Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02.08.2018 Ran by Windows 8.1 (administrator) on ACER (04-08-2018 09:27:33) Running from C:\Users\Windows 8.1\Downloads\FRST-OlderVersion Loaded Profiles: Windows 8.1 (Available Profiles: Windows 8.1) Platform: Windows 10 Pro Version 1803 17134.165 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (KeepSolid Inc.) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avpui.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18061.13911.0_x64__8wekyb3d8bbwe\Video.UI.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (KeepSolid Inc.) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files (x86)\VPN Unlimited\QtWebEngineProcess.exe (The OpenVPN Project) C:\Program Files (x86)\VPN Unlimited\openvpn.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18051.18420.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11807.1001.13.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechModelDownload.exe (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe ==================== Registry (All) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKLM\...\Winlogon: [Userinit] C:\WINDOWS\System32\Userinit.exe, [32256 2018-04-12] (Microsoft Corporation) HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [27136 2018-04-12] (Microsoft Corporation) HKLM\...\Winlogon: [Shell] explorer.exe [3932672 2018-07-06] (Microsoft Corporation) HKLM-x32\...\Winlogon: [Shell] explorer.exe [3611368 2018-07-06] (Microsoft Corporation) HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0 HKLM\...\Policies\Explorer: [NoActiveDesktop] 1 HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1 HKLM\...\Policies\Explorer: [NoRecentDocsHistory] 0 HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [20488312 2018-04-12] (Microsoft Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [20488312 2018-04-12] (Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation) HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\...\Run: [VPN Unlimited] => C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-launcher.exe [398152 2018-07-06] (KeepSolid Inc.) HKLM\...\Providers\Internet Print Provider: C:\WINDOWS\system32\inetpp.dll [174080 2018-04-12] (Microsoft Corporation) HKLM\...\Providers\LanMan Print Services: C:\WINDOWS\system32\win32spl.dll [836608 2018-04-12] (Microsoft Corporation) Lsa: [Authentication Packages] msv1_0 Lsa: [Notification Packages] scecli SecurityProviders: credssp.dll SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation) BootExecute: autocheck autochk * AlternateShell: cmd.exe ==================== Internet (All) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [24064 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [341920 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [67072 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [84992 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [84992 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 04 C:\Windows\system32\NLAapi.dll [80896 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 05 C:\Windows\System32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog5-x64 06 C:\Windows\System32\winrnr.dll [31232 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [401968 2018-04-12] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 10.208.0.1 Tcpip\..\Interfaces\{05ee6d76-be00-45fc-9229-900927d93e21}: [NameServer] 0.0.0.0 Tcpip\..\Interfaces\{05ee6d76-be00-45fc-9229-900927d93e21}: [DhcpNameServer] 10.53.174.34 Tcpip\..\Interfaces\{2ebea07f-435d-4e83-a616-c8ec8aba1999}: [NameServer] 0.0.0.0 Tcpip\..\Interfaces\{2ebea07f-435d-4e83-a616-c8ec8aba1999}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{bbebb03f-3ba5-42e5-913a-944bee795ee6}: [DhcpNameServer] 10.208.0.1 Tcpip\..\Interfaces\{f91343c4-6f82-49d0-95e9-b82f954b3856}: [DhcpNameServer] 10.200.0.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\Software\Microsoft\Internet Explorer\Main,EdgeReminderURL = hxxp://go.microsoft.com/fwlink/?LinkId=838604 URLSearchHook: HKU\S-1-5-21-2532843739-1787431547-1269948887-1001 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation) URLSearchHook: HKU\S-1-5-21-2532843739-1787431547-1269948887-1001 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation) SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-2532843739-1787431547-1269948887-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 SearchScopes: HKU\S-1-5-21-2532843739-1787431547-1269948887-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 BHO: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\IEExt\ie_plugin.dll [2018-07-17] (AO Kaspersky Lab) BHO-x32: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\IEExt\ie_plugin.dll [2018-07-17] (AO Kaspersky Lab) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-01-26] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-26] (Oracle Corporation) Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2018-04-12] (Microsoft Corporation) Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2018-04-12] (Microsoft Corporation) Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation) Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2018-05-21] (Microsoft Corporation) Handler-x32: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2018-05-21] (Microsoft Corporation) Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll [2018-04-12] (Microsoft Corporation) Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2018-04-12] (Microsoft Corporation) Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2018-07-06] (Microsoft Corporation) Handler-x32: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll [2006-10-26] (Microsoft Corporation) Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2018-05-21] (Microsoft Corporation) Handler-x32: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2018-05-21] (Microsoft Corporation) Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2018-06-08] (Microsoft Corporation) Handler-x32: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2018-06-08] (Microsoft Corporation) Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2018-04-12] (Microsoft Corporation) Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2018-04-12] (Microsoft Corporation) Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2018-07-06] (Microsoft Corporation) Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2018-06-08] (Microsoft Corporation) Handler-x32: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2018-06-08] (Microsoft Corporation) Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2018-04-12] (Microsoft Corporation) Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL [2006-10-27] (Microsoft Corporation) Filter-x32: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL [2006-10-27] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe Edge: ====== Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [2018-04-12] Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [2018-04-12] FireFox: ======== FF DefaultProfile: 5geabok7.default-1451838148255-1520428887763 FF ProfilePath: C:\Users\Windows 8.1\AppData\Roaming\Mozilla\Firefox\Profiles\5geabok7.default-1451838148255-1520428887763 [2018-07-21] FF Extension: (TLS 1.3 gradual roll-out) - C:\Users\Windows 8.1\AppData\Roaming\Mozilla\Firefox\Profiles\5geabok7.default-1451838148255-1520428887763\features\{2bd2d911-55b6-4349-8aba-1d45529bae74}\tls13-rollout-bug1442042@mozilla.org.xpi [2018-03-25] [Legacy] FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25] [Legacy] FF Extension: (Default) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Activity Stream) - C:\Program Files (x86)\Mozilla Firefox\browser\features\activity-stream@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Application Update Service Helper) - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Pocket) - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Follow-on Search Telemetry) - C:\Program Files (x86)\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Form Autofill) - C:\Program Files (x86)\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Photon onboarding) - C:\Program Files (x86)\Mozilla Firefox\browser\features\onboarding@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Firefox Screenshots) - C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF Extension: (Web Compat) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi [2018-07-01] [Legacy] [not signed] FF HKLM\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi [2018-07-17] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi FF HKLM-x32\...\Mozilla Firefox 60.0.2\Extensions: [Components] - C:\Program Files (x86)\Mozilla Firefox\components => not found FF HKLM-x32\...\Mozilla Firefox 60.0.2\Extensions: [Plugins] - C:\Program Files (x86)\Mozilla Firefox\plugins => not found FF HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\...\Firefox\Extensions: [{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}] - C:\Program Files (x86)\DAP\DAPFireFox => not found FF HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\...\Mozilla Firefox 60.0.2\Extensions: [Components] - C:\Program Files (x86)\Mozilla Firefox\components => not found FF HKU\S-1-5-21-2532843739-1787431547-1269948887-1001\...\Mozilla Firefox 60.0.2\Extensions: [Plugins] - C:\Program Files (x86)\Mozilla Firefox\plugins => not found FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_149.dll [2018-07-27] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_149.dll [2018-07-27] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-01-26] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-01-26] (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.) StartMenuInternet: FIREFOX.EXE - "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\channel-prefs.js [2018-01-19] Chrome: ======= CHR DefaultProfile: Default CHR StartupUrls: Default -> "hxxp://www.aol.com/" CHR Profile: C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default [2018-08-04] CHR Extension: (Docs) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Drive) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-31] CHR Extension: (YouTube) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-31] CHR Extension: (Avira Password Manager) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2018-08-04] CHR Extension: (Follow Feed | Feedly) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccmkbgknapokcjabmiaimipiepgpgbco [2018-01-05] CHR Extension: (Google Search) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-31] CHR Extension: (Avast Passwords) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2018-07-31] CHR Extension: (Google Docs Offline) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16] CHR Extension: (Pinterest Save Button) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2018-07-31] CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2018-07-31] CHR Extension: (Save to Feedly Board) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdhblphcdjcicefneapkhmleapfaocih [2018-01-05] CHR Extension: (Avira SafeSearch Plus) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2018-07-31] CHR Extension: (Skype) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-02] CHR Extension: (Take Webpage Screenshots Entirely - FireShot) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2018-05-21] CHR Extension: (Kaspersky Protection) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2018-01-14] CHR Extension: (Chrome Web Store Payments) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05] CHR Extension: (Buffer) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\noojglkidnpfjbincgijbaiedldjfbhh [2018-03-10] CHR Extension: (Gmail) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-25] CHR Extension: (Chrome Media Router) - C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-04] CHR Profile: C:\Users\Windows 8.1\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-26] CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk StartMenuInternet: Google Chrome - "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" CHR crx: C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\default_apps\docs.crx [2018-07-31] CHR crx: C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\default_apps\drive.crx [2018-07-31] CHR crx: C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\default_apps\gmail.crx [2018-07-31] CHR crx: C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\default_apps\youtube.crx [2018-07-31] ==================== Services (All) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2016-12-17] (Adobe Systems Incorporated) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [337408 2018-07-27] (Adobe Systems Incorporated) S3 AJRouter; C:\WINDOWS\System32\AJRouter.dll [25088 2018-04-12] (Microsoft Corporation) S3 ALG; C:\WINDOWS\System32\alg.exe [91136 2018-04-12] (Microsoft Corporation) S3 AppIDSvc; C:\WINDOWS\System32\appidsvc.dll [77312 2018-04-12] (Microsoft Corporation) R3 Appinfo; C:\WINDOWS\System32\appinfo.dll [166912 2018-04-12] (Microsoft Corporation) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-01-05] (Apple Inc.) S3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [197120 2018-04-12] (Microsoft Corporation) S3 AppMgmt; C:\WINDOWS\SysWOW64\appmgmts.dll [164864 2018-04-12] (Microsoft Corporation) S3 AppReadiness; C:\WINDOWS\system32\AppReadiness.dll [667648 2018-06-08] (Microsoft Corporation) S4 AppVClient; C:\WINDOWS\system32\AppVClient.exe [826776 2018-05-21] (Microsoft Corporation) R3 AppXSvc; C:\WINDOWS\system32\appxdeploymentserver.dll [3392512 2018-06-15] (Microsoft Corporation) S3 AssignedAccessManagerSvc; C:\WINDOWS\System32\assignedaccessmanagersvc.dll [604672 2018-04-12] (Microsoft Corporation) R2 AudioEndpointBuilder; C:\WINDOWS\System32\AudioEndpointBuilder.dll [684544 2018-06-15] (Microsoft Corporation) R2 Audiosrv; C:\WINDOWS\System32\Audiosrv.dll [1768448 2018-06-15] (Microsoft Corporation) R2 AVP18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe [354672 2017-01-24] (AO Kaspersky Lab) S3 AxInstSV; C:\WINDOWS\System32\AxInstSV.dll [110080 2018-04-12] (Microsoft Corporation) S3 BcastDVRUserService; C:\WINDOWS\System32\BcastDVRUserService.dll [1364992 2018-07-06] (Microsoft Corporation) R3 BcastDVRUserService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R3 BcastDVRUserService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 BDESVC; C:\WINDOWS\System32\bdesvc.dll [402944 2018-04-12] (Microsoft Corporation) R2 BFE; C:\WINDOWS\System32\bfe.dll [778752 2018-06-08] (Microsoft Corporation) S3 BITS; C:\WINDOWS\System32\qmgr.dll [1374208 2018-04-12] (Microsoft Corporation) S3 BluetoothUserService; C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll [464384 2018-04-12] (Microsoft Corporation) S3 BluetoothUserService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 BluetoothUserService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 BrokerInfrastructure; C:\WINDOWS\System32\bisrv.dll [847360 2018-06-15] (Microsoft Corporation) S3 Browser; C:\WINDOWS\System32\browser.dll [133632 2018-04-12] (Microsoft Corporation) S3 BTAGService; C:\WINDOWS\System32\BTAGService.dll [514048 2018-04-12] (Microsoft Corporation) S3 BthAvctpSvc; C:\WINDOWS\System32\BthAvctpSvc.dll [395264 2018-04-12] (Microsoft Corporation) S3 bthserv; C:\WINDOWS\system32\bthserv.dll [183808 2018-04-12] (Microsoft Corporation) R3 camsvc; C:\WINDOWS\system32\CapabilityAccessManager.dll [266752 2018-06-15] (Microsoft Corporation) S3 CaptureService; C:\WINDOWS\System32\CaptureService.dll [125952 2018-04-12] (Microsoft Corporation) S3 CaptureService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 CaptureService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 CDPSvc; C:\WINDOWS\System32\CDPSvc.dll [632320 2018-04-12] (Microsoft Corporation) S2 CDPUserSvc; C:\WINDOWS\System32\CDPUserSvc.dll [453120 2018-04-12] (Microsoft Corporation) R2 CDPUserSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R2 CDPUserSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 CertPropSvc; C:\WINDOWS\System32\certprop.dll [188928 2018-04-12] (Microsoft Corporation) R3 ClipSVC; C:\WINDOWS\System32\ClipSVC.dll [1033584 2018-04-12] (Microsoft Corporation) R2 CoreMessagingRegistrar; C:\WINDOWS\system32\coremessaging.dll [885856 2018-07-06] (Microsoft Corporation) R2 CoreMessagingRegistrar; C:\WINDOWS\SysWOW64\coremessaging.dll [567144 2018-07-06] (Microsoft Corporation) S3 cphs; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [494056 2017-10-20] (Intel Corporation) R2 CryptSvc; C:\WINDOWS\system32\cryptsvc.dll [94720 2018-04-12] (Microsoft Corporation) S3 CscService; C:\WINDOWS\System32\cscsvc.dll [727040 2018-04-12] (Microsoft Corporation) R2 DcomLaunch; C:\WINDOWS\system32\rpcss.dll [1160192 2018-06-08] (Microsoft Corporation) R3 defragsvc; C:\WINDOWS\System32\defragsvc.dll [491520 2018-04-12] (Microsoft Corporation) R2 DeviceAssociationService; C:\WINDOWS\system32\das.dll [463360 2018-04-12] (Microsoft Corporation) S3 DeviceInstall; C:\WINDOWS\system32\umpnpmgr.dll [119296 2018-04-12] (Microsoft Corporation) S3 DevicePickerUserSvc; C:\WINDOWS\System32\Windows.Devices.Picker.dll [400896 2018-04-12] (Microsoft Corporation) S3 DevicePickerUserSvc; C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll [312832 2018-04-12] (Microsoft Corporation) S3 DevicePickerUserSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 DevicePickerUserSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [750080 2018-04-12] (Microsoft Corporation) S3 DevicesFlowUserSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 DevicesFlowUserSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 DevQueryBroker; C:\WINDOWS\system32\DevQueryBroker.dll [33792 2018-04-12] (Microsoft Corporation) R2 Dhcp; C:\WINDOWS\system32\dhcpcore.dll [352768 2018-04-12] (Microsoft Corporation) R2 Dhcp; C:\WINDOWS\SysWOW64\dhcpcore.dll [317440 2018-04-12] (Microsoft Corporation) S3 diagnosticshub.standardcollector.service; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [90624 2018-04-12] (Microsoft Corporation) S3 diagsvc; C:\WINDOWS\system32\DiagSvc.dll [219648 2018-04-12] (Microsoft Corporation) R2 DiagTrack; C:\WINDOWS\system32\diagtrack.dll [3086336 2018-05-21] (Microsoft Corporation) S3 DmEnrollmentSvc; C:\WINDOWS\system32\Windows.Internal.Management.dll [827392 2018-06-15] (Microsoft Corporation) S3 DmEnrollmentSvc; C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll [593408 2018-06-15] (Microsoft Corporation) S3 dmwappushservice; C:\WINDOWS\system32\dmwappushsvc.dll [57856 2018-04-12] (Microsoft Corporation) R2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [300032 2018-04-12] (Microsoft Corporation) R2 DoSvc; C:\WINDOWS\system32\dosvc.dll [1458176 2018-04-12] (Microsoft Corporation) S3 dot3svc; C:\WINDOWS\System32\dot3svc.dll [252928 2018-04-12] (Microsoft Corporation) R2 DPS; C:\WINDOWS\system32\dps.dll [168448 2018-04-12] (Microsoft Corporation) S3 DsmSvc; C:\WINDOWS\System32\DeviceSetupManager.dll [235520 2018-06-15] (Microsoft Corporation) R3 DsSvc; C:\WINDOWS\System32\DsSvc.dll [149504 2018-06-08] (Microsoft Corporation) R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [356352 2018-04-12] (Microsoft Corporation) S3 Eaphost; C:\WINDOWS\System32\eapsvc.dll [109568 2018-04-12] (Microsoft Corporation) S3 EFS; C:\WINDOWS\system32\efssvc.dll [58880 2018-04-12] (Microsoft Corporation) S3 embeddedmode; C:\WINDOWS\System32\embeddedmodesvc.dll [167424 2018-04-12] (Microsoft Corporation) S3 EntAppSvc; C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll [307712 2018-04-12] (Microsoft Corporation) R2 EventLog; C:\WINDOWS\System32\wevtsvc.dll [1854976 2018-06-15] (Microsoft Corporation) R2 EventSystem; C:\WINDOWS\system32\es.dll [486400 2018-04-12] (Microsoft Corporation) R2 EventSystem; C:\WINDOWS\SysWOW64\es.dll [331264 2018-04-12] (Microsoft Corporation) S3 Fax; C:\WINDOWS\system32\fxssvc.exe [642048 2018-04-12] (Microsoft Corporation) S3 fdPHost; C:\WINDOWS\system32\fdPHost.dll [20992 2018-04-12] (Microsoft Corporation) S3 FDResPub; C:\WINDOWS\system32\fdrespub.dll [34816 2018-04-12] (Microsoft Corporation) S3 fhsvc; C:\WINDOWS\system32\fhsvc.dll [121344 2018-04-12] (Microsoft Corporation) R2 FontCache; C:\WINDOWS\system32\FntCache.dll [1919488 2018-04-12] (Microsoft Corporation) R3 FontCache3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43648 2018-05-21] (Microsoft Corporation) S3 FrameServer; C:\WINDOWS\system32\FrameServer.dll [673792 2018-06-08] (Microsoft Corporation) R2 gpsvc; C:\WINDOWS\System32\gpsvc.dll [1267712 2018-04-12] (Microsoft Corporation) S3 GraphicsPerfSvc; C:\WINDOWS\System32\GraphicsPerfSvc.dll [90624 2018-04-12] (Microsoft Corporation) S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-29] (Google Inc.) S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-29] (Google Inc.) R3 hidserv; C:\WINDOWS\system32\hidserv.dll [33792 2018-04-12] (Microsoft Corporation) R3 hidserv; C:\WINDOWS\SysWOW64\hidserv.dll [29696 2018-04-12] (Microsoft Corporation) S3 HvHost; C:\WINDOWS\System32\hvhostsvc.dll [60320 2018-04-12] (Microsoft Corporation) S3 icssvc; C:\WINDOWS\System32\tetheringservice.dll [241152 2018-04-12] (Microsoft Corporation) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel Corporation) S3 IKEEXT; C:\WINDOWS\System32\ikeext.dll [990208 2018-04-12] (Microsoft Corporation) S3 InstallService; C:\WINDOWS\system32\InstallService.dll [1487360 2018-06-15] (Microsoft Corporation) S3 InstallService; C:\WINDOWS\SysWOW64\InstallService.dll [1110528 2018-06-15] (Microsoft Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation) R2 iphlpsvc; C:\WINDOWS\System32\iphlpsvc.dll [786432 2018-04-12] (Microsoft Corporation) S3 iPod Service; C:\Program Files\iPod\bin\iPodService.exe [672568 2017-10-20] (Apple Inc.) S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [63488 2018-04-12] (Microsoft Corporation) S3 irmon; C:\WINDOWS\System32\irmon.dll [24576 2018-04-12] (Microsoft Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation) R3 KeyIso; C:\WINDOWS\system32\keyiso.dll [89088 2018-04-12] (Microsoft Corporation) R3 KeyIso; C:\WINDOWS\SysWOW64\keyiso.dll [70656 2018-04-12] (Microsoft Corporation) S3 klvssbridge64_18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\vssbridge64.exe [426416 2018-01-14] (AO Kaspersky Lab) R2 KSDE2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (AO Kaspersky Lab) S3 ksu; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-27] (AO Kaspersky Lab) S3 KtmRm; C:\WINDOWS\system32\msdtckrm.dll [368128 2018-04-12] (Microsoft Corporation) R2 LanmanServer; C:\WINDOWS\system32\srvsvc.dll [271360 2018-04-12] (Microsoft Corporation) R2 LanmanWorkstation; C:\WINDOWS\System32\wkssvc.dll [271872 2018-04-12] (Microsoft Corporation) R3 lfsvc; C:\WINDOWS\System32\lfsvc.dll [44544 2018-04-12] (Microsoft Corporation) R3 LicenseManager; C:\WINDOWS\system32\LicenseManagerSvc.dll [48640 2018-04-12] (Microsoft Corporation) S3 lltdsvc; C:\WINDOWS\System32\lltdsvc.dll [269312 2018-04-12] (Microsoft Corporation) R3 lmhosts; C:\WINDOWS\System32\lmhsvc.dll [26112 2018-04-12] (Microsoft Corporation) R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [390616 2013-09-16] (Intel Corporation) R2 LSM; C:\WINDOWS\System32\lsm.dll [671744 2018-04-12] (Microsoft Corporation) S3 LxpSvc; C:\WINDOWS\System32\LanguageOverlayServer.dll [199680 2018-04-12] (Microsoft Corporation) S2 MapsBroker; C:\WINDOWS\System32\moshost.dll [91136 2018-07-06] (Microsoft Corporation) S3 MessagingService; C:\WINDOWS\System32\MessagingService.dll [52224 2018-04-12] (Microsoft Corporation) S3 MessagingService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 MessagingService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation) S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [174544 2018-07-01] (Mozilla Foundation) R2 mpssvc; C:\WINDOWS\system32\mpssvc.dll [883712 2018-06-15] (Microsoft Corporation) S3 MSDTC; C:\WINDOWS\System32\msdtc.exe [148480 2018-04-12] (Microsoft Corporation) S3 MSiSCSI; C:\WINDOWS\system32\iscsiexe.dll [150528 2018-04-12] (Microsoft Corporation) S3 msiserver; C:\WINDOWS\System32\msiexec.exe [66048 2018-04-12] (Microsoft Corporation) S3 msiserver; C:\WINDOWS\SysWOW64\msiexec.exe [59904 2018-04-12] (Microsoft Corporation) S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [824832 2018-04-12] (Microsoft Corporation) S3 NcaSvc; C:\WINDOWS\System32\ncasvc.dll [167936 2018-04-12] (Microsoft Corporation) R3 NcbService; C:\WINDOWS\System32\ncbservice.dll [376832 2018-04-12] (Microsoft Corporation) S3 NcdAutoSetup; C:\WINDOWS\System32\NcdAutoSetup.dll [88064 2018-04-12] (Microsoft Corporation) S3 Netlogon; C:\WINDOWS\system32\netlogon.dll [773632 2018-04-12] (Microsoft Corporation) S3 Netlogon; C:\WINDOWS\SysWOW64\netlogon.dll [659456 2018-04-12] (Microsoft Corporation) S3 Netman; C:\WINDOWS\System32\netman.dll [262656 2018-04-12] (Microsoft Corporation) R3 netprofm; C:\WINDOWS\System32\netprofmsvc.dll [507392 2018-04-12] (Microsoft Corporation) S3 NetSetupSvc; C:\WINDOWS\System32\NetSetupSvc.dll [335360 2018-04-12] (Microsoft Corporation) S4 NetTcpPortSharing; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136296 2018-04-12] (Microsoft Corporation) R3 NgcCtnrSvc; C:\WINDOWS\System32\NgcCtnrSvc.dll [582144 2018-04-12] (Microsoft Corporation) R3 NgcSvc; C:\WINDOWS\system32\ngcsvc.dll [784896 2018-07-06] (Microsoft Corporation) R2 NlaSvc; C:\WINDOWS\System32\nlasvc.dll [367616 2018-04-12] (Microsoft Corporation) R2 nsi; C:\WINDOWS\system32\nsisvc.dll [30720 2018-04-12] (Microsoft Corporation) S3 odserv; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-27] (Microsoft Corporation) S2 OneSyncSvc; C:\WINDOWS\System32\APHostService.dll [324608 2018-04-10] (Microsoft Corporation) R2 OneSyncSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R2 OneSyncSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-27] (Microsoft Corporation) S3 p2pimsvc; C:\WINDOWS\system32\pnrpsvc.dll [343552 2018-04-12] (Microsoft Corporation) S3 p2psvc; C:\WINDOWS\system32\p2psvc.dll [424960 2018-04-12] (Microsoft Corporation) R3 PcaSvc; C:\WINDOWS\System32\pcasvc.dll [541592 2018-07-06] (Microsoft Corporation) S3 PeerDistSvc; C:\WINDOWS\system32\peerdistsvc.dll [1967104 2018-04-12] (Microsoft Corporation) S3 PerfHost; C:\WINDOWS\SysWow64\perfhost.exe [21504 2018-04-12] (Microsoft Corporation) S3 PhoneSvc; C:\WINDOWS\System32\PhoneService.dll [835584 2018-05-20] (Microsoft Corporation) S3 PimIndexMaintenanceSvc; C:\WINDOWS\System32\PimIndexMaintenance.dll [185856 2018-04-12] (Microsoft Corporation) R3 PimIndexMaintenanceSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R3 PimIndexMaintenanceSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) S3 pla; C:\WINDOWS\system32\pla.dll [1463296 2018-04-12] (Microsoft Corporation) S3 pla; C:\WINDOWS\SysWOW64\pla.dll [1537536 2018-04-12] (Microsoft Corporation) R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2102248 2017-12-13] (Plex, Inc.) R3 PlugPlay; C:\WINDOWS\system32\umpnpmgr.dll [119296 2018-04-12] (Microsoft Corporation) S3 PNRPAutoReg; C:\WINDOWS\system32\pnrpauto.dll [26624 2018-04-12] (Microsoft Corporation) S3 PNRPsvc; C:\WINDOWS\system32\pnrpsvc.dll [343552 2018-04-12] (Microsoft Corporation) S3 PolicyAgent; C:\WINDOWS\System32\ipsecsvc.dll [441856 2018-04-12] (Microsoft Corporation) R2 Power; C:\WINDOWS\system32\umpo.dll [152576 2018-04-12] (Microsoft Corporation) S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [3441152 2018-04-12] (Microsoft Corporation) S3 PrintWorkflowUserSvc; C:\WINDOWS\System32\PrintWorkflowService.dll [170496 2018-04-12] (Microsoft Corporation) S3 PrintWorkflowUserSvc; C:\WINDOWS\SysWOW64\PrintWorkflowService.dll [138240 2018-04-12] (Microsoft Corporation) S3 PrintWorkflowUserSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) S3 PrintWorkflowUserSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 ProfSvc; C:\WINDOWS\system32\profsvc.dll [394240 2018-04-12] (Microsoft Corporation) S3 PushToInstall; C:\WINDOWS\system32\PushToInstall.dll [262144 2018-04-12] (Microsoft Corporation) S3 QWAVE; C:\WINDOWS\system32\qwave.dll [278016 2018-04-12] (Microsoft Corporation) S3 QWAVE; C:\WINDOWS\SysWOW64\qwave.dll [236032 2018-04-12] (Microsoft Corporation) S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [104960 2018-04-12] (Microsoft Corporation) R2 RasMan; C:\WINDOWS\System32\rasmans.dll [932352 2018-06-08] (Microsoft Corporation) S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [497664 2018-04-12] (Microsoft Corporation) S4 RemoteAccess; C:\WINDOWS\SysWOW64\mprdim.dll [407552 2018-04-12] (Microsoft Corporation) S4 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [155648 2018-04-12] (Microsoft Corporation) S3 RetailDemo; C:\WINDOWS\system32\RDXService.dll [681984 2018-04-12] (Microsoft Corporation) S3 RmSvc; C:\WINDOWS\System32\RMapi.dll [153600 2018-04-12] (Microsoft Corporation) R2 RpcEptMapper; C:\WINDOWS\System32\RpcEpMap.dll [78336 2018-04-12] (Microsoft Corporation) S3 RpcLocator; C:\WINDOWS\system32\locator.exe [10752 2018-04-12] (Microsoft Corporation) R2 RpcSs; C:\WINDOWS\system32\rpcss.dll [1160192 2018-06-08] (Microsoft Corporation) R2 SamSs; C:\WINDOWS\system32\lsass.exe [57976 2018-04-12] (Microsoft Corporation) S3 SCardSvr; C:\WINDOWS\System32\SCardSvr.dll [258560 2018-04-12] (Microsoft Corporation) S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [198144 2018-04-12] (Microsoft Corporation) R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [889344 2018-04-12] (Microsoft Corporation) S3 SCPolicySvc; C:\WINDOWS\System32\certprop.dll [188928 2018-04-12] (Microsoft Corporation) S3 SDRSVC; C:\WINDOWS\System32\SDRSVC.dll [146944 2018-04-12] (Microsoft Corporation) S3 seclogon; C:\WINDOWS\system32\seclogon.dll [30720 2018-04-12] (Microsoft Corporation) R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [761440 2018-06-15] (Microsoft Corporation) S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1248768 2018-04-12] (Microsoft Corporation) R2 SENS; C:\WINDOWS\System32\sens.dll [73216 2018-04-12] (Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-04-12] (Microsoft Corporation) S3 SensorDataService; C:\WINDOWS\System32\SensorDataService.exe [1273344 2018-04-12] (Microsoft Corporation) S3 SensorService; C:\WINDOWS\system32\SensorService.dll [712192 2018-04-12] (Microsoft Corporation) S3 SensrSvc; C:\WINDOWS\system32\sensrsvc.dll [207872 2018-04-12] (Microsoft Corporation) S3 SessionEnv; C:\WINDOWS\system32\sessenv.dll [397312 2018-04-12] (Microsoft Corporation) S3 SessionEnv; C:\WINDOWS\SysWOW64\sessenv.dll [346112 2018-04-12] (Microsoft Corporation) R2 SgrmBroker; C:\WINDOWS\system32\SgrmBroker.exe [163336 2018-04-12] (Microsoft Corporation) S3 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [604672 2018-04-12] (Microsoft Corporation) S3 SharedRealitySvc; C:\WINDOWS\System32\SharedRealitySvc.dll [712704 2018-04-12] (Microsoft Corporation) R2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [613376 2018-04-12] (Microsoft Corporation) R2 ShellHWDetection; C:\WINDOWS\SysWOW64\shsvcs.dll [564736 2018-04-12] (Microsoft Corporation) S4 shpamsvc; C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [195584 2018-04-12] (Microsoft Corporation) S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [317408 2017-07-18] (Skype Technologies) S3 smphost; C:\WINDOWS\System32\smphost.dll [23552 2018-04-12] (Microsoft Corporation) S3 smphost; C:\WINDOWS\SysWOW64\smphost.dll [20992 2018-04-12] (Microsoft Corporation) S3 SmsRouter; C:\WINDOWS\system32\SmsRouterSvc.dll [590336 2018-04-12] (Microsoft Corporation) S3 SNMPTRAP; C:\WINDOWS\System32\snmptrap.exe [15360 2018-04-12] (Microsoft Corporation) S3 spectrum; C:\WINDOWS\system32\spectrum.exe [976384 2018-06-08] (Microsoft Corporation) R2 Spooler; C:\WINDOWS\System32\spoolsv.exe [768512 2018-04-12] (Microsoft Corporation) S2 sppsvc; C:\WINDOWS\system32\sppsvc.exe [4527680 2018-06-08] (Microsoft Corporation) R3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [228864 2018-04-12] (Microsoft Corporation) S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] () R3 SstpSvc; C:\WINDOWS\system32\sstpsvc.dll [207872 2018-04-12] (Microsoft Corporation) R3 StateRepository; C:\WINDOWS\system32\windows.staterepository.dll [4970360 2018-06-08] (Microsoft Corporation) R3 StateRepository; C:\WINDOWS\SysWOW64\windows.staterepository.dll [4469832 2018-06-08] (Microsoft Corporation) R2 stisvc; C:\WINDOWS\System32\wiaservc.dll [611840 2018-04-12] (Microsoft Corporation) R3 StorSvc; C:\WINDOWS\system32\storsvc.dll [960512 2018-05-20] (Microsoft Corporation) S3 svsvc; C:\WINDOWS\system32\svsvc.dll [13824 2018-04-12] (Microsoft Corporation) R3 swprv; C:\WINDOWS\System32\swprv.dll [467456 2018-04-12] (Microsoft Corporation) R2 SysMain; C:\WINDOWS\system32\sysmain.dll [972800 2018-04-12] (Microsoft Corporation) R2 SystemEventsBroker; C:\WINDOWS\System32\SystemEventsBrokerServer.dll [281600 2018-04-12] (Microsoft Corporation) R3 TabletInputService; C:\WINDOWS\System32\TabSvc.dll [221696 2018-04-12] (Microsoft Corporation) S3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [308224 2018-04-12] (Microsoft Corporation) S3 TapiSrv; C:\WINDOWS\SysWOW64\tapisrv.dll [254464 2018-04-12] (Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH) S3 TermService; C:\WINDOWS\System32\termsrv.dll [1030656 2018-04-12] (Microsoft Corporation) R2 Themes; C:\WINDOWS\system32\themeservice.dll [69632 2018-04-12] (Microsoft Corporation) S3 TieringEngineService; C:\WINDOWS\system32\TieringEngineService.exe [303616 2018-04-12] (Microsoft Corporation) R3 TimeBrokerSvc; C:\WINDOWS\System32\TimeBrokerServer.dll [176128 2018-04-12] (Microsoft Corporation) R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1395712 2018-07-06] (Microsoft Corporation) R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [999936 2018-07-06] (Microsoft Corporation) R2 TrkWks; C:\WINDOWS\System32\trkwks.dll [110592 2018-04-12] (Microsoft Corporation) S3 TrustedInstaller; C:\WINDOWS\servicing\TrustedInstaller.exe [131584 2018-04-11] (Microsoft Corporation) S4 tzautoupdate; C:\WINDOWS\system32\tzautoupdate.dll [92160 2018-04-12] (Microsoft Corporation) S4 tzautoupdate; C:\WINDOWS\SysWOW64\tzautoupdate.dll [72192 2018-04-12] (Microsoft Corporation) S4 UevAgentService; C:\WINDOWS\system32\AgentService.exe [1189376 2018-04-12] (Microsoft Corporation) S3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [367104 2018-04-12] (Microsoft Corporation) S3 UnistoreSvc; C:\WINDOWS\System32\unistore.dll [1220096 2018-04-12] (Microsoft Corporation) S3 UnistoreSvc; C:\WINDOWS\SysWOW64\unistore.dll [965632 2018-04-12] (Microsoft Corporation) R3 UnistoreSvc_3b868; C:\WINDOWS\System32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R3 UnistoreSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R3 upnphost; C:\WINDOWS\System32\upnphost.dll [451072 2018-04-12] (Microsoft Corporation) R3 upnphost; C:\WINDOWS\SysWOW64\upnphost.dll [331264 2018-04-12] (Microsoft Corporation) S3 UserDataSvc; C:\WINDOWS\System32\userdataservice.dll [1495040 2018-04-12] (Microsoft Corporation) R3 UserDataSvc_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R3 UserDataSvc_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 UserManager; C:\WINDOWS\System32\usermgr.dll [1027584 2018-04-12] (Microsoft Corporation) R2 UsoSvc; C:\WINDOWS\system32\usocore.dll [1374208 2018-06-15] (Microsoft Corporation) S3 VacSvc; C:\WINDOWS\System32\vac.dll [411256 2018-04-12] (Microsoft Corporation) R3 VaultSvc; C:\Windows\System32\vaultsvc.dll [345600 2018-04-12] (Microsoft Corporation) S3 vds; C:\WINDOWS\System32\vds.exe [642560 2018-04-12] (Microsoft Corporation) S3 vmicguestinterface; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmicheartbeat; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmickvpexchange; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmicrdv; C:\WINDOWS\System32\icsvcext.dll [309760 2018-04-12] (Microsoft Corporation) S3 vmicshutdown; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmictimesync; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmicvmsession; C:\WINDOWS\System32\icsvc.dll [289792 2018-04-12] (Microsoft Corporation) S3 vmicvss; C:\WINDOWS\System32\icsvcext.dll [309760 2018-04-12] (Microsoft Corporation) R2 VPNUnlimitedService; C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe [57160 2018-07-06] (KeepSolid Inc.) R3 VSS; C:\WINDOWS\system32\vssvc.exe [1540096 2018-04-12] (Microsoft Corporation) R3 W32Time; C:\WINDOWS\system32\w32time.dll [579584 2018-04-12] (Microsoft Corporation) S3 WaaSMedicSvc; C:\WINDOWS\System32\WaaSMedicSvc.dll [392704 2018-04-12] (Microsoft Corporation) S3 WalletService; C:\WINDOWS\system32\WalletService.dll [427520 2018-04-12] (Microsoft Corporation) S3 WarpJITSvc; C:\WINDOWS\System32\Windows.WARP.JITService.dll [31744 2018-04-12] (Microsoft Corporation) S3 wbengine; C:\WINDOWS\system32\wbengine.exe [1535488 2018-04-12] (Microsoft Corporation) R3 WbioSrvc; C:\WINDOWS\System32\wbiosrvc.dll [983040 2018-06-08] (Microsoft Corporation) R2 Wcmsvc; C:\WINDOWS\System32\wcmsvc.dll [949248 2018-06-15] (Microsoft Corporation) S3 wcncsvc; C:\WINDOWS\System32\wcncsvc.dll [468992 2018-04-12] (Microsoft Corporation) R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [315768 2016-08-05] (Western Digital Technologies, Inc.) R3 WdiServiceHost; C:\WINDOWS\system32\wdi.dll [99840 2018-04-12] (Microsoft Corporation) R3 WdiServiceHost; C:\WINDOWS\SysWOW64\wdi.dll [89088 2018-04-12] (Microsoft Corporation) R3 WdiSystemHost; C:\WINDOWS\system32\wdi.dll [99840 2018-04-12] (Microsoft Corporation) R3 WdiSystemHost; C:\WINDOWS\SysWOW64\wdi.dll [89088 2018-04-12] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation) S3 WebClient; C:\WINDOWS\System32\webclnt.dll [217088 2018-04-12] (Microsoft Corporation) S3 WebClient; C:\WINDOWS\SysWOW64\webclnt.dll [191488 2018-04-12] (Microsoft Corporation) S3 Wecsvc; C:\WINDOWS\system32\wecsvc.dll [202240 2018-04-12] (Microsoft Corporation) S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [27136 2018-04-12] (Microsoft Corporation) S3 wercplsupport; C:\WINDOWS\System32\wercplsupport.dll [119808 2018-04-12] (Microsoft Corporation) S3 WerSvc; C:\WINDOWS\System32\WerSvc.dll [204288 2018-04-12] (Microsoft Corporation) S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [637440 2018-04-12] (Microsoft Corporation) S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [81920 2018-04-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation) R3 WinHttpAutoProxySvc; C:\WINDOWS\system32\winhttp.dll [898760 2018-06-15] (Microsoft Corporation) R3 WinHttpAutoProxySvc; C:\WINDOWS\SysWOW64\winhttp.dll [719552 2018-06-15] (Microsoft Corporation) R2 Winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [224256 2018-04-12] (Microsoft Corporation) S3 WinRM; C:\WINDOWS\system32\WsmSvc.dll [2612736 2018-04-12] (Microsoft Corporation) S3 WinRM; C:\WINDOWS\SysWOW64\WsmSvc.dll [2378752 2018-04-12] (Microsoft Corporation) S3 wisvc; C:\WINDOWS\system32\flightsettings.dll [858112 2018-06-08] (Microsoft Corporation) S3 wisvc; C:\WINDOWS\SysWOW64\flightsettings.dll [729088 2018-06-08] (Microsoft Corporation) R2 WlanSvc; C:\WINDOWS\System32\wlansvc.dll [2583552 2018-06-15] (Microsoft Corporation) R3 wlidsvc; C:\WINDOWS\system32\wlidsvc.dll [2248192 2018-06-08] (Microsoft Corporation) S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1359360 2018-04-12] (Microsoft Corporation) S3 wmiApSrv; C:\WINDOWS\system32\wbem\WmiApSrv.exe [203264 2018-04-12] (Microsoft Corporation) R2 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1184256 2018-04-11] (Microsoft Corporation) S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [2197408 2018-04-12] (Microsoft Corporation) S3 WpcMonSvc; C:\WINDOWS\System32\WpcDesktopMonSvc.dll [1456640 2018-05-20] (Microsoft Corporation) S3 WPDBusEnum; C:\WINDOWS\system32\wpdbusenum.dll [82432 2018-06-15] (Microsoft Corporation) R2 WpnService; C:\WINDOWS\system32\WpnService.dll [280576 2018-04-12] (Microsoft Corporation) S2 WpnUserService; C:\WINDOWS\System32\WpnUserService.dll [96768 2018-04-12] (Microsoft Corporation) R2 WpnUserService_3b868; C:\WINDOWS\system32\svchost.exe [51288 2018-04-12] (Microsoft Corporation) R2 WpnUserService_3b868; C:\WINDOWS\SysWOW64\svchost.exe [44520 2018-04-12] (Microsoft Corporation) R2 wscsvc; C:\WINDOWS\System32\wscsvc.dll [266240 2018-04-12] (Microsoft Corporation) R2 WSearch; C:\WINDOWS\system32\SearchIndexer.exe [1057792 2018-04-12] (Microsoft Corporation) R2 WSearch; C:\WINDOWS\SysWOW64\SearchIndexer.exe [856064 2018-04-12] (Microsoft Corporation) R3 wuauserv; C:\WINDOWS\system32\wuaueng.dll [2903040 2018-06-15] (Microsoft Corporation) S3 WwanSvc; C:\WINDOWS\System32\wwansvc.dll [1679360 2018-04-12] (Microsoft Corporation) S3 xbgm; C:\WINDOWS\system32\xbgmsvc.exe [59512 2018-04-12] (Microsoft Corporation) R3 XblAuthManager; C:\WINDOWS\System32\XblAuthManager.dll [1115648 2018-04-12] (Microsoft Corporation) S3 XblGameSave; C:\WINDOWS\System32\XblGameSave.dll [1308672 2018-04-12] (Microsoft Corporation) S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [58880 2018-04-12] (Microsoft Corporation) S3 XboxNetApiSvc; C:\WINDOWS\system32\XboxNetApiSvc.dll [1148928 2018-04-12] (Microsoft Corporation) S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X] S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X] S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} S3 WD Backup Drive Helper; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B} S3 WD Backup Snapshot; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD} ===================== Drivers (All) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 1394ohci; C:\WINDOWS\System32\drivers\1394ohci.sys [237568 2018-04-12] (Microsoft Corporation) S0 3ware; C:\WINDOWS\System32\drivers\3ware.sys [107416 2018-04-12] (LSI) R0 ACPI; C:\WINDOWS\System32\drivers\ACPI.sys [654232 2018-04-12] (Microsoft Corporation) S3 AcpiDev; C:\WINDOWS\System32\drivers\AcpiDev.sys [20480 2018-04-12] (Microsoft Corporation) R0 acpiex; C:\WINDOWS\System32\Drivers\acpiex.sys [127904 2018-04-12] (Microsoft Corporation) S3 acpipagr; C:\WINDOWS\System32\drivers\acpipagr.sys [12800 2018-04-12] (Microsoft Corporation) S3 AcpiPmi; C:\WINDOWS\System32\drivers\acpipmi.sys [14848 2018-04-12] (Microsoft Corporation) S3 acpitime; C:\WINDOWS\System32\drivers\acpitime.sys [13824 2018-04-12] (Microsoft Corporation) S0 ADP80XX; C:\WINDOWS\System32\drivers\ADP80XX.SYS [1135520 2018-04-12] (PMC-Sierra) R1 AFD; C:\WINDOWS\system32\drivers\afd.sys [626592 2018-04-12] (Microsoft Corporation) R1 afunix; C:\WINDOWS\system32\drivers\afunix.sys [39424 2018-04-12] (Microsoft Corporation) R1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [29696 2018-04-12] (Microsoft Corporation) R1 ahcache; C:\WINDOWS\System32\DRIVERS\ahcache.sys [254464 2018-04-12] (Microsoft Corporation) S3 AmdK8; C:\WINDOWS\System32\drivers\amdk8.sys [181760 2018-04-12] (Microsoft Corporation) S3 AmdPPM; C:\WINDOWS\System32\drivers\amdppm.sys [179712 2018-04-12] (Microsoft Corporation) S0 amdsata; C:\WINDOWS\System32\drivers\amdsata.sys [83360 2018-04-12] (Advanced Micro Devices) S0 amdsbs; C:\WINDOWS\System32\drivers\amdsbs.sys [259480 2018-04-12] (AMD Technologies Inc.) S0 amdxata; C:\WINDOWS\System32\drivers\amdxata.sys [27032 2018-04-12] (Advanced Micro Devices) S3 AppID; C:\WINDOWS\System32\drivers\appid.sys [192928 2018-04-12] (Microsoft Corporation) S3 applockerfltr; C:\WINDOWS\System32\drivers\applockerfltr.sys [18432 2018-04-12] (Microsoft Corporation) S3 AppvStrm; C:\WINDOWS\system32\drivers\AppvStrm.sys [127384 2018-04-12] (Microsoft Corporation) S3 AppvVemgr; C:\WINDOWS\system32\drivers\AppvVemgr.sys [162712 2018-04-12] (Microsoft Corporation) S3 AppvVfs; C:\WINDOWS\system32\drivers\AppvVfs.sys [143768 2018-04-12] (Microsoft Corporation) S0 arcsas; C:\WINDOWS\System32\drivers\arcsas.sys [132000 2018-04-12] (PMC-Sierra, Inc.) S3 AsyncMac; C:\WINDOWS\System32\drivers\asyncmac.sys [28672 2018-04-12] (Microsoft Corporation) R0 atapi; C:\WINDOWS\System32\drivers\atapi.sys [28568 2018-04-12] (Microsoft Corporation) R3 athur; C:\WINDOWS\System32\drivers\athuwbx.sys [2702336 2013-11-21] (Qualcomm Atheros Communications, Inc.) S0 b06bdrv; C:\WINDOWS\System32\drivers\bxvbda.sys [533912 2018-04-12] (QLogic Corporation) R1 bam; C:\WINDOWS\System32\drivers\bam.sys [60320 2018-04-12] (Microsoft Corporation) R1 BasicDisplay; C:\WINDOWS\System32\drivers\BasicDisplay.sys [63488 2018-04-12] (Microsoft Corporation) R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [34816 2018-04-12] (Microsoft Corporation) U5 BattC; C:\Windows\System32\Drivers\BattC.sys [39840 2018-04-12] (Microsoft Corporation) S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [9728 2018-04-12] (Windows (R) Win 7 DDK provider) R1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2018-04-12] (Microsoft Corporation) S3 bindflt; C:\WINDOWS\system32\drivers\bindflt.sys [92056 2018-04-12] (Microsoft Corporation) R3 bowser; C:\WINDOWS\System32\DRIVERS\bowser.sys [101888 2018-04-12] (Microsoft Corporation) S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [112128 2018-04-12] (Microsoft Corporation) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [67072 2018-04-12] (Microsoft Corporation) S0 bttflt; C:\WINDOWS\System32\drivers\bttflt.sys [38304 2018-04-12] (Microsoft Corporation) S3 buttonconverter; C:\WINDOWS\System32\drivers\buttonconverter.sys [39936 2018-04-12] (Microsoft Corporation) S3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [60320 2018-04-12] (Microsoft Corporation) S3 CapImg; C:\WINDOWS\System32\drivers\capimg.sys [123392 2018-04-12] (Microsoft Corporation) S4 cdfs; C:\WINDOWS\System32\DRIVERS\cdfs.sys [93696 2018-04-12] (Microsoft Corporation) R1 cdrom; C:\WINDOWS\System32\drivers\cdrom.sys [159744 2018-06-15] (Microsoft Corporation) S0 cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [321432 2018-04-12] (Chelsio Communications) S3 cht4vbd; C:\WINDOWS\System32\drivers\cht4vx64.sys [1836952 2018-04-12] (Chelsio Communications) S3 circlass; C:\WINDOWS\System32\drivers\circlass.sys [49152 2018-04-12] (Microsoft Corporation) R2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [414208 2018-04-12] (Microsoft Corporation) R0 CLFS; C:\WINDOWS\System32\drivers\CLFS.sys [382872 2018-05-21] (Microsoft Corporation) R3 clwvd; C:\WINDOWS\system32\DRIVERS\clwvd.sys [31216 2011-04-14] (CyberLink Corporation) S3 CmBatt; C:\WINDOWS\System32\drivers\CmBatt.sys [32256 2018-04-12] (Microsoft Corporation) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (AO Kaspersky Lab) R0 CNG; C:\WINDOWS\System32\Drivers\cng.sys [709824 2018-07-06] (Microsoft Corporation) S4 cnghwassist; C:\WINDOWS\System32\DRIVERS\cnghwassist.sys [39328 2018-04-12] (Microsoft Corporation) R3 CompositeBus; C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys [40448 2018-04-12] (Microsoft Corporation) R3 condrv; C:\WINDOWS\System32\drivers\condrv.sys [55200 2018-04-12] (Microsoft Corporation) R1 CSC; C:\WINDOWS\System32\drivers\csc.sys [561152 2018-04-12] (Microsoft Corporation) S1 dam; C:\WINDOWS\System32\drivers\dam.sys [91544 2018-04-12] (Microsoft Corporation) R1 Dfsc; C:\WINDOWS\System32\Drivers\dfsc.sys [141312 2018-06-15] (Microsoft Corporation) R0 Disk; C:\WINDOWS\System32\drivers\disk.sys [94112 2018-04-12] (Microsoft Corporation) S3 dmvsc; C:\WINDOWS\System32\drivers\dmvsc.sys [47104 2018-04-12] (Microsoft Corporation) S3 drmkaud; C:\WINDOWS\System32\drivers\drmkaud.sys [16232 2018-04-12] (Microsoft Corporation) R1 DXGKrnl; C:\WINDOWS\System32\drivers\dxgkrnl.sys [2830240 2018-06-15] (Microsoft Corporation) S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3419032 2018-04-12] (QLogic Corporation) R0 EhStorClass; C:\WINDOWS\System32\drivers\EhStorClass.sys [88472 2018-04-12] (Microsoft Corporation) S0 EhStorTcgDrv; C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys [118680 2018-04-12] (Microsoft Corporation) S3 ErrDev; C:\WINDOWS\System32\drivers\errdev.sys [13824 2018-04-12] (Microsoft Corporation) S3 exfat; C:\Windows\System32\Drivers\exfat.sys [357888 2018-04-12] (Microsoft Corporation) S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [375200 2018-04-12] (Microsoft Corporation) S3 fdc; C:\WINDOWS\System32\drivers\fdc.sys [32768 2018-04-12] (Microsoft Corporation) R1 FileCrypt; C:\WINDOWS\System32\drivers\filecrypt.sys [55808 2018-04-12] (Microsoft Corporation) R0 FileInfo; C:\WINDOWS\System32\drivers\fileinfo.sys [86432 2018-04-12] (Microsoft Corporation) S3 Filetrace; C:\WINDOWS\System32\drivers\filetrace.sys [36352 2018-04-12] (Microsoft Corporation) S3 flpydisk; C:\WINDOWS\System32\drivers\flpydisk.sys [26624 2018-04-12] (Microsoft Corporation) R0 FltMgr; C:\WINDOWS\System32\drivers\fltmgr.sys [402848 2018-04-12] (Microsoft Corporation) S3 FsDepends; C:\WINDOWS\System32\drivers\FsDepends.sys [62872 2018-04-12] (Microsoft Corporation) U0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [34208 2018-04-12] (Microsoft Corporation) R0 fvevol; C:\WINDOWS\System32\DRIVERS\fvevol.sys [744864 2018-04-12] (Microsoft Corporation) S3 gencounter; C:\WINDOWS\System32\drivers\vmgencounter.sys [13312 2018-04-12] (Microsoft Corporation) S3 genericusbfn; C:\WINDOWS\System32\drivers\genericusbfn.sys [20992 2018-04-12] (Microsoft Corporation) S3 GPIOClx0101; C:\WINDOWS\System32\Drivers\msgpioclx.sys [169368 2018-04-12] (Microsoft Corporation) R1 GpuEnergyDrv; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [8192 2018-04-12] (Microsoft Corporation) R3 HDAudBus; C:\WINDOWS\System32\drivers\HDAudBus.sys [86016 2018-04-12] (Microsoft Corporation) S3 HidBatt; C:\WINDOWS\System32\drivers\HidBatt.sys [38304 2018-04-12] (Microsoft Corporation) S3 HidBth; C:\WINDOWS\System32\drivers\hidbth.sys [115200 2018-04-12] (Microsoft Corporation) S3 hidi2c; C:\WINDOWS\System32\drivers\hidi2c.sys [54272 2018-04-12] (Microsoft Corporation) S3 hidinterrupt; C:\WINDOWS\System32\drivers\hidinterrupt.sys [50592 2018-04-12] (Microsoft Corporation) S3 HidIr; C:\WINDOWS\System32\drivers\hidir.sys [47104 2018-04-12] (Microsoft Corporation) R3 HidUsb; C:\WINDOWS\System32\drivers\hidusb.sys [42496 2018-04-12] (Microsoft Corporation) S3 hmatap; C:\WINDOWS\System32\drivers\hmatap.sys [36456 2017-10-31] (The OpenVPN Project) S0 HpSAMD; C:\WINDOWS\System32\drivers\HpSAMD.sys [64408 2018-04-12] (Hewlett-Packard Company) R3 HTTP; C:\WINDOWS\System32\drivers\HTTP.sys [1026464 2018-07-06] (Microsoft Corporation) S4 hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [33184 2018-04-12] (Microsoft Corporation) S3 hvservice; C:\WINDOWS\System32\drivers\hvservice.sys [73632 2018-04-12] (Microsoft Corporation) S3 HwNClx0101; C:\WINDOWS\System32\Drivers\mshwnclx.sys [27136 2018-04-12] (Microsoft Corporation) S0 hwpolicy; C:\WINDOWS\System32\drivers\hwpolicy.sys [29592 2018-04-12] (Microsoft Corporation) S3 hyperkbd; C:\WINDOWS\System32\drivers\hyperkbd.sys [16896 2018-04-12] (Microsoft Corporation) S3 HyperVideo; C:\WINDOWS\System32\drivers\HyperVideo.sys [28672 2018-04-12] (Microsoft Corporation) S3 i8042prt; C:\WINDOWS\System32\drivers\i8042prt.sys [105984 2018-04-12] (Microsoft Corporation) S3 iagpio; C:\WINDOWS\System32\drivers\iagpio.sys [36864 2018-04-12] (Intel(R) Corporation) S3 iai2c; C:\WINDOWS\System32\drivers\iai2c.sys [91648 2018-04-12] (Intel(R) Corporation) S3 iaLPSS2i_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360 2018-04-12] (Intel Corporation) S3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576 2018-04-12] (Intel Corporation) S3 iaLPSS2i_I2C; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520 2018-04-12] (Intel Corporation) S3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592 2018-04-12] (Intel Corporation) S3 iaLPSSi_GPIO; C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128 2018-04-12] (Intel Corporation) S3 iaLPSSi_I2C; C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152 2018-04-12] (Intel Corporation) S0 iaStorAVC; C:\WINDOWS\System32\drivers\iaStorAVC.sys [885144 2018-04-12] (Intel Corporation) S0 iaStorV; C:\WINDOWS\System32\drivers\iaStorV.sys [412064 2018-04-12] (Intel Corporation) S3 ibbus; C:\WINDOWS\System32\drivers\ibbus.sys [526232 2018-04-12] (Mellanox) R3 igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [7963632 2017-10-20] (Intel Corporation) S3 IndirectKmd; C:\WINDOWS\System32\drivers\IndirectKmd.sys [38912 2018-04-12] (Microsoft Corporation) S3 intaud_WaveExtensible; C:\WINDOWS\system32\drivers\intelaud.sys [38296 2014-03-01] (Intel Corporation) R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTKVHD64.sys [3591000 2013-08-21] (Realtek Semiconductor Corp.) S3 IntcDAud; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [481768 2016-05-12] (Intel(R) Corporation) S0 intelide; C:\WINDOWS\System32\drivers\intelide.sys [19360 2018-04-12] (Microsoft Corporation) R0 intelpep; C:\WINDOWS\System32\drivers\intelpep.sys [177192 2018-04-12] (Microsoft Corporation) R3 intelppm; C:\WINDOWS\System32\drivers\intelppm.sys [200704 2018-04-12] (Microsoft Corporation) R0 iorate; C:\WINDOWS\System32\drivers\iorate.sys [58272 2018-04-12] (Microsoft Corporation) S3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [85504 2018-04-12] (Microsoft Corporation) S3 IPMIDRV; C:\WINDOWS\System32\drivers\IPMIDrv.sys [92064 2018-04-12] (Microsoft Corporation) S3 IPNAT; C:\WINDOWS\System32\drivers\ipnat.sys [214528 2018-04-12] (Microsoft Corporation) S3 IPT; C:\WINDOWS\System32\drivers\ipt.sys [32256 2018-04-12] (Microsoft Corporation) S3 irda; C:\WINDOWS\system32\drivers\irda.sys [119808 2018-04-12] (Microsoft Corporation) S3 IRENUM; C:\WINDOWS\System32\drivers\irenum.sys [19968 2018-04-12] (Microsoft Corporation) S0 isapnp; C:\WINDOWS\System32\drivers\isapnp.sys [22944 2018-04-12] (Microsoft Corporation) S3 iScsiPrt; C:\WINDOWS\System32\drivers\msiscsi.sys [280984 2018-04-12] (Microsoft Corporation) S0 ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [145816 2018-04-12] (Avago Technologies) R3 kbdclass; C:\WINDOWS\System32\drivers\kbdclass.sys [63904 2018-04-12] (Microsoft Corporation) R3 kbdhid; C:\WINDOWS\System32\drivers\kbdhid.sys [40448 2018-04-12] (Microsoft Corporation) R3 kdnic; C:\WINDOWS\System32\drivers\kdnic.sys [23040 2018-04-12] (Microsoft Corporation) R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554408 2016-10-01] (AO Kaspersky Lab) R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-25] (AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [120008 2018-05-04] (AO Kaspersky Lab) R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [85704 2018-07-17] (AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [29816 2016-10-14] (AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [207560 2018-05-04] (AO Kaspersky Lab) R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1193160 2018-07-17] (AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1058504 2018-07-17] (AO Kaspersky Lab) R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57032 2018-05-04] (AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [57056 2016-12-23] (AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [58592 2016-12-07] (AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [50672 2017-12-25] (AO Kaspersky Lab) R3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [44768 2017-01-20] (AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [236488 2018-05-25] (AO Kaspersky Lab) R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2018-01-14] (AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [258864 2018-05-25] (AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [109248 2018-05-25] (AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [177848 2018-06-23] (AO Kaspersky Lab) S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [93888 2018-02-19] (AO Kaspersky Lab) R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [141000 2018-07-17] (AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-12-25] (AO Kaspersky Lab) R0 KSecDD; C:\WINDOWS\System32\Drivers\ksecdd.sys [139672 2018-07-06] (Microsoft Corporation) R0 KSecPkg; C:\WINDOWS\System32\Drivers\ksecpkg.sys [170912 2018-07-06] (Microsoft Corporation) R3 ksthunk; C:\WINDOWS\system32\drivers\ksthunk.sys [27136 2018-04-12] (Microsoft Corporation) R2 lltdio; C:\WINDOWS\System32\drivers\lltdio.sys [65024 2018-04-12] (Microsoft Corporation) S0 LSI_SAS; C:\WINDOWS\System32\drivers\lsi_sas.sys [108952 2018-04-12] (LSI Corporation) S0 LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [124312 2018-04-12] (LSI Corporation) S0 LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [128408 2018-04-12] (Avago Technologies) S0 LSI_SSS; C:\WINDOWS\System32\drivers\lsi_sss.sys [82848 2018-04-12] (LSI Corporation) R2 luafv; C:\WINDOWS\system32\drivers\luafv.sys [128000 2018-04-12] (Microsoft Corporation) S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [505240 2018-04-12] (Microsoft Corporation) S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [56736 2018-04-12] (Microsoft Corporation) S0 megasas; C:\WINDOWS\System32\drivers\megasas.sys [59800 2018-04-12] (Avago Technologies) S0 megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [75160 2018-04-12] (Avago Technologies) S0 megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [82328 2018-04-12] (Avago Technologies) S0 megasr; C:\WINDOWS\System32\drivers\megasr.sys [575896 2018-04-12] (LSI Corporation, Inc.) R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation) S3 mlx4_bus; C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648 2018-04-12] (Mellanox) R2 MMCSS; C:\WINDOWS\system32\drivers\mmcss.sys [43520 2018-04-12] (Microsoft Corporation) S3 Modem; C:\WINDOWS\System32\drivers\modem.sys [42496 2018-04-12] (Microsoft Corporation) R3 monitor; C:\WINDOWS\System32\drivers\monitor.sys [44544 2018-04-12] (Microsoft Corporation) R3 mouclass; C:\WINDOWS\System32\drivers\mouclass.sys [56728 2018-04-12] (Microsoft Corporation) R3 mouhid; C:\WINDOWS\System32\drivers\mouhid.sys [33280 2018-04-12] (Microsoft Corporation) R0 mountmgr; C:\WINDOWS\System32\drivers\mountmgr.sys [104352 2018-04-12] (Microsoft Corporation) R3 mpsdrv; C:\WINDOWS\System32\drivers\mpsdrv.sys [75776 2018-07-06] (Microsoft Corporation) S3 MRxDAV; C:\WINDOWS\system32\drivers\mrxdav.sys [144384 2018-06-08] (Microsoft Corporation) R3 mrxsmb; C:\WINDOWS\System32\DRIVERS\mrxsmb.sys [500632 2018-04-12] (Microsoft Corporation) R3 mrxsmb20; C:\WINDOWS\System32\DRIVERS\mrxsmb20.sys [226208 2018-04-12] (Microsoft Corporation) S3 MsBridge; C:\WINDOWS\System32\drivers\bridge.sys [116736 2018-04-12] (Microsoft Corporation) R1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [31232 2018-04-12] (Microsoft Corporation) S3 msgpiowin32; C:\WINDOWS\System32\drivers\msgpiowin32.sys [50592 2018-04-12] (Microsoft Corporation) S3 mshidkmdf; C:\WINDOWS\System32\drivers\mshidkmdf.sys [8704 2018-04-12] (Microsoft Corporation) S3 mshidumdf; C:\WINDOWS\System32\drivers\mshidumdf.sys [11776 2018-04-12] (Microsoft Corporation) R0 msisadrv; C:\WINDOWS\System32\drivers\msisadrv.sys [18848 2018-04-12] (Microsoft Corporation) S3 MSKSSRV; C:\WINDOWS\System32\drivers\MSKSSRV.sys [32256 2018-06-08] (Microsoft Corporation) R2 MsLldp; C:\WINDOWS\System32\drivers\mslldp.sys [84480 2018-04-12] (Microsoft Corporation) S3 MSPCLOCK; C:\WINDOWS\System32\drivers\MSPCLOCK.sys [10752 2018-04-12] (Microsoft Corporation) S3 MSPQM; C:\WINDOWS\System32\drivers\MSPQM.sys [10752 2018-04-12] (Microsoft Corporation) S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [375712 2018-06-08] (Microsoft Corporation) R0 MsSecFlt; C:\WINDOWS\System32\drivers\mssecflt.sys [304032 2018-04-12] (Microsoft Corporation) R1 mssmbios; C:\WINDOWS\System32\drivers\mssmbios.sys [40864 2018-04-12] (Microsoft Corporation) S3 MSTEE; C:\WINDOWS\System32\drivers\MSTEE.sys [12800 2018-04-12] (Microsoft Corporation) S3 MTConfig; C:\WINDOWS\System32\drivers\MTConfig.sys [16896 2018-04-12] (Microsoft Corporation) R0 Mup; C:\WINDOWS\System32\Drivers\mup.sys [124832 2018-04-12] (Microsoft Corporation) S0 mvumis; C:\WINDOWS\System32\drivers\mvumis.sys [63904 2018-04-12] (Marvell Semiconductor, Inc.) R3 NativeWifiP; C:\WINDOWS\System32\DRIVERS\nwifi.sys [528384 2018-04-12] (Microsoft Corporation) S3 ndfltr; C:\WINDOWS\System32\drivers\ndfltr.sys [108952 2018-04-12] (Mellanox) R0 NDIS; C:\WINDOWS\System32\drivers\ndis.sys [1285536 2018-04-12] (Microsoft Corporation) S3 NdisCap; C:\WINDOWS\System32\drivers\ndiscap.sys [53760 2018-04-12] (Microsoft Corporation) S3 NdisImPlatform; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [128512 2018-04-12] (Microsoft Corporation) R3 NdisTapi; C:\WINDOWS\System32\DRIVERS\ndistapi.sys [27136 2018-04-12] (Microsoft Corporation) R3 Ndisuio; C:\WINDOWS\System32\drivers\ndisuio.sys [65024 2018-04-12] (Microsoft Corporation) R3 NdisVirtualBus; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [20992 2018-04-12] (Microsoft Corporation) R3 NdisWan; C:\WINDOWS\System32\drivers\ndiswan.sys [192512 2018-04-12] (Microsoft Corporation) S3 ndiswanlegacy; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [192512 2018-04-12] (Microsoft Corporation) R3 ndproxy; C:\WINDOWS\System32\DRIVERS\NDProxy.sys [63488 2018-04-12] (Microsoft Corporation) R2 Ndu; C:\WINDOWS\System32\drivers\Ndu.sys [128000 2018-04-12] (Microsoft Corporation) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [175104 2018-04-12] (Microsoft Corporation) R1 NetBIOS; C:\WINDOWS\System32\drivers\netbios.sys [58264 2018-04-12] (Microsoft Corporation) R1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [311296 2018-04-12] (Microsoft Corporation) S3 netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [197632 2018-04-12] (Microsoft Corporation) R1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [73216 2018-04-12] (Microsoft Corporation) R1 npsvctrig; C:\WINDOWS\System32\drivers\npsvctrig.sys [26112 2018-04-12] (Microsoft Corporation) R1 nsiproxy; C:\WINDOWS\System32\drivers\nsiproxy.sys [44544 2018-04-12] (Microsoft Corporation) R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [2420632 2018-07-06] (Microsoft Corporation) R1 Null; C:\Windows\System32\Drivers\Null.sys [7168 2018-04-12] (Microsoft Corporation) S3 nvdimm; C:\WINDOWS\System32\drivers\nvdimm.sys [104448 2018-04-12] (Microsoft Corporation) S0 nvraid; C:\WINDOWS\System32\drivers\nvraid.sys [150424 2018-04-12] (NVIDIA Corporation) S0 nvstor; C:\WINDOWS\System32\drivers\nvstor.sys [166304 2018-04-12] (NVIDIA Corporation) S3 Parport; C:\WINDOWS\System32\drivers\parport.sys [98816 2018-04-12] (Microsoft Corporation) R0 partmgr; C:\WINDOWS\System32\drivers\partmgr.sys [166816 2018-04-12] (Microsoft Corporation) R0 pci; C:\WINDOWS\System32\drivers\pci.sys [375712 2018-04-12] (Microsoft Corporation) R0 pciide; C:\WINDOWS\System32\drivers\pciide.sys [16288 2018-04-12] (Microsoft Corporation) S0 pcmcia; C:\WINDOWS\System32\drivers\pcmcia.sys [120216 2018-04-12] (Microsoft Corporation) R0 pcw; C:\WINDOWS\System32\drivers\pcw.sys [53152 2018-04-12] (Microsoft Corporation) R0 pdc; C:\WINDOWS\System32\drivers\pdc.sys [140192 2018-04-12] (Microsoft Corporation) R2 PEAUTH; C:\WINDOWS\System32\drivers\peauth.sys [726528 2018-04-12] (Microsoft Corporation) S0 percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [58776 2018-04-12] (Avago Technologies) S0 percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [61848 2018-04-12] (Avago Technologies) S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2017-10-25] (The OpenVPN Project) S3 pmem; C:\WINDOWS\System32\drivers\pmem.sys [105984 2018-04-12] (Microsoft Corporation) S3 PNPMEM; C:\WINDOWS\System32\drivers\pnpmem.sys [16896 2018-04-12] (Microsoft Corporation) R3 PptpMiniport; C:\WINDOWS\System32\drivers\raspptp.sys [97280 2018-04-12] (Microsoft Corporation) S3 Processor; C:\WINDOWS\System32\drivers\processr.sys [178176 2018-04-12] (Microsoft Corporation) R1 Psched; C:\WINDOWS\System32\drivers\pacer.sys [152984 2018-04-12] (Microsoft Corporation) S3 QWAVEdrv; C:\WINDOWS\system32\drivers\qwavedrv.sys [49152 2018-04-12] (Microsoft Corporation) S0 Ramdisk; C:\WINDOWS\System32\DRIVERS\ramdisk.sys [39840 2018-04-12] (Microsoft Corporation) S3 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [17408 2018-04-12] (Microsoft Corporation) R3 RasAgileVpn; C:\WINDOWS\System32\drivers\AgileVpn.sys [108032 2018-04-12] (Microsoft Corporation) R3 Rasl2tp; C:\WINDOWS\System32\drivers\rasl2tp.sys [106496 2018-04-12] (Microsoft Corporation) R3 RasPppoe; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [82944 2018-04-12] (Microsoft Corporation) R3 RasSstp; C:\WINDOWS\System32\drivers\rassstp.sys [78848 2018-04-12] (Microsoft Corporation) R1 rdbss; C:\WINDOWS\System32\DRIVERS\rdbss.sys [433560 2018-06-15] (Microsoft Corporation) R3 rdpbus; C:\WINDOWS\System32\drivers\rdpbus.sys [27136 2018-04-12] (Microsoft Corporation) S3 RDPDR; C:\WINDOWS\System32\drivers\rdpdr.sys [182784 2018-06-15] (Microsoft Corporation) S3 RdpVideoMiniport; C:\WINDOWS\System32\drivers\rdpvideominiport.sys [30616 2018-04-12] (Microsoft Corporation) R0 rdyboost; C:\WINDOWS\System32\drivers\rdyboost.sys [284064 2018-04-12] (Microsoft Corporation) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [1921944 2018-06-15] (Microsoft Corporation) S3 ReFSv1; C:\Windows\System32\Drivers\ReFSv1.sys [945568 2018-06-15] (Microsoft Corporation) S3 rhproxy; C:\WINDOWS\System32\drivers\rhproxy.sys [104448 2018-04-12] (Microsoft Corporation) R2 rspndr; C:\WINDOWS\System32\drivers\rspndr.sys [81920 2018-04-12] (Microsoft Corporation) S3 rspRegMon; C:\WINDOWS\System32\DRIVERS\rspRegMon64.sys [27392 2016-04-12] (Resplendence Software Projects Sp.) R3 RSUSBVSTOR; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [330968 2013-12-16] (Realtek Semiconductor Corp.) R2 RtkIOAC60; C:\WINDOWS\system32\DRIVERS\RtkIOAC60.sys [29912 2013-07-19] (Realtek semiconductor corp) R3 RTL8168; C:\WINDOWS\System32\drivers\Rt630x64.sys [816344 2013-06-21] (Realtek ) S3 s3cap; C:\WINDOWS\System32\drivers\vms3cap.sys [9216 2018-04-12] (Microsoft Corporation) S0 sbp2port; C:\WINDOWS\System32\drivers\sbp2port.sys [109984 2018-04-12] (Microsoft Corporation) S3 scfilter; C:\WINDOWS\System32\DRIVERS\scfilter.sys [43008 2018-04-12] (Microsoft Corporation) S0 scmbus; C:\WINDOWS\System32\drivers\scmbus.sys [128416 2018-04-12] (Microsoft Corporation) S3 sdbus; C:\WINDOWS\System32\drivers\sdbus.sys [287128 2018-04-12] (Microsoft Corporation) S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [33176 2018-04-12] (Microsoft Corporation) S3 sdstor; C:\WINDOWS\System32\drivers\sdstor.sys [97176 2018-04-12] (Microsoft Corporation) S3 SerCx; C:\WINDOWS\System32\drivers\SerCx.sys [75680 2018-04-12] (Microsoft Corporation) S3 SerCx2; C:\WINDOWS\System32\drivers\SerCx2.sys [154528 2018-04-12] (Microsoft Corporation) S3 Serenum; C:\WINDOWS\System32\drivers\serenum.sys [25088 2018-04-12] (Microsoft Corporation) S3 Serial; C:\WINDOWS\System32\drivers\serial.sys [84992 2018-04-12] (Microsoft Corporation) S3 sermouse; C:\WINDOWS\System32\drivers\sermouse.sys [28160 2018-04-12] (Microsoft Corporation) S3 sfloppy; C:\WINDOWS\System32\drivers\sfloppy.sys [17920 2018-04-12] (Microsoft Corporation) R0 SgrmAgent; C:\WINDOWS\System32\drivers\SgrmAgent.sys [63896 2018-04-12] (Microsoft Corporation) S0 SiSRaid2; C:\WINDOWS\System32\drivers\SiSRaid2.sys [44952 2018-04-12] (Silicon Integrated Systems Corp.) S0 SiSRaid4; C:\WINDOWS\System32\drivers\sisraid4.sys [81816 2018-04-12] (Silicon Integrated Systems) R0 spaceport; C:\WINDOWS\System32\drivers\spaceport.sys [611232 2018-06-15] (Microsoft Corporation) S3 SpatialGraphFilter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [57752 2018-04-12] (Microsoft Corporation) S3 SpbCx; C:\WINDOWS\System32\drivers\SpbCx.sys [82328 2018-04-12] (Microsoft Corporation) R2 srv; C:\WINDOWS\System32\DRIVERS\srv.sys [424448 2018-04-12] (Microsoft Corporation) R3 srv2; C:\WINDOWS\System32\DRIVERS\srv2.sys [737792 2018-04-12] (Microsoft Corporation) R3 srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [266752 2018-06-15] (Microsoft Corporation) S0 stexstor; C:\WINDOWS\System32\drivers\stexstor.sys [31128 2018-04-12] (Promise Technology, Inc.) S0 storahci; C:\WINDOWS\System32\drivers\storahci.sys [156056 2018-04-12] (Microsoft Corporation) S0 storflt; C:\WINDOWS\System32\drivers\vmstorfl.sys [47520 2018-04-12] (Microsoft Corporation) S0 stornvme; C:\WINDOWS\System32\drivers\stornvme.sys [105368 2018-05-20] (Microsoft Corporation) R2 storqosflt; C:\WINDOWS\System32\drivers\storqosflt.sys [82432 2018-04-12] (Microsoft Corporation) S0 storufs; C:\WINDOWS\System32\drivers\storufs.sys [48544 2018-06-15] (Microsoft Corporation) S0 storvsc; C:\WINDOWS\System32\drivers\storvsc.sys [40352 2018-04-12] (Microsoft Corporation) R3 swenum; C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_ea7b19c04e7a8136\swenum.sys [18336 2018-04-12] (Microsoft Corporation) S3 Synth3dVsc; C:\WINDOWS\System32\drivers\Synth3dVsc.sys [64512 2018-04-12] (Microsoft Corporation) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [40664 2013-08-22] (The OpenVPN Project) R0 Tcpip; C:\WINDOWS\System32\drivers\tcpip.sys [2712992 2018-07-06] (Microsoft Corporation) S3 Tcpip6; C:\WINDOWS\System32\drivers\tcpip.sys [2712992 2018-07-06] (Microsoft Corporation) R2 tcpipreg; C:\WINDOWS\System32\drivers\tcpipreg.sys [51712 2018-04-12] (Microsoft Corporation) R1 tdx; C:\WINDOWS\system32\DRIVERS\tdx.sys [121248 2018-04-12] (Microsoft Corporation) S3 terminpt; C:\WINDOWS\System32\drivers\terminpt.sys [37280 2018-04-12] (Microsoft Corporation) S3 TPM; C:\WINDOWS\System32\drivers\tpm.sys [232352 2018-04-12] (Microsoft Corporation) S3 TsUsbFlt; C:\WINDOWS\System32\drivers\tsusbflt.sys [63488 2018-04-12] (Microsoft Corporation) S3 TsUsbGD; C:\WINDOWS\System32\drivers\TsUsbGD.sys [35328 2018-04-12] (Microsoft Corporation) S3 tsusbhub; C:\WINDOWS\System32\drivers\tsusbhub.sys [126464 2018-04-12] (Microsoft Corporation) S3 tunnel; C:\WINDOWS\System32\drivers\tunnel.sys [119296 2018-04-12] (Microsoft Corporation) S3 UASPStor; C:\WINDOWS\System32\drivers\uaspstor.sys [79776 2018-04-12] (Microsoft Corporation) S3 UcmCx0101; C:\WINDOWS\System32\Drivers\UcmCx.sys [128512 2018-04-12] (Microsoft Corporation) S3 UcmTcpciCx0101; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [152576 2018-04-12] (Microsoft Corporation) S3 UcmUcsi; C:\WINDOWS\System32\drivers\UcmUcsi.sys [57856 2018-04-12] (Microsoft Corporation) R3 Ucx01000; C:\WINDOWS\System32\drivers\ucx01000.sys [226720 2018-06-08] (Microsoft Corporation) S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [45056 2018-04-12] (Microsoft Corporation) S4 udfs; C:\WINDOWS\System32\DRIVERS\udfs.sys [324608 2018-04-12] (Microsoft Corporation) S3 UEFI; C:\WINDOWS\System32\drivers\UEFI.sys [29600 2018-06-08] (Microsoft Corporation) S4 UevAgentDriver; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [40344 2018-04-12] (Microsoft Corporation) S3 Ufx01000; C:\WINDOWS\System32\drivers\ufx01000.sys [282008 2018-04-12] (Microsoft Corporation) S3 UfxChipidea; C:\WINDOWS\System32\drivers\UfxChipidea.sys [98200 2018-04-12] (Microsoft Corporation) S3 ufxsynopsys; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [144288 2018-04-12] (Microsoft Corporation) R3 umbus; C:\WINDOWS\System32\drivers\umbus.sys [56832 2018-04-12] (Microsoft Corporation) S3 UmPass; C:\WINDOWS\System32\drivers\umpass.sys [14336 2018-04-12] (Microsoft Corporation) S3 UrsChipidea; C:\WINDOWS\System32\drivers\urschipidea.sys [29088 2018-04-12] (Microsoft Corporation) S3 UrsCx01000; C:\WINDOWS\System32\drivers\urscx01000.sys [67992 2018-04-12] (Microsoft Corporation) S3 UrsSynopsys; C:\WINDOWS\System32\drivers\urssynopsys.sys [28064 2018-04-12] (Microsoft Corporation) R3 usbccgp; C:\WINDOWS\System32\drivers\usbccgp.sys [168864 2018-04-12] (Microsoft Corporation) S3 usbcir; C:\WINDOWS\System32\drivers\usbcir.sys [102912 2018-04-12] (Microsoft Corporation) R3 usbehci; C:\WINDOWS\System32\drivers\usbehci.sys [95648 2018-04-12] (Microsoft Corporation) R3 usbhub; C:\WINDOWS\System32\drivers\usbhub.sys [514464 2018-04-12] (Microsoft Corporation) R3 USBHUB3; C:\WINDOWS\System32\drivers\UsbHub3.sys [565152 2018-06-08] (Microsoft Corporation) S3 usbohci; C:\WINDOWS\System32\drivers\usbohci.sys [30208 2018-04-12] (Microsoft Corporation) S3 usbprint; C:\WINDOWS\System32\drivers\usbprint.sys [27136 2018-04-12] (Microsoft Corporation) S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [46592 2018-05-21] (Microsoft Corporation) S3 usbser; C:\WINDOWS\System32\drivers\usbser.sys [72192 2018-04-12] (Microsoft Corporation) S3 USBSTOR; C:\WINDOWS\System32\drivers\USBSTOR.SYS [131488 2018-04-12] (Microsoft Corporation) S3 usbuhci; C:\WINDOWS\System32\drivers\usbuhci.sys [35328 2018-04-12] (Microsoft Corporation) R3 USBXHCI; C:\WINDOWS\System32\drivers\USBXHCI.SYS [434592 2018-04-12] (Microsoft Corporation) R0 vdrvroot; C:\WINDOWS\System32\drivers\vdrvroot.sys [56224 2018-04-12] (Microsoft Corporation) S3 VerifierExt; C:\WINDOWS\System32\drivers\VerifierExt.sys [217496 2018-04-12] (Microsoft Corporation) S3 vhdmp; C:\WINDOWS\System32\drivers\vhdmp.sys [705440 2018-06-08] (Microsoft Corporation) S3 vhf; C:\WINDOWS\System32\drivers\vhf.sys [35328 2018-04-12] (Microsoft Corporation) S0 vmbus; C:\WINDOWS\System32\drivers\vmbus.sys [114080 2018-04-12] (Microsoft Corporation) S3 VMBusHID; C:\WINDOWS\System32\drivers\VMBusHID.sys [25088 2018-04-12] (Microsoft Corporation) S3 vmgid; C:\WINDOWS\System32\drivers\vmgid.sys [10240 2018-04-12] (Microsoft Corporation) R0 volmgr; C:\WINDOWS\System32\drivers\volmgr.sys [83360 2018-06-15] (Microsoft Corporation) R0 volmgrx; C:\WINDOWS\System32\drivers\volmgrx.sys [373144 2018-04-12] (Microsoft Corporation) R0 volsnap; C:\WINDOWS\System32\drivers\volsnap.sys [398240 2018-04-12] (Microsoft Corporation) R0 volume; C:\WINDOWS\System32\drivers\volume.sys [16288 2018-04-12] (Microsoft Corporation) S3 vpci; C:\WINDOWS\System32\drivers\vpci.sys [75168 2018-04-12] (Microsoft Corporation) S0 vsmraid; C:\WINDOWS\System32\drivers\vsmraid.sys [166808 2018-04-12] (VIA Technologies Inc.,Ltd) S0 VSTXRAID; C:\WINDOWS\System32\drivers\vstxraid.sys [305560 2018-04-12] (VIA Corporation) R3 vwifibus; C:\WINDOWS\System32\drivers\vwifibus.sys [27136 2018-04-12] (Microsoft Corporation) R1 vwififlt; C:\WINDOWS\System32\drivers\vwififlt.sys [76288 2018-04-12] (Microsoft Corporation) U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [44544 2018-04-12] (Microsoft Corporation) S3 WacomPen; C:\WINDOWS\System32\drivers\wacompen.sys [30720 2018-04-12] (Microsoft Corporation) R2 wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [81920 2018-04-12] (Microsoft Corporation) S3 wanarpv6; C:\WINDOWS\System32\DRIVERS\wanarp.sys [81920 2018-04-12] (Microsoft Corporation) R2 wcifs; C:\WINDOWS\system32\drivers\wcifs.sys [151960 2018-04-12] (Microsoft Corporation) S3 wcnfs; C:\WINDOWS\system32\drivers\wcnfs.sys [82944 2018-04-12] (Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (Western Digital Technologies, Inc.) R0 Wdf01000; C:\WINDOWS\System32\drivers\Wdf01000.sys [924856 2018-04-12] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation) S3 wdiwifi; C:\WINDOWS\System32\DRIVERS\wdiwifi.sys [781824 2018-06-08] (Microsoft Corporation) S3 WdmCompanionFilter; C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [21408 2018-04-12] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation) R0 WFPLWFS; C:\WINDOWS\System32\drivers\wfplwfs.sys [164768 2018-06-08] (Microsoft Corporation) S3 WIMMount; C:\WINDOWS\System32\drivers\wimmount.sys [35744 2018-04-12] (Microsoft Corporation) R0 WindowsTrustedRT; C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [72768 2018-06-15] (Microsoft Corporation) R0 WindowsTrustedRTProxy; C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [18472 2018-04-12] (Microsoft Corporation) S3 WinMad; C:\WINDOWS\System32\drivers\winmad.sys [32152 2018-04-12] (Mellanox) S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [227840 2018-04-12] (Microsoft Corporation) S3 WINUSB; C:\WINDOWS\System32\drivers\WinUSB.SYS [92672 2018-04-12] (Microsoft Corporation) S3 WinVerbs; C:\WINDOWS\System32\drivers\winverbs.sys [64920 2018-04-12] (Mellanox) R3 WmiAcpi; C:\WINDOWS\System32\drivers\wmiacpi.sys [18432 2018-04-12] (Microsoft Corporation) R0 Wof; C:\Windows\System32\Drivers\Wof.sys [209816 2018-04-12] (Microsoft Corporation) S3 WpdUpFltr; C:\WINDOWS\System32\drivers\WpdUpFltr.sys [30112 2018-04-12] (Microsoft Corporation) S4 ws2ifsl; C:\WINDOWS\system32\drivers\ws2ifsl.sys [23040 2018-04-12] (Microsoft Corporation) S3 WudfPf; C:\WINDOWS\System32\drivers\WudfPf.sys [125440 2018-04-12] (Microsoft Corporation) S3 WUDFRd; C:\WINDOWS\System32\drivers\WudfRd.sys [264192 2018-04-12] (Microsoft Corporation) S3 WUDFWpdFs; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [264192 2018-04-12] (Microsoft Corporation) S3 xboxgip; C:\WINDOWS\System32\drivers\xboxgip.sys [295424 2018-06-15] (Microsoft Corporation) S3 xinputhid; C:\WINDOWS\System32\drivers\xinputhid.sys [46592 2018-04-12] (Microsoft Corporation) U3 aswbdisk; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-08-04 09:22 - 2018-08-04 09:22 - 000078956 _____ C:\Users\Windows 8.1\Desktop\FRST5.txt 2018-08-04 09:21 - 2018-08-04 09:21 - 000033342 _____ C:\Users\Windows 8.1\Desktop\Addition5.txt 2018-08-04 09:12 - 2018-08-04 09:12 - 000000420 _____ C:\Users\Windows 8.1\Downloads\This PC - Shortcut.lnk 2018-08-04 09:04 - 2018-08-04 08:51 - 000005674 _____ C:\Users\Windows 8.1\Desktop\fixlist (1) 2.txt 2018-08-04 08:54 - 2018-08-04 08:56 - 000005674 _____ C:\Users\Windows 8.1\Desktop\fixlist.txt 2018-08-04 08:27 - 2018-08-04 08:15 - 000004096 ____H C:\Users\Windows 8.1\Desktop\._fixlist.txt 2018-07-31 13:26 - 2018-06-29 03:13 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2018-07-31 13:26 - 2018-06-29 03:13 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2018-07-31 12:12 - 2018-07-31 12:12 - 000017688 _____ C:\Users\Windows 8.1\Desktop\SearchRegav31jly.txt 2018-07-31 12:02 - 2018-07-31 12:09 - 000017688 _____ C:\Users\Windows 8.1\Downloads\SearchReg.txt 2018-07-31 11:36 - 2018-07-31 11:36 - 002941288 _____ (Resplendence Software Projects Sp. ) C:\Users\Windows 8.1\Downloads\RegistrarHomeV8 (1).exe 2018-07-31 11:32 - 2018-07-31 11:53 - 000000000 ____D C:\Program Files\Registrar Registry Manager 2018-07-31 11:32 - 2016-04-12 08:18 - 000027392 _____ (Resplendence Software Projects Sp.) C:\WINDOWS\system32\Drivers\rspRegMon64.sys 2018-07-31 11:31 - 2018-07-31 11:31 - 002941288 _____ (Resplendence Software Projects Sp. ) C:\Users\Windows 8.1\Downloads\RegistrarHomeV8.exe 2018-07-31 10:16 - 2018-07-06 13:26 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2018-07-31 10:16 - 2018-07-06 13:25 - 023863296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2018-07-31 10:16 - 2018-07-06 09:10 - 025845760 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2018-07-31 10:16 - 2018-07-06 09:07 - 022006272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2018-07-31 10:16 - 2018-07-06 09:04 - 022713856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2018-07-31 10:16 - 2018-06-15 19:49 - 021388856 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2018-07-31 10:16 - 2018-06-15 07:12 - 007519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2018-07-31 10:16 - 2018-06-15 07:03 - 006572000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 002868640 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2018-07-31 10:15 - 2018-07-06 16:20 - 001610648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000792472 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000689560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000451992 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000309664 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2018-07-31 10:15 - 2018-07-06 16:20 - 000144792 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2018-07-31 10:15 - 2018-07-06 16:20 - 000070040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2018-07-31 10:15 - 2018-07-06 16:17 - 003932672 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2018-07-31 10:15 - 2018-07-06 16:15 - 002266520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2018-07-31 10:15 - 2018-07-06 16:14 - 000541592 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2018-07-31 10:15 - 2018-07-06 15:56 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2018-07-31 10:15 - 2018-07-06 15:53 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll 2018-07-31 10:15 - 2018-07-06 15:53 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll 2018-07-31 10:15 - 2018-07-06 15:53 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll 2018-07-31 10:15 - 2018-07-06 15:53 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll 2018-07-31 10:15 - 2018-07-06 15:52 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2018-07-31 10:15 - 2018-07-06 15:52 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2018-07-31 10:15 - 2018-07-06 15:51 - 003652608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2018-07-31 10:15 - 2018-07-06 15:51 - 002051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2018-07-31 10:15 - 2018-07-06 15:51 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2018-07-31 10:15 - 2018-07-06 15:51 - 001004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2018-07-31 10:15 - 2018-07-06 15:51 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2018-07-31 10:15 - 2018-07-06 15:50 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2018-07-31 10:15 - 2018-07-06 15:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe 2018-07-31 10:15 - 2018-07-06 14:12 - 001539000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2018-07-31 10:15 - 2018-07-06 14:06 - 003611368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2018-07-31 10:15 - 2018-07-06 13:54 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2018-07-31 10:15 - 2018-07-06 13:54 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2018-07-31 10:15 - 2018-07-06 13:53 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2018-07-31 10:15 - 2018-07-06 13:53 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll 2018-07-31 10:15 - 2018-07-06 13:53 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll 2018-07-31 10:15 - 2018-07-06 13:52 - 002895360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2018-07-31 10:15 - 2018-07-06 13:52 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2018-07-31 10:15 - 2018-07-06 13:52 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2018-07-31 10:15 - 2018-07-06 13:51 - 002401280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll 2018-07-31 10:15 - 2018-07-06 13:51 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe 2018-07-31 10:15 - 2018-07-06 13:01 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll 2018-07-31 10:15 - 2018-07-06 09:32 - 000480672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2018-07-31 10:15 - 2018-07-06 09:31 - 000462752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2018-07-31 10:15 - 2018-07-06 09:31 - 000035232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2018-07-31 10:15 - 2018-07-06 09:29 - 000272296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll 2018-07-31 10:15 - 2018-07-06 09:29 - 000269224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2018-07-31 10:15 - 2018-07-06 09:27 - 001174432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2018-07-31 10:15 - 2018-07-06 09:27 - 001063320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2018-07-31 10:15 - 2018-07-06 09:27 - 001012632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2018-07-31 10:15 - 2018-07-06 09:27 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2018-07-31 10:15 - 2018-07-06 09:27 - 000567176 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2018-07-31 10:15 - 2018-07-06 09:27 - 000134552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2018-07-31 10:15 - 2018-07-06 09:27 - 000057440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.ShellCommon.Broker.dll 2018-07-31 10:15 - 2018-07-06 09:26 - 002712992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2018-07-31 10:15 - 2018-07-06 09:26 - 001148800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2018-07-31 10:15 - 2018-07-06 09:26 - 000930720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2018-07-31 10:15 - 2018-07-06 09:26 - 000766608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2018-07-31 10:15 - 2018-07-06 09:26 - 000170912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2018-07-31 10:15 - 2018-07-06 09:25 - 009147808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2018-07-31 10:15 - 2018-07-06 09:25 - 002753040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 002571728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 002420632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2018-07-31 10:15 - 2018-07-06 09:25 - 001945784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 001026464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2018-07-31 10:15 - 2018-07-06 09:25 - 001018616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000885856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000483048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000267680 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2018-07-31 10:15 - 2018-07-06 09:25 - 000139672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2018-07-31 10:15 - 2018-07-06 09:24 - 000380824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2018-07-31 10:15 - 2018-07-06 09:16 - 000567144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 001981896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 001175568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 000988640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2018-07-31 10:15 - 2018-07-06 09:14 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2018-07-31 10:15 - 2018-07-06 09:14 - 000573904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2018-07-31 10:15 - 2018-07-06 09:13 - 001620872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2018-07-31 10:15 - 2018-07-06 09:03 - 004371456 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2018-07-31 10:15 - 2018-07-06 09:02 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2018-07-31 10:15 - 2018-07-06 09:01 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2018-07-31 10:15 - 2018-07-06 09:01 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2018-07-31 10:15 - 2018-07-06 09:01 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2018-07-31 10:15 - 2018-07-06 09:01 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 019403264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsTelemetry.dll 2018-07-31 10:15 - 2018-07-06 09:00 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 001153536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll 2018-07-31 10:15 - 2018-07-06 08:59 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 004867584 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 001931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2018-07-31 10:15 - 2018-07-06 08:58 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys 2018-07-31 10:15 - 2018-07-06 08:58 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 007579648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 005779456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 003712512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000676864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Devices.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2018-07-31 10:15 - 2018-07-06 08:57 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001817600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001567744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2018-07-31 10:15 - 2018-07-06 08:56 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProv2faHelper.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 003440128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2018-07-31 10:15 - 2018-07-06 08:55 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2018-07-31 10:15 - 2018-07-06 08:54 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000999936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll 2018-07-31 10:15 - 2018-07-06 08:54 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll 2018-07-31 10:15 - 2018-07-06 08:53 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2018-07-31 10:15 - 2018-07-06 08:53 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2018-07-31 10:15 - 2018-07-06 08:53 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll 2018-07-31 10:15 - 2018-07-06 08:53 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2018-07-31 10:15 - 2018-07-06 08:52 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2018-07-31 10:15 - 2018-07-06 07:41 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim 2018-07-31 10:15 - 2018-06-29 06:16 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll 2018-07-31 10:15 - 2018-06-15 19:55 - 000542888 _____ C:\WINDOWS\system32\FaceProcessorCore.dll 2018-07-31 10:15 - 2018-06-15 19:53 - 000348256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2018-07-31 10:15 - 2018-06-15 19:53 - 000094104 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2018-07-31 10:15 - 2018-06-15 19:50 - 001376576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2018-07-31 10:15 - 2018-06-15 19:48 - 002395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2018-07-31 10:15 - 2018-06-15 19:48 - 000338352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll 2018-07-31 10:15 - 2018-06-15 19:35 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2018-07-31 10:15 - 2018-06-15 19:34 - 008623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2018-07-31 10:15 - 2018-06-15 19:34 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe 2018-07-31 10:15 - 2018-06-15 19:34 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll 2018-07-31 10:15 - 2018-06-15 19:33 - 012710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2018-07-31 10:15 - 2018-06-15 19:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys 2018-07-31 10:15 - 2018-06-15 19:33 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManagerAPI.dll 2018-07-31 10:15 - 2018-06-15 19:33 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2018-07-31 10:15 - 2018-06-15 19:32 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll 2018-07-31 10:15 - 2018-06-15 19:32 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe 2018-07-31 10:15 - 2018-06-15 19:32 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll 2018-07-31 10:15 - 2018-06-15 19:32 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2018-07-31 10:15 - 2018-06-15 19:31 - 002193920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll 2018-07-31 10:15 - 2018-06-15 19:31 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2018-07-31 10:15 - 2018-06-15 19:31 - 000907776 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe 2018-07-31 10:15 - 2018-06-15 19:31 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2018-07-31 10:15 - 2018-06-15 19:30 - 001308672 _____ C:\WINDOWS\system32\FaceProcessor.dll 2018-07-31 10:15 - 2018-06-15 19:30 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2018-07-31 10:15 - 2018-06-15 19:30 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll 2018-07-31 10:15 - 2018-06-15 19:30 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe 2018-07-31 10:15 - 2018-06-15 19:30 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2018-07-31 10:15 - 2018-06-15 19:30 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2018-07-31 10:15 - 2018-06-15 19:30 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe 2018-07-31 10:15 - 2018-06-15 19:30 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe 2018-07-31 10:15 - 2018-06-15 19:29 - 002084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2018-07-31 10:15 - 2018-06-15 19:29 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe 2018-07-31 10:15 - 2018-06-15 19:29 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2018-07-31 10:15 - 2018-06-15 19:29 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2018-07-31 10:15 - 2018-06-15 19:29 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2018-07-31 10:15 - 2018-06-15 19:29 - 000103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll 2018-07-31 10:15 - 2018-06-15 19:28 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll 2018-07-31 10:15 - 2018-06-15 19:28 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2018-07-31 10:15 - 2018-06-15 19:03 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe 2018-07-31 10:15 - 2018-06-15 19:00 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll 2018-07-31 10:15 - 2018-06-15 17:25 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2018-07-31 10:15 - 2018-06-15 17:22 - 001026896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2018-07-31 10:15 - 2018-06-15 17:16 - 002206528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL 2018-07-31 10:15 - 2018-06-15 17:07 - 011901952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2018-07-31 10:15 - 2018-06-15 17:06 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2018-07-31 10:15 - 2018-06-15 17:06 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll 2018-07-31 10:15 - 2018-06-15 17:04 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe 2018-07-31 10:15 - 2018-06-15 17:04 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll 2018-07-31 10:15 - 2018-06-15 17:03 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe 2018-07-31 10:15 - 2018-06-15 17:03 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2018-07-31 10:15 - 2018-06-15 17:02 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2018-07-31 10:15 - 2018-06-15 17:01 - 002015744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2018-07-31 10:15 - 2018-06-15 17:01 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2018-07-31 10:15 - 2018-06-15 15:23 - 000788992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll 2018-07-31 10:15 - 2018-06-15 09:11 - 000611232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2018-07-31 10:15 - 2018-06-15 09:10 - 000048544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys 2018-07-31 10:15 - 2018-06-15 09:03 - 000083360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys 2018-07-31 10:15 - 2018-06-15 07:21 - 001213368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2018-07-31 10:15 - 2018-06-15 07:21 - 000761440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2018-07-31 10:15 - 2018-06-15 07:19 - 001034632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2018-07-31 10:15 - 2018-06-15 07:19 - 000116632 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe 2018-07-31 10:15 - 2018-06-15 07:19 - 000093600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll 2018-07-31 10:15 - 2018-06-15 07:18 - 000228768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2018-07-31 10:15 - 2018-06-15 07:16 - 000562080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2018-07-31 10:15 - 2018-06-15 07:16 - 000433560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2018-07-31 10:15 - 2018-06-15 07:15 - 002563960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:15 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll 2018-07-31 10:15 - 2018-06-15 07:13 - 000510904 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2018-07-31 10:15 - 2018-06-15 07:13 - 000324000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2018-07-31 10:15 - 2018-06-15 07:12 - 000661152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll 2018-07-31 10:15 - 2018-06-15 07:12 - 000491304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2018-07-31 10:15 - 2018-06-15 07:12 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2018-07-31 10:15 - 2018-06-15 07:12 - 000118872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll 2018-07-31 10:15 - 2018-06-15 07:11 - 006817872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2018-07-31 10:15 - 2018-06-15 07:10 - 001934400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2018-07-31 10:15 - 2018-06-15 07:10 - 001097640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2018-07-31 10:15 - 2018-06-15 07:10 - 000717208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2018-07-31 10:15 - 2018-06-15 07:10 - 000326024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 007436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 002830240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2018-07-31 10:15 - 2018-06-15 07:09 - 002546592 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001798552 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001742272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001659296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001209800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 001112600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2018-07-31 10:15 - 2018-06-15 07:09 - 000594128 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2018-07-31 10:15 - 2018-06-15 07:09 - 000247984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL 2018-07-31 10:15 - 2018-06-15 07:08 - 004403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 002371392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 002062488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001946752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001921944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2018-07-31 10:15 - 2018-06-15 07:08 - 001784584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001457128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2018-07-31 10:15 - 2018-06-15 07:08 - 001288840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001258280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2018-07-31 10:15 - 2018-06-15 07:08 - 001150408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 001140568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2018-07-31 10:15 - 2018-06-15 07:08 - 000983008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2018-07-31 10:15 - 2018-06-15 07:08 - 000945568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys 2018-07-31 10:15 - 2018-06-15 07:08 - 000898760 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 000642088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 000604576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2018-07-31 10:15 - 2018-06-15 07:08 - 000500552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 000413816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2018-07-31 10:15 - 2018-06-15 07:08 - 000072768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys 2018-07-31 10:15 - 2018-06-15 07:07 - 001611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2018-07-31 10:15 - 2018-06-15 07:07 - 001145696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2018-07-31 10:15 - 2018-06-15 07:05 - 000550608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2018-07-31 10:15 - 2018-06-15 07:05 - 000444240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 001462824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 001397192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 001251736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 000719552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 000281080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll 2018-07-31 10:15 - 2018-06-15 07:04 - 000105376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 006528600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 006043600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 004788504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 002535032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 002163184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001805752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001710240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001380192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001144120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001129640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001020160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 001011968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 000770152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 000472136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 000356960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2018-07-31 10:15 - 2018-06-15 07:03 - 000232488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL 2018-07-31 10:15 - 2018-06-15 07:03 - 000129192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2018-07-31 10:15 - 2018-06-15 06:49 - 002962944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2018-07-31 10:15 - 2018-06-15 06:48 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2018-07-31 10:15 - 2018-06-15 06:48 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll 2018-07-31 10:15 - 2018-06-15 06:47 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll 2018-07-31 10:15 - 2018-06-15 06:47 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll 2018-07-31 10:15 - 2018-06-15 06:47 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 004706816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 004333568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll 2018-07-31 10:15 - 2018-06-15 06:46 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 002548736 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe 2018-07-31 10:15 - 2018-06-15 06:45 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe 2018-07-31 10:15 - 2018-06-15 06:45 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2018-07-31 10:15 - 2018-06-15 06:45 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandlerPS.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 001632256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 001342976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys 2018-07-31 10:15 - 2018-06-15 06:44 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll 2018-07-31 10:15 - 2018-06-15 06:44 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2018-07-31 10:15 - 2018-06-15 06:43 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll 2018-07-31 10:15 - 2018-06-15 06:43 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe 2018-07-31 10:15 - 2018-06-15 06:43 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 002367488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000978432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2018-07-31 10:15 - 2018-06-15 06:42 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2018-07-31 10:15 - 2018-06-15 06:42 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll 2018-07-31 10:15 - 2018-06-15 06:42 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys 2018-07-31 10:15 - 2018-06-15 06:42 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 004561920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe 2018-07-31 10:15 - 2018-06-15 06:41 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000811520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2018-07-31 10:15 - 2018-06-15 06:41 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll 2018-07-31 10:15 - 2018-06-15 06:40 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 002903040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 002583552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 002172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 000916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2018-07-31 10:15 - 2018-06-15 06:39 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2018-07-31 10:15 - 2018-06-15 06:38 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2018-07-31 10:15 - 2018-06-15 06:37 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2018-07-31 10:15 - 2018-06-15 06:37 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2018-07-31 10:15 - 2018-06-15 06:36 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys 2018-07-31 10:15 - 2018-05-20 13:53 - 000792984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2018-07-31 10:15 - 2018-05-20 13:52 - 000413080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2018-07-31 10:14 - 2018-06-01 07:18 - 000058524 _____ C:\WINDOWS\system32\srms.dat 2018-07-21 06:28 - 2018-07-21 06:28 - 006889184 _____ (Piriform Ltd) C:\Users\Windows 8.1\Downloads\spsetup132.exe 2018-07-21 05:59 - 2018-07-21 05:59 - 002724512 _____ (Sysinternals - www.sysinternals.com) C:\Users\Windows 8.1\Downloads\procexp (2).exe 2018-07-21 05:57 - 2018-07-21 05:57 - 002724512 _____ (Sysinternals - www.sysinternals.com) C:\Users\Windows 8.1\Downloads\procexp (1).exe 2018-07-21 05:52 - 2018-07-21 05:52 - 002724512 _____ (Sysinternals - www.sysinternals.com) C:\Users\Windows 8.1\Downloads\procexp.exe 2018-07-21 05:34 - 2018-07-21 05:34 - 000019798 _____ C:\Users\Windows 8.1\Downloads\fixlist (2).txt 2018-07-21 05:01 - 2018-07-31 10:22 - 000000000 ____D C:\ProgramData\Packages 2018-07-21 04:46 - 2018-07-21 04:46 - 000019798 _____ C:\Users\Windows 8.1\Downloads\fixlist (1).txt 2018-07-21 04:45 - 2018-08-04 09:08 - 000009898 _____ C:\Users\Windows 8.1\Downloads\fixlist.txt 2018-07-17 08:55 - 2018-08-04 09:14 - 000000000 ____D C:\Users\Windows 8.1\Downloads\FRST-OlderVersion 2018-07-17 08:53 - 2018-07-21 06:56 - 000000000 ____D C:\Users\Windows 8.1\Desktop\scans 2018-07-17 07:35 - 2018-07-17 08:16 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2018-07-17 07:35 - 2018-07-17 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2018-07-17 07:35 - 2018-07-17 07:35 - 000000000 ____D C:\Program Files\VS Revo Group 2018-07-17 07:33 - 2018-07-17 07:33 - 007197480 _____ (VS Revo Group ) C:\Users\Windows 8.1\Downloads\revosetup.exe 2018-07-10 16:44 - 2018-07-21 05:46 - 000043704 _____ C:\Users\Windows 8.1\Downloads\Addition.txt 2018-07-10 16:42 - 2018-07-21 05:46 - 000086249 _____ C:\Users\Windows 8.1\Downloads\FRST.txt 2018-07-10 16:41 - 2018-08-04 09:27 - 000000000 ____D C:\FRST 2018-07-10 16:38 - 2018-08-04 08:28 - 002412544 _____ (Farbar) C:\Users\Windows 8.1\Downloads\FRST64.exe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-08-04 09:19 - 2018-05-21 18:16 - 000004158 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EF1F7207-FAC2-4CBB-B3B9-9B6D553D8F32} 2018-08-04 09:19 - 2018-01-14 23:02 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2018-08-04 09:17 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2018-08-04 09:17 - 2018-01-15 06:05 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2018-08-04 09:17 - 2014-11-13 04:37 - 000000000 __SHD C:\Users\Windows 8.1\IntelGraphicsProfiles 2018-08-04 09:16 - 2018-05-21 18:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2018-08-04 09:15 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2018-08-04 09:00 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2018-08-04 08:41 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF 2018-08-04 08:26 - 2018-03-05 20:43 - 000000000 ____D C:\Users\Windows 8.1\AppData\Local\CrashDumps 2018-08-04 08:17 - 2018-05-21 18:00 - 000838560 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2018-08-04 08:16 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps 2018-08-04 08:16 - 2014-11-13 04:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-08-04 08:16 - 2014-11-13 04:34 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-07-31 13:27 - 2018-01-26 07:36 - 000000000 ___RD C:\Users\Windows 8.1\3D Objects 2018-07-31 13:27 - 2016-02-13 15:22 - 000000000 __RHD C:\Users\Public\AccountPictures 2018-07-31 13:26 - 2018-05-21 17:46 - 000408480 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2018-07-31 13:25 - 2016-07-26 13:02 - 000000676 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2532843739-1787431547-1269948887-1001.job 2018-07-31 13:25 - 2016-07-26 13:02 - 000000580 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2532843739-1787431547-1269948887-1001.job 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\zu-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\yo-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\xh-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\wo-SN 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\tn-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ti-ET 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\rw-RW 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\nso-ZA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ig-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA 2018-07-31 13:23 - 2018-04-12 11:19 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ 2018-07-31 13:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2018-07-31 13:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser 2018-07-31 13:22 - 2018-05-21 17:49 - 000000000 ____D C:\Users\Windows 8.1 2018-07-31 13:22 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2018-07-31 13:22 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences 2018-07-31 13:22 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr 2018-07-31 13:13 - 2018-05-21 17:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2018-07-31 11:13 - 2018-05-02 13:36 - 000001140 _____ C:\Users\Public\Desktop\VPN Unlimited.lnk 2018-07-31 11:13 - 2018-05-02 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VPN Unlimited 2018-07-31 11:13 - 2018-05-02 13:36 - 000000000 ____D C:\Program Files (x86)\VPN Unlimited 2018-07-31 10:29 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp 2018-07-31 10:23 - 2017-04-02 07:55 - 000000000 ____D C:\ProgramData\Package Cache 2018-07-27 08:41 - 2018-05-21 18:16 - 000003836 _____ C:\WINDOWS\System32\Tasks\G2MUploadTask-S-1-5-21-2532843739-1787431547-1269948887-1001 2018-07-27 08:41 - 2018-05-21 18:16 - 000003740 _____ C:\WINDOWS\System32\Tasks\G2MUpdateTask-S-1-5-21-2532843739-1787431547-1269948887-1001 2018-07-27 08:41 - 2017-07-08 16:53 - 000000000 ____D C:\Users\Windows 8.1\AppData\Local\GoToMeeting 2018-07-27 08:38 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2018-07-27 08:38 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed 2018-07-21 04:39 - 2018-05-21 18:16 - 000003368 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2532843739-1787431547-1269948887-1001 2018-07-21 04:39 - 2018-05-21 17:49 - 000002385 _____ C:\Users\Windows 8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2018-07-21 04:39 - 2016-04-08 00:21 - 000000000 ___RD C:\Users\Windows 8.1\OneDrive 2018-07-17 08:23 - 2018-01-14 23:04 - 000001504 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk 2018-07-17 08:20 - 2017-06-10 19:51 - 000000000 ____D C:\ProgramData\AVAST Software 2018-07-17 08:06 - 2018-05-21 18:16 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software 2018-07-17 07:43 - 2015-05-12 12:22 - 000000000 ____D C:\WINDOWS\system32\MRT 2018-07-17 07:40 - 2018-04-11 23:04 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2018-07-17 07:39 - 2018-05-21 17:02 - 001058504 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2018-07-17 07:39 - 2018-05-21 17:02 - 000141000 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys 2018-07-17 07:39 - 2018-05-21 17:02 - 000085704 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kldisk.sys 2018-07-17 07:38 - 2017-11-29 17:45 - 000000000 ____D C:\Users\Windows 8.1\AppData\Local\AVAST Software 2018-07-17 07:37 - 2017-12-25 13:52 - 001193160 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys 2018-07-17 07:37 - 2017-12-25 13:52 - 000152360 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\klhkum.dll 2018-07-17 07:36 - 2015-05-12 12:22 - 134675576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2018-07-17 06:58 - 2017-09-02 15:24 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump 2018-07-17 06:50 - 2014-11-13 04:45 - 000000000 ____D C:\Program Files (x86)\Nero 2018-07-17 06:19 - 2018-01-14 23:03 - 000002289 _____ C:\Users\Public\Desktop\Kaspersky Free.lnk ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2018-05-21 17:46 ==================== End of FRST.txt ============================