#microsoft | #microsoftsecurity | Possible infection in system memory


I am concerned that I have some sort of malware installed on my Windows 10 laptop. I have run a bunch of different scans, which initially showed a few things that were deleted or fixed but nothing that appeared super troubling to me. Recent scans from several sources (Kapersky, Microsoft Security Scanner, Malwarebytes, etc.) showed nothing.

 

However, I am concerned that something is operating out of the system memory that the scanners are not detecting. I do not find anything particularly odd going on with my computer, but there are some processes that I don’t understand that seem to be running a lot for no reason. Most of them are legitimate Windows services, but I’m concerned they’ve been hijacked somehow.

 

I am very grateful for your volunteer services and any help you can provide. The Farbar logs are below.

 

Thanks!

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-11-2020
Ran by ashga (administrator) on DESKTOP-KD6NLGI (Dell Inc. Inspiron 15-3567) (20-11-2020 10:43:08)
Running from C:UsersashgaDownloads
Loaded Profiles: ashga
Platform: Windows 10 Home Version 1903 18362.1139 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:Program FilesSASHomeSASTextAnalyticsDocumentConversion14.3_tgwinsvc_wrapper.exe
(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe
(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
(Azul Systems, Inc. -> Azul Systems Inc.) C:Program FilesSASHomeSASPrivateJavaRuntimeEnvironment9.4jrebinjava.exe
(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.36.32GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.36.32GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:WindowsSystem32IntelDPTFdptf_helper.exe
(Intel Corporation -> Intel Corporation) C:WindowsSystem32IntelDPTFesif_uf.exe
(Intel® Corporation -> Intel Corporation) C:Program FilesIntelIntelSGXPSWbinx64Releaseaesm_service.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:Program Files (x86)IntelIntel® Management Engine ComponentsLMSLMS.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorydal.inf_amd64_ffc75848a6342fdfjhi_service.exe
(Intel® pGFX -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryk127153.inf_amd64_3f3936d8dec668b8igfxCUIService.exe
(Intel® pGFX -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryk127153.inf_amd64_3f3936d8dec668b8igfxEM.exe
(Intel® pGFX -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryk127153.inf_amd64_3f3936d8dec668b8IntelCpHDCPSvc.exe
(Intel® pGFX -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryk127153.inf_amd64_3f3936d8dec668b8IntelCpHeciSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorDataMgrSvc.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Password Manager 9.0.2kpm_tray.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky VPN 5.2ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky VPN 5.2ksdeui.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:WindowsMicrosoft.NETFramework64v3.0WPFPresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSysWOW64wbemWmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows ® Win 7 DDK provider) C:WindowsSystem32driversAdminService.exe
(Mozilla Corporation -> Mozilla Corporation) C:Program FilesMozilla Firefoxfirefox.exe <7>
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:Program FilesNorton SecurityEngine22.20.5.39nsWscSvc.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:Program FilesCCleanerCCleaner64.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:WindowsSystem32driversQcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVBg64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPHelper.exe
(Waves Inc -> Waves Audio Ltd.) C:Program FilesWavesMaxxAudioWavesSysSvc64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Run: [RTHDVCPL] => C:Program FilesRealtekAudioHDARtkNGUI64.exe [9269328 2019-01-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM…Run: [RtHDVBg_PushButton] => C:Program FilesRealtekAudioHDARAVBg64.exe [1506384 2019-01-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM…Run: [IAStorIcon] => C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorIcon.exe [320568 2016-09-20] (Intel® Rapid Storage Technology -> Intel Corporation)
HKLM…Run: [WavesSvc] => C:Program FilesWavesMaxxAudioWavesSvc64.exe [1213736 2018-11-04] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32…Run: [TeamsMachineUninstallerLocalAppData] => C:UsersashgaAppDataLocalMicrosoftTeamsUpdate.exe [2452136 2020-08-23] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32…Run: [TeamsMachineUninstallerProgramData] => %ProgramData%MicrosoftTeamsUpdate.exe –uninstall –msiUninstall –source=default
HKLMSOFTWAREPoliciesMicrosoftWindows Defender: Restriction <==== ATTENTION
HKUS-1-5-21-1516808618-3078812445-3043477306-1001…Run: [CCleaner Smart Cleaning] => C:Program FilesCCleanerCCleaner64.exe [30870200 2020-09-21] (Piriform Software Ltd -> Piriform Software Ltd)
HKLMSoftwareMicrosoftActive SetupInstalled Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:Program Files (x86)GoogleChromeApplication87.0.4280.66Installerchrmstp.exe [2020-11-20] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D50DA12-44E5-44E2-9B87-B963FD644213} – System32TasksMicrosoftOfficeOffice Automatic Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [22855048 2020-10-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E87A6D7-F6E9-4EDF-A92E-D19979C6C48A} – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {3092B3A4-C83C-4FC4-B3B4-524E9719958B} – System32TasksCCleaner Update => C:Program FilesCCleanerCCUpdate.exe [686384 2020-09-21] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {555C84AA-4846-44DA-9C7A-ABB23C376F8F} – System32Taskskpm_tray.exe => C:Program Files (x86)Kaspersky LabKaspersky Password Manager 9.0.2kpm_tray.exe [607616 2020-08-24] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {5A1CC10A-B3E4-43D6-BD3B-F7C1F646E26A} – System32TasksNorton WSC Integration => C:Program FilesNorton SecurityEngine22.20.5.39WSCStub.exe [644608 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {6D8DDF9D-C692-4661-9130-0105EE5C3D1D} – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153168 2018-02-16] (Google Inc -> Google Inc.)
Task: {73E5686A-80AE-43A3-8685-EC861234F0E7} – System32TasksMicrosoftOfficeOffice Feature Updates => C:Program Files (x86)Microsoft OfficerootOffice16sdxhelper.exe [117584 2020-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {82E47223-8E4A-4323-AB6A-5BC660F16B6E} – System32TasksCCleanerSkipUAC => C:Program FilesCCleanerCCleaner.exe [25492152 2020-09-21] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8C06F432-AED5-456C-A4BE-A0D8E647B9A7} – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [22855048 2020-10-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {98EE0476-B20E-41BE-A7C8-05B20E2AB02C} – System32TasksMozillaFirefox Default Browser Agent 308046B0AF4A39CB => C:Program FilesMozilla Firefoxdefault-browser-agent.exe [667856 2020-11-19] (Mozilla Corporation -> Mozilla Foundation)
Task: {A7362686-5AF1-4D54-A94A-0E48AE9FF15D} – System32TasksOneDrive Standalone Update Task-S-1-5-21-1516808618-3078812445-3043477306-1008 => C:UsersashgaAppDataLocalMicrosoftOneDriveOneDriveStandaloneUpdater.exe
Task: {B179E319-D152-43F8-93B2-B302AD03105F} – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {C9F67803-1359-4EA7-A403-5975795F9F5F} – System32TasksMicrosoftWindowsremplshell-usoscan => C:Program Filesremplremsh.exe
Task: {F24216EF-B43A-425F-AD17-2E603F3D1BE5} – System32TasksMicrosoftOfficeOffice Feature Updates Logon => C:Program Files (x86)Microsoft OfficerootOffice16sdxhelper.exe [117584 2020-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {FD177B29-C7A5-45CE-979D-97B91353E256} – System32TasksKaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:Program FilesCommon FilesAVKaspersky Labupgrade_launcher.exe [791232 2020-10-09] (Kaspersky Lab -> AO Kaspersky Lab)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

TcpipParameters: [DhcpNameServer] 161.6.94.105 161.6.94.106 52.25.213.14
Tcpip..Interfaces{0b6801bd-7f68-441e-bc65-cf4120a8c055}: [DhcpNameServer] 192.168.0.1
Tcpip..Interfaces{8dc64d1d-2681-4679-8d66-2efe886e4d47}: [DhcpNameServer] 8.8.8.8 8.8.4.4 209.55.27.13
Tcpip..Interfaces{a0307a3a-542f-40d8-b001-fc0d8ee35e13}: [DhcpNameServer] 172.20.1.1
Tcpip..Interfaces{c6a52d4f-2c65-4985-b363-8d750084c8a5}: [DhcpNameServer] 161.6.94.105 161.6.94.106 52.25.213.14

Edge:
======
Edge Profile: C:UsersashgaAppDataLocalMicrosoftEdgeUser DataDefault [2020-10-16]
Edge HKUS-1-5-21-1516808618-3078812445-3043477306-1001SOFTWAREMicrosoftEdgeExtensions…EdgeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF DefaultProfile: 38o5w32u.default
FF ProfilePath: C:UsersashgaAppDataRoamingMozillaFirefoxProfiles38o5w32u.default [2020-08-15]
FF ProfilePath: C:UsersashgaAppDataRoamingMozillaFirefoxProfilesfoe3v0qp.default-release [2020-11-20]
FF HKLM…FirefoxExtensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] – C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1FFExtlight_plugin_firefoxaddon.xpi => not found
FF HKLM-x32…FirefoxExtensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] – C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1FFExtlight_plugin_firefoxaddon.xpi => not found
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX86Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2020-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:Program Files (x86)Microsoft OfficerootOffice16NPSPWRAP.DLL [2020-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2020-10-22] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:Program Filesmozilla firefoxdefaultsprefkl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-10-06] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:Program Filesmozilla firefoxkl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-10-06] <==== ATTENTION

Chrome:
=======
CHR Profile: C:UsersashgaAppDataLocalGoogleChromeUser DataDefault [2020-10-26]
CHR Extension: (Slides) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2018-02-16]
CHR Extension: (Kaspersky Protection) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsahkjpbeeocnddjkakilopmfdlnjdpcdm [2020-10-26]
CHR Extension: (Docs) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2018-02-16]
CHR Extension: (Google Drive) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-16]
CHR Extension: (Norton Security Toolbar) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionscjabmdjcfcfdmffimndhafhblfmpjdpe [2019-05-19]
CHR Extension: (Sheets) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2018-02-16]
CHR Extension: (Google Docs Offline) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-26]
CHR Extension: (Norton Identity Safe) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsiikflkcanblccfahdhdonehdalibjnif [2018-02-16]
CHR Extension: (Application Launcher for Drive (by Google)) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionslmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-26]
CHR Extension: (Chrome Web Store Payments) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2020-08-14]
CHR Extension: (Gmail) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2020-10-26]
CHR Extension: (Chrome Media Router) – C:UsersashgaAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-09]
CHR HKLM…ChromeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps://chrome.google.com/webstore/detail/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM…ChromeExtension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] – C:Program FilesNorton SecurityEngine22.20.5.39ExtsChrome.crx <not found>
CHR HKLM…ChromeExtension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKUS-1-5-21-1516808618-3078812445-3043477306-1001SOFTWAREGoogleChromeExtensions…ChromeExtension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32…ChromeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps://chrome.google.com/webstore/detail/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32…ChromeExtension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] – C:Program FilesNorton SecurityEngine22.20.5.39ExtsChrome.crx <not found>
CHR HKLM-x32…ChromeExtension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32…ChromeExtension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 AVP21.1; C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1avp.exe [381968 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [8945512 2020-10-08] (Microsoft Corporation -> Microsoft Corporation)
S3 klvssbridge64_21.1; C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64vssbridge64.exe [436168 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
S3 kpm_launch_service; C:Program Files (x86)Kaspersky LabKaspersky Password Manager 9.0.2kpm_service.exe [351480 2020-08-24] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.2; C:Program Files (x86)Kaspersky LabKaspersky VPN 5.2ksde.exe [644264 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [7185288 2020-10-21] (Malwarebytes Inc -> Malwarebytes)
S2 NortonSecurity; C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe [344760 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:Program FilesNorton SecurityEngine22.20.5.39nsWscSvc.exe [1056096 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R2 SAS Document Conversion Server; C:Program FilesSASHomeSASTextAnalyticsDocumentConversion14.3_tgwinsvc_wrapper.exe [19968 2013-03-24] () [File not signed]
S2 SAS PC Files Server; C:Program FilesSASHomex86SASPCFilesServer9.4pcfservice.exe [427168 2017-09-13] (SAS Institute Inc. -> )
S3 WdNisSvc; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2009.7-0NisSrv.exe [2372048 2020-10-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2009.7-0MsMpEng.exe [128376 2020-10-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 DellClientManagementService; “C:Program Files (x86)DellUpdateServiceServiceShell.exe” [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:WINDOWSSystem32driversAppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BHDrvx64; C:Program FilesNorton SecurityNortonData22.12.0.104DefinitionsBASHDefs20190806.001BHDrvx64.sys [1935880 2019-08-06] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:WINDOWSSystem32driversNGCx641614050.027ccSetx64.sys [192248 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R0 cm_km; C:WINDOWSSystem32DRIVERScm_km.sys [248504 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
S3 DellProf; C:WINDOWSsystem32driversDellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R1 eeCtrl; C:Program Files (x86)Common FilesSymantec SharedEENGINEeeCtrl64.sys [515592 2019-06-08] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:Program Files (x86)Common FilesSymantec SharedEENGINEEraserUtilRebootDrv.sys [153096 2019-06-11] (Symantec Corporation -> Symantec Corporation)
R1 IDSVia64; C:Program FilesNorton SecurityNortonData22.12.0.104DefinitionsIPSDefs20190808.061IDSvia64.sys [1451016 2019-08-08] (Symantec Corporation -> Symantec Corporation)
R1 klbackupdisk; C:WINDOWSsystem32DRIVERSklbackupdisk.sys [104712 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:WINDOWSSystem32DRIVERSklbackupflt.sys [205048 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:WINDOWSsystem32DRIVERSkldisk.sys [121088 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:WINDOWSSystem32DRIVERSklelam.sys [37496 2020-06-29] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:WINDOWSsystem32DRIVERSklflt.sys [509184 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:WINDOWSSystem32DRIVERSklgse.sys [659768 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:WINDOWSsystem32DRIVERSklhk.sys [1341232 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klids; C:ProgramDataKaspersky LabAVP21.1Basesklids.sys [244768 2020-11-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:WINDOWSSystem32DRIVERSklif.sys [984320 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:WINDOWSsystem32DRIVERSklim6.sys [87808 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:WINDOWSsystem32DRIVERSklkbdflt.sys [106768 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:WINDOWSsystem32DRIVERSklmouflt.sys [106752 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:WINDOWSSystem32DRIVERSklpd.sys [79104 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpnpflt; C:WINDOWSsystem32DRIVERSklpnpflt.sys [90368 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:WINDOWSSystem32driverskltap.sys [55592 2020-06-29] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:WINDOWSSystem32Driversklupd_klif_arkmon.sys [257208 2020-11-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:WINDOWSSystem32Driversklupd_klif_kimul.sys [99152 2020-10-09] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:WINDOWSSystem32Driversklupd_klif_klark.sys [310232 2020-11-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:WINDOWSSystem32Driversklupd_klif_klbg.sys [117456 2020-11-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:WINDOWSSystem32Driversklupd_klif_mark.sys [207352 2020-11-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:WINDOWSsystem32DRIVERSklwfp.sys [133888 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:WINDOWSsystem32DRIVERSklwtp.sys [242944 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:WINDOWSsystem32DRIVERSkneps.sys [279824 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MBAMChameleon; C:WINDOWSSystem32DriversMbamChameleon.sys [218112 2020-11-20] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:WINDOWSSystem32DRIVERSMbamElam.sys [19912 2020-10-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:WINDOWSSystem32Driversmbamswissarmy.sys [248968 2020-10-21] (Malwarebytes Inc -> Malwarebytes)
S3 SmbCoSvc; C:WINDOWSsystem32DRIVERSSmbCo10X64.sys [164424 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 SRTSP; C:WINDOWSSystem32driversNGCx641614050.027SRTSP64.SYS [889704 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:WINDOWSSystem32driversNGCx641614050.027SRTSPX64.SYS [50920 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:WINDOWSSystem32driversNGCx641614050.027SYMEFASI64.SYS [1964384 2020-07-23] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:WINDOWSSystem32driversNGCx641614050.027SymELAM.sys [25080 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:WINDOWSsystem32DriversSYMEVENT64x86.SYS [99848 2019-05-20] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; C:Program FilesNorton SecurityNortonData22.12.0.104SymPlatformSymEvnt.sys [717832 2019-07-15] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:WINDOWSSystem32driversNGCx641614050.027Ironx64.SYS [316488 2020-07-23] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:WINDOWSSystem32driversNGCx641614050.027symnets.sys [575328 2020-07-23] (Symantec Corporation -> Symantec Corporation)
S3 WdBoot; C:WINDOWSsystem32driverswdWdBoot.sys [48536 2020-10-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:WINDOWSsystem32driverswdWdFilter.sys [428264 2020-10-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [69864 2020-10-09] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:WINDOWSSystem32driversNGCx641614050.027wpCtrlDrv.sys [1013792 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S4 DpmLiteDrv; ??c:Program FilesDellQuickSetDpmLiteDrv64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-20 10:43 – 2020-11-20 10:44 – 000024846 _____ C:UsersashgaDownloadsFRST.txt
2020-11-20 10:42 – 2020-11-20 10:43 – 000000000 ____D C:FRST
2020-11-20 10:41 – 2020-11-20 10:41 – 002294784 _____ (Farbar) C:UsersashgaDownloadsFRST64.exe
2020-11-20 10:31 – 2020-11-20 10:31 – 000002138 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAcrobat Reader DC.lnk
2020-11-20 10:04 – 2020-11-20 10:04 – 000218112 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamChameleon.sys
2020-11-20 09:49 – 2020-11-20 09:49 – 000001167 _____ C:UsersPublicDesktopKaspersky VPN.lnk
2020-11-20 09:49 – 2020-11-20 09:49 – 000001167 _____ C:ProgramDataDesktopKaspersky VPN.lnk
2020-11-20 09:49 – 2020-11-20 09:49 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPN
2020-11-19 14:15 – 2020-11-20 10:24 – 000000000 ____D C:Program FilesRogueKiller
2020-11-19 14:14 – 2020-11-19 14:14 – 040473968 _____ (Adlice Software ) C:UsersashgaDownloadssetup.exe
2020-11-19 14:13 – 2020-11-19 14:13 – 000000000 ____D C:WINDOWSsystem32TasksMozilla
2020-11-19 14:12 – 2020-11-20 10:02 – 000000000 ____D C:Program FilesMozilla Firefox
2020-11-19 14:10 – 2020-11-19 14:11 – 000130636 _____ C:TDSSKiller.3.1.0.28_19.11.2020_14.10.38_log.txt
2020-11-19 14:10 – 2020-11-19 14:10 – 005054744 _____ (AO Kaspersky Lab) C:UsersashgaDownloadstdsskiller.exe
2020-11-11 12:49 – 2020-11-11 12:49 – 155077056 _____ (Microsoft Corporation) C:UsersashgaDownloadsMSERT.exe
2020-11-09 13:09 – 2020-11-09 13:09 – 000000000 ____D C:UsersashgaDesktopAutoruns
2020-11-09 12:40 – 2020-11-17 14:04 – 000036200 _____ (Sysinternals – www.sysinternals.com) C:WINDOWSsystem32DriversPROCEXP152.SYS
2020-11-09 12:35 – 2020-11-09 12:35 – 000000000 ____D C:UsersashgaDesktopProcessExplorer
2020-11-06 10:07 – 2020-11-06 10:07 – 000310232 _____ (AO Kaspersky Lab) C:WINDOWSsystem32Driversklupd_klif_klark.sys
2020-11-06 10:06 – 2020-11-17 09:37 – 000207352 _____ (AO Kaspersky Lab) C:WINDOWSsystem32Driversklupd_klif_mark.sys
2020-11-06 10:06 – 2020-11-06 10:06 – 000257208 _____ (AO Kaspersky Lab) C:WINDOWSsystem32Driversklupd_klif_arkmon.sys
2020-11-06 10:06 – 2020-11-06 10:06 – 000117456 _____ (AO Kaspersky Lab) C:WINDOWSsystem32Driversklupd_klif_klbg.sys
2020-11-05 13:48 – 2020-11-17 13:37 – 000867256 _____ C:WINDOWSsystem32PerfStringBackup.INI
2020-10-23 09:17 – 2020-10-29 09:23 – 000001000 _____ C:WINDOWSntbtlog.txt
2020-10-21 12:37 – 2020-10-21 12:37 – 000248968 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbamswissarmy.sys
2020-10-21 12:37 – 2020-10-21 12:37 – 000002043 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk
2020-10-21 12:37 – 2020-10-21 12:37 – 000002031 _____ C:UsersPublicDesktopMalwarebytes.lnk
2020-10-21 12:37 – 2020-10-21 12:37 – 000002031 _____ C:ProgramDataDesktopMalwarebytes.lnk
2020-10-21 12:37 – 2020-10-21 12:36 – 000153312 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbae64.sys
2020-10-21 12:37 – 2020-10-21 12:36 – 000019912 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamElam.sys
2020-10-21 12:36 – 2020-10-21 12:36 – 000000000 ____D C:Program FilesMalwarebytes
2020-10-21 12:35 – 2020-10-21 12:35 – 002062144 _____ (Malwarebytes) C:UsersashgaDownloadsMBSetup.exe
2020-10-21 11:54 – 2020-10-21 11:54 – 001802704 _____ (Bleeping Computer, LLC) C:UsersashgaDownloadsrkill.exe
2020-10-21 11:54 – 2020-10-21 11:54 – 000988112 _____ (Bleeping Computer, LLC) C:UsersashgaDownloadsrkill64.exe
2020-10-21 10:06 – 2020-10-05 18:13 – 000835472 _____ (Adobe) C:WINDOWSSysWOW64FlashPlayerApp.exe
2020-10-21 10:06 – 2020-10-05 18:13 – 000179608 _____ (Adobe) C:WINDOWSSysWOW64FlashPlayerCPLApp.cpl
2020-10-21 09:45 – 2020-10-21 09:45 – 011630080 _____ (Microsoft Corporation) C:WINDOWSsystem32wmp.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 009728512 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wmp.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 005507072 _____ (Microsoft Corporation) C:WINDOWSsystem32cdp.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 004310016 _____ (Microsoft Corporation) C:WINDOWSSysWOW64cdp.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000943616 _____ (Microsoft Corporation) C:WINDOWSsystem32fveapi.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000839680 _____ (Microsoft Corporation) C:WINDOWSsystem32fvewiz.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000800576 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversfvevol.sys
2020-10-21 09:45 – 2020-10-21 09:45 – 000724992 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fveapi.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000711168 _____ (Microsoft Corporation) C:WINDOWSsystem32AppReadiness.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000409088 _____ (Microsoft Corporation) C:WINDOWSsystem32fveapibase.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000340992 _____ (Microsoft Corporation) C:WINDOWSsystem32fvecpl.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000339456 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fveapibase.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000333824 _____ (Microsoft Corporation) C:WINDOWSsystem32fveui.dll
2020-10-21 09:45 – 2020-10-21 09:45 – 000093112 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversdumpfve.sys
2020-10-21 09:44 – 2020-10-21 09:44 – 032928928 _____ (Microsoft Corporation) C:WINDOWSsystem32WindowsCodecsRaw.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 031599448 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WindowsCodecsRaw.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 025445888 _____ (Microsoft Corporation) C:WINDOWSsystem32Hydrogen.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 019852288 _____ (Microsoft Corporation) C:WINDOWSSysWOW64edgehtml.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 019812864 _____ (Microsoft Corporation) C:WINDOWSsystem32HologramWorld.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 018035200 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mshtml.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 007012864 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mstscax.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 006307840 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ieframe.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 005008896 _____ (Microsoft Corporation) C:WINDOWSsystem32MFMediaEngine.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 004547072 _____ (Microsoft Corporation) C:WINDOWSsystem32DHolographicDisplay.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 004129416 _____ (Microsoft Corporation) C:WINDOWSsystem32mfcore.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 003635712 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MFMediaEngine.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 003525600 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mfcore.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 003507200 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msi.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 003365376 _____ (Microsoft Corporation) C:WINDOWSSysWOW64xpsrchvw.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 003243080 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Mirage.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 002950264 _____ (Microsoft Corporation) C:WINDOWSsystem32mfmp4srcsnk.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 002588688 _____ (Microsoft Corporation) C:WINDOWSsystem32WMVDECOD.DLL
2020-10-21 09:44 – 2020-10-21 09:44 – 002495248 _____ (Microsoft Corporation) C:WINDOWSsystem32msmpeg2vdec.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 002422400 _____ (Microsoft Corporation) C:WINDOWSsystem32WMVCORE.DLL
2020-10-21 09:44 – 2020-10-21 09:44 – 002315984 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msmpeg2vdec.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 002259192 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WMVDECOD.DLL
2020-10-21 09:44 – 2020-10-21 09:44 – 002230224 _____ (Microsoft Corporation) C:WINDOWSsystem32mfasfsrcsnk.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 002138264 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WMVCORE.DLL
2020-10-21 09:44 – 2020-10-21 09:44 – 001869696 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mfmp4srcsnk.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001783984 _____ (Microsoft Corporation) C:WINDOWSsystem32winmde.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001615360 _____ (Microsoft Corporation) C:WINDOWSsystem32HologramCompositor.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001506112 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wsp_fs.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001298752 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wsp_health.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001272160 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mfasfsrcsnk.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001249792 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mstsc.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 001151816 _____ (Microsoft Corporation) C:WINDOWSsystem32mfmpeg2srcsnk.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001099608 _____ (Microsoft Corporation) C:WINDOWSsystem32mfds.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001098728 _____ (Microsoft Corporation) C:WINDOWSsystem32DolbyDecMFT.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 001012784 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mfmpeg2srcsnk.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000891904 _____ (Microsoft Corporation) C:WINDOWSsystem32HolographicExtensions.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000868352 _____ (Microsoft Corporation) C:WINDOWSSysWOW64imapi2fs.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000855552 _____ (Microsoft Corporation) C:WINDOWSSysWOW64autoconv.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 000834560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64autofmt.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 000807424 _____ (Microsoft Corporation) C:WINDOWSSysWOW64clusapi.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000748384 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mfds.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000701440 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Mirage.Internal.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000692224 _____ (Microsoft Corporation) C:WINDOWSSysWOW64jscript.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000689152 _____ (Microsoft Corporation) C:WINDOWSSysWOW64CPFilters.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000609280 _____ (Microsoft Corporation) C:WINDOWSSysWOW64nshwfp.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000516544 _____ (Microsoft Corporation) C:WINDOWSsystem32mf.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000515584 _____ (Microsoft Corporation) C:WINDOWSSysWOW64gpedit.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000498176 _____ (Microsoft Corporation) C:WINDOWSsystem32HolographicRuntimes.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000477696 _____ (Microsoft Corporation) C:WINDOWSSysWOW64resutils.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000430592 _____ (Microsoft Corporation) C:WINDOWSSysWOW64werui.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000376320 _____ (Microsoft Corporation) C:WINDOWSSysWOW64tracerpt.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 000374784 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ieproxy.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000353792 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msrd3x40.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000294400 _____ (Microsoft Corporation) C:WINDOWSsystem32SettingsHandlers_AnalogShell.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000186880 _____ (Microsoft Corporation) C:WINDOWSSysWOW64DWWIN.EXE
2020-10-21 09:44 – 2020-10-21 09:44 – 000175616 _____ (Microsoft Corporation) C:WINDOWSSysWOW64IndexedDbLegacy.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000127488 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fdWSD.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000097280 _____ (Microsoft Corporation) C:WINDOWSSysWOW64logman.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 000089088 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fdSSDP.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000063488 _____ (Microsoft Corporation) C:WINDOWSSysWOW64iemigplugin.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000050688 _____ (Microsoft Corporation) C:WINDOWSSysWOW64tsgqec.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000045568 _____ (Microsoft Corporation) C:WINDOWSSysWOW64relog.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 000041984 _____ (Microsoft Corporation) C:WINDOWSSysWOW64typeperf.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 000026112 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msimsg.dll
2020-10-21 09:44 – 2020-10-21 09:44 – 000025088 _____ (Microsoft Corporation) C:WINDOWSSysWOW64gpupdate.exe
2020-10-21 09:44 – 2020-10-21 09:44 – 000021504 _____ (Microsoft Corporation) C:WINDOWSSysWOW64diskperf.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 022646784 _____ (Microsoft Corporation) C:WINDOWSsystem32mshtml.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 014818304 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.UI.Xaml.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 008010752 _____ (Microsoft Corporation) C:WINDOWSsystem32mstscax.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 007289344 _____ (Microsoft Corporation) C:WINDOWSsystem32ieframe.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 006525952 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Media.Protection.PlayReady.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 005768256 _____ (Microsoft Corporation) C:WINDOWSSysWOW64shell32.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 005112320 _____ (Microsoft Corporation) C:WINDOWSSysWOW64twinui.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 004608512 _____ (Microsoft Corporation) C:WINDOWSsystem32msi.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 004348928 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Mirage.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 002799616 _____ (Microsoft Corporation) C:WINDOWSSysWOW64win32kfull.sys
2020-10-21 09:43 – 2020-10-21 09:43 – 002740736 _____ (Microsoft Corporation) C:WINDOWSSysWOW64directml.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 002585024 _____ (Microsoft Corporation) C:WINDOWSSysWOW64combase.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 002491032 _____ (Microsoft Corporation) C:WINDOWSSysWOW64CoreUIComponents.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 002262784 _____ (Microsoft Corporation) C:WINDOWSSysWOW64iertutil.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 002227512 _____ (Microsoft Corporation) C:WINDOWSsystem32ResetEngine.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 002133312 _____ (Microsoft Corporation) C:WINDOWSsystem32wsp_fs.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001958072 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msxml6.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001916752 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AudioEng.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001789752 _____ (Microsoft Corporation) C:WINDOWSsystem32wsp_health.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001751040 _____ (Microsoft Corporation) C:WINDOWSSysWOW64InstallService.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001686016 _____ (Microsoft Corporation) C:WINDOWSSysWOW64urlmon.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001672552 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.ApplicationModel.Store.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001665728 _____ (Microsoft Corporation) C:WINDOWSSysWOW64user32.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001664688 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ntdll.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001617088 _____ (Microsoft Corporation) C:WINDOWSSysWOW64d3d9.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001593344 _____ (Microsoft Corporation) C:WINDOWSSysWOW64aadtb.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001564984 _____ (Microsoft Corporation) C:WINDOWSSysWOW64rdpserverbase.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001523712 _____ (Microsoft Corporation) C:WINDOWSsystem32mstsc.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 001521664 _____ (Microsoft Corporation) C:WINDOWSSysWOW64dbghelp.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001477120 _____ (Microsoft Corporation) C:WINDOWSSysWOW64dcomp.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001459712 _____ (Microsoft Corporation) C:WINDOWSSysWOW64GdiPlus.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001436032 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msvbvm60.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001421392 _____ (Microsoft Corporation) C:WINDOWSSysWOW64gdi32full.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001397568 _____ (Microsoft Corporation) C:WINDOWSsystem32hvix64.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 001335608 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ttdrecordcpu.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001327616 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msxml3.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001285120 _____ (Microsoft Corporation) C:WINDOWSsystem32werconcpl.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001265152 _____ (Microsoft Corporation) C:WINDOWSSysWOW64rdpsharercom.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001246208 _____ (Microsoft Corporation) C:WINDOWSSysWOW64TokenBroker.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001218048 _____ (Microsoft Corporation) C:WINDOWSsystem32reseteng.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001214976 _____ (Microsoft Corporation) C:WINDOWSsystem32sdclt.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 001214464 _____ (Microsoft Corporation) C:WINDOWSsystem32sdengin2.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001182744 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ucrtbase.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001154440 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AudioSes.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001139200 _____ (Microsoft Corporation) C:WINDOWSsystem32nettrace.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001084928 _____ (Microsoft Corporation) C:WINDOWSsystem32clusapi.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001077056 _____ (Microsoft Corporation) C:WINDOWSsystem32hvax64.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 001053120 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msctf.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 001000960 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Mirage.Internal.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000992256 _____ (Microsoft Corporation) C:WINDOWSsystem32imapi2fs.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000986112 _____ (Microsoft Corporation) C:WINDOWSsystem32Spectrum.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000936448 _____ (Microsoft Corporation) C:WINDOWSsystem32autoconv.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000910336 _____ (Microsoft Corporation) C:WINDOWSsystem32autofmt.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000907072 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ReAgent.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000896512 _____ (Microsoft Corporation) C:WINDOWSsystem32RecoveryDrive.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000894024 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WinTypes.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000882688 _____ (Microsoft Corporation) C:WINDOWSsystem32CPFilters.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000877056 _____ (Microsoft Corporation) C:WINDOWSSysWOW64autochk.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000871936 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.Security.Authentication.Web.Core.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000864768 _____ (Microsoft Corporation) C:WINDOWSsystem32ieproxy.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000860160 _____ C:WINDOWSsystem32MBR2GPT.EXE
2020-10-21 09:43 – 2020-10-21 09:43 – 000844088 _____ (Microsoft Corporation) C:WINDOWSSysWOW64CloudExperienceHostCommon.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000843776 _____ (Microsoft Corporation) C:WINDOWSsystem32jscript.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000837120 _____ (Microsoft Corporation) C:WINDOWSSysWOW64TpmCoreProvisioning.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000833344 _____ (Microsoft Corporation) C:WINDOWSSysWOW64LicenseManager.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000787456 _____ (Microsoft Corporation) C:WINDOWSSysWOW64kerberos.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000784000 _____ (Microsoft Corporation) C:WINDOWSsystem32tcblaunch.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000776704 _____ (Microsoft Corporation) C:WINDOWSsystem32nshwfp.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000775480 _____ (Microsoft Corporation) C:WINDOWSsystem32securekernel.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000767984 _____ (Microsoft Corporation) C:WINDOWSSysWOW64rpcrt4.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000741696 _____ (Microsoft Corporation) C:WINDOWSSysWOW64DismApi.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000705536 _____ (Microsoft Corporation) C:WINDOWSSysWOW64BTAGService.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000693128 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wer.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000682736 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fontdrvhost.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000675024 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AppXDeploymentClient.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000635904 _____ (Microsoft Corporation) C:WINDOWSSysWOW64apphelp.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000632320 _____ (Microsoft Corporation) C:WINDOWSSysWOW64tdh.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000629248 _____ (Microsoft Corporation) C:WINDOWSSysWOW64SmartcardCredentialProvider.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000628416 _____ (Microsoft Corporation) C:WINDOWSSysWOW64kernel32.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000628032 _____ (Microsoft Corporation) C:WINDOWSSysWOW64LicensingWinRT.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000623616 _____ (Microsoft Corporation) C:WINDOWSsystem32resutils.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000599864 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wimgapi.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000596992 _____ (Microsoft Corporation) C:WINDOWSsystem32vbscript.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000593416 _____ (Microsoft Corporation) C:WINDOWSSysWOW64oleaut32.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000563712 _____ (Microsoft Corporation) C:WINDOWSsystem32gpedit.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000551624 _____ (Microsoft Corporation) C:WINDOWSSysWOW64sxs.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000543744 _____ (Microsoft Corporation) C:WINDOWSsystem32ResourceMapper.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000533504 _____ (Microsoft Corporation) C:WINDOWSSysWOW64vbscript.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000529920 _____ (Microsoft Corporation) C:WINDOWSsystem32nltest.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000513848 _____ (Microsoft Corporation) C:WINDOWSsystem32systemreset.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000512000 _____ (Microsoft Corporation) C:WINDOWSSysWOW64untfs.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000501000 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msvcp_win.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000499200 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Windows.UI.FileExplorer.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000498176 _____ (Microsoft Corporation) C:WINDOWSsystem32werui.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000491008 _____ (Microsoft Corporation) C:WINDOWSSysWOW64cmdial32.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000488568 _____ (Microsoft Corporation) C:WINDOWSsystem32ucrtbase_enclave.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000474432 _____ (Microsoft Corporation) C:WINDOWSSysWOW64aepic.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000468944 _____ (Microsoft Corporation) C:WINDOWSSysWOW64policymanager.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000453944 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WerFault.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000422000 _____ (Microsoft Corporation) C:WINDOWSsystem32SgrmEnclave_secure.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000415744 _____ (Microsoft Corporation) C:WINDOWSsystem32tracerpt.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000405936 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Faultrep.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000375504 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AUDIOKSE.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000350208 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MicrosoftAccountWAMExtension.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000336384 _____ (Microsoft Corporation) C:WINDOWSSysWOW64es.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000328192 _____ (Microsoft Corporation) C:WINDOWSSysWOW64edgeIso.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000324096 _____ (Microsoft Corporation) C:WINDOWSSysWOW64win32k.sys
2020-10-21 09:43 – 2020-10-21 09:43 – 000307712 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wincorlib.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000300704 _____ (Microsoft Corporation) C:WINDOWSsystem32skci.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000287232 _____ (Microsoft Corporation) C:WINDOWSSysWOW64sppcomapi.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000285560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wintrust.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000284504 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ttdwriter.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000279040 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AppxAllUserStore.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000272384 _____ (Microsoft Corporation) C:WINDOWSSysWOW64AppLockerCSP.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000251904 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msIso.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000239104 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mdmregistration.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000236032 _____ (Microsoft Corporation) C:WINDOWSSysWOW64cryptui.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000227840 _____ (Microsoft Corporation) C:WINDOWSsystem32IndexedDbLegacy.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000224768 _____ (Microsoft Corporation) C:WINDOWSsystem32DWWIN.EXE
2020-10-21 09:43 – 2020-10-21 09:43 – 000224568 _____ (Microsoft Corporation) C:WINDOWSSysWOW64Dism.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000213784 _____ (Microsoft Corporation) C:WINDOWSSysWOW64EditionUpgradeManagerObj.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000211256 _____ (Microsoft Corporation) C:WINDOWSsystem32tcbloader.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000204104 _____ (Microsoft Corporation) C:WINDOWSsystem32unattend.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000199992 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wermgr.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000193592 _____ (Microsoft Corporation) C:WINDOWSSysWOW64weretw.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000188224 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ifsutil.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000188208 _____ (Microsoft Corporation) C:WINDOWSsystem32ActionQueue.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000186368 _____ (Microsoft Corporation) C:WINDOWSsystem32ResetEngOnline.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000179712 _____ (Microsoft Corporation) C:WINDOWSSysWOW64InstallServiceTasks.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000176440 _____ (Microsoft Corporation) C:WINDOWSsystem32uxlib.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000168448 _____ (Microsoft Corporation) C:WINDOWSSysWOW64EditionUpgradeHelper.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000166936 _____ (Microsoft Corporation) C:WINDOWSsystem32vertdll.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000164352 _____ (Microsoft Corporation) C:WINDOWSSysWOW64updatepolicy.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000164352 _____ (Microsoft Corporation) C:WINDOWSSysWOW64BitLockerCsp.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000152064 _____ (Microsoft Corporation) C:WINDOWSsystem32fdWSD.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000150328 _____ (Microsoft Corporation) C:WINDOWSSysWOW64WerFaultSecure.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000149304 _____ (Microsoft Corporation) C:WINDOWSSysWOW64ulib.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000148992 _____ (Microsoft Corporation) C:WINDOWSsystem32sdrsvc.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000146432 _____ (Microsoft Corporation) C:WINDOWSSysWOW64spopk.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000144896 _____ (Microsoft Corporation) C:WINDOWSsystem32setupcln.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000143872 _____ (Microsoft Corporation) C:WINDOWSSysWOW64SpatialAudioLicenseSrv.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000141632 _____ (Microsoft Corporation) C:WINDOWSsystem32migisol.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000131072 _____ (Microsoft Corporation) C:WINDOWSSysWOW64srpapi.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000125440 _____ (Microsoft Corporation) C:WINDOWSsystem32wercplsupport.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000125440 _____ (Microsoft Corporation) C:WINDOWSsystem32sdshext.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000124928 _____ (Microsoft Corporation) C:WINDOWSSysWOW64setupcln.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000119808 _____ (Microsoft Corporation) C:WINDOWSsystem32WinHvEmulation.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000118784 _____ (Microsoft Corporation) C:WINDOWSSysWOW64setupugc.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000117208 _____ (Microsoft Corporation) C:WINDOWSSysWOW64userenv.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000114688 _____ (Microsoft Corporation) C:WINDOWSsystem32logman.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000111536 _____ (Microsoft Corporation) C:WINDOWSSysWOW64gpapi.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000108544 _____ (Microsoft Corporation) C:WINDOWSsystem32fdSSDP.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000108032 _____ (Microsoft Corporation) C:WINDOWSsystem32provmigrate.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000107520 _____ (Microsoft Corporation) C:WINDOWSSysWOW64GraphicsCapture.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000099328 _____ (Microsoft Corporation) C:WINDOWSSysWOW64fontsub.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000093512 _____ (Microsoft Corporation) C:WINDOWSsystem32hvloader.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000089336 _____ (Microsoft Corporation) C:WINDOWSSysWOW64win32u.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000084280 _____ (Microsoft Corporation) C:WINDOWSsystem32Drivershvservice.sys
2020-10-21 09:43 – 2020-10-21 09:43 – 000072824 _____ (Microsoft Corporation) C:WINDOWSSysWOW64remoteaudioendpoint.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000068416 _____ (Microsoft Corporation) C:WINDOWSSysWOW64DeviceReactivation.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000065536 _____ (Microsoft Corporation) C:WINDOWSsystem32iemigplugin.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000063488 _____ (Microsoft Corporation) C:WINDOWSsystem32tsgqec.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000060416 _____ (Microsoft Corporation) C:WINDOWSSysWOW64cryptext.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000054720 _____ (Microsoft Corporation) C:WINDOWSSysWOW64appidapi.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000054272 _____ (Microsoft Corporation) C:WINDOWSSysWOW64TokenBrokerUI.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000053760 _____ (Microsoft Corporation) C:WINDOWSsystem32relog.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000051632 _____ (Microsoft Corporation) C:WINDOWSSysWOW64kernel.appcore.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000049152 _____ (Microsoft Corporation) C:WINDOWSSysWOW64tbauth.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000048128 _____ (Microsoft Corporation) C:WINDOWSsystem32typeperf.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000038912 _____ (Microsoft Corporation) C:WINDOWSSysWOW64werdiagcontroller.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000033280 _____ (Microsoft Corporation) C:WINDOWSSysWOW64LaunchWinApp.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000030208 _____ (Microsoft Corporation) C:WINDOWSsystem32gpupdate.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000029696 _____ (Microsoft Corporation) C:WINDOWSSysWOW64sxstrace.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000029184 _____ (Microsoft Corporation) C:WINDOWSSysWOW64TokenBrokerCookies.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000026112 _____ (Microsoft Corporation) C:WINDOWSsystem32msimsg.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000025088 _____ (Microsoft Corporation) C:WINDOWSsystem32diskperf.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000021312 _____ (Microsoft Corporation) C:WINDOWSsystem32kdhvcom.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000020992 _____ (Microsoft Corporation) C:WINDOWSSysWOW64sdbinst.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000020992 _____ (Microsoft Corporation) C:WINDOWSSysWOW64appidtel.exe
2020-10-21 09:43 – 2020-10-21 09:43 – 000012800 _____ (Microsoft Corporation) C:WINDOWSSysWOW64d3d8thk.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000011776 _____ (Microsoft Corporation) C:WINDOWSSysWOW64dciman32.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000005632 _____ (Microsoft Corporation) C:WINDOWSSysWOW64shimeng.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000003584 _____ (Microsoft Corporation) C:WINDOWSSysWOW64TpmCertResources.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000002560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64tzres.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000002560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msxml6r.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000002560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64msxml3r.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000002560 _____ (Microsoft Corporation) C:WINDOWSSysWOW64lpk.dll
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth9.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth8.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth7.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth6.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth5.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth4.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth3.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth2.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth12.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth11.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth10.bin
2020-10-21 09:43 – 2020-10-21 09:43 – 000000315 _____ C:WINDOWSsystem32DrtmAuth1.bin
2020-10-21 09:42 – 2020-10-21 09:42 – 009924928 _____ (Microsoft Corporation) C:WINDOWSsystem32ntoskrnl.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 007604576 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Media.Protection.PlayReady.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 007271752 _____ (Microsoft Corporation) C:WINDOWSsystem32shell32.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 006437376 _____ (Microsoft Corporation) C:WINDOWSsystem32twinui.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 004565248 _____ (Microsoft Corporation) C:WINDOWSsystem32sppsvc.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 003805696 _____ (Microsoft Corporation) C:WINDOWSsystem32diagtrack.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 003748352 _____ (Microsoft Corporation) C:WINDOWSsystem32SettingsHandlers_nt.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 003545088 _____ (Microsoft Corporation) C:WINDOWSsystem32dwmcore.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 003371168 _____ (Microsoft Corporation) C:WINDOWSsystem32combase.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 002986288 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverstcpip.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 002777184 _____ (Microsoft Corporation) C:WINDOWSsystem32iertutil.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 002775688 _____ (Microsoft Corporation) C:WINDOWSsystem32KernelBase.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 002737664 _____ (Microsoft Corporation) C:WINDOWSsystem32WebRuntimeManager.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 002696512 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversntfs.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 002092328 _____ (Microsoft Corporation) C:WINDOWSSysWOW64KernelBase.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 002007360 _____ (Microsoft Corporation) C:WINDOWSsystem32appraiser.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001999440 _____ (Microsoft Corporation) C:WINDOWSsystem32ntdll.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001947688 _____ (Microsoft Corporation) C:WINDOWSsystem32dcomp.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001856000 _____ (Microsoft Corporation) C:WINDOWSsystem32urlmon.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001845912 _____ (Microsoft Corporation) C:WINDOWSsystem32d3d9.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001756592 _____ (Microsoft Corporation) C:WINDOWSsystem32winload.efi
2020-10-21 09:42 – 2020-10-21 09:42 – 001743688 _____ (Microsoft Corporation) C:WINDOWSsystem32sppobjs.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001705472 _____ (Microsoft Corporation) C:WINDOWSsystem32msxml3.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001698816 _____ (Microsoft Corporation) C:WINDOWSsystem32GdiPlus.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001653800 _____ (Microsoft Corporation) C:WINDOWSsystem32gdi32full.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001512840 _____ (Microsoft Corporation) C:WINDOWSsystem32winload.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 001408512 _____ (Microsoft Corporation) C:WINDOWSsystem32SystemSettings.Handlers.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001393952 _____ (Microsoft Corporation) C:WINDOWSsystem32WinTypes.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001366136 _____ (Microsoft Corporation) C:WINDOWSsystem32winresume.efi
2020-10-21 09:42 – 2020-10-21 09:42 – 001285120 _____ (Microsoft Corporation) C:WINDOWSsystem32usermgr.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001271808 _____ (Microsoft Corporation) C:WINDOWSsystem32gpsvc.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001259720 _____ (Microsoft Corporation) C:WINDOWSsystem32msctf.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001182248 _____ (Microsoft Corporation) C:WINDOWSsystem32winresume.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 001170960 _____ (Microsoft Corporation) C:WINDOWSsystem32rpcrt4.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001024656 _____ (Microsoft Corporation) C:WINDOWSsystem32ucrtbase.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 001004872 _____ (Microsoft Corporation) C:WINDOWSsystem32DismApi.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000974336 _____ (Microsoft Corporation) C:WINDOWSsystem32uDWM.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000961024 _____ (Microsoft Corporation) C:WINDOWSsystem32autochk.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000950272 _____ (Microsoft Corporation) C:WINDOWSsystem32rasmans.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000933288 _____ (Microsoft Corporation) C:WINDOWSsystem32SecurityHealthService.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000893624 _____ (Microsoft Corporation) C:WINDOWSsystem32ci.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000890432 _____ (Microsoft Corporation) C:WINDOWSsystem32wer.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000865792 _____ (Microsoft Corporation) C:WINDOWSsystem32SmartcardCredentialProvider.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000845312 _____ (Microsoft Corporation) C:WINDOWSsystem32winlogon.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000835672 _____ (Microsoft Corporation) C:WINDOWSsystem32fontdrvhost.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000797456 _____ (Microsoft Corporation) C:WINDOWSsystem32oleaut32.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000782656 _____ (Microsoft Corporation) C:WINDOWSsystem32dcntel.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000777216 _____ (Microsoft Corporation) C:WINDOWSsystem32tdh.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000761672 _____ (Microsoft Corporation) C:WINDOWSsystem32wimgapi.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000742720 _____ (Microsoft Corporation) C:WINDOWSsystem32LicensingWinRT.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000676864 _____ (Microsoft Corporation) C:WINDOWSsystem32lsm.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000672064 _____ (Microsoft Corporation) C:WINDOWSsystem32devinv.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000639392 _____ (Microsoft Corporation) C:WINDOWSsystem32msvcp_win.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000636856 _____ (Microsoft Corporation) C:WINDOWSsystem32sxs.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000614912 _____ (Microsoft Corporation) C:WINDOWSsystem32netprofmsvc.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000602424 _____ (Microsoft Corporation) C:WINDOWSsystem32generaltel.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000598336 _____ (Microsoft Corporation) C:WINDOWSsystem32aepic.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000586560 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversnetio.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000578560 _____ (Microsoft Corporation) C:WINDOWSsystem32SppExtComObj.Exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000564736 _____ (Microsoft Corporation) C:WINDOWSsystem32apphelp.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000555520 _____ (Microsoft Corporation) C:WINDOWSsystem32cmdial32.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000546968 _____ (Microsoft Corporation) C:WINDOWSsystem32policymanager.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000525824 _____ (Microsoft Corporation) C:WINDOWSsystem32sppcext.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000519496 _____ (Microsoft Corporation) C:WINDOWSsystem32wimserv.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000518456 _____ (Microsoft Corporation) C:WINDOWSsystem32WerFault.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000492032 _____ (Microsoft Corporation) C:WINDOWSsystem32profsvc.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000477496 _____ (Microsoft Corporation) C:WINDOWSsystem32DriversFWPKCLNT.SYS
2020-10-21 09:42 – 2020-10-21 09:42 – 000467952 _____ (Microsoft Corporation) C:WINDOWSsystem32Faultrep.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000455680 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversks.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000452608 _____ (Microsoft Corporation) C:WINDOWSsystem32slui.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000444416 _____ (Microsoft Corporation) C:WINDOWSsystem32edgeIso.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000439296 _____ (Microsoft Corporation) C:WINDOWSsystem32rascustom.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000437568 _____ (Microsoft Corporation) C:WINDOWSsystem32DriversfltMgr.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000435200 _____ (Microsoft Corporation) C:WINDOWSsystem32wincorlib.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000401408 _____ (Microsoft Corporation) C:WINDOWSsystem32es.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000389440 _____ (Microsoft Corporation) C:WINDOWSsystem32acmigration.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000382464 _____ (Microsoft Corporation) C:WINDOWSsystem32AppLockerCSP.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000362296 _____ (Microsoft Corporation) C:WINDOWSsystem32SecurityHealthAgent.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000353752 _____ (Microsoft Corporation) C:WINDOWSsystem32sppwinob.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000337408 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversnetbt.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000328704 _____ (Microsoft Corporation) C:WINDOWSsystem32winsku.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000326656 _____ (Microsoft Corporation) C:WINDOWSsystem32DeveloperOptionsSettingsHandlers.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000308736 _____ (Microsoft Corporation) C:WINDOWSsystem32msIso.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000307712 _____ (Microsoft Corporation) C:WINDOWSsystem32sppcomapi.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000283648 _____ (Microsoft Corporation) C:WINDOWSsystem32cryptui.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000280888 _____ (Microsoft Corporation) C:WINDOWSsystem32Dism.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000254976 _____ (Microsoft Corporation) C:WINDOWSsystem32BitLockerCsp.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000247856 _____ (Microsoft Corporation) C:WINDOWSsystem32weretw.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000244736 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversndproxy.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000239104 _____ (Microsoft Corporation) C:WINDOWSsystem32dpapisrv.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000234992 _____ (Microsoft Corporation) C:WINDOWSsystem32EditionUpgradeManagerObj.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000229888 _____ (Microsoft Corporation) C:WINDOWSsystem32wersvc.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000228864 _____ (Microsoft Corporation) C:WINDOWSsystem32netprofm.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000228352 _____ (Microsoft Corporation) C:WINDOWSsystem32sppnp.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000223744 _____ (Microsoft Corporation) C:WINDOWSsystem32TabSvc.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000222008 _____ (Microsoft Corporation) C:WINDOWSsystem32wermgr.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000205632 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversappid.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000197632 _____ (Microsoft Corporation) C:WINDOWSsystem32Win32CompatibilityAppraiserCSP.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000192176 _____ (Microsoft Corporation) C:WINDOWSsystem32winbrand.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000183808 _____ (Microsoft Corporation) C:WINDOWSsystem32spopk.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000177152 _____ (Microsoft Corporation) C:WINDOWSsystem32EditionUpgradeHelper.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000165840 _____ (Microsoft Corporation) C:WINDOWSsystem32WerFaultSecure.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000160064 _____ (Microsoft Corporation) C:WINDOWSsystem32CompatTelRunner.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000153600 _____ (Microsoft Corporation) C:WINDOWSsystem32srpapi.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000141520 _____ (Microsoft Corporation) C:WINDOWSsystem32userenv.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000130560 _____ (Microsoft Corporation) C:WINDOWSsystem32setupugc.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000130112 _____ (Microsoft Corporation) C:WINDOWSsystem32gpapi.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000125952 _____ (Microsoft Corporation) C:WINDOWSsystem32fontsub.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000108856 _____ (Microsoft Corporation) C:WINDOWSsystem32SecurityHealthProxyStub.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000103424 _____ (Microsoft Corporation) C:WINDOWSsystem32MuiUnattend.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000101888 _____ (Microsoft Corporation) C:WINDOWSsystem32spbcd.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000092672 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverswanarp.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000089920 _____ (Microsoft Corporation) C:WINDOWSsystem32DeviceReactivation.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000082944 _____ (Microsoft Corporation) C:WINDOWSsystem32appidsvc.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000073728 _____ (Microsoft Corporation) C:WINDOWSsystem32djoin.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000071168 _____ (Microsoft Corporation) C:WINDOWSsystem32TokenBrokerUI.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000071168 _____ (Microsoft Corporation) C:WINDOWSsystem32cryptext.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000067656 _____ (Microsoft Corporation) C:WINDOWSsystem32appidapi.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000063296 _____ (Microsoft Corporation) C:WINDOWSsystem32SecurityHealthHost.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000059904 _____ (Microsoft Corporation) C:WINDOWSsystem32PnPUnattend.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000057664 _____ (Microsoft Corporation) C:WINDOWSsystem32DeviceCensus.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000045056 _____ (Microsoft Corporation) C:WINDOWSsystem32npmproxy.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000044544 _____ (Microsoft Corporation) C:WINDOWSsystem32werdiagcontroller.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000043520 _____ (Microsoft Corporation) C:WINDOWSsystem32LaunchWinApp.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000036352 _____ (Microsoft Corporation) C:WINDOWSsystem32sxstrace.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000035840 _____ C:WINDOWSsystem32deploymentcsphelper.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000034816 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversmskssrv.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000032768 _____ (Microsoft Corporation) C:WINDOWSsystem32dnscacheugc.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000030208 _____ (Microsoft Corporation) C:WINDOWSsystem32netiougc.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000029696 _____ (Microsoft Corporation) C:WINDOWSsystem32nlmproxy.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000028672 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversndistapi.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000026112 _____ (Microsoft Corporation) C:WINDOWSsystem32netbtugc.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000025600 _____ (Microsoft Corporation) C:WINDOWSsystem32appidtel.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000024064 _____ (Microsoft Corporation) C:WINDOWSsystem32sdbinst.exe
2020-10-21 09:42 – 2020-10-21 09:42 – 000020480 _____ (Microsoft Corporation) C:WINDOWSsystem32EsdSip.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000018432 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversapplockerfltr.sys
2020-10-21 09:42 – 2020-10-21 09:42 – 000017408 _____ (Microsoft Corporation) C:WINDOWSsystem32nlmsprep.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000014336 _____ (Microsoft Corporation) C:WINDOWSsystem32dciman32.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000014336 _____ (Microsoft Corporation) C:WINDOWSsystem32d3d8thk.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000007680 _____ (Microsoft Corporation) C:WINDOWSsystem32shimeng.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000003072 _____ (Microsoft Corporation) C:WINDOWSsystem32lpk.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000002560 _____ (Microsoft Corporation) C:WINDOWSsystem32tzres.dll
2020-10-21 09:42 – 2020-10-21 09:42 – 000002560 _____ (Microsoft Corporation) C:WINDOWSsystem32msxml3r.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 017790976 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Xaml.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 004140544 _____ (Microsoft Corporation) C:WINDOWSsystem32SystemSettingsThresholdAdminFlowUI.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 004050944 _____ (Microsoft Corporation) C:WINDOWSsystem32SRH.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 003728384 _____ (Microsoft Corporation) C:WINDOWSsystem32win32kfull.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 003725824 _____ (Microsoft Corporation) C:WINDOWSsystem32AppXDeploymentServer.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 003581248 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversdxgkrnl.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 003327776 _____ (Microsoft Corporation) C:WINDOWSsystem32CoreUIComponents.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 003232064 _____ (Microsoft Corporation) C:WINDOWSsystem32aitstatic.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 003143168 _____ (Microsoft Corporation) C:WINDOWSsystem32directml.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 002712064 _____ (Microsoft Corporation) C:WINDOWSsystem32win32kbase.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 002556224 _____ (Microsoft Corporation) C:WINDOWSsystem32UpdateAgent.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 002485248 _____ (Microsoft Corporation) C:WINDOWSsystem32InstallService.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 002455928 _____ (Microsoft Corporation) C:WINDOWSsystem32msxml6.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 002296832 _____ (Microsoft Corporation) C:WINDOWSsystem32AppXDeploymentExtensions.onecore.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 002260832 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.ApplicationModel.Store.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 002125392 _____ (Microsoft Corporation) C:WINDOWSsystem32AudioEng.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 002074624 _____ (Microsoft Corporation) C:WINDOWSsystem32ISM.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001967104 _____ (Microsoft Corporation) C:WINDOWSsystem32aadtb.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001942016 _____ (Microsoft Corporation) C:WINDOWSsystem32audiosrv.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001918976 _____ (Microsoft Corporation) C:WINDOWSsystem32wevtsvc.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001833272 _____ (Microsoft Corporation) C:WINDOWSsystem32rdpserverbase.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001751552 _____ (Microsoft Corporation) C:WINDOWSsystem32AppXDeploymentExtensions.desktop.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001656904 _____ (Microsoft Corporation) C:WINDOWSsystem32user32.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001618704 _____ (Microsoft Corporation) C:WINDOWSsystem32ttdrecordcpu.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001614848 _____ (Microsoft Corporation) C:WINDOWSsystem32wpncore.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001499136 _____ (Microsoft Corporation) C:WINDOWSsystem32TokenBroker.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001487360 _____ (Microsoft Corporation) C:WINDOWSsystem32rdpsharercom.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001413712 _____ (Microsoft Corporation) C:WINDOWSsystem32AudioSes.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001375744 _____ (Microsoft Corporation) C:WINDOWSsystem32NotificationController.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001187840 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.Security.Authentication.Web.Core.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001182720 _____ (Microsoft Corporation) C:WINDOWSsystem32localspl.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001150264 _____ (Microsoft Corporation) C:WINDOWSsystem32ApplyTrustOffline.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 001092608 _____ (Microsoft Corporation) C:WINDOWSsystem32TpmCoreProvisioning.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001086784 _____ (Microsoft Corporation) C:WINDOWSsystem32ReAgent.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001083704 _____ (Microsoft Corporation) C:WINDOWSsystem32LicenseManager.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001077248 _____ (Microsoft Corporation) C:WINDOWSsystem32BTAGService.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001047040 _____ (Microsoft Corporation) C:WINDOWSsystem32IKEEXT.DLL
2020-10-21 09:41 – 2020-10-21 09:41 – 001029952 _____ (Microsoft Corporation) C:WINDOWSsystem32DriversClipSp.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 001026800 _____ (Microsoft Corporation) C:WINDOWSsystem32ClipSVC.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001014784 _____ (Microsoft Corporation) C:WINDOWSsystem32kerberos.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 001008960 _____ (Microsoft Corporation) C:WINDOWSsystem32CloudExperienceHostCommon.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000916760 _____ (Microsoft Corporation) C:WINDOWSsystem32AppXDeploymentClient.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000878080 _____ (Microsoft Corporation) C:WINDOWSsystem32BFE.DLL
2020-10-21 09:41 – 2020-10-21 09:41 – 000875400 _____ (Microsoft Corporation) C:WINDOWSsystem32pkeyhelper.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000874304 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversdxgmms2.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000863232 _____ (Microsoft Corporation) C:WINDOWSsystem32win32spl.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000852280 _____ (Microsoft Corporation) C:WINDOWSsystem32aeinv.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000805184 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversacpi.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000804672 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversvhdmp.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000735744 _____ (Microsoft Corporation) C:WINDOWSsystem32AudioEndpointBuilder.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000722080 _____ (Microsoft Corporation) C:WINDOWSsystem32kernel32.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000604992 _____ (Microsoft Corporation) C:WINDOWSsystem32pcasvc.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000589392 _____ (Microsoft Corporation) C:WINDOWSsystem32audiodg.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000586048 _____ (Microsoft Corporation) C:WINDOWSsystem32invagent.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000563200 _____ (Microsoft Corporation) C:WINDOWSsystem32untfs.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000554496 _____ (Microsoft Corporation) C:WINDOWSsystem32EnterpriseAppMgmtSvc.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000550400 _____ (Microsoft Corporation) C:WINDOWSsystem32win32k.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000522688 _____ (Microsoft Corporation) C:WINDOWSsystem32SystemSettingsAdminFlows.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000495104 _____ (Microsoft Corporation) C:WINDOWSsystem32MicrosoftAccountWAMExtension.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000467456 _____ (Microsoft Corporation) C:WINDOWSsystem32FWPUCLNT.DLL
2020-10-21 09:41 – 2020-10-21 09:41 – 000441152 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversdxgmms1.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000437056 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverspci.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000422712 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversfastfat.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000415816 _____ (Microsoft Corporation) C:WINDOWSsystem32AUDIOKSE.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000399360 _____ (Microsoft Corporation) C:WINDOWSsystem32NotificationControllerPS.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000381656 _____ (Microsoft Corporation) C:WINDOWSsystem32CredentialEnrollmentManager.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000363112 _____ (Microsoft Corporation) C:WINDOWSsystem32wintrust.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000343416 _____ (Microsoft Corporation) C:WINDOWSsystem32ttdwriter.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000338432 _____ (Microsoft Corporation) C:WINDOWSsystem32AppxAllUserStore.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000322048 _____ (Microsoft Corporation) C:WINDOWSsystem32BootMenuUX.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000301568 _____ (Microsoft Corporation) C:WINDOWSsystem32storewuauth.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000291328 _____ (Microsoft Corporation) C:WINDOWSsystem32DeviceDirectoryClient.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000288768 _____ (Microsoft Corporation) C:WINDOWSsystem32mdmregistration.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000284672 _____ (Microsoft Corporation) C:WINDOWSsystem32PushToInstall.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000271872 _____ (Microsoft Corporation) C:WINDOWSsystem32DeviceSetupManager.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000265728 _____ (Microsoft Corporation) C:WINDOWSsystem32netman.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000265216 _____ (Microsoft Corporation) C:WINDOWSsystem32cdd.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000251904 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverswinnat.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000231936 _____ (Microsoft Corporation) C:WINDOWSsystem32InstallServiceTasks.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000231424 _____ (Microsoft Corporation) C:WINDOWSsystem32bcdboot.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000222528 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversataport.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000214840 _____ (Microsoft Corporation) C:WINDOWSsystem32ifsutil.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000201728 _____ (Microsoft Corporation) C:WINDOWSsystem32AppXApplicabilityBlob.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000201216 _____ (Microsoft Corporation) C:WINDOWSsystem32updatepolicy.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000183616 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversusbccgp.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000180544 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverswfplwfs.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000180032 _____ (Microsoft Corporation) C:WINDOWSsystem32ulib.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000174400 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversstorahci.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000169472 _____ (Microsoft Corporation) C:WINDOWSsystem32SpatialAudioLicenseSrv.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000144384 _____ (Microsoft Corporation) C:WINDOWSsystem32GraphicsCapture.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000142336 _____ (Microsoft Corporation) C:WINDOWSsystem32WaaSAssessment.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000141632 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversstornvme.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000127064 _____ (Microsoft Corporation) C:WINDOWSsystem32win32u.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000102720 _____ (Microsoft Corporation) C:WINDOWSsystem32win32appinventorycsp.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000089928 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversvolmgr.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000088360 _____ (Microsoft Corporation) C:WINDOWSsystem32remoteaudioendpoint.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000077824 _____ (Microsoft Corporation) C:WINDOWSsystem32CustomInstallExec.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000076952 _____ (Microsoft Corporation) C:WINDOWSsystem32CredentialEnrollmentManagerForUser.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000073728 _____ (Microsoft Corporation) C:WINDOWSbfsvc.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000066048 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverswatchdog.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000064512 _____ (Microsoft Corporation) C:WINDOWSsystem32pcadm.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000064512 _____ (Microsoft Corporation) C:WINDOWSsystem32Drivershidspi.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000064000 _____ (Microsoft Corporation) C:WINDOWSsystem32tbauth.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000059200 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversstorufs.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000058888 _____ (Microsoft Corporation) C:WINDOWSsystem32kernel.appcore.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000057344 _____ (Microsoft Corporation) C:WINDOWSsystem32audioresourceregistrar.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000056640 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverspciidex.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000051200 _____ (Microsoft Corporation) C:WINDOWSsystem32pcalua.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000044032 _____ (Microsoft Corporation) C:WINDOWSsystem32Windows.UI.Xaml.Resources.Common.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000039936 _____ (Microsoft Corporation) C:WINDOWSsystem32ReAgentc.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000036864 _____ (Microsoft Corporation) C:WINDOWSsystem32TokenBrokerCookies.exe
2020-10-21 09:41 – 2020-10-21 09:41 – 000031232 _____ (Microsoft Corporation) C:WINDOWSsystem32FaxPrinterInstaller.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000030016 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversatapi.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000025600 _____ (Microsoft Corporation) C:WINDOWSsystem32EnterpriseAppMgmtClient.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000019768 _____ (Microsoft Corporation) C:WINDOWSsystem32Driversintelide.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000016704 _____ (Microsoft Corporation) C:WINDOWSsystem32Driverspciide.sys
2020-10-21 09:41 – 2020-10-21 09:41 – 000012800 _____ (Microsoft Corporation) C:WINDOWSsystem32pcaevts.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000003584 _____ (Microsoft Corporation) C:WINDOWSsystem32TpmCertResources.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000002560 _____ (Microsoft Corporation) C:WINDOWSsystem32tier2punctuations.dll
2020-10-21 09:41 – 2020-10-21 09:41 – 000002560 _____ (Microsoft Corporation) C:WINDOWSsystem32msxml6r.dll
2020-10-21 09:07 – 2020-09-09 22:14 – 000492544 _____ (Microsoft Corporation) C:WINDOWSsystem32poqexec.exe
2020-10-21 09:07 – 2020-09-09 22:12 – 000390656 _____ (Microsoft Corporation) C:WINDOWSSysWOW64poqexec.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-20 10:47 – 2019-03-18 22:52 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2020-11-20 10:29 – 2020-08-15 13:41 – 000000000 ____D C:UsersashgaAppDataLocalLowMozilla
2020-11-20 10:23 – 2019-03-18 22:52 – 000000000 ___HD C:Program FilesWindowsApps
2020-11-20 10:23 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSAppReadiness
2020-11-20 10:23 – 2018-02-16 14:08 – 000000000 ____D C:UsersashgaAppDataLocalPackages
2020-11-20 10:09 – 2020-10-08 07:44 – 000004210 _____ C:WINDOWSsystem32TasksCCleaner Update
2020-11-20 10:04 – 2018-02-15 22:28 – 000000000 __SHD C:UsersashgaIntelGraphicsProfiles
2020-11-20 10:02 – 2020-10-06 11:48 – 000000000 ____D C:ProgramDataKaspersky Lab
2020-11-20 10:02 – 2020-08-15 13:41 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2020-11-20 10:02 – 2020-03-31 21:57 – 000000006 ____H C:WINDOWSTasksSA.DAT
2020-11-20 10:00 – 2019-03-18 22:37 – 001048576 _____ C:WINDOWSsystem32configBBI
2020-11-20 09:58 – 2017-12-06 20:15 – 000000000 ____D C:ProgramDataPackage Cache
2020-11-20 09:49 – 2020-10-06 11:48 – 000000000 ____D C:Program Files (x86)Kaspersky Lab
2020-11-20 09:49 – 2019-03-18 22:50 – 000000000 ____D C:WINDOWSINF
2020-11-20 09:42 – 2020-08-22 23:39 – 000002442 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2020-11-20 09:42 – 2020-08-22 23:39 – 000002280 _____ C:UsersPublicDesktopMicrosoft Edge.lnk
2020-11-20 09:42 – 2020-08-22 23:39 – 000002280 _____ C:ProgramDataDesktopMicrosoft Edge.lnk
2020-11-20 09:42 – 2018-02-16 21:18 – 000002303 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2020-11-20 09:40 – 2018-02-17 11:07 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBackup and Sync from Google
2020-11-19 18:20 – 2020-03-31 21:38 – 000000000 ____D C:WINDOWSsystem32SleepStudy
2020-11-19 14:13 – 2020-08-15 13:41 – 000001013 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk
2020-11-17 09:56 – 2020-08-20 00:21 – 000000000 ____D C:WINDOWSsystem32TasksNorton Security with Backup
2020-11-17 09:55 – 2020-08-22 23:40 – 000000000 ____D C:WINDOWSsystem32TasksS-1-5-21-1516808618-3078812445-3043477306-1001
2020-11-17 09:55 – 2020-08-21 11:05 – 000000000 ____D C:WINDOWSsystem32TasksRemediation
2020-11-16 15:07 – 2020-10-06 10:05 – 000002920 _____ C:WINDOWSsystem32TasksOneDrive Standalone Update Task-S-1-5-21-1516808618-3078812445-3043477306-1008
2020-11-12 11:24 – 2018-03-26 13:28 – 000000000 ___HD C:UsersashgaAppDataLocalCrashDumps
2020-11-05 13:44 – 2020-08-22 23:38 – 000003480 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineUA
2020-11-05 13:44 – 2020-08-22 23:38 – 000003356 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineCore
2020-10-23 09:27 – 2020-10-06 09:32 – 000007602 ____H C:UsersashgaAppDataLocalresmon.resmoncfg
2020-10-23 09:16 – 2020-10-09 09:37 – 000000000 ____D C:UsersashgaAppDataLocalNPE
2020-10-23 09:06 – 2020-10-09 09:40 – 000000000 ____D C:NPE
2020-10-21 14:27 – 2019-05-19 20:41 – 000000000 ____D C:Program Files (x86)Dell
2020-10-21 14:27 – 2017-12-06 20:23 – 000000000 ____D C:ProgramDataDell
2020-10-21 12:37 – 2019-03-18 22:52 – 000000000 ___HD C:WINDOWSELAMBKUP
2020-10-21 12:15 – 2019-05-19 19:50 – 000000000 ___HD C:UsersashgaAppDataLocalDell Inc
2020-10-21 12:15 – 2017-12-06 20:13 – 000000000 ____D C:ProgramDataPCDr
2020-10-21 12:15 – 2017-12-06 20:13 – 000000000 ____D C:Program FilesDell
2020-10-21 12:02 – 2018-02-15 22:30 – 000000000 ___HD C:UsersashgaAppDataLocalDell
2020-10-21 10:12 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSRegistration
2020-10-21 10:07 – 2018-02-16 15:32 – 000000000 __RHD C:Usersashga3D Objects
2020-10-21 10:07 – 2017-12-06 20:34 – 000000000 __RHD C:UsersPublicAccountPictures
2020-10-21 10:05 – 2020-03-31 21:38 – 000545568 _____ C:WINDOWSsystem32FNTCACHE.DAT
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ___RD C:WINDOWSPrintDialog
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ___RD C:WINDOWSImmersiveControlPanel
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSSysWOW64oobe
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSSysWOW64Dism
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSSystemResources
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSsystem32WinMetadata
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSsystem32WinBioPlugIns
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSsystem32SystemResetPlatform
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSsystem32Sysprep
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSsystem32oobe
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSsystem32es-MX
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSsystem32Dism
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSsystem32appraiser
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSShellExperiences
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSProvisioning
2020-10-21 09:57 – 2019-03-18 22:52 – 000000000 ____D C:WINDOWSbcastdvr
2020-10-21 09:55 – 2019-03-18 22:37 – 000000000 ____D C:WINDOWSCbsTemp

==================== Files in the root of some directories ========

2020-10-06 09:32 – 2020-10-23 09:27 – 000007602 ____H () C:UsersashgaAppDataLocalresmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-11-2020
Ran by ashga (20-11-2020 10:48:29)
Running from C:UsersashgaDownloads
Windows 10 Home Version 1903 18362.1139 (X64) (2020-04-01 04:17:46)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1516808618-3078812445-3043477306-500 – Administrator – Disabled)
ashga (S-1-5-21-1516808618-3078812445-3043477306-1001 – Administrator – Enabled) => C:Usersashga
ces (S-1-5-21-1516808618-3078812445-3043477306-1008 – Limited – Enabled) => C:Usersces
DefaultAccount (S-1-5-21-1516808618-3078812445-3043477306-503 – Limited – Disabled)
Guest (S-1-5-21-1516808618-3078812445-3043477306-501 – Limited – Disabled)
WDAGUtilityAccount (S-1-5-21-1516808618-3078812445-3043477306-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Disabled – Out of date) {1122B19A-E671-38EC-8EAC-87048FD4528D}
AV: Norton Security (Disabled – Out of date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Disabled – Out of date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}
AV: Kaspersky Security Cloud (Enabled – Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Windows Defender (Enabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Disabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}
FW: Norton Security (Disabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}
FW: Kaspersky Security Cloud (Disabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}
FW: Norton Security (Disabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM…7-Zip) (Version: 19.00 – Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32…{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.013.20064 – Adobe Systems Incorporated)
Backup and Sync from Google (HKLM…{AEFBDB5B-899F-4AE6-B789-BA56A652A476}) (Version: 3.42.9858.3671 – Google, Inc.)
CCleaner (HKLM…CCleaner) (Version: 5.72 – Piriform)
Dell Digital Delivery (HKLM-x32…{4B38FF9D-7308-411D-93BF-CCF259B476ED}) (Version: 3.5.2013.0 – Dell Products, LP)
Dell Touchpad (HKLM…SynTPDeinstKey) (Version: 19.2.17.70 – Synaptics Incorporated)
Dell Update – SupportAssist Update Plugin (HKLM…{77C86F54-9452-4EB6-B4C3-8A57FBF72D2B}) (Version: 4.4.0.9836 – Dell Inc.) Hidden
Dell Update – SupportAssist Update Plugin (HKLM-x32…{d2a00335-3e50-405c-8c5d-32e2a636bbe1}) (Version: 4.4.0.9836 – Dell Inc.)
Google Chrome (HKLM-x32…Google Chrome) (Version: 87.0.4280.66 – Google LLC)
Google Update Helper (HKLM-x32…{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 – Google LLC) Hidden
Intel® Chipset Device Software (HKLM-x32…{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 – Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32…{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 – Intel Corporation)
Intel® HID Event Filter (HKLM-x32…3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.372 – Intel Corporation)
Intel® Management Engine Components (HKLM…{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 – Intel Corporation)
Intel® Processor Graphics (HKLM-x32…{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4627 – Intel Corporation)
Intel® Rapid Storage Technology (HKLM…{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 – Intel Corporation)
Intel® Serial IO (HKLM…{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 – Intel Corporation)
Intel® Trusted Connect Service Client x86 (HKLM-x32…{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 – Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32…{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 – Intel Corporation) Hidden
Intel® Software Guard Extensions Platform Software (HKLM…{06F94C28-DE1D-485F-AD91-333ACEB3F52D}) (Version: 1.6.100.32677 – Intel Corporation)
Kaspersky Password Manager (HKLM-x32…{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 – Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32…InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 – Kaspersky Lab)
Kaspersky Security Cloud (HKLM-x32…{0124CD8C-8A9A-4A95-BF8C-F084040A93CE}) (Version: 21.1.15.500 – Kaspersky) Hidden
Kaspersky Security Cloud (HKLM-x32…InstallWIX_{0124CD8C-8A9A-4A95-BF8C-F084040A93CE}) (Version: 21.1.15.500 – Kaspersky)
Kaspersky VPN (HKLM-x32…{221FA56C-0A92-4E58-98FD-CAF82237540C}) (Version: 21.2.16.590 – Kaspersky) Hidden
Kaspersky VPN (HKLM-x32…InstallWIX_{221FA56C-0A92-4E58-98FD-CAF82237540C}) (Version: 21.2.16.590 – Kaspersky)
Malwarebytes version 4.2.1.89 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 – Malwarebytes)
Maxx Audio Installer (x64) (HKLM…{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9669.4 – Waves Audio Ltd.) Hidden
Microsoft 365 – en-us (HKLM…O365HomePremRetail – en-us) (Version: 16.0.13231.20390 – Microsoft Corporation)
Microsoft 365 Apps for enterprise – en-us (HKLM…O365ProPlusRetail – en-us) (Version: 16.0.13231.20390 – Microsoft Corporation)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 86.0.622.69 – Microsoft Corporation)
Microsoft Edge Update (HKLM-x32…Microsoft Edge Update) (Version: 1.3.137.99 – )
Microsoft Office Access Runtime (English) 2007 (HKLM-x32…{90120000-001C-0409-0000-0000000FF1CE}) (Version: 12.0.6425.1000 – Microsoft Corporation)
Microsoft Update Health Tools (HKLM…{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 – Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) – 14.0.24215 (HKLM-x32…{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 – Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) – 14.0.23918 (HKLM-x32…{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 – Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM…Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 – Microsoft Corporation)
Mozilla Firefox 82.0.3 (x64 en-US) (HKLM…Mozilla Firefox 82.0.3 (x64 en-US)) (Version: 82.0.3 – Mozilla)
Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 79.0 – Mozilla)
Norton Security (HKLM-x32…NGC) (Version: 22.20.5.39 – Symantec Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32…{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13231.20126 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM…{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM…{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32…{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.13231.20126 – Microsoft Corporation) Hidden
psqlODBC_x64 (HKLM…{757AB286-E401-475F-B9F6-3FF1138DC472}) (Version: 09.06.0410 – PostgreSQL Global Development Group) Hidden
Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32…{E7086B15-806E-4519-A876-DBA9FDDE9A13}) (Version: 11.0.0.10517 – Qualcomm)
Realtek Card Reader (HKLM-x32…{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 – Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8622 – Realtek Semiconductor Corp.)
SAS 9.4 (HKLM-x32…{adfa23ed-d64f-40f3-bd52-8c4a9a1ff982}) (Version: 9.4 – SAS)
SAS Add-In 7.1 for Microsoft Office (32-bit) (HKLM-x32…{9A2CFBF5-55F8-471B-9EB5-5D784BAFBE2B}) (Version: 7.100.5869 – SAS Institute Inc.) Hidden
SAS Document Conversion Server (HKLM-x32…SAS Document Conversion Server) (Version:  – )
SAS Enterprise Guide 7.1 (32-bit) (HKLM-x32…{ECBCED4C-7797-4FF6-B725-E5F5837498A8}) (Version: 7.100.5850 – SAS Institute Inc.) Hidden
SAS Studio 3.71 Single-User Edition  (HKLM…{2BED37FF-E389-498A-9C62-167A89A7C882}) (Version: 3.71.429.0 – SAS Institute, Inc.) Hidden
SmartByte Drivers and Services (HKLM…{9668B1BB-D0FE-4C0C-800C-B1555E069A62}) (Version: 3.1.940 – Rivet Networks)
Stata 16 (HKLM…{2008C90A-53E5-4029-8EF7-ACC5B7171073}) (Version: 16.00.0000 – StataCorp LLC)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM…{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 – Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM…{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 – Microsoft Corporation)
UpdateAssistant (HKLM…{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 – Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM…VulkanRT1.0.33.0) (Version: 1.0.33.0 – LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM…VulkanRT1.0.65.1) (Version: 1.0.65.1 – LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM…VulkanRT1.0.65.1-2) (Version: 1.0.65.1 – LunarG, Inc.) Hidden
Windows 10 Update Assistant (HKLM-x32…{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22532 – Microsoft Corporation)
Zoom (HKUS-1-5-21-1516808618-3078812445-3043477306-1001…ZoomUMX) (Version: 5.2.1 (44052.0816) – Zoom Video Communications, Inc.)

Packages:
=========
Autodesk SketchBook -> C:Program FilesWindowsApps89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-03-21] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:Program FilesWindowsAppsking.com.BubbleWitch3Saga_6.12.4.0_x86__kgqvnymyfvs32 [2020-08-16] (king.com)
Candy Crush Soda Saga -> C:Program FilesWindowsAppsking.com.CandyCrushSodaSaga_1.177.700.0_x86__kgqvnymyfvs32 [2020-09-24] (king.com)
Dell Help & Support -> C:Program FilesWindowsAppsDellInc.DellHelpSupport_3.2.1.0_x64__htrsf667h5kn2 [2018-03-08] (Dell Inc)
Dell Product Registration -> C:Program FilesWindowsAppsDellInc.DellProductRegistration_3.4.6.0_x64__htrsf667h5kn2 [2018-08-17] (Dell Inc)
Media Suite Essentials for Dell -> C:Program FilesWindowsAppsDB6EA5DB.MediaSuiteEssentialsforDell_2.6.4028.0_x86__mcezb6ze687jp [2020-03-27] (CYBERLINK CORPORATION.)
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-19] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Studios) [MS Ad]
Netflix -> C:Program FilesWindowsApps4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-08-16] (Netflix, Inc.)
Power Media Player for Dell -> C:Program FilesWindowsAppsDB6EA5DB.PowerMediaPlayerforDell_14.1.9506.0_x86__mcezb6ze687jp [2019-05-20] (CYBERLINK CORPORATION.)
Power2Go for Dell -> C:Program FilesWindowsAppsDB6EA5DB.Power2GoforDell_11.0.3920.0_x86__mcezb6ze687jp [2020-08-16] (CYBERLINK CORPORATION.) [Startup Task]
PowerDirector for Dell -> C:Program FilesWindowsAppsDB6EA5DB.PowerDirectorforDell_15.0.4409.0_x64__mcezb6ze687jp [2018-08-17] (CYBERLINK CORPORATION.)
Roku -> C:Program FilesWindowsApps1319C185.Roku_3.1.1.0_x64__gz11xxydh4gg8 [2018-03-31] (Roku)
SmartByte -> C:Program FilesWindowsAppsRivetNetworks.SmartByte_3.1.940.0_x64__rh07ty8m5nkag [2020-09-03] (Rivet Networks LLC)
Spotify Music -> C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.142.622.0_x86__zpdnekdrzrea0 [2020-09-20] (Spotify AB) [Startup Task]
Translator -> C:Program FilesWindowsAppsMicrosoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-09] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:Program FilesGoogleDrivegoogledrivesync64.dll [2018-10-04] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:Program FilesGoogleDrivegoogledrivesync64.dll [2018-10-04] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:Program FilesGoogleDrivegoogledrivesync64.dll [2018-10-04] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:Program FilesGoogleDrivecontextmenu64.dll [2018-10-04] (Google Inc -> Google)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.1] -> {091EC05A-4A09-4108-8D41-F7B1078DAA9E} => C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64shellex.dll [2020-10-09] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.1] -> {091EC05A-4A09-4108-8D41-F7B1078DAA9E} => C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64shellex.dll [2020-10-09] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-10-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:Program FilesGoogleDrivecontextmenu64.dll [2018-10-04] (Google Inc -> Google)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.1] -> {091EC05A-4A09-4108-8D41-F7B1078DAA9E} => C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64shellex.dll [2020-10-09] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:WINDOWSSystem32DriverStoreFileRepositoryk127153.inf_amd64_3f3936d8dec668b8igfxDTCM.dll [2018-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.1] -> {091EC05A-4A09-4108-8D41-F7B1078DAA9E} => C:Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64shellex.dll [2020-10-09] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-10-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2003-02-21 06:42 – 2003-02-21 06:42 – 000348160 _____ (Microsoft Corporation) [File not signed] C:Program FilesSASHomeSASTextAnalyticsDocumentConversion14.3MSVCR71.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKUS-1-5-21-1516808618-3078812445-3043477306-1001SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKUS-1-5-21-1516808618-3078812445-3043477306-1001SoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKUS-1-5-21-1516808618-3078812445-3043477306-1001 -> DefaultScope {C60DA0ED-5F3A-4FDE-93AC-758A26D534E3} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX64Microsoft OfficeOffice16OCHelper.dll [2020-09-23] (Microsoft Corporation -> Microsoft Corporation)
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:Program FilesNorton SecurityEngine22.20.5.39coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program Files (x86)Microsoft OfficerootOffice16OCHelper.dll [2020-09-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:Program FilesNorton SecurityEngine3222.20.5.39coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM – Norton Toolbar – {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} – C:Program FilesNorton SecurityEngine22.20.5.39coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM-x32 – Norton Toolbar – {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} – C:Program FilesNorton SecurityEngine3222.20.5.39coIEPlg.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-10-02] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKUS-1-5-21-1516808618-3078812445-3043477306-1001…sharepoint.com -> hxxps://topperwkuedu94069-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 15:03 – 2020-10-23 08:52 – 000000852 ____N C:WINDOWSsystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKUS-1-5-21-1516808618-3078812445-3043477306-1001Control PanelDesktop\Wallpaper -> C:WindowswebwallpaperdellBlueLava_1112000xx_inspiron_wallpaper58095_16x9_72dpi_RGB.jpg
DNS Servers: 161.6.94.105 – 161.6.94.106
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: ) (ConsentPromptBehaviorUser: ) (EnableLUA: )
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM…StartupApprovedRun: => “WavesSvc”
HKLM…StartupApprovedRun32: => “TeamsMachineInstaller”
HKUS-1-5-21-1516808618-3078812445-3043477306-1001…StartupApprovedRun: => “GoogleDriveSync”
HKUS-1-5-21-1516808618-3078812445-3043477306-1001…StartupApprovedRun: => “com.squirrel.Teams.Teams”
HKUS-1-5-21-1516808618-3078812445-3043477306-1001…StartupApprovedRun: => “Lync”

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B6DE9CF2-1428-40B7-9187-8978ED6CA8F6}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1407AED4-8EC4-42BE-9D2D-5BC0946BDA87}] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F4DB354D-8CCB-4DA3-84F1-304B4AED116C}] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

14-10-2020 12:06:39 AdwCleaner_BeforeCleaning_14/10/2020_13:06:37
21-10-2020 09:04:22 Windows Update
21-10-2020 14:10:57 AdwCleaner_BeforeCleaning_21/10/2020_15:10:56
20-11-2020 10:25:18 Removed Teams Machine-Wide Installer

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (11/20/2020 10:46:14 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7428,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (11/20/2020 10:39:53 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7868,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (11/20/2020 10:33:10 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7920,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (11/20/2020 10:17:21 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1132,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (11/20/2020 10:14:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NortonSecurity.exe, version: 17.2.3.48, time stamp: 0x5ec58f39
Faulting module name: NCW.dll_unloaded, version: 22.20.5.401, time stamp: 0x5f19d970
Exception code: 0xc0000005
Fault offset: 0x0000000000008746
Faulting process id: 0x227c
Faulting application start time: 0x01d6bf581dcb0e34
Faulting application path: C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe
Faulting module path: NCW.dll
Report Id: 4ae8033b-7916-4e80-bcdd-b022775ce0ed
Faulting package full name:
Faulting package-relative application ID:

Error: (11/20/2020 10:14:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NortonSecurity.exe, version: 17.2.3.48, time stamp: 0x5ec58f39
Faulting module name: NPCTray.dll_unloaded, version: 22.20.5.401, time stamp: 0x5f19da3b
Exception code: 0xc0000005
Fault offset: 0x000000000001fec6
Faulting process id: 0x1920
Faulting application start time: 0x01d6bf583b0c46b8
Faulting application path: C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe
Faulting module path: NPCTray.dll
Report Id: db3d1e67-c2c8-4d27-afe3-7d951ae8057e
Faulting package full name:
Faulting package-relative application ID:

Error: (11/20/2020 10:14:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NortonSecurity.exe, version: 17.2.3.48, time stamp: 0x5ec58f39
Faulting module name: NPCTray.dll_unloaded, version: 22.20.5.401, time stamp: 0x5f19da3b
Exception code: 0xc0000005
Fault offset: 0x000000000001fec6
Faulting process id: 0x21a8
Faulting application start time: 0x01d6bf583158fc88
Faulting application path: C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe
Faulting module path: NPCTray.dll
Report Id: 59a9e179-2047-4175-9ff5-34a36d6942d6
Faulting package full name:
Faulting package-relative application ID:

Error: (11/20/2020 10:13:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NortonSecurity.exe, version: 17.2.3.48, time stamp: 0x5ec58f39
Faulting module name: NPCTray.dll_unloaded, version: 22.20.5.401, time stamp: 0x5f19da3b
Exception code: 0xc0000005
Fault offset: 0x000000000001fec6
Faulting process id: 0x2240
Faulting application start time: 0x01d6bf582793ffa8
Faulting application path: C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe
Faulting module path: NPCTray.dll
Report Id: 60f7e7db-54ed-4b45-ac2d-507683b5ec3c
Faulting package full name:
Faulting package-relative application ID:

System errors:
=============
Error: (11/20/2020 10:33:23 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-KD6NLGI)
Description: The server Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (11/20/2020 10:32:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Installer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (11/20/2020 10:29:30 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-KD6NLGI)
Description: The server Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca did not register with DCOM within the required timeout.

Error: (11/20/2020 10:14:55 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Norton Security service terminated unexpectedly.  It has done this 3 time(s).

Error: (11/20/2020 10:11:43 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Norton Security service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (11/20/2020 10:06:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Norton Security service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (11/20/2020 10:04:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SAS PC Files Server service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (11/20/2020 10:04:00 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (60000 milliseconds) while waiting for the SAS PC Files Server service to connect.

Windows Defender:
===================================
Date: 2020-11-20 10:07:42.584
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.325.447.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17500.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2020-11-20 10:07:42.584
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.325.447.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17500.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2020-11-20 10:07:42.584
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.325.447.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17500.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2020-11-20 10:07:42.574
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.325.447.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17500.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

Date: 2020-11-20 10:07:42.574
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.325.447.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17500.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved

CodeIntegrity:
===================================

Date: 2020-11-20 10:09:59.139
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-11-20 10:09:59.121
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-11-20 10:09:59.113
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-11-20 10:09:59.098
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-11-20 10:09:59.084
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-11-20 10:09:59.068
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-11-20 10:08:26.360
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program Files (x86)Kaspersky LabKaspersky Security Cloud 21.1x64antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-11-20 10:08:26.341
Description:
Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: Dell Inc. 2.9.0 01/17/2019
Motherboard: Dell Inc. 0101J9
Processor: Intel® Core™ i3-7100U CPU @ 2.40GHz
Percentage of memory in use: 52%
Total physical RAM: 8057.77 MB
Available physical RAM: 3864.52 MB
Total Virtual: 9785.77 MB
Available Virtual: 5599.77 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:916.88 GB) (Free:420.15 GB) NTFS

\?Volume{e6561cca-378a-4dbe-a8e3-85caf5eba94f} (WINRETOOLS) (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS
\?Volume{7e590657-21ea-4df7-9be8-e5fcf640ba03} (Image) (Fixed) (Total:12.54 GB) (Free:0.19 GB) NTFS
\?Volume{1cdd99b4-8b91-43c7-83f7-61d5ebc607af} () (Fixed) (Total:1.04 GB) (Free:0.44 GB) NTFS
\?Volume{464193cc-9636-4942-ba04-bf6c479bb507} (ESP) (Fixed) (Total:0.48 GB) (Free:0.42 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 1E24EFAD)

Partition: GPT.

==================== End of Addition.txt =======================





Source link

______________________________________________________________________________________________

Get your CompTIA A+, Network+ White Hat-Hacker, Certified Web Intelligence Analyst and more starting at $35 a month. Click here for more details.

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

Leave a Reply