04-01 15:19 - 2020-04-01 15:20 - 000015114 _____ C:\Users\NightRider\Desktop\FRST.txt
      2020-04-01 15:18 - 2020-04-01 15:19 - 000000000 ____D C:\FRST
      2020-04-01 15:18 - 2020-04-01 15:18 - 002280448 _____ (Farbar) C:\Users\NightRider\Desktop\FRST64.exe
      2020-04-01 02:55 - 2020-04-01 02:55 - 000000641 _____ C:\Users\NightRider\Desktop\JRT.txt
      2020-04-01 02:50 - 2020-04-01 02:50 - 000000000 ____D C:\AdwCleaner
      2020-04-01 02:49 - 2020-04-01 02:49 - 008199856 _____ (Malwarebytes) C:\Users\NightRider\Desktop\AdwCleaner.exe
      2020-04-01 02:48 - 2020-04-01 02:48 - 001790024 _____ (Malwarebytes) C:\Users\NightRider\Desktop\JRT.exe
      2020-03-31 04:09 - 2020-03-31 04:09 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
      2020-03-31 04:09 - 2020-03-31 04:09 - 000214496 ____N (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
      2020-03-31 04:04 - 2020-03-31 04:04 - 000000000 ___HD C:\Windows\system32\GroupPolicy
      2020-03-31 02:42 - 2020-03-31 02:42 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 009930760 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
      2020-03-31 02:42 - 2020-03-31 02:42 - 007604584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 006522320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 005040640 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 004563416 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
      2020-03-31 02:42 - 2020-03-31 02:42 - 004538880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 002494744 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 001397560 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
      2020-03-31 02:42 - 2020-03-31 02:42 - 001077048 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
      2020-03-31 02:42 - 2020-03-31 02:42 - 000982840 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 000783480 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
      2020-03-31 02:42 - 2020-03-31 02:42 - 000772096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
      2020-03-31 02:42 - 2020-03-31 02:42 - 000768736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 000561464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
      2020-03-31 02:42 - 2020-03-31 02:42 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 000420360 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
      2020-03-31 02:42 - 2020-03-31 02:42 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
      2020-03-31 02:42 - 2020-03-31 02:42 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
      2020-03-27 02:57 - 2020-03-27 02:57 - 022636544 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 019813376 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 018027008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 014818816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 008013824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 007017472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 003799552 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 003753472 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 003742544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 002986808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
      2020-03-27 02:57 - 2020-03-27 02:57 - 002800128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
      2020-03-27 02:57 - 2020-03-27 02:57 - 002768440 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 002369576 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 002188600 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 002087168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001659408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001587712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001545216 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 001495864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001477112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001386296 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001368576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001368576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001264640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 001245184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001081856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 001055376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000993280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000980832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000923136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000912896 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000892416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000865280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000865280 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000785920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000744960 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000673704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000647680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000632832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000628408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000618296 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
      2020-03-27 02:57 - 2020-03-27 02:57 - 000538160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000529408 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 000514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000507152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000491008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000487784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000477496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
      2020-03-27 02:57 - 2020-03-27 02:57 - 000456504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
      2020-03-27 02:57 - 2020-03-27 02:57 - 000456192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
      2020-03-27 02:57 - 2020-03-27 02:57 - 000452096 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 000415760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000406480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\es.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000330240 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
      2020-03-27 02:57 - 2020-03-27 02:57 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 000277864 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 000234496 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\LanguageComponentsInstaller.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000190048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrad.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000185952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000178192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
      2020-03-27 02:57 - 2020-03-27 02:57 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000147696 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000123952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000093712 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000089536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000084280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
      2020-03-27 02:57 - 2020-03-27 02:57 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000066624 _____ (Microsoft Corporation) C:\Windows\system32\iumcrypt.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasacct.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000050544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2010CustomActions.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iaspolcy.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000033080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
      2020-03-27 02:57 - 2020-03-27 02:57 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\ias.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmintegrator.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
      2020-03-27 02:57 - 2020-03-27 02:57 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ias.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000021520 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.ps.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
      2020-03-27 02:57 - 2020-03-27 02:57 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 017790464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 007849216 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 006168064 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 003977216 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 003728384 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 003708928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 003586872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 003547648 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 003109376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 002871608 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 002143232 _____ (Microsoft Corporation) C:\Windows\system32\WpcDesktopMonSvc.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 002126144 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 002114560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001960448 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001945600 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001942528 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001918976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001762816 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001757096 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
      2020-03-27 02:56 - 2020-03-27 02:56 - 001726264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001719808 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001512832 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 001497600 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001480192 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 001427456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001413704 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001378528 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001300280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 001263856 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 001261808 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001257472 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001243648 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001136128 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001127424 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001083904 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001071616 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 001011200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000974336 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000915192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000879616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000874512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000840704 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000811320 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000759272 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000747320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000722072 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000684560 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000654912 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000638480 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000637240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000605184 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000604984 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000589384 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000524264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000515600 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000513576 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000498688 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000465208 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000459688 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000437560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000416016 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000374784 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\WpcApi.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000324408 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000323584 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000297272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000259776 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000251704 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000251392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000231912 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000193848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000164368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000152408 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000151352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000142544 _____ (Microsoft Corporation) C:\Windows\system32\LicensingUI.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000115120 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000102216 _____ (Microsoft Corporation) C:\Windows\system32\changepk.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000089912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000088352 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000071480 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000059192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000047208 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\UpgradeResultsUI.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\WpcProxyStubs.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000036152 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
      2020-03-27 02:56 - 2020-03-27 02:56 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.ps.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\sbservicetrigger.dll
      2020-03-27 02:56 - 2020-03-27 02:56 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys
      2020-03-27 02:56 - 2020-03-27 02:56 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
      2020-03-27 02:07 - 2020-04-01 15:06 - 000000384 _____ C:\Users\NightRider\Desktop\А1 - Пряк път.lnk
      2020-03-26 19:57 - 2020-03-26 19:57 - 000000000 ____D C:\Users\NightRider\AppData\Local\OneDrive
      2020-03-13 02:24 - 2020-03-13 02:24 - 000021718 _____ C:\Users\NightRider\Desktop\stp_01x07_2020_e-tle(subsunacs.net).rar
      2020-03-13 01:26 - 2020-02-28 03:44 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2dp.sys
      2020-03-10 22:06 - 2020-03-10 22:06 - 019850240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 011607552 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 009711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 007755776 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 005911040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 005764664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 004855808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 004580352 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 003860832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtmpltfm.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 003819520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 003488768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 002956688 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 002224952 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 002072664 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 002031104 _____ C:\Windows\system32\rdpnano.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001867816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001835128 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001770552 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001555904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001490640 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001417976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001284096 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001282944 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001214976 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001108040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001098720 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 001088000 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000980320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtmpal.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000915296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtmcodecs.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000883712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000757632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000739328 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000732000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ortcengine.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000705536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000669496 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000668672 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000510768 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
      2020-03-10 22:06 - 2020-03-10 22:06 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000444416 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000287744 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacEncoder.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacEncoder.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngOnline.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
      2020-03-10 22:06 - 2020-03-10 22:06 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000055376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtmmvrortc.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000042296 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
      2020-03-10 22:06 - 2020-03-10 22:06 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
      2020-03-10 22:06 - 2020-03-10 22:06 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
      2020-03-10 22:06 - 2020-03-10 22:06 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
      2020-03-10 22:06 - 2020-03-10 22:06 - 000019768 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 007905784 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 007263992 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 006084344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 004898144 _____ (Microsoft Corporation) C:\Windows\system32\rtmpltfm.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 003263488 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 002870272 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 002715648 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
      2020-03-10 22:05 - 2020-03-10 22:05 - 002698040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
      2020-03-10 22:05 - 2020-03-10 22:05 - 002561536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 002305536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 002289152 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001999952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001764336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001751040 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001665416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001657120 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001647072 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001581056 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001484600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001354080 _____ (Microsoft Corporation) C:\Windows\system32\rtmpal.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001153024 _____ (Microsoft Corporation) C:\Windows\system32\windowsperformancerecordercontrol.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 001097728 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001091936 _____ (Microsoft Corporation) C:\Windows\system32\rtmcodecs.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 001032544 _____ (Microsoft Corporation) C:\Windows\system32\ortcengine.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000898048 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000877232 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowsperformancerecordercontrol.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000851968 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000734720 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000670720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000636848 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000613888 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000551824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000535552 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000379904 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000368128 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\netman.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000248064 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000232960 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000221200 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
      2020-03-10 22:05 - 2020-03-10 22:05 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000199480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000193592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000165504 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000146712 _____ (Microsoft Corporation) C:\Windows\system32\profext.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\provpackageapidll.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\DeviceMetadataRetrievalClient.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000131896 _____ (Microsoft Corporation) C:\Windows\system32\DTUHandler.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000130112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000120560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000114176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
      2020-03-10 22:05 - 2020-03-10 22:05 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000056672 _____ (Microsoft Corporation) C:\Windows\system32\rtmmvrortc.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\sxstrace.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxstrace.exe
      2020-03-10 22:05 - 2020-03-10 22:05 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
      2020-03-10 22:05 - 2020-03-10 22:05 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
      2020-03-10 21:56 - 2020-02-11 07:48 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
      2020-03-10 21:56 - 2020-02-11 07:37 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
      ==================== One month (modified) ==================
      (If an entry is included in the fixlist, the file/folder will be moved.)
      2020-04-01 15:19 - 2020-01-04 22:52 - 000000000 ____D C:\ProgramData\VoodooShield
      2020-04-01 15:19 - 2020-01-03 23:18 - 000000000 ____D C:\ProgramData\Kaspersky Lab
      2020-04-01 15:18 - 2019-03-19 07:50 - 000000000 ____D C:\Windows\INF
      2020-04-01 15:11 - 2020-01-03 23:07 - 000000000 ____D C:\Users\NightRider\AppData\LocalLow\Mozilla
      2020-04-01 15:02 - 2019-03-19 07:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
      2020-04-01 14:58 - 2020-01-03 22:32 - 000049064 _____ C:\Windows\system32\perfh002.dat
      2020-04-01 14:58 - 2020-01-03 22:32 - 000012206 _____ C:\Windows\system32\perfc002.dat
      2020-04-01 14:58 - 2020-01-03 20:16 - 000885446 _____ C:\Windows\system32\PerfStringBackup.INI
      2020-04-01 14:52 - 2020-01-03 20:04 - 000000006 ____H C:\Windows\Tasks\SA.DAT
      2020-04-01 14:51 - 2020-01-03 23:07 - 000003136 _____ C:\Windows\system32\Tasks\MSIAfterburner
      2020-04-01 14:51 - 2020-01-03 21:37 - 000017322 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
      2020-04-01 14:51 - 2020-01-03 21:37 - 000017260 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
      2020-04-01 14:51 - 2020-01-03 21:37 - 000012206 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
      2020-04-01 14:51 - 2019-03-19 07:37 - 000524288 _____ C:\Windows\system32\config\BBI
      2020-04-01 14:50 - 2020-01-03 20:03 - 000000000 ____D C:\Windows\system32\SleepStudy
      2020-04-01 11:34 - 2020-01-03 21:37 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
      2020-04-01 08:18 - 2020-01-03 23:23 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
      2020-04-01 03:44 - 2019-03-19 07:52 - 000000000 ___HD C:\Program Files\WindowsApps
      2020-04-01 03:44 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\AppReadiness
      2020-04-01 03:26 - 2020-01-03 21:21 - 000000000 ____D C:\Users\NightRider\AppData\Local\D3DSCache
      2020-03-31 03:18 - 2020-01-03 21:17 - 000000000 ____D C:\Users\NightRider\AppData\Local\Packages
      2020-03-31 03:12 - 2020-01-03 23:05 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
      2020-03-31 03:09 - 2019-03-19 07:37 - 000000000 ____D C:\Windows\CbsTemp
      2020-03-31 02:45 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\ShellExperiences
      2020-03-31 02:45 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\bcastdvr
      2020-03-31 02:44 - 2020-01-03 21:15 - 000000000 ____D C:\Users\NightRider
      2020-03-31 02:20 - 2020-01-04 03:56 - 000011069 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
      2020-03-27 03:10 - 2020-01-03 20:03 - 000257824 _____ C:\Windows\system32\FNTCACHE.DAT
      2020-03-27 03:08 - 2019-03-19 14:49 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
      2020-03-27 03:08 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\SystemResources
      2020-03-27 03:08 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
      2020-03-27 03:08 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\Provisioning
      2020-03-27 03:08 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\PolicyDefinitions
      2020-03-27 02:42 - 2020-01-03 20:04 - 000000000 ____D C:\Windows\system32\Drivers\wd
      2020-03-27 01:57 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\system32\NDF
      2020-03-27 01:41 - 2019-03-19 07:37 - 000032768 _____ C:\Windows\system32\config\ELAM
      2020-03-27 01:12 - 2020-01-04 00:34 - 000000000 ____D C:\Users\NightRider\AppData\Roaming\uTorrent
      2020-03-22 04:51 - 2020-01-03 21:20 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1903147458-2263829336-249963103-1001
      2020-03-22 04:51 - 2020-01-03 21:20 - 000000000 ___RD C:\Users\NightRider\OneDrive
      2020-03-22 04:51 - 2020-01-03 21:15 - 000002406 _____ C:\Users\NightRider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2020-03-15 00:17 - 2020-02-12 00:56 - 000000000 ____D C:\Users\NightRider\AppData\Local\ElevatedDiagnostics
      2020-03-13 02:38 - 2020-01-04 00:38 - 000000000 ____D C:\Users\NightRider\AppData\LocalLow\uTorrent
      2020-03-13 02:24 - 2020-01-04 00:38 - 000000000 ____D C:\Users\NightRider\AppData\Local\BitTorrentHelper
      2020-03-12 02:54 - 2020-01-05 23:15 - 000012201 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
      2020-03-10 22:15 - 2020-01-03 21:17 - 000000000 __RHD C:\Users\Public\AccountPictures
      2020-03-10 22:15 - 2020-01-03 21:17 - 000000000 ___RD C:\Users\NightRider\AppData\3D Objects
      2020-03-10 22:14 - 2020-02-19 23:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
      2020-03-10 22:14 - 2020-01-03 23:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
      2020-03-10 22:13 - 2019-03-19 07:52 - 000000000 ___SD C:\Windows\system32\DiagSvcs
      2020-03-10 22:13 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
      2020-03-10 22:13 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
      2020-03-10 22:13 - 2019-03-19 07:52 - 000000000 ____D C:\Windows\system32\Dism
      2020-03-10 22:13 - 2019-03-19 07:37 - 000000000 ____D C:\Windows\servicing
      2020-03-10 22:12 - 2020-01-03 22:19 - 000000000 ____D C:\Windows\system32\MRT
      2020-03-10 22:09 - 2020-01-03 22:19 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
      2020-03-09 17:47 - 2020-01-03 23:23 - 000000000 ____D C:\Program Files\CCleaner
      2020-03-09 16:32 - 2020-02-23 19:48 - 000000000 ____D C:\ProgramData\boost_interprocess
      ==================== SigCheck ============================
      (There is no automatic fix for files that do not pass verification.)
      ==================== End of FRST.txt ========================
      Addition.txt
  • Дарение

×
×
  • Добави ново...