Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-03-2020
Ran by TOSHIBA-INTEL-i3 (administrator) on TOSHIBA (TOSHIBA Satellite L55-B) (24-03-2020 14:58:13)
Running from C:\Users\TOSHIBA-INTEL-i3\Desktop
Loaded Profiles: TOSHIBA-INTEL-i3 (Available Profiles: TOSHIBA-INTEL-i3 & Administrator)
Platform: Windows 10 Pro Version 1903 18362.720 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Elcomsoft s.r.o. -> Elcomsoft) C:\Program Files (x86)\Elcomsoft Password Recovery\Elcomsoft Updater\updater.exe
(FingerPower Digital Technology Ltd. -> ) C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe
(Flexera Software LLC -> Flexera Software LLC.) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19081.28230.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20022.81.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20022.11011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\NisSrv.exe
(PowerISO Computing, Inc.) [File not signed] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON\MonitoringTool\RemoteAgent\EpsonMT.exe
(SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Common Files\EPSON\eEBAPI\eEBSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [601944 2015-08-14] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [333088 2010-07-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [180224 2009-11-08] (PowerISO Computing, Inc.) [File not signed]
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Microsoft\Teams\Update.exe [2337544 2020-03-02] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\Run: [NoxDaemon] => C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\NoxSrv\NoxSrv.exe [116736 2019-08-07] () [File not signed]
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\Run: [TrackView] => C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\TrackView\TrackView.lnk [1125 2019-08-12] () [File not signed]
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48214720 2020-02-27] (Google LLC -> )
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2068856 2011-10-12] (Flexera Software LLC -> Flexera Software LLC.)
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-01-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\Run: [161455813D5D0BA6E036944EA13CCCF3CFADCEE7._service_run] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\Run: [GoogleChromeAutoLaunch_A8588B07730F96097D0C706F1B669A1C] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\MountPoints2: {dce4f17b-b541-11e9-8811-645a049afa73} - "E:\LG_PC_Programs.exe"
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\...\MountPoints2: {de52fd8f-f6a7-11e9-8824-645a049afa73} - "F:\windows\AutoRun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-19] (Google LLC -> Google LLC)
Startup: C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2019-09-12]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0853A55C-3AA3-4973-994F-CE74D15E613E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0A71D82D-6C46-4C67-9418-6F584F8B403F} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32696 2019-11-15] (Microsoft Corporation -> Microsoft)
Task: {118FFEA1-F7F8-414C-822D-4B273E76DD01} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {141B963C-9BDF-45C1-8DAC-49B5D8FB4974} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {19FEE81C-BA4A-43BE-A9A6-D850D063AA80} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {32DC8506-A585-442F-AC8C-C72CB52777B6} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2043016 2019-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {356EA00B-7D7F-49B2-8BE9-551B83FCCC47} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {3741E8EC-C94F-4780-A60D-493551B088A3} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2177464 2019-11-15] (Microsoft Corporation -> Microsoft)
Task: {3A725813-A96D-4EA8-B01B-BA0FC03F88A1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4E7AC576-2B4A-4BC2-94BD-0027A46388B2} - System32\Tasks\Microsoft\Office\IMESharePointDictionary => c:\Program Files (x86)\Common Files\Microsoft Shared\IME16\IMESharePointDictionary.exe [201456 2002-02-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {5D5F024F-31D7-4334-9145-817BF88384EC} - System32\Tasks\Elcomsoft\Elcomsoft Updater Autostart => C:\Program Files (x86)\Elcomsoft Password Recovery\Elcomsoft Updater\updater-launcher.exe [372320 2019-09-30] (Elcomsoft s.r.o. -> Elcomsoft)
Task: {60D5DED9-875A-4079-A5B2-97B7C9619727} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F07A25A-3B4E-49A4-B6DB-20E75A3CAE13} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2646152 2019-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {800FE3F0-F8D8-4216-800B-C13EA1BA7076} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {8870922B-995A-467B-9799-38EACE9C34C6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {8B729FAD-EABD-4385-97D1-F02B3502F9C3} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1443424 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {964953A3-8DF5-491C-BBF5-DAF7A8DD20FD} - \AdobeGCInvoker-1.0 -> No File <==== ATTENTION
Task: {99BFC816-D44A-4EBA-8ABD-13EB5C1FD8C2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {A0484439-5AC3-4125-88E5-47A8E0820F90} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2646152 2019-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8FF97CD-46F2-4068-A081-393983C61837} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E23236BB-0DFC-4032-8D48-ECD7729167B1} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2043016 2019-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {EDEB1FEE-7FA2-42BD-8933-88D420389D94} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-02] (Google Inc -> Google LLC)
Task: {F37622AA-6F49-4718-A609-1A75C51B8942} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-02] (Google Inc -> Google LLC)
Task: {F461548A-4FFA-4B94-A4E9-F3DC5FB76A89} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {FE6EC32C-ADBD-4857-89E4-9F922AC158E3} - System32\Tasks\Elcomsoft\Elcomsoft Updater Show => C:\Program Files (x86)\Elcomsoft Password Recovery\Elcomsoft Updater\updater-launcher.exe [372320 2019-09-30] (Elcomsoft s.r.o. -> Elcomsoft)
Task: {FE9F12E7-71D1-494C-A766-2A988D2587AB} - System32\Tasks\Elcomsoft\Elcomsoft Updater Terminate => C:\Program Files (x86)\Elcomsoft Password Recovery\Elcomsoft Updater\updater-launcher.exe [372320 2019-09-30] (Elcomsoft s.r.o. -> Elcomsoft)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{43e78246-709f-4836-a1f5-c38fd18a8515}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{47c066f2-1b3e-48ae-bc6f-0f54ebe3c0a4}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
DownloadDir: C:\Users\TOSHIBA-INTEL-i3\Downloads
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [No File]
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-12-14] (Zeon Corporation -> Zeon Corporation)
FF Plugin HKU\S-1-5-21-4241996295-1063350295-2962605825-1002: @ringcentral.com/RingCentralMeetingsPlugin -> C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\RingCentralMeetings\bin\nprcmsplugin.dll [2019-07-15] (RingCentral, Inc. -> RingCentral Video Communications, Inc. and RingCentral Inc.)
FF Plugin HKU\S-1-5-21-4241996295-1063350295-2962605825-1002: @zoom.us/ZoomVideoPlugin -> C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-09-16] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default [2020-03-24]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.gmail.com/","hxxp://google.com/"
CHR NewTab: Default -> Not-active:"chrome-extension://ailcmbgekjpnablpdkmaaccecekgdhlh/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://www.searchencrypt.com/encsearch?q={searchTerms}
CHR DefaultSearchKeyword: Default -> se
CHR DefaultSuggestURL: Default -> hxxps://www.searchencrypt.com/encsuggest?q={searchTerms}
CHR Session Restore: Default -> is enabled.
CHR Extension: (Slides) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-02]
CHR Extension: (Workona) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailcmbgekjpnablpdkmaaccecekgdhlh [2020-03-01]
CHR Extension: (Docs) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-02]
CHR Extension: (Google Drive) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-02]
CHR Extension: (Fotor Photo Editor) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbckhhmjfnmedpakkaaflpnmkamdppf [2019-08-02]
CHR Extension: (iCloud) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjhodfififgcgedifpkenofdhlaafokk [2019-08-02]
CHR Extension: (Skype Calling) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2019-08-02]
CHR Extension: (YouTube) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-02]
CHR Extension: (Honey) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2020-03-19]
CHR Extension: (Nimbus Screenshot & Screen Video Recorder) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [2019-09-11]
CHR Extension: (Pushbullet) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2020-01-26]
CHR Extension: (PDF Editor for Docs:Edit, Fill, Sign, Print) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjboohgkgchdnfnjiaggdbkdmpieoagi [2019-08-02]
CHR Extension: (Slate) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhmcmgkegfffbbfobhjpdbimgmoohap [2019-08-07]
CHR Extension: (Spotify - Music for every moment) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2019-08-02]
CHR Extension: (Notifier for Gmail™) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcjichoefijpinlfnjghokpkojhlhkgl [2019-08-02]
CHR Extension: (Transfer Dropbox to Google Drive) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkemmehlndncfkilljmpeacciajkfag [2019-08-02]
CHR Extension: (Dropbox for Gmail) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2019-10-25]
CHR Extension: (Adobe Acrobat) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-23]
CHR Extension: (Add Email Signature - WiseStamp) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjjniaenghhbffhplhdcipdgidbajdp [2019-08-02]
CHR Extension: (Video Downloader professional) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2019-08-02]
CHR Extension: (Generatore di codici a barre online) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\eoifhjjboaaihnkbclafmabllnchnbgl [2019-08-02]
CHR Extension: (Brilliant) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\eommhbliilafdkodaijeejngbjiiaccl [2019-08-02]
CHR Extension: (Acorns Found Money) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\facncfnojagdpibmijfjdmhkklabakgd [2020-03-03]
CHR Extension: (Sheets) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-02]
CHR Extension: (iCloud Bookmarks) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2019-08-02]
CHR Extension: (Chrome Remote Desktop) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-08-02]
CHR Extension: (Google Docs Offline) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-18]
CHR Extension: (Camera) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfhhnacclhffhdffklopdkcgdhifgngh [2019-08-02]
CHR Extension: (PDF Mergy - Merge PDF files) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgecghmkcdefnknohcimkoemhaofpoha [2019-08-02]
CHR Extension: (Sprint Reader - Speed Reading Extension) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\kejhpkmainjkpiablnfdppneidnkhdif [2019-08-02]
CHR Extension: (Zoom Scheduler) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgjfgplpablkjnlkjmjdecgdpfankdle [2020-01-16]
CHR Extension: (1Scan) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmnhhkckddpnmdfeggjnddgiefanbhmh [2019-12-10]
CHR Extension: (Google Hangouts) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2019-08-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-09-02]
CHR Extension: (Search Encrypt) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjhilmkolegbgpfkpnoomceobnojhfc [2020-03-24]
CHR Extension: (Tweaks for Google Voice™) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\lomidmppcdmojcgfnpfkmhbnakbnmaff [2019-09-24]
CHR Extension: (Google Keep Chrome Extension) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2020-03-20]
CHR Extension: (Mouse Position) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlicednebhhgebkhhmomongffeidkdmi [2019-08-02]
CHR Extension: (Google Hangouts) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-08-02]
CHR Extension: (Email Tracking for Gmail - Mailtrack) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2020-02-25]
CHR Extension: (Wikibuy from Capital One) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2020-03-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-17]
CHR Extension: (Printable Templates by QuickTemplateFinder) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmoljkcokoboaagjadndhkcemgmnoaoa [2019-12-30]
CHR Extension: (Video Chat FlirtyMania) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiaahapngnjijjgplpikimpaepddnfae [2019-08-02]
CHR Extension: (Secured Search Extension) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdpcpceofkopegffcdnffeenbfdldock [2020-03-24]
CHR Extension: (Gmail) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-02]
CHR Extension: (Chrome Media Router) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-23]
CHR Profile: C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-03-24]
CHR DefaultSearchKeyword: Profile 1 -> sse
CHR Extension: (Slides) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-27]
CHR Extension: (Docs) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-27]
CHR Extension: (Google Drive) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-27]
CHR Extension: (YouTube) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-27]
CHR Extension: (Sheets) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-27]
CHR Extension: (Google Docs Offline) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-27]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-02-27]
CHR Extension: (Search Manager) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce [2020-02-27]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-27]
CHR Extension: (Secured Search Extension) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pdpcpceofkopegffcdnffeenbfdldock [2020-02-27]
CHR Extension: (Search Manager) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pilplloabdedfmialnfchjomjmpjcoej [2020-02-27]
CHR Extension: (Gmail) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-02-27]
CHR Extension: (Chrome Media Router) - C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-27]
CHR Profile: C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-24]
CHR HKU\S-1-5-21-4241996295-1063350295-2962605825-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-10-07] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\eEBAPI\eEBSVC.exe [94208 2008-11-05] (SEIKO EPSON CORPORATION) [File not signed]
R2 EpsonMTService; C:\Program Files (x86)\EPSON\MonitoringTool\RemoteAgent\EpsonMT.exe [1399448 2018-06-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370848 2019-05-05] (Intel Corporation -> Intel Corporation)
R2 KingoSoftService; C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\checkupdate.exe [361984 2018-10-23] () [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5929920 2020-03-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [287240 2019-01-17] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\System32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4251160 2019-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [610336 2019-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131712 2017-01-15] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 massfilter_hs; C:\WINDOWS\System32\drivers\massfilter_hs.sys [20232 2012-06-20] (ZTE CORPORATION -> HandSet Incorporated)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2019-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 QIOMem; C:\WINDOWS\System32\drivers\QIOMem.sys [22736 2019-01-16] (WDKTestCert 1,130752733198717037 -> TOSHIBA)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2019-01-17] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2019-01-17] (Realtek Semiconductor Corp -> Realtek )
R1 SCDEmu; C:\Windows\System32\Drivers\SCDEmu.sys [91568 2009-11-08] (Fenghua Lee -> PowerISO Computing, Inc.)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [53768 2019-01-17] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [54792 2019-01-17] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2017-01-15] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-15] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-20] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [45720 2019-01-16] (TOSHIBA CORPORATION -> Toshiba Corporation)
U5 TMUSB; C:\WINDOWS\System32\DRIVERS\TMUSB64.SYS [63096 2018-01-30] (SEIKO EPSON Corporation Test Signing -> Seiko Epson Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 VBoxNetFlt; C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys [179976 2019-08-07] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [212744 2019-08-07] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
S3 viahsets; C:\WINDOWS\System32\drivers\viahsets.sys [32136 2012-10-31] (ZTE CORPORATION -> Via Telecom, Inc.)
S3 viahsser; C:\WINDOWS\System32\drivers\viahsser.sys [62728 2012-11-09] (ZTE CORPORATION -> VIA Telecom)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-03-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [391392 2020-03-24] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-24] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-08-07] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
S3 zghsser; C:\WINDOWS\System32\drivers\zghsser.sys [133960 2014-03-17] (ZTE CORPORATION -> ZTE Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-03-24 14:58 - 2020-03-24 15:00 - 000038162 _____ C:\Users\TOSHIBA-INTEL-i3\Desktop\FRST.txt
2020-03-24 11:55 - 2020-03-24 13:12 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-03-24 03:34 - 2020-03-24 03:34 - 000000000 ____D C:\Users\Administrator\AppData\Local\PeerDistRepub
2020-03-23 22:47 - 2020-03-23 22:47 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\Adobe
2020-03-23 13:55 - 2020-03-23 13:55 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-03-23 13:54 - 2020-03-23 13:54 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-03-23 13:54 - 2020-03-23 13:54 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2020-03-23 13:54 - 2020-03-23 13:54 - 000002124 _____ C:\ProgramData\Desktop\Acrobat Reader DC.lnk
2020-03-19 06:59 - 2020-03-19 06:59 - 000000000 ___HD C:\OneDriveTemp
2020-03-18 06:08 - 2020-03-18 06:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-03-18 06:08 - 2020-03-18 06:08 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-03-18 06:08 - 2020-03-18 06:08 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-03-18 06:08 - 2020-03-18 06:08 - 006520776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-03-18 06:08 - 2020-03-18 06:08 - 004563416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-03-18 06:08 - 2020-03-18 06:08 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-03-18 06:08 - 2020-03-18 06:08 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-03-18 06:08 - 2020-03-18 06:08 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-03-18 06:08 - 2020-03-18 06:08 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-03-18 06:08 - 2020-03-18 06:08 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-03-18 06:08 - 2020-03-18 06:08 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-03-11 20:39 - 2020-03-24 14:59 - 000000000 ____D C:\FRST
2020-03-11 18:15 - 2020-03-24 12:02 - 002279936 _____ (Farbar) C:\Users\TOSHIBA-INTEL-i3\Desktop\FRST64.exe
2020-03-10 20:04 - 2020-03-10 20:04 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 018027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 011607552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 004855808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 004580352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 004129648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 003819520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 003488768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 003243296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 002956688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-03-10 20:03 - 2020-03-10 20:03 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 002315680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 002072664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001867816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001770552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001490640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001108040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000757632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2020-03-10 20:03 - 2020-03-10 20:03 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-03-10 20:03 - 2020-03-10 20:03 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacEncoder.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacEncoder.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000145208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-03-10 20:03 - 2020-03-10 20:03 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-03-10 20:03 - 2020-03-10 20:03 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-03-10 20:03 - 2020-03-10 20:03 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2020-03-10 20:03 - 2020-03-10 20:03 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-03-10 20:03 - 2020-03-10 20:03 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-03-10 20:02 - 2020-03-10 20:03 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 006084344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 005112832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 003971808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 002875904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-03-10 20:02 - 2020-03-10 20:02 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-03-10 20:02 - 2020-03-10 20:02 - 002740736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 002259872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 002021888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001985104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001684992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001665416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001484600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-03-10 20:02 - 2020-03-10 20:02 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001218632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 001190912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001054376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001031680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 001007672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000935040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000776488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000769552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000668296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000627216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000478792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-03-10 20:02 - 2020-03-10 20:02 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-03-10 20:02 - 2020-03-10 20:02 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000213984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-03-10 20:02 - 2020-03-10 20:02 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000133944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000120560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-03-10 20:02 - 2020-03-10 20:02 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000102760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000042336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-03-10 20:02 - 2020-03-10 20:02 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-03-10 20:02 - 2020-03-10 20:02 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2020-03-10 20:02 - 2020-03-10 20:02 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-03-10 20:02 - 2020-03-10 20:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-03-10 20:01 - 2020-03-10 20:01 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 006436352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 004048896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 003799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 003552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 003371720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 002773568 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 002768440 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 002698040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 002087376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001999952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001972536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-03-10 20:01 - 2020-03-10 20:01 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 001396152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-03-10 20:01 - 2020-03-10 20:01 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 001071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000983896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000929144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000877232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000734720 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-03-10 20:01 - 2020-03-10 20:01 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000165504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000098104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2020-03-10 20:01 - 2020-03-10 20:01 - 000089616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2020-03-10 20:01 - 2020-03-10 20:01 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-03-10 20:01 - 2020-03-10 20:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 007905784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 004622280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 004471296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 003977216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 003728896 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 003587896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 003260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 003143168 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 002715648 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 002522112 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 002474496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001823232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001657120 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000945384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000908504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000833616 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000642216 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-03-10 20:00 - 2020-03-10 20:00 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-03-10 20:00 - 2020-03-10 20:00 - 000522384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Acx01000.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000306696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000250896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000224056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000222520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000180232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-03-10 20:00 - 2020-03-10 20:00 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000066336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000056632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-03-10 20:00 - 2020-03-10 20:00 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000030008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe
2020-03-10 20:00 - 2020-03-10 20:00 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-03-10 20:00 - 2020-03-10 20:00 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2020-03-10 20:00 - 2020-03-10 20:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUserRes.dll
2020-03-10 19:31 - 2020-02-10 18:48 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-03-10 19:31 - 2020-02-10 18:37 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-03-03 15:31 - 2020-03-24 14:26 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\Desktop\Jeris
2020-03-01 14:24 - 2020-03-01 14:24 - 000044437 _____ C:\Users\TOSHIBA-INTEL-i3\Desktop\IC-Simple-Business-Case-9296_WORD.dotx
2020-03-01 14:23 - 2020-03-01 14:23 - 000042854 _____ C:\Users\TOSHIBA-INTEL-i3\Desktop\IC-One-Page-Business-Case-9296_WORD.dotx
2020-02-27 16:20 - 2020-03-24 12:06 - 000002341 _____ C:\Users\TOSHIBA-INTEL-i3\Desktop\kim - Chrome.lnk
2020-02-27 16:20 - 2020-03-24 12:06 - 000002337 _____ C:\Users\TOSHIBA-INTEL-i3\Desktop\Jeris Yukio (Jeris) - Chrome.lnk
2020-02-27 11:46 - 2020-02-27 11:46 - 000055305 _____ C:\Users\TOSHIBA-INTEL-i3\Desktop\Letter.pdf
2020-02-25 15:45 - 2020-02-03 10:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-02-25 15:45 - 2020-02-03 10:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-25 15:39 - 2020-02-25 15:39 - 000000000 ____D C:\ProgramData\ssh
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-03-24 14:53 - 2019-03-18 18:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-24 14:26 - 2019-07-31 18:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-03-24 14:03 - 2019-08-02 10:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-03-24 13:15 - 2019-09-02 02:10 - 000000000 ___RD C:\Users\TOSHIBA-INTEL-i3\Google Drive
2020-03-24 13:14 - 2019-01-17 07:21 - 000000000 ___RD C:\Users\TOSHIBA-INTEL-i3\OneDrive
2020-03-24 13:12 - 2019-01-17 07:16 - 000000000 __SHD C:\Users\TOSHIBA-INTEL-i3\IntelGraphicsProfiles
2020-03-24 12:19 - 2019-09-30 19:20 - 000000008 __RSH C:\ProgramData\ntuser.pol
2020-03-24 12:19 - 2019-08-02 10:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-24 12:18 - 2019-03-18 18:37 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2020-03-24 12:17 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-03-24 12:13 - 2019-05-03 06:35 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\AppData\LocalLow\Temp
2020-03-24 12:06 - 2019-08-07 05:17 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium Apps
2020-03-24 12:06 - 2019-07-31 15:21 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-03-24 12:06 - 2019-04-23 16:51 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2020-03-24 12:06 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-03-24 12:00 - 2019-09-02 05:50 - 000488500 _____ C:\WINDOWS\system32\perfh011.dat
2020-03-24 12:00 - 2019-09-02 05:50 - 000133094 _____ C:\WINDOWS\system32\perfc011.dat
2020-03-24 12:00 - 2019-08-02 10:24 - 001451806 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-24 12:00 - 2019-03-18 18:50 - 000000000 ____D C:\WINDOWS\INF
2020-03-24 09:44 - 2019-03-18 18:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-24 03:36 - 2019-09-21 06:42 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2020-03-23 23:15 - 2019-07-31 20:15 - 000000000 ____D C:\ProgramData\Packages
2020-03-23 23:15 - 2019-07-31 19:57 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Packages
2020-03-23 22:47 - 2019-09-21 06:47 - 000000000 ____D C:\Users\Administrator\AppData\Local\Adobe
2020-03-23 22:47 - 2019-09-21 06:42 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2020-03-23 21:26 - 2019-08-27 15:46 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Adobe
2020-03-23 20:36 - 2020-01-27 00:12 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4241996295-1063350295-2962605825-500
2020-03-23 20:36 - 2020-01-27 00:12 - 000000000 ___RD C:\Users\Administrator\OneDrive
2020-03-23 20:36 - 2019-09-21 06:40 - 000002387 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-23 20:34 - 2019-09-21 06:43 - 000000000 ___RD C:\Users\Administrator\3D Objects
2020-03-23 20:34 - 2019-09-21 06:42 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2020-03-23 20:34 - 2015-09-21 02:17 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-03-23 13:52 - 2019-08-27 15:54 - 000000000 ____D C:\ProgramData\Adobe
2020-03-21 15:19 - 2019-11-07 07:15 - 000000000 ____D C:\Program Files (x86)\4uKey
2020-03-21 05:07 - 2019-09-02 02:06 - 000002073 _____ C:\Users\Public\Desktop\Google Slides.lnk
2020-03-21 05:07 - 2019-09-02 02:06 - 000002073 _____ C:\ProgramData\Desktop\Google Slides.lnk
2020-03-21 05:07 - 2019-09-02 02:06 - 000002071 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2020-03-21 05:07 - 2019-09-02 02:06 - 000002071 _____ C:\ProgramData\Desktop\Google Sheets.lnk
2020-03-21 05:07 - 2019-09-02 02:06 - 000002061 _____ C:\Users\Public\Desktop\Google Docs.lnk
2020-03-21 05:07 - 2019-09-02 02:06 - 000002061 _____ C:\ProgramData\Desktop\Google Docs.lnk
2020-03-21 05:07 - 2019-09-02 02:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-03-20 22:30 - 2019-10-01 01:07 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-03-20 22:30 - 2019-10-01 01:07 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-03-20 13:11 - 2019-08-02 10:34 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-20 13:11 - 2019-08-02 10:34 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-19 20:50 - 2019-08-02 07:37 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-19 20:50 - 2019-08-02 07:37 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-03-19 20:50 - 2019-08-02 07:37 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-03-19 06:48 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-03-19 06:48 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-03-18 06:14 - 2019-03-18 18:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-03-18 02:49 - 2019-01-19 03:50 - 000000000 ___RD C:\Users\TOSHIBA-INTEL-i3\3D Objects
2020-03-18 02:46 - 2019-08-02 10:04 - 000531928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-03-18 02:42 - 2019-03-18 20:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-03-18 02:42 - 2019-03-18 18:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-03-18 02:42 - 2019-03-18 18:37 - 000000000 ____D C:\WINDOWS\servicing
2020-03-18 02:40 - 2019-08-02 10:13 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3
2020-03-17 13:54 - 2019-09-12 13:16 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-03-17 13:42 - 2019-10-08 17:41 - 000002400 _____ C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-17 13:42 - 2019-08-02 10:34 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4241996295-1063350295-2962605825-1002
2020-03-11 18:23 - 2019-08-02 04:10 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-11 18:01 - 2019-08-02 04:10 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-03-06 11:04 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-03-04 14:24 - 2019-02-17 10:36 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\.android
2020-03-04 14:23 - 2019-08-07 06:22 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\AppData\Local\Nox
2020-03-04 14:21 - 2019-08-07 06:27 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\AppData\Local\NoxSrv
2020-03-04 14:21 - 2019-08-07 06:26 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\.BigNox
2020-03-04 14:20 - 2019-08-07 06:27 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\vmlogs
2020-03-03 23:00 - 2019-08-27 16:23 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-03-02 01:21 - 2019-11-02 03:36 - 000000000 ___HD C:\Users\TOSHIBA-INTEL-i3\Documents\.tmp.drivedownload
2020-03-02 00:54 - 2019-09-12 15:29 - 000000000 ____D C:\Users\TOSHIBA-INTEL-i3\Documents\Outlook Files
2020-02-25 15:39 - 2019-03-18 18:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-02-25 15:39 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-02-25 15:39 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-02-25 15:39 - 2019-03-18 18:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
==================== Files in the root of some directories ========
2019-09-12 18:31 - 2019-09-12 18:31 - 000001434 _____ () C:\Users\TOSHIBA-INTEL-i3\AppData\Roaming\SAS7_000.DAT
2019-08-02 06:50 - 2019-08-02 06:50 - 000007601 _____ () C:\Users\TOSHIBA-INTEL-i3\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================