Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02.08.2018 Ran by Windows 8.1 (administrator) on ACER (04-08-2018 10:29:40) Running from C:\Users\Windows 8.1\Downloads\FRST-OlderVersion Loaded Profiles: Windows 8.1 (Available Profiles: Windows 8.1) Platform: Windows 10 Pro Version 1803 17134.165 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (All) ================= (Microsoft Corporation) C:\Windows\System32\smss.exe (Microsoft Corporation) C:\Windows\System32\csrss.exe (Microsoft Corporation) C:\Windows\System32\wininit.exe (Microsoft Corporation) C:\Windows\System32\csrss.exe (Microsoft Corporation) C:\Windows\System32\services.exe (Microsoft Corporation) C:\Windows\System32\winlogon.exe (Microsoft Corporation) C:\Windows\System32\lsass.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\fontdrvhost.exe (Microsoft Corporation) C:\Windows\System32\fontdrvhost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\dwm.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\spoolsv.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (KeepSolid Inc.) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Microsoft Corporation) C:\Windows\System32\sihost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\taskhostw.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\ctfmon.exe (Microsoft Corporation) C:\Windows\explorer.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avpui.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe (Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (KeepSolid Inc.) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe () C:\Program Files (x86)\VPN Unlimited\QtWebEngineProcess.exe (The OpenVPN Project) C:\Program Files (x86)\VPN Unlimited\openvpn.exe (Microsoft Corporation) C:\Windows\System32\conhost.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe (Microsoft Corporation) C:\Windows\System32\SgrmBroker.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\notepad.exe (Microsoft Corporation) C:\Windows\System32\notepad.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\ApplicationFrameHost.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11807.1001.13.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation) C:\Windows\System32\notepad.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\notepad.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\audiodg.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\Windows 8.1\Downloads\FRST-OlderVersion\FRST64.exe (Microsoft Corporation) C:\Windows\System32\notepad.exe (Microsoft Corporation) C:\Windows\System32\notepad.exe (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Corporation) C:\Windows\System32\mmc.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe (Microsoft Corporation) C:\Windows\System32\svchost.exe (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe (Farbar) C:\Users\Windows 8.1\Downloads\FRST-OlderVersion\FRST64.exe ==================== Registry (All) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKLM\...\Winlogon: [Userinit] C:\WINDOWS\System32\Userinit.exe, [32256 2018-04-12] (Microsoft Corporation) HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [27136 2018-04-12] (Microsoft Corporation) HKLM\...\Winlogon: [Shell] explorer.exe [3932672 2018-07-06] (Microsoft Corporation) HKLM-x32\...\Winlogon: [Shell] explorer.exe [3611368 2018-07-06] (Microsoft Corporation) HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0 HKLM\...\Policies\Explorer: [NoActiveDesktop] 1 HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1 HKLM\...\Policies\Explorer: [NoRecentDocsHistory] 0 HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [20488312 2018-04-12] (Microsoft Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [20488312 2018-04-12] (Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation) HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\...\Run: [VPN Unlimited] => C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-launcher.exe [398152 2018-07-06] (KeepSolid Inc.) HKLM\...\Providers\Internet Print Provider: C:\WINDOWS\system32\inetpp.dll [174080 2018-04-12] (Microsoft Corporation) HKLM\...\Providers\LanMan Print Services: C:\WINDOWS\system32\win32spl.dll [836608 2018-04-12] (Microsoft Corporation) Lsa: [Authentication Packages] msv1_0 Lsa: [Notification Packages] scecli SecurityProviders: credssp.dll SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation) BootExecute: autocheck autochk * AlternateShell: cmd.exe ==================== Internet (All) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [24064 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [67072 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [84992 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [84992 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 04 C:\Windows\system32\NLAapi.dll [80896 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 05 C:\Windows\System32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 06 C:\Windows\System32\winrnr.dll [31232 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{05ee6d76-be00-45fc-9229-900927d93e21}: [NameServer] 0.0.0.0 Tcpip\..\Interfaces\{05ee6d76-be00-45fc-9229-900927d93e21}: [DhcpNameServer] 10.53.174.34 Tcpip\..\Interfaces\{2ebea07f-435d-4e83-a616-c8ec8aba1999}: [NameServer] 0.0.0.0 Tcpip\..\Interfaces\{2ebea07f-435d-4e83-a616-c8ec8aba1999}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{bbebb03f-3ba5-42e5-913a-944bee795ee6}: [DhcpNameServer] 10.208.0.1 Tcpip\..\Interfaces\{f91343c4-6f82-49d0-95e9-b82f954b3856}: [DhcpNameServer] 10.200.0.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\Software\Microsoft\Internet Explorer\Main,EdgeReminderURL = hxxp://go.microsoft.com/fwlink/?LinkId=838604 URLSearchHook: HKU\S-1-5-21-2532843739-1787431547-1269948887-1001 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation) URLSearchHook: HKU\S-1-5-21-2532843739-1787431547-1269948887-1001 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation) SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-2532843739-1787431547-1269948887-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 SearchScopes: HKU\S-1-5-21-2532843739-1787431547-1269948887-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 BHO: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\IEExt\ie_plugin.dll [2018-07-17] (AO Kaspersky Lab) BHO-x32: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\IEExt\ie_plugin.dll [2018-07-17] (AO Kaspersky Lab) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-01-26] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-26] (Oracle Corporation) Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2018-04-12] (Microsoft Corporation) Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2018-04-12] (Microsoft Corporation) Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation) Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2018-05-21] (Microsoft Corporation) Handler-x32: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2018-05-21] (Microsoft Corporation) Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll [2018-04-12] (Microsoft Corporation) Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2018-04-12] (Microsoft Corporation) Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll [2006-10-26] (Microsoft Corporation) Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2018-05-21] (Microsoft Corporation) Handler-x32: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2018-05-21] (Microsoft Corporation) Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2018-06-08] (Microsoft Corporation) Handler-x32: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2018-06-08] (Microsoft Corporation) Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2018-04-12] (Microsoft Corporation) Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2018-04-12] (Microsoft Corporation) Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2018-06-08] (Microsoft Corporation) Handler-x32: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2018-06-08] (Microsoft Corporation) Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL [2006-10-27] (Microsoft Corporation) Filter-x32: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL [2006-10-27] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe Edge: ====== Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [2018-04-12] Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [2018-04-12] FireFox: ======== FF DefaultProfile: 5geabok7.default-1451838148255-1520428887763 FF ProfilePath: C:\Users\Windows 8.1\AppData\Roaming\Mozilla\Firefox\Profiles\5geabok7.default-1451838148255-1520428887763 [2018-07-21] FF Extension: (TLS 1.3 gradual roll-out) - C:\Users\Windows 8.1\AppData\Roaming\Mozilla\Firefox\Profiles\5geabok7.default-1451838148255-1520428887763\features\{2bd2d911-55b6-4349-8aba-1d45529bae74}\tls13-rollout-bug1442042@mozilla.org.xpi [2018-03-25] [Legacy] FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25] [Legacy] FF Extension: (Default) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Activity Stream) - C:\Program Files (x86)\Mozilla Firefox\browser\features\activity-stream@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Application Update Service Helper) - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Pocket) - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Follow-on Search Telemetry) - C:\Program Files (x86)\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Form Autofill) - C:\Program Files (x86)\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Photon onboarding) - C:\Program Files (x86)\Mozilla Firefox\browser\features\onboarding@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Firefox Screenshots) - C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Web Compat) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF HKLM\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi [2018-07-17] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi FF HKLM-x32\...\Mozilla Firefox 60.0.2\Extensions: [Components] - C:\Program Files (x86)\Mozilla Firefox\components => not found FF HKLM-x32\...\Mozilla Firefox 60.0.2\Extensions: [Plugins] - C:\Program Files (x86)\Mozilla Firefox\plugins => not found FF HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\...\Firefox\Extensions: [{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}] - C:\Program Files (x86)\DAP\DAPFireFox => not found FF HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\...\Mozilla Firefox 60.0.2\Extensions: [Components] - C:\Program Files (x86)\Mozilla Firefox\components => not found FF HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\...\Mozilla Firefox 60.0.2\Extensions: [Plugins] - C:\Program Files (x86)\Mozilla Firefox\plugins => not found FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_149.dll [2018-07-27] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_149.dll [2018-07-27] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-01-26] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-01-26] (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.) StartMenuInternet: FIREFOX.EXE - "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\channel-prefs.js [2018-01-19] Chrome: ======= CHR DefaultProfile: Default CHR DefaultSearchURL: Default -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms} CHR DefaultSearchKeyword: Default -> Avira CHR DefaultSuggestURL: Default -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en CHR Profile: C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default [2018-08-04] CHR Extension: (Avira Password Manager) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2018-08-04] CHR Extension: (Skype) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-08-04] CHR Extension: (Kaspersky Protection) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2018-08-04] CHR Extension: (Chrome Web Store Payments) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-04] CHR Extension: (Chrome Media Router) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-04] CHR Profile: C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-26] CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk StartMenuInternet: Google Chrome - "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" CHR crx: C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\default_apps\docs.crx [2018-07-31] CHR crx: C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\default_apps\drive.crx [2018-07-31] CHR crx: C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\default_apps\gmail.crx [2018-07-31] CHR crx: C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\default_apps\youtube.crx [2018-07-31] ==================== Services (All) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2016-12-17] (Adobe Systems Incorporated) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [337408 2018-07-27] (Adobe Systems Incorporated) S3 AJRouter; C:\WINDOWS\System32\AJRouter.dll [25088 2018-04-12] (Microsoft Corporation) S3 ALG; C:\WINDOWS\System32\alg.exe [91136 2018-04-12] (Microsoft Corporation) S3 AppIDSvc; C:\WINDOWS\System32\appidsvc.dll [77312 2018-04-12] (Microsoft Corporation) R3 Appinfo; C:\WINDOWS\System32\appinfo.dll [166912 2018-04-12] (Microsoft Corporation) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-01-05] (Apple Inc.) R3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [197120 2018-04-12] (Microsoft Corporation) R3 AppMgmt; C:\WINDOWS\SysWOW64\appmgmts.dll [164864 2018-04-12] (Microsoft Corporation) S3 AppReadiness; C:\WINDOWS\system32\AppReadiness.dll [667648 2018-06-08] (Microsoft Corporation) S4 AppVClient; C:\WINDOWS\system32\AppVClient.exe [826776 2018-05-21] (Microsoft Corporation) R3 AppXSvc; C:\WINDOWS\system32\appxdeploymentserver.dll [3392512 2018-06-15] (Microsoft Corporation) S3 AssignedAccessManagerSvc; C:\WINDOWS\System32\assignedaccessmanagersvc.dll [604672 2018-04-12] (Microsoft Corporation) R2 AudioEndpointBuilder; C:\WINDOWS\System32\AudioEndpointBuilder.dll [684544 2018-06-15] (Microsoft Corporation) R2 Audiosrv; C:\WINDOWS\System32\Audiosrv.dll [1768448 2018-06-15] (Microsoft Corporation) R2 AVP18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe [354672 2017-01-24] (AO Kaspersky Lab) S3 AxInstSV; C:\WINDOWS\System32\AxInstSV.dll [110080 2018-04-12] (Microsoft Corporation) S3 BcastDVRUserService; C:\WINDOWS\System32\BcastDVRUserService.dll [1364992 2018-07-06] (Microsoft Corporation) S3 BcastDVRUserService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 BcastDVRUserService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 BDESVC; C:\WINDOWS\System32\bdesvc.dll [402944 2018-04-12] (Microsoft Corporation) R2 BFE; C:\WINDOWS\System32\bfe.dll [778752 2018-06-08] (Microsoft Corporation) S3 BITS; C:\WINDOWS\System32\qmgr.dll [1374208 2018-04-12] (Microsoft Corporation) S3 BluetoothUserService; C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll [464384 2018-04-12] (Microsoft Corporation) S3 BluetoothUserService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 BluetoothUserService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 BrokerInfrastructure; C:\WINDOWS\System32\bisrv.dll [847360 2018-06-15] (Microsoft Corporation) S3 Browser; C:\WINDOWS\System32\browser.dll [133632 2018-04-12] (Microsoft Corporation) S3 BTAGService; C:\WINDOWS\System32\BTAGService.dll [514048 2018-04-12] (Microsoft Corporation) S3 BthAvctpSvc; C:\WINDOWS\System32\BthAvctpSvc.dll [395264 2018-04-12] (Microsoft Corporation) S3 bthserv; C:\WINDOWS\system32\bthserv.dll [183808 2018-04-12] (Microsoft Corporation) R3 camsvc; C:\WINDOWS\system32\CapabilityAccessManager.dll [266752 2018-06-15] (Microsoft Corporation) S3 CaptureService; C:\WINDOWS\System32\CaptureService.dll [125952 2018-04-12] (Microsoft Corporation) S3 CaptureService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 CaptureService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 CDPSvc; C:\WINDOWS\System32\CDPSvc.dll [632320 2018-04-12] (Microsoft Corporation) S2 CDPUserSvc; C:\WINDOWS\System32\CDPUserSvc.dll [453120 2018-04-12] (Microsoft Corporation) R2 CDPUserSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R2 CDPUserSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 CertPropSvc; C:\WINDOWS\System32\certprop.dll [188928 2018-04-12] (Microsoft Corporation) S3 ClipSVC; C:\WINDOWS\System32\ClipSVC.dll [1033584 2018-04-12] (Microsoft Corporation) R2 CoreMessagingRegistrar; C:\WINDOWS\system32\coremessaging.dll [885856 2018-07-06] (Microsoft Corporation) R2 CoreMessagingRegistrar; C:\WINDOWS\SysWOW64\coremessaging.dll [567144 2018-07-06] (Microsoft Corporation) S3 cphs; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [494056 2017-10-20] (Intel Corporation) R2 CryptSvc; C:\WINDOWS\system32\cryptsvc.dll [94720 2018-04-12] (Microsoft Corporation) S3 CscService; C:\WINDOWS\System32\cscsvc.dll [727040 2018-04-12] (Microsoft Corporation) R2 DcomLaunch; C:\WINDOWS\system32\rpcss.dll [1160192 2018-06-08] (Microsoft Corporation) S3 defragsvc; C:\WINDOWS\System32\defragsvc.dll [491520 2018-04-12] (Microsoft Corporation) R2 DeviceAssociationService; C:\WINDOWS\system32\das.dll [463360 2018-04-12] (Microsoft Corporation) S3 DeviceInstall; C:\WINDOWS\system32\umpnpmgr.dll [119296 2018-04-12] (Microsoft Corporation) S3 DevicePickerUserSvc; C:\WINDOWS\System32\Windows.Devices.Picker.dll [400896 2018-04-12] (Microsoft Corporation) S3 DevicePickerUserSvc; C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll [312832 2018-04-12] (Microsoft Corporation) S3 DevicePickerUserSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 DevicePickerUserSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [750080 2018-04-12] (Microsoft Corporation) S3 DevicesFlowUserSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 DevicesFlowUserSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 DevQueryBroker; C:\WINDOWS\system32\DevQueryBroker.dll [33792 2018-04-12] (Microsoft Corporation) R2 Dhcp; C:\WINDOWS\system32\dhcpcore.dll [352768 2018-04-12] (Microsoft Corporation) R2 Dhcp; C:\WINDOWS\SysWOW64\dhcpcore.dll [317440 2018-04-12] (Microsoft Corporation) S3 diagnosticshub.standardcollector.service; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [90624 2018-04-12] (Microsoft Corporation) S3 diagsvc; C:\WINDOWS\system32\DiagSvc.dll [219648 2018-04-12] (Microsoft Corporation) R2 DiagTrack; C:\WINDOWS\system32\diagtrack.dll [3086336 2018-05-21] (Microsoft Corporation) S3 DmEnrollmentSvc; C:\WINDOWS\system32\Windows.Internal.Management.dll [827392 2018-06-15] (Microsoft Corporation) S3 DmEnrollmentSvc; C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll [593408 2018-06-15] (Microsoft Corporation) S3 dmwappushservice; C:\WINDOWS\system32\dmwappushsvc.dll [57856 2018-04-12] (Microsoft Corporation) R2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [300032 2018-04-12] (Microsoft Corporation) R2 DoSvc; C:\WINDOWS\system32\dosvc.dll [1458176 2018-04-12] (Microsoft Corporation) S3 dot3svc; C:\WINDOWS\System32\dot3svc.dll [252928 2018-04-12] (Microsoft Corporation) R2 DPS; C:\WINDOWS\system32\dps.dll [168448 2018-04-12] (Microsoft Corporation) S3 DsmSvc; C:\WINDOWS\System32\DeviceSetupManager.dll [235520 2018-06-15] (Microsoft Corporation) R3 DsSvc; C:\WINDOWS\System32\DsSvc.dll [149504 2018-06-08] (Microsoft Corporation) R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [356352 2018-04-12] (Microsoft Corporation) S3 Eaphost; C:\WINDOWS\System32\eapsvc.dll [109568 2018-04-12] (Microsoft Corporation) S3 EFS; C:\WINDOWS\system32\efssvc.dll [58880 2018-04-12] (Microsoft Corporation) S3 embeddedmode; C:\WINDOWS\System32\embeddedmodesvc.dll [167424 2018-04-12] (Microsoft Corporation) S3 EntAppSvc; C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll [307712 2018-04-12] (Microsoft Corporation) R2 EventLog; C:\WINDOWS\System32\wevtsvc.dll [1854976 2018-06-15] (Microsoft Corporation) R2 EventSystem; C:\WINDOWS\system32\es.dll [486400 2018-04-12] (Microsoft Corporation) R2 EventSystem; C:\WINDOWS\SysWOW64\es.dll [331264 2018-04-12] (Microsoft Corporation) S3 Fax; C:\WINDOWS\system32\fxssvc.exe [642048 2018-04-12] (Microsoft Corporation) S3 fdPHost; C:\WINDOWS\system32\fdPHost.dll [20992 2018-04-12] (Microsoft Corporation) S3 FDResPub; C:\WINDOWS\system32\fdrespub.dll [34816 2018-04-12] (Microsoft Corporation) S3 fhsvc; C:\WINDOWS\system32\fhsvc.dll [121344 2018-04-12] (Microsoft Corporation) R2 FontCache; C:\WINDOWS\system32\FntCache.dll [1919488 2018-04-12] (Microsoft Corporation) R3 FontCache3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43648 2018-05-21] (Microsoft Corporation) S3 FrameServer; C:\WINDOWS\system32\FrameServer.dll [673792 2018-06-08] (Microsoft Corporation) R2 gpsvc; C:\WINDOWS\System32\gpsvc.dll [1267712 2018-04-12] (Microsoft Corporation) S3 GraphicsPerfSvc; C:\WINDOWS\System32\GraphicsPerfSvc.dll [90624 2018-04-12] (Microsoft Corporation) S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-29] (Google Inc.) S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-29] (Google Inc.) R3 hidserv; C:\WINDOWS\system32\hidserv.dll [33792 2018-04-12] (Microsoft Corporation) R3 hidserv; C:\WINDOWS\SysWOW64\hidserv.dll [29696 2018-04-12] (Microsoft Corporation) S3 HvHost; C:\WINDOWS\System32\hvhostsvc.dll [60320 2018-04-12] (Microsoft Corporation) S3 icssvc; C:\WINDOWS\System32\tetheringservice.dll [241152 2018-04-12] (Microsoft Corporation) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel Corporation) S3 IKEEXT; C:\WINDOWS\System32\ikeext.dll [990208 2018-04-12] (Microsoft Corporation) S3 InstallService; C:\WINDOWS\system32\InstallService.dll [1487360 2018-06-15] (Microsoft Corporation) S3 InstallService; C:\WINDOWS\SysWOW64\InstallService.dll [1110528 2018-06-15] (Microsoft Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation) R2 iphlpsvc; C:\WINDOWS\System32\iphlpsvc.dll [786432 2018-04-12] (Microsoft Corporation) S3 iPod Service; C:\Program Files\iPod\bin\iPodService.exe [672568 2017-10-20] (Apple Inc.) S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [63488 2018-04-12] (Microsoft Corporation) S3 irmon; C:\WINDOWS\System32\irmon.dll [24576 2018-04-12] (Microsoft Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation) R3 KeyIso; C:\WINDOWS\system32\keyiso.dll [89088 2018-04-12] (Microsoft Corporation) R3 KeyIso; C:\WINDOWS\SysWOW64\keyiso.dll [70656 2018-04-12] (Microsoft Corporation) S3 klvssbridge64_18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\vssbridge64.exe [426416 2018-01-14] (AO Kaspersky Lab) R2 KSDE2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (AO Kaspersky Lab) S3 ksu; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-27] (AO Kaspersky Lab) S3 KtmRm; C:\WINDOWS\system32\msdtckrm.dll [368128 2018-04-12] (Microsoft Corporation) R2 LanmanServer; C:\WINDOWS\system32\srvsvc.dll [271360 2018-04-12] (Microsoft Corporation) R2 LanmanWorkstation; C:\WINDOWS\System32\wkssvc.dll [271872 2018-04-12] (Microsoft Corporation) R3 lfsvc; C:\WINDOWS\System32\lfsvc.dll [44544 2018-04-12] (Microsoft Corporation) R3 LicenseManager; C:\WINDOWS\system32\LicenseManagerSvc.dll [48640 2018-04-12] (Microsoft Corporation) S3 lltdsvc; C:\WINDOWS\System32\lltdsvc.dll [269312 2018-04-12] (Microsoft Corporation) R3 lmhosts; C:\WINDOWS\System32\lmhsvc.dll [26112 2018-04-12] (Microsoft Corporation) R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [390616 2013-09-16] (Intel Corporation) R2 LSM; C:\WINDOWS\System32\lsm.dll [671744 2018-04-12] (Microsoft Corporation) S3 LxpSvc; C:\WINDOWS\System32\LanguageOverlayServer.dll [199680 2018-04-12] (Microsoft Corporation) S2 MapsBroker; C:\WINDOWS\System32\moshost.dll [91136 2018-07-06] (Microsoft Corporation) S3 MessagingService; C:\WINDOWS\System32\MessagingService.dll [52224 2018-04-12] (Microsoft Corporation) S3 MessagingService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 MessagingService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation) S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [174544 2018-07-01] (Mozilla Foundation) R2 mpssvc; C:\WINDOWS\system32\mpssvc.dll [883712 2018-06-15] (Microsoft Corporation) S3 MSDTC; C:\WINDOWS\System32\msdtc.exe [148480 2018-04-12] (Microsoft Corporation) S3 MSiSCSI; C:\WINDOWS\system32\iscsiexe.dll [150528 2018-04-12] (Microsoft Corporation) S3 msiserver; C:\WINDOWS\System32\msiexec.exe [66048 2018-04-12] (Microsoft Corporation) S3 msiserver; C:\WINDOWS\SysWOW64\msiexec.exe [59904 2018-04-12] (Microsoft Corporation) S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [824832 2018-04-12] (Microsoft Corporation) S3 NcaSvc; C:\WINDOWS\System32\ncasvc.dll [167936 2018-04-12] (Microsoft Corporation) R3 NcbService; C:\WINDOWS\System32\ncbservice.dll [376832 2018-04-12] (Microsoft Corporation) S3 NcdAutoSetup; C:\WINDOWS\System32\NcdAutoSetup.dll [88064 2018-04-12] (Microsoft Corporation) S3 Netlogon; C:\WINDOWS\system32\netlogon.dll [773632 2018-04-12] (Microsoft Corporation) S3 Netlogon; C:\WINDOWS\SysWOW64\netlogon.dll [659456 2018-04-12] (Microsoft Corporation) S3 Netman; C:\WINDOWS\System32\netman.dll [262656 2018-04-12] (Microsoft Corporation) R3 netprofm; C:\WINDOWS\System32\netprofmsvc.dll [507392 2018-04-12] (Microsoft Corporation) S3 NetSetupSvc; C:\WINDOWS\System32\NetSetupSvc.dll [335360 2018-04-12] (Microsoft Corporation) S4 NetTcpPortSharing; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136296 2018-04-12] (Microsoft Corporation) S3 NgcCtnrSvc; C:\WINDOWS\System32\NgcCtnrSvc.dll [582144 2018-04-12] (Microsoft Corporation) S3 NgcSvc; C:\WINDOWS\system32\ngcsvc.dll [784896 2018-07-06] (Microsoft Corporation) R2 NlaSvc; C:\WINDOWS\System32\nlasvc.dll [367616 2018-04-12] (Microsoft Corporation) R2 nsi; C:\WINDOWS\system32\nsisvc.dll [30720 2018-04-12] (Microsoft Corporation) S3 odserv; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-27] (Microsoft Corporation) S2 OneSyncSvc; C:\WINDOWS\System32\APHostService.dll [324608 2018-04-10] (Microsoft Corporation) R2 OneSyncSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R2 OneSyncSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-27] (Microsoft Corporation) S3 p2pimsvc; C:\WINDOWS\system32\pnrpsvc.dll [343552 2018-04-12] (Microsoft Corporation) S3 p2psvc; C:\WINDOWS\system32\p2psvc.dll [424960 2018-04-12] (Microsoft Corporation) R3 PcaSvc; C:\WINDOWS\System32\pcasvc.dll [541592 2018-07-06] (Microsoft Corporation) S3 PeerDistSvc; C:\WINDOWS\system32\peerdistsvc.dll [1967104 2018-04-12] (Microsoft Corporation) S3 PerfHost; C:\WINDOWS\SysWow64\perfhost.exe [21504 2018-04-12] (Microsoft Corporation) S3 PhoneSvc; C:\WINDOWS\System32\PhoneService.dll [835584 2018-05-20] (Microsoft Corporation) S3 PimIndexMaintenanceSvc; C:\WINDOWS\System32\PimIndexMaintenance.dll [185856 2018-04-12] (Microsoft Corporation) R3 PimIndexMaintenanceSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R3 PimIndexMaintenanceSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 pla; C:\WINDOWS\system32\pla.dll [1463296 2018-04-12] (Microsoft Corporation) S3 pla; C:\WINDOWS\SysWOW64\pla.dll [1537536 2018-04-12] (Microsoft Corporation) R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2102248 2017-12-13] (Plex, Inc.) R3 PlugPlay; C:\WINDOWS\system32\umpnpmgr.dll [119296 2018-04-12] (Microsoft Corporation) S3 PNRPAutoReg; C:\WINDOWS\system32\pnrpauto.dll [26624 2018-04-12] (Microsoft Corporation) S3 PNRPsvc; C:\WINDOWS\system32\pnrpsvc.dll [343552 2018-04-12] (Microsoft Corporation) S3 PolicyAgent; C:\WINDOWS\System32\ipsecsvc.dll [441856 2018-04-12] (Microsoft Corporation) R2 Power; C:\WINDOWS\system32\umpo.dll [152576 2018-04-12] (Microsoft Corporation) S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [3441152 2018-04-12] (Microsoft Corporation) S3 PrintWorkflowUserSvc; C:\WINDOWS\System32\PrintWorkflowService.dll [170496 2018-04-12] (Microsoft Corporation) S3 PrintWorkflowUserSvc; C:\WINDOWS\SysWOW64\PrintWorkflowService.dll [138240 2018-04-12] (Microsoft Corporation) S3 PrintWorkflowUserSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 PrintWorkflowUserSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 ProfSvc; C:\WINDOWS\system32\profsvc.dll [394240 2018-04-12] (Microsoft Corporation) S3 PushToInstall; C:\WINDOWS\system32\PushToInstall.dll [262144 2018-04-12] (Microsoft Corporation) S3 QWAVE; C:\WINDOWS\system32\qwave.dll [278016 2018-04-12] (Microsoft Corporation) S3 QWAVE; C:\WINDOWS\SysWOW64\qwave.dll [236032 2018-04-12] (Microsoft Corporation) S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [104960 2018-04-12] (Microsoft Corporation) R2 RasMan; C:\WINDOWS\System32\rasmans.dll [932352 2018-06-08] (Microsoft Corporation) S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [497664 2018-04-12] (Microsoft Corporation) S4 RemoteAccess; C:\WINDOWS\SysWOW64\mprdim.dll [407552 2018-04-12] (Microsoft Corporation) S4 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [155648 2018-04-12] (Microsoft Corporation) S3 RetailDemo; C:\WINDOWS\system32\RDXService.dll [681984 2018-04-12] (Microsoft Corporation) S3 RmSvc; C:\WINDOWS\System32\RMapi.dll [153600 2018-04-12] (Microsoft Corporation) R2 RpcEptMapper; C:\WINDOWS\System32\RpcEpMap.dll [78336 2018-04-12] (Microsoft Corporation) S3 RpcLocator; C:\WINDOWS\system32\locator.exe [10752 2018-04-12] (Microsoft Corporation) R2 RpcSs; C:\WINDOWS\system32\rpcss.dll [1160192 2018-06-08] (Microsoft Corporation) R2 SamSs; C:\WINDOWS\system32\lsass.exe [57976 2018-04-12] (Microsoft Corporation) S3 SCardSvr; C:\WINDOWS\System32\SCardSvr.dll [258560 2018-04-12] (Microsoft Corporation) S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [198144 2018-04-12] (Microsoft Corporation) R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [889344 2018-04-12] (Microsoft Corporation) S3 SCPolicySvc; C:\WINDOWS\System32\certprop.dll [188928 2018-04-12] (Microsoft Corporation) S3 SDRSVC; C:\WINDOWS\System32\SDRSVC.dll [146944 2018-04-12] (Microsoft Corporation) S3 seclogon; C:\WINDOWS\system32\seclogon.dll [30720 2018-04-12] (Microsoft Corporation) R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [761440 2018-06-15] (Microsoft Corporation) S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1248768 2018-04-12] (Microsoft Corporation) R2 SENS; C:\WINDOWS\System32\sens.dll [73216 2018-04-12] (Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-04-12] (Microsoft Corporation) S3 SensorDataService; C:\WINDOWS\System32\SensorDataService.exe [1273344 2018-04-12] (Microsoft Corporation) S3 SensorService; C:\WINDOWS\system32\SensorService.dll [712192 2018-04-12] (Microsoft Corporation) S3 SensrSvc; C:\WINDOWS\system32\sensrsvc.dll [207872 2018-04-12] (Microsoft Corporation) S3 SessionEnv; C:\WINDOWS\system32\sessenv.dll [397312 2018-04-12] (Microsoft Corporation) S3 SessionEnv; C:\WINDOWS\SysWOW64\sessenv.dll [346112 2018-04-12] (Microsoft Corporation) R2 SgrmBroker; C:\WINDOWS\system32\SgrmBroker.exe [163336 2018-04-12] (Microsoft Corporation) S3 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [604672 2018-04-12] (Microsoft Corporation) S3 SharedRealitySvc; C:\WINDOWS\System32\SharedRealitySvc.dll [712704 2018-04-12] (Microsoft Corporation) R2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [613376 2018-04-12] (Microsoft Corporation) R2 ShellHWDetection; C:\WINDOWS\SysWOW64\shsvcs.dll [564736 2018-04-12] (Microsoft Corporation) S4 shpamsvc; C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [195584 2018-04-12] (Microsoft Corporation) S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [317408 2017-07-18] (Skype Technologies) S3 smphost; C:\WINDOWS\System32\smphost.dll [23552 2018-04-12] (Microsoft Corporation) S3 smphost; C:\WINDOWS\SysWOW64\smphost.dll [20992 2018-04-12] (Microsoft Corporation) S3 SmsRouter; C:\WINDOWS\system32\SmsRouterSvc.dll [590336 2018-04-12] (Microsoft Corporation) S3 SNMPTRAP; C:\WINDOWS\System32\snmptrap.exe [15360 2018-04-12] (Microsoft Corporation) S3 spectrum; C:\WINDOWS\system32\spectrum.exe [976384 2018-06-08] (Microsoft Corporation) R2 Spooler; C:\WINDOWS\System32\spoolsv.exe [768512 2018-04-12] (Microsoft Corporation) S2 sppsvc; C:\WINDOWS\system32\sppsvc.exe [4527680 2018-06-08] (Microsoft Corporation) R3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [228864 2018-04-12] (Microsoft Corporation) S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] () R3 SstpSvc; C:\WINDOWS\system32\sstpsvc.dll [207872 2018-04-12] (Microsoft Corporation) R3 StateRepository; C:\WINDOWS\system32\windows.staterepository.dll [4970360 2018-06-08] (Microsoft Corporation) R3 StateRepository; C:\WINDOWS\SysWOW64\windows.staterepository.dll [4469832 2018-06-08] (Microsoft Corporation) R2 stisvc; C:\WINDOWS\System32\wiaservc.dll [611840 2018-04-12] (Microsoft Corporation) R3 StorSvc; C:\WINDOWS\system32\storsvc.dll [960512 2018-05-20] (Microsoft Corporation) S3 svsvc; C:\WINDOWS\system32\svsvc.dll [13824 2018-04-12] (Microsoft Corporation) S3 swprv; C:\WINDOWS\System32\swprv.dll [467456 2018-04-12] (Microsoft Corporation) R2 SysMain; C:\WINDOWS\system32\sysmain.dll [972800 2018-04-12] (Microsoft Corporation) R2 SystemEventsBroker; C:\WINDOWS\System32\SystemEventsBrokerServer.dll [281600 2018-04-12] (Microsoft Corporation) R3 TabletInputService; C:\WINDOWS\System32\TabSvc.dll [221696 2018-04-12] (Microsoft Corporation) S3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [308224 2018-04-12] (Microsoft Corporation) S3 TapiSrv; C:\WINDOWS\SysWOW64\tapisrv.dll [254464 2018-04-12] (Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH) S3 TermService; C:\WINDOWS\System32\termsrv.dll [1030656 2018-04-12] (Microsoft Corporation) R2 Themes; C:\WINDOWS\system32\themeservice.dll [69632 2018-04-12] (Microsoft Corporation) S3 TieringEngineService; C:\WINDOWS\system32\TieringEngineService.exe [303616 2018-04-12] (Microsoft Corporation) R3 TimeBrokerSvc; C:\WINDOWS\System32\TimeBrokerServer.dll [176128 2018-04-12] (Microsoft Corporation) R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1395712 2018-07-06] (Microsoft Corporation) R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [999936 2018-07-06] (Microsoft Corporation) R2 TrkWks; C:\WINDOWS\System32\trkwks.dll [110592 2018-04-12] (Microsoft Corporation) S3 TrustedInstaller; C:\WINDOWS\servicing\TrustedInstaller.exe [131584 2018-04-11] (Microsoft Corporation) S4 tzautoupdate; C:\WINDOWS\system32\tzautoupdate.dll [92160 2018-04-12] (Microsoft Corporation) S4 tzautoupdate; C:\WINDOWS\SysWOW64\tzautoupdate.dll [72192 2018-04-12] (Microsoft Corporation) S4 UevAgentService; C:\WINDOWS\system32\AgentService.exe [1189376 2018-04-12] (Microsoft Corporation) S3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [367104 2018-04-12] (Microsoft Corporation) S3 UnistoreSvc; C:\WINDOWS\System32\unistore.dll [1220096 2018-04-12] (Microsoft Corporation) S3 UnistoreSvc; C:\WINDOWS\SysWOW64\unistore.dll [965632 2018-04-12] (Microsoft Corporation) R3 UnistoreSvc_3b868; C:\WINDOWS\System32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R3 UnistoreSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R3 upnphost; C:\WINDOWS\System32\upnphost.dll [451072 2018-04-12] (Microsoft Corporation) R3 upnphost; C:\WINDOWS\SysWOW64\upnphost.dll [331264 2018-04-12] (Microsoft Corporation) S3 UserDataSvc; C:\WINDOWS\System32\userdataservice.dll [1495040 2018-04-12] (Microsoft Corporation) R3 UserDataSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R3 UserDataSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 UserManager; C:\WINDOWS\System32\usermgr.dll [1027584 2018-04-12] (Microsoft Corporation) R2 UsoSvc; C:\WINDOWS\system32\usocore.dll [1374208 2018-06-15] (Microsoft Corporation) S3 VacSvc; C:\WINDOWS\System32\vac.dll [411256 2018-04-12] (Microsoft Corporation) R3 VaultSvc; C:\Windows\System32\vaultsvc.dll [345600 2018-04-12] (Microsoft Corporation) S3 vds; C:\WINDOWS\System32\vds.exe [642560 2018-04-12] (Microsoft Corporation) S3 vmicguestinterface; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmicheartbeat; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmickvpexchange; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmicrdv; C:\WINDOWS\System32\icsvcext.dll [309760 2018-04-12] (Microsoft Corporation) S3 vmicshutdown; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmictimesync; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmicvmsession; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmicvss; C:\WINDOWS\System32\icsvcext.dll [309760 2018-04-12] (Microsoft Corporation) R2 VPNUnlimitedService; C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe [57160 2018-07-06] (KeepSolid Inc.) S3 VSS; C:\WINDOWS\system32\vssvc.exe [1540096 2018-04-12] (Microsoft Corporation) R3 W32Time; C:\WINDOWS\system32\w32time.dll [579584 2018-04-12] (Microsoft Corporation) S3 WaaSMedicSvc; C:\WINDOWS\System32\WaaSMedicSvc.dll [392704 2018-04-12] (Microsoft Corporation) S3 WalletService; C:\WINDOWS\system32\WalletService.dll [427520 2018-04-12] (Microsoft Corporation) S3 WarpJITSvc; C:\WINDOWS\System32\Windows.WARP.JITService.dll [31744 2018-04-12] (Microsoft Corporation) S3 wbengine; C:\WINDOWS\system32\wbengine.exe [1535488 2018-04-12] (Microsoft Corporation) S3 WbioSrvc; C:\WINDOWS\System32\wbiosrvc.dll [983040 2018-06-08] (Microsoft Corporation) R2 Wcmsvc; C:\WINDOWS\System32\wcmsvc.dll [949248 2018-06-15] (Microsoft Corporation) S3 wcncsvc; C:\WINDOWS\System32\wcncsvc.dll [468992 2018-04-12] (Microsoft Corporation) R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [315768 2016-08-05] (Western Digital Technologies, Inc.) R3 WdiServiceHost; C:\WINDOWS\system32\wdi.dll [99840 2018-04-12] (Microsoft Corporation) R3 WdiServiceHost; C:\WINDOWS\SysWOW64\wdi.dll [89088 2018-04-12] (Microsoft Corporation) R3 WdiSystemHost; C:\WINDOWS\system32\wdi.dll [99840 2018-04-12] (Microsoft Corporation) R3 WdiSystemHost; C:\WINDOWS\SysWOW64\wdi.dll [89088 2018-04-12] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation) S3 WebClient; C:\WINDOWS\System32\webclnt.dll [217088 2018-04-12] (Microsoft Corporation) S3 WebClient; C:\WINDOWS\SysWOW64\webclnt.dll [191488 2018-04-12] (Microsoft Corporation) S3 Wecsvc; C:\WINDOWS\system32\wecsvc.dll [202240 2018-04-12] (Microsoft Corporation) S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [27136 2018-04-12] (Microsoft Corporation) S3 wercplsupport; C:\WINDOWS\System32\wercplsupport.dll [119808 2018-04-12] (Microsoft Corporation) S3 WerSvc; C:\WINDOWS\System32\WerSvc.dll [204288 2018-04-12] (Microsoft Corporation) S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [637440 2018-04-12] (Microsoft Corporation) S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [81920 2018-04-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation) R3 WinHttpAutoProxySvc; C:\WINDOWS\system32\winhttp.dll [898760 2018-06-15] (Microsoft Corporation) R3 WinHttpAutoProxySvc; C:\WINDOWS\SysWOW64\winhttp.dll [719552 2018-06-15] (Microsoft Corporation) R2 Winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [224256 2018-04-12] (Microsoft Corporation) S3 WinRM; C:\WINDOWS\system32\WsmSvc.dll [2612736 2018-04-12] (Microsoft Corporation) S3 WinRM; C:\WINDOWS\SysWOW64\WsmSvc.dll [2378752 2018-04-12] (Microsoft Corporation) S3 wisvc; C:\WINDOWS\system32\flightsettings.dll [858112 2018-06-08] (Microsoft Corporation) S3 wisvc; C:\WINDOWS\SysWOW64\flightsettings.dll [729088 2018-06-08] (Microsoft Corporation) R2 WlanSvc; C:\WINDOWS\System32\wlansvc.dll [2583552 2018-06-15] (Microsoft Corporation) R3 wlidsvc; C:\WINDOWS\system32\wlidsvc.dll [2248192 2018-06-08] (Microsoft Corporation) S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1359360 2018-04-12] (Microsoft Corporation) S3 wmiApSrv; C:\WINDOWS\system32\wbem\WmiApSrv.exe [203264 2018-04-12] (Microsoft Corporation) R2 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1184256 2018-04-11] (Microsoft Corporation) S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [2197408 2018-04-12] (Microsoft Corporation) S3 WpcMonSvc; C:\WINDOWS\System32\WpcDesktopMonSvc.dll [1456640 2018-05-20] (Microsoft Corporation) S3 WPDBusEnum; C:\WINDOWS\system32\wpdbusenum.dll [82432 2018-06-15] (Microsoft Corporation) R2 WpnService; C:\WINDOWS\system32\WpnService.dll [280576 2018-04-12] (Microsoft Corporation) S2 WpnUserService; C:\WINDOWS\System32\WpnUserService.dll [96768 2018-04-12] (Microsoft Corporation) R2 WpnUserService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R2 WpnUserService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 wscsvc; C:\WINDOWS\System32\wscsvc.dll [266240 2018-04-12] (Microsoft Corporation) R2 WSearch; C:\WINDOWS\system32\SearchIndexer.exe [1057792 2018-04-12] (Microsoft Corporation) R2 WSearch; C:\WINDOWS\SysWOW64\SearchIndexer.exe [856064 2018-04-12] (Microsoft Corporation) S3 wuauserv; C:\WINDOWS\system32\wuaueng.dll [2903040 2018-06-15] (Microsoft Corporation) S3 WwanSvc; C:\WINDOWS\System32\wwansvc.dll [1679360 2018-04-12] (Microsoft Corporation) S3 xbgm; C:\WINDOWS\system32\xbgmsvc.exe [59512 2018-04-12] (Microsoft Corporation) S3 XblAuthManager; C:\WINDOWS\System32\XblAuthManager.dll [1115648 2018-04-12] (Microsoft Corporation) S3 XblGameSave; C:\WINDOWS\System32\XblGameSave.dll [1308672 2018-04-12] (Microsoft Corporation) S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [58880 2018-04-12] (Microsoft Corporation) S3 XboxNetApiSvc; C:\WINDOWS\system32\XboxNetApiSvc.dll [1148928 2018-04-12] (Microsoft Corporation) S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X] S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X] S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 athur; C:\WINDOWS\System32\drivers\athuwbx.sys [2702336 2013-11-21] (Qualcomm Atheros Communications, Inc.) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (AO Kaspersky Lab) S3 hmatap; C:\WINDOWS\System32\drivers\hmatap.sys [36456 2017-10-31] (The OpenVPN Project) R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554408 2016-10-01] (AO Kaspersky Lab) R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-25] (AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [120008 2018-05-04] (AO Kaspersky Lab) R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [85704 2018-07-17] (AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [29816 2016-10-14] (AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [207560 2018-05-04] (AO Kaspersky Lab) R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1193160 2018-07-17] (AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1058504 2018-07-17] (AO Kaspersky Lab) R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57032 2018-05-04] (AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [57056 2016-12-23] (AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [58592 2016-12-07] (AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [50672 2017-12-25] (AO Kaspersky Lab) R3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [44768 2017-01-20] (AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [236488 2018-05-25] (AO Kaspersky Lab) R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2018-01-14] (AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [258864 2018-05-25] (AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [109248 2018-05-25] (AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [177848 2018-06-23] (AO Kaspersky Lab) S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [93888 2018-02-19] (AO Kaspersky Lab) R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [141000 2018-07-17] (AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-12-25] (AO Kaspersky Lab) R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation) S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2017-10-25] (The OpenVPN Project) S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [26368 2015-07-13] (Resplendence Software Projects Sp.) S3 rspRegMon; C:\WINDOWS\System32\DRIVERS\rspRegMon64.sys [27392 2016-04-12] (Resplendence Software Projects Sp.) R2 RtkIOAC60; C:\WINDOWS\system32\DRIVERS\RtkIOAC60.sys [29912 2013-07-19] (Realtek semiconductor corp) U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [44544 2018-04-12] (Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation) U3 aswbdisk; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-08-04 10:28 - 2018-08-04 10:28 - 000134977 _____ C:\Users\Windows 8.1\Desktop\FRSTprocess 2.txt 2018-08-04 10:25 - 2018-08-04 10:25 - 000161300 _____ C:\Users\Windows 8.1\Desktop\FRSTprocesses.txt 2018-08-04 09:48 - 2018-08-04 09:48 - 000008581 _____ C:\Users\Windows 8.1\Desktop\latency5.txt 2018-08-04 09:39 - 2018-08-04 09:39 - 000000855 _____ C:\Users\Windows 8.1\Desktop\LatencyMon.lnk 2018-08-04 09:39 - 2018-08-04 09:39 - 000000843 _____ C:\Users\Windows 8.1\Desktop\In Depth Latency Tests.lnk 2018-08-04 09:39 - 2018-08-04 09:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LatencyMon 2018-08-04 09:39 - 2018-08-04 09:39 - 000000000 ____D C:\Program Files\LatencyMon 2018-08-04 09:39 - 2015-07-13 11:16 - 000026368 _____ (Resplendence Software Projects Sp.) C:\WINDOWS\system32\Drivers\rspLLL64.sys 2018-08-04 09:38 - 2018-08-04 09:38 - 002476504 _____ (Resplendence Software Projects Sp. ) C:\Users\Windows 8.1\Downloads\LatencyMon.exe 2018-08-04 09:33 - 2018-08-04 09:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrar Registry Manager 2018-08-04 09:33 - 2016-04-12 08:18 - 000027392 _____ (Resplendence Software Projects Sp.) C:\WINDOWS\system32\Drivers\rspRegMon64.sys 2018-08-04 09:32 - 2018-08-04 09:32 - 002941288 _____ (Resplendence Software Projects Sp. ) C:\Users\Windows 8.1\Downloads\RegistrarHomeV8 (2).exe 2018-08-04 09:28 - 2018-08-04 09:28 - 000161966 _____ C:\Users\Windows 8.1\Desktop\FRSTprocess.txt 2018-08-04 09:22 - 2018-08-04 09:22 - 000078956 _____ C:\Users\Windows 8.1\Desktop\FRST5.txt 2018-08-04 09:21 - 2018-08-04 09:21 - 000033342 _____ C:\Users\Windows 8.1\Desktop\Addition5.txt 2018-08-04 09:12 - 2018-08-04 09:12 - 000000420 _____ C:\Users\Windows 8.1\Downloads\This PC - Shortcut.lnk 2018-08-04 09:04 - 2018-08-04 08:51 - 000005674 _____ C:\Users\Windows 8.1\Desktop\fixlist (1) 2.txt 2018-08-04 08:54 - 2018-08-04 08:56 - 000005674 _____ C:\Users\Windows 8.1\Desktop\fixlist.txt 2018-08-04 08:27 - 2018-08-04 08:15 - 000004096 ____H C:\Users\Windows 8.1\Desktop\._fixlist.txt 2018-07-31 13:26 - 2018-06-29 03:13 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2018-07-31 13:26 - 2018-06-29 03:13 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2018-07-31 12:12 - 2018-07-31 12:12 - 000017688 _____ C:\Users\Windows 8.1\Desktop\SearchRegav31jly.txt 2018-07-31 12:02 - 2018-07-31 12:09 - 000017688 _____ C:\Users\Windows 8.1\Downloads\SearchReg.txt 2018-07-31 11:36 - 2018-07-31 11:36 - 002941288 _____ (Resplendence Software Projects Sp. ) C:\Users\Windows 8.1\Downloads\RegistrarHomeV8 (1).exe 2018-07-31 11:32 - 2018-08-04 09:33 - 000000000 ____D C:\Program Files\Registrar Registry Manager 2018-07-31 11:31 - 2018-07-31 11:31 - 002941288 _____ (Resplendence Software Projects Sp. ) C:\Users\Windows 8.1\Downloads\RegistrarHomeV8.exe 2018-07-31 10:16 - 2018-07-06 13:26 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2018-07-31 10:16 - 2018-07-06 13:25 - 023863296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2018-07-31 10:16 - 2018-07-06 09:10 - 025845760 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2018-07-31 10:16 - 2018-07-06 09:07 - 022006272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2018-07-31 10:16 - 2018-07-06 09:04 - 022713856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2018-07-31 10:16 - 2018-06-15 19:49 - 021388856 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2018-07-31 10:16 - 2018-06-15 07:12 - 007519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2018-07-31 10:16 - 2018-06-15 07:03 - 006572000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 002868640 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2018-07-31 10:15 - 2018-07-06 16:20 - 001610648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000792472 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000689560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000451992 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000309664 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000144792 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2018-07-31 10:15 - 2018-07-06 16:20 - 000070040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2018-07-31 10:15 - 2018-07-06 16:17 - 003932672 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2018-07-31 10:15 - 2018-07-06 16:15 - 002266520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2018-07-31 10:15 - 2018-07-06 16:14 - 000541592 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2018-07-31 10:15 - 2018-07-06 15:56 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2018-07-31 10:15 - 2018-07-06 15:53 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll 2018-07-31 10:15 - 2018-07-06 15:53 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll 2018-07-31 10:15 - 2018-07-06 15:53 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll 2018-07-31 10:15 - 2018-07-06 15:53 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll 2018-07-31 10:15 - 2018-07-06 15:52 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2018-07-31 10:15 - 2018-07-06 15:52 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2018-07-31 10:15 - 2018-07-06 15:51 - 003652608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2018-07-31 10:15 - 2018-07-06 15:51 - 002051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2018-07-31 10:15 - 2018-07-06 15:51 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2018-07-31 10:15 - 2018-07-06 15:51 - 001004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2018-07-31 10:15 - 2018-07-06 15:51 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2018-07-31 10:15 - 2018-07-06 15:50 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2018-07-31 10:15 - 2018-07-06 15:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe 2018-07-31 10:15 - 2018-07-06 14:12 - 001539000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2018-07-31 10:15 - 2018-07-06 14:06 - 003611368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2018-07-31 10:15 - 2018-07-06 13:54 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2018-07-31 10:15 - 2018-07-06 13:54 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2018-07-31 10:15 - 2018-07-06 13:53 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2018-07-31 10:15 - 2018-07-06 13:53 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll 2018-07-31 10:15 - 2018-07-06 13:53 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll 2018-07-31 10:15 - 2018-07-06 13:52 - 002895360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2018-07-31 10:15 - 2018-07-06 13:52 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2018-07-31 10:15 - 2018-07-06 13:52 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2018-07-31 10:15 - 2018-07-06 13:51 - 002401280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll 2018-07-31 10:15 - 2018-07-06 13:51 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe 2018-07-31 10:15 - 2018-07-06 13:01 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll 2018-07-31 10:15 - 2018-07-06 09:32 - 000480672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2018-07-31 10:15 - 2018-07-06 09:31 - 000462752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2018-07-31 10:15 - 2018-07-06 09:31 - 000035232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2018-07-31 10:15 - 2018-07-06 09:29 - 000272296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll 2018-07-31 10:15 - 2018-07-06 09:29 - 000269224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2018-07-31 10:15 - 2018-07-06 09:27 - 001174432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2018-07-31 10:15 - 2018-07-06 09:27 - 001063320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2018-07-31 10:15 - 2018-07-06 09:27 - 001012632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2018-07-31 10:15 - 2018-07-06 09:27 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2018-07-31 10:15 - 2018-07-06 09:27 - 000567176 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2018-07-31 10:15 - 2018-07-06 09:27 - 000134552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2018-07-31 10:15 - 2018-07-06 09:27 - 000057440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.ShellCommon.Broker.dll 2018-07-31 10:15 - 2018-07-06 09:26 - 002712992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2018-07-31 10:15 - 2018-07-06 09:26 - 001148800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2018-07-31 10:15 - 2018-07-06 09:26 - 000930720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2018-07-31 10:15 - 2018-07-06 09:26 - 000766608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2018-07-31 10:15 - 2018-07-06 09:26 - 000170912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2018-07-31 10:15 - 2018-07-06 09:25 - 009147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2018-07-31 10:15 - 2018-07-06 09:25 - 002753040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 002571728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 002420632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2018-07-31 10:15 - 2018-07-06 09:25 - 001945784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 001026464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2018-07-31 10:15 - 2018-07-06 09:25 - 001018616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000885856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000483048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000267680 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000139672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2018-07-31 10:15 - 2018-07-06 09:24 - 000380824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2018-07-31 10:15 - 2018-07-06 09:16 - 000567144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 001981896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 001175568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 000988640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2018-07-31 10:15 - 2018-07-06 09:14 - 000573904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2018-07-31 10:15 - 2018-07-06 09:13 - 001620872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2018-07-31 10:15 - 2018-07-06 09:03 - 004371456 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2018-07-31 10:15 - 2018-07-06 09:02 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2018-07-31 10:15 - 2018-07-06 09:01 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2018-07-31 10:15 - 2018-07-06 09:01 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2018-07-31 10:15 - 2018-07-06 09:01 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2018-07-31 10:15 - 2018-07-06 09:01 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 019403264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsTelemetry.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 001153536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 004867584 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 001931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys 2018-07-31 10:15 - 2018-07-06 08:58 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 007579648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 005779456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 003712512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000676864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Devices.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001817600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001567744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProv2faHelper.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 003440128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2018-07-31 10:15 - 2018-07-06 08:54 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000999936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll 2018-07-31 10:15 - 2018-07-06 08:53 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2018-07-31 10:15 - 2018-07-06 08:53 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2018-07-31 10:15 - 2018-07-06 08:53 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2018-07-31 10:15 - 2018-07-06 08:53 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2018-07-31 10:15 - 2018-07-06 08:52 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2018-07-31 10:15 - 2018-07-06 07:41 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim 2018-07-31 10:15 - 2018-06-29 06:16 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll 2018-07-31 10:15 - 2018-06-15 19:55 - 000542888 _____ C:\WINDOWS\system32\FaceProcessorCore.dll 2018-07-31 10:15 - 2018-06-15 19:53 - 000348256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2018-07-31 10:15 - 2018-06-15 19:53 - 000094104 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2018-07-31 10:15 - 2018-06-15 19:50 - 001376576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2018-07-31 10:15 - 2018-06-15 19:48 - 002395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2018-07-31 10:15 - 2018-06-15 19:48 - 000338352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll 2018-07-31 10:15 - 2018-06-15 19:35 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2018-07-31 10:15 - 2018-06-15 19:34 - 008623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2018-07-31 10:15 - 2018-06-15 19:34 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe 2018-07-31 10:15 - 2018-06-15 19:34 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll 2018-07-31 10:15 - 2018-06-15 19:33 - 012710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2018-07-31 10:15 - 2018-06-15 19:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys 2018-07-31 10:15 - 2018-06-15 19:33 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManagerAPI.dll 2018-07-31 10:15 - 2018-06-15 19:33 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2018-07-31 10:15 - 2018-06-15 19:32 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll 2018-07-31 10:15 - 2018-06-15 19:32 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe 2018-07-31 10:15 - 2018-06-15 19:32 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll 2018-07-31 10:15 - 2018-06-15 19:32 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2018-07-31 10:15 - 2018-06-15 19:31 - 002193920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll 2018-07-31 10:15 - 2018-06-15 19:31 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2018-07-31 10:15 - 2018-06-15 19:31 - 000907776 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe 2018-07-31 10:15 - 2018-06-15 19:31 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2018-07-31 10:15 - 2018-06-15 19:30 - 001308672 _____ C:\WINDOWS\system32\FaceProcessor.dll 2018-07-31 10:15 - 2018-06-15 19:30 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2018-07-31 10:15 - 2018-06-15 19:30 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll 2018-07-31 10:15 - 2018-06-15 19:30 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe 2018-07-31 10:15 - 2018-06-15 19:30 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2018-07-31 10:15 - 2018-06-15 19:30 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2018-07-31 10:15 - 2018-06-15 19:30 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe 2018-07-31 10:15 - 2018-06-15 19:30 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe 2018-07-31 10:15 - 2018-06-15 19:29 - 002084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2018-07-31 10:15 - 2018-06-15 19:29 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe 2018-07-31 10:15 - 2018-06-15 19:29 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2018-07-31 10:15 - 2018-06-15 19:29 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2018-07-31 10:15 - 2018-06-15 19:29 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2018-07-31 10:15 - 2018-06-15 19:29 - 000103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll 2018-07-31 10:15 - 2018-06-15 19:28 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll 2018-07-31 10:15 - 2018-06-15 19:28 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2018-07-31 10:15 - 2018-06-15 19:03 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe 2018-07-31 10:15 - 2018-06-15 19:00 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll 2018-07-31 10:15 - 2018-06-15 17:25 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2018-07-31 10:15 - 2018-06-15 17:22 - 001026896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2018-07-31 10:15 - 2018-06-15 17:16 - 002206528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL 2018-07-31 10:15 - 2018-06-15 17:07 - 011901952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2018-07-31 10:15 - 2018-06-15 17:06 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2018-07-31 10:15 - 2018-06-15 17:06 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll 2018-07-31 10:15 - 2018-06-15 17:04 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe 2018-07-31 10:15 - 2018-06-15 17:04 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll 2018-07-31 10:15 - 2018-06-15 17:03 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe 2018-07-31 10:15 - 2018-06-15 17:03 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2018-07-31 10:15 - 2018-06-15 17:02 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2018-07-31 10:15 - 2018-06-15 17:01 - 002015744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2018-07-31 10:15 - 2018-06-15 17:01 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2018-07-31 10:15 - 2018-06-15 15:23 - 000788992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll 2018-07-31 10:15 - 2018-06-15 09:11 - 000611232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2018-07-31 10:15 - 2018-06-15 09:10 - 000048544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys 2018-07-31 10:15 - 2018-06-15 09:03 - 000083360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys 2018-07-31 10:15 - 2018-06-15 07:21 - 001213368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2018-07-31 10:15 - 2018-06-15 07:21 - 000761440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2018-07-31 10:15 - 2018-06-15 07:19 - 001034632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2018-07-31 10:15 - 2018-06-15 07:19 - 000116632 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe 2018-07-31 10:15 - 2018-06-15 07:19 - 000093600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll 2018-07-31 10:15 - 2018-06-15 07:18 - 000228768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2018-07-31 10:15 - 2018-06-15 07:16 - 000562080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2018-07-31 10:15 - 2018-06-15 07:16 - 000433560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2018-07-31 10:15 - 2018-06-15 07:15 - 002563960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:15 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll 2018-07-31 10:15 - 2018-06-15 07:13 - 000510904 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2018-07-31 10:15 - 2018-06-15 07:13 - 000324000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2018-07-31 10:15 - 2018-06-15 07:12 - 000661152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll 2018-07-31 10:15 - 2018-06-15 07:12 - 000491304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2018-07-31 10:15 - 2018-06-15 07:12 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2018-07-31 10:15 - 2018-06-15 07:12 - 000118872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll 2018-07-31 10:15 - 2018-06-15 07:11 - 006817872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2018-07-31 10:15 - 2018-06-15 07:10 - 001934400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2018-07-31 10:15 - 2018-06-15 07:10 - 001097640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2018-07-31 10:15 - 2018-06-15 07:10 - 000717208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2018-07-31 10:15 - 2018-06-15 07:10 - 000326024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 007436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 002830240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2018-07-31 10:15 - 2018-06-15 07:09 - 002546592 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001798552 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001742272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001659296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001209800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001112600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 000594128 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2018-07-31 10:15 - 2018-06-15 07:09 - 000247984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL 2018-07-31 10:15 - 2018-06-15 07:08 - 004403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 002371392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 002062488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001946752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001921944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2018-07-31 10:15 - 2018-06-15 07:08 - 001784584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001457128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2018-07-31 10:15 - 2018-06-15 07:08 - 001288840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2018-07-31 10:15 - 2018-06-15 07:08 - 001150408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001140568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2018-07-31 10:15 - 2018-06-15 07:08 - 000983008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2018-07-31 10:15 - 2018-06-15 07:08 - 000945568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys 2018-07-31 10:15 - 2018-06-15 07:08 - 000898760 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 000642088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 000604576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2018-07-31 10:15 - 2018-06-15 07:08 - 000500552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 000413816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 000072768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys 2018-07-31 10:15 - 2018-06-15 07:07 - 001611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2018-07-31 10:15 - 2018-06-15 07:07 - 001145696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2018-07-31 10:15 - 2018-06-15 07:05 - 000550608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2018-07-31 10:15 - 2018-06-15 07:05 - 000444240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 001462824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 001397192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 001251736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 000719552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 000281080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 000105376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 006528600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 006043600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 004788504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 002535032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 002163184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001805752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001710240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001380192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001144120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001129640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001020160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001011968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 000770152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 000472136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 000356960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 000232488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL 2018-07-31 10:15 - 2018-06-15 07:03 - 000129192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2018-07-31 10:15 - 2018-06-15 06:49 - 002962944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2018-07-31 10:15 - 2018-06-15 06:48 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2018-07-31 10:15 - 2018-06-15 06:48 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll 2018-07-31 10:15 - 2018-06-15 06:47 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll 2018-07-31 10:15 - 2018-06-15 06:47 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll 2018-07-31 10:15 - 2018-06-15 06:47 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 004706816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 004333568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 002548736 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe 2018-07-31 10:15 - 2018-06-15 06:45 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe 2018-07-31 10:15 - 2018-06-15 06:45 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandlerPS.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 001632256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 001342976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys 2018-07-31 10:15 - 2018-06-15 06:44 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2018-07-31 10:15 - 2018-06-15 06:43 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2018-07-31 10:15 - 2018-06-15 06:43 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 002367488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000978432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2018-07-31 10:15 - 2018-06-15 06:42 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2018-07-31 10:15 - 2018-06-15 06:42 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys 2018-07-31 10:15 - 2018-06-15 06:42 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 004561920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe 2018-07-31 10:15 - 2018-06-15 06:41 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000811520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 002903040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 002583552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 002172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 000916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2018-07-31 10:15 - 2018-06-15 06:37 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2018-07-31 10:15 - 2018-06-15 06:37 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2018-07-31 10:15 - 2018-06-15 06:36 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys 2018-07-31 10:15 - 2018-05-20 13:53 - 000792984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2018-07-31 10:15 - 2018-05-20 13:52 - 000413080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2018-07-31 10:14 - 2018-06-01 07:18 - 000058524 _____ C:\WINDOWS\system32\srms.dat 2018-07-21 06:28 - 2018-07-21 06:28 - 006889184 _____ (Piriform Ltd) C:\Users\Windows 8.1\Downloads\spsetup132.exe 2018-07-21 05:59 - 2018-07-21 05:59 - 002724512 _____ (Sysinternals - www.sysinternals.com) C:\Users\Windows 8.1\Downloads\procexp (2).exe 2018-07-21 05:57 - 2018-07-21 05:57 - 002724512 _____ (Sysinternals - www.sysinternals.com) C:\Users\Windows 8.1\Downloads\procexp (1).exe 2018-07-21 05:52 - 2018-07-21 05:52 - 002724512 _____ (Sysinternals - www.sysinternals.com) C:\Users\Windows 8.1\Downloads\procexp.exe 2018-07-21 05:34 - 2018-07-21 05:34 - 000019798 _____ C:\Users\Windows 8.1\Downloads\fixlist (2).txt 2018-07-21 05:01 - 2018-07-31 10:22 - 000000000 ____D C:\ProgramData\Packages 2018-07-21 04:46 - 2018-07-21 04:46 - 000019798 _____ C:\Users\Windows 8.1\Downloads\fixlist (1).txt 2018-07-21 04:45 - 2018-08-04 09:08 - 000009898 _____ C:\Users\Windows 8.1\Downloads\fixlist.txt 2018-07-17 08:55 - 2018-08-04 09:14 - 000000000 ____D C:\Users\Windows 8.1\Downloads\FRST-OlderVersion 2018-07-17 08:53 - 2018-07-21 06:56 - 000000000 ____D C:\Users\Windows 8.1\Desktop\scans 2018-07-17 07:35 - 2018-07-17 08:16 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2018-07-17 07:35 - 2018-07-17 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2018-07-17 07:35 - 2018-07-17 07:35 - 000000000 ____D C:\Program Files\VS Revo Group 2018-07-17 07:33 - 2018-07-17 07:33 - 007197480 _____ (VS Revo Group ) C:\Users\Windows 8.1\Downloads\revosetup.exe 2018-07-10 16:44 - 2018-07-21 05:46 - 000043704 _____ C:\Users\Windows 8.1\Downloads\Addition.txt 2018-07-10 16:42 - 2018-07-21 05:46 - 000086249 _____ C:\Users\Windows 8.1\Downloads\FRST.txt 2018-07-10 16:41 - 2018-08-04 10:29 - 000000000 ____D C:\FRST 2018-07-10 16:38 - 2018-08-04 08:28 - 002412544 _____ (Farbar) C:\Users\Windows 8.1\Downloads\FRST64.exe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-08-04 10:21 - 2018-01-14 23:02 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2018-08-04 10:20 - 2018-05-21 18:16 - 000004158 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EF1F7207-FAC2-4CBB-B3B9-9B6D553D8F32} 2018-08-04 10:02 - 2018-06-24 10:56 - 000000000 ____D C:\Users\Windows 8.1\AppData\Local\D3DSCache 2018-08-04 09:33 - 2018-03-05 20:43 - 000000000 ____D C:\Users\Windows 8.1\AppData\Local\CrashDumps 2018-08-04 09:26 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2018-08-04 09:17 - 2018-01-15 06:05 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2018-08-04 09:17 - 2014-11-13 04:37 - 000000000 __SHD C:\Users\Windows 8.1\IntelGraphicsProfiles 2018-08-04 09:16 - 2018-05-21 18:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2018-08-04 09:15 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2018-08-04 09:00 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2018-08-04 08:41 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF 2018-08-04 08:17 - 2018-05-21 18:00 - 000838560 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2018-08-04 08:16 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps 2018-08-04 08:16 - 2014-11-13 04:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-08-04 08:16 - 2014-11-13 04:34 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-07-31 13:27 - 2018-01-26 07:36 - 000000000 ___RD C:\Users\Windows 8.1\3D Objects 2018-07-31 13:27 - 2016-02-13 15:22 - 000000000 __RHD C:\Users\Public\AccountPictures 2018-07-31 13:26 - 2018-05-21 17:46 - 000408480 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2018-07-31 13:25 - 2016-07-26 13:02 - 000000676 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2532843739-1787431547-1269948887-1001.job 2018-07-31 13:25 - 2016-07-26 13:02 - 000000580 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2532843739-1787431547-1269948887-1001.job 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\zu-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\yo-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\xh-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\wo-SN 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\tn-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ti-ET 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\rw-RW 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\nso-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ig-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ 2018-07-31 13:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2018-07-31 13:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser 2018-07-31 13:22 - 2018-05-21 17:49 - 000000000 ____D C:\Users\Windows 8.1 2018-07-31 13:22 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2018-07-31 13:22 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences 2018-07-31 13:22 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr 2018-07-31 13:13 - 2018-05-21 17:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2018-07-31 11:13 - 2018-05-02 13:36 - 000001140 _____ C:\Users\Public\Desktop\VPN Unlimited.lnk 2018-07-31 11:13 - 2018-05-02 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VPN Unlimited 2018-07-31 11:13 - 2018-05-02 13:36 - 000000000 ____D C:\Program Files (x86)\VPN Unlimited 2018-07-31 10:29 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp 2018-07-31 10:23 - 2017-04-02 07:55 - 000000000 ____D C:\ProgramData\Package Cache 2018-07-27 08:41 - 2018-05-21 18:16 - 000003836 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-2532843739-1787431547-1269948887-1001 2018-07-27 08:41 - 2018-05-21 18:16 - 000003740 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-2532843739-1787431547-1269948887-1001 2018-07-27 08:41 - 2017-07-08 16:53 - 000000000 ____D C:\Users\Windows 8.1\AppData\Local\GoToMeeting 2018-07-27 08:38 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2018-07-27 08:38 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed 2018-07-21 04:39 - 2018-05-21 18:16 - 000003368 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2532843739-1787431547-1269948887-1001 2018-07-21 04:39 - 2018-05-21 17:49 - 000002385 _____ C:\Users\Windows 8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2018-07-21 04:39 - 2016-04-08 00:21 - 000000000 ___RD C:\Users\Windows 8.1\OneDrive 2018-07-17 08:23 - 2018-01-14 23:04 - 000001504 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk 2018-07-17 08:20 - 2017-06-10 19:51 - 000000000 ____D C:\ProgramData\AVAST Software 2018-07-17 08:06 - 2018-05-21 18:16 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software 2018-07-17 07:43 - 2015-05-12 12:22 - 000000000 ____D C:\WINDOWS\system32\MRT 2018-07-17 07:40 - 2018-04-11 23:04 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2018-07-17 07:39 - 2018-05-21 17:02 - 001058504 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2018-07-17 07:39 - 2018-05-21 17:02 - 000141000 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys 2018-07-17 07:39 - 2018-05-21 17:02 - 000085704 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kldisk.sys 2018-07-17 07:38 - 2017-11-29 17:45 - 000000000 ____D C:\Users\Windows 8.1\AppData\Local\AVAST Software 2018-07-17 07:37 - 2017-12-25 13:52 - 001193160 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys 2018-07-17 07:37 - 2017-12-25 13:52 - 000152360 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\klhkum.dll 2018-07-17 07:36 - 2015-05-12 12:22 - 134675576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2018-07-17 06:58 - 2017-09-02 15:24 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump 2018-07-17 06:50 - 2014-11-13 04:45 - 000000000 ____D C:\Program Files (x86)\Nero 2018-07-17 06:19 - 2018-01-14 23:03 - 000002289 _____ C:\Users\Public\Desktop\Kaspersky Free.lnk ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2018-05-21 17:46 ==================== End of FRST.txt ============================