Advertisement
Guest User

Untitled

a guest
Jan 17th, 2018
268
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 102.36 KB | None
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.01.2018 01
  2. Ran by drpmc (administrator) on DESKTOP-S26M0PK (17-01-2018 17:25:23)
  3. Running from C:\Users\drpmc\Downloads
  4. Loaded Profiles: drpmc (Available Profiles: drpmc)
  5. Platform: Windows 10 Home Version 1709 16299.192 (X64) Language: English (United States)
  6. Internet Explorer Version 11 (Default browser: Edge)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
  15. (Intel Corporation) C:\Windows\System32\IntelSSTAPO\ParameterService\ParameterService.exe
  16. (Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  17. (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
  18. (Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\22.11.2.7\NIS.exe
  19. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
  20. () C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
  21. (Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
  22. () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
  23. (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
  24. () C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
  25. (McAfee, Inc.) C:\Windows\System32\mfevtps.exe
  26. (McAfee, Inc.) C:\Windows\System32\mfevtps.exe
  27. (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
  28. (McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
  29. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
  30. (Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\22.11.2.7\NIS.exe
  31. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  32. (Intel Corporation) C:\Windows\System32\igfxEM.exe
  33. (Intel Corporation) C:\Windows\System32\igfxHK.exe
  34. () C:\Windows\System32\igfxTray.exe
  35. (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
  36. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
  37. () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.596.0_x64__kzf8qxf38zg5c\SkypeHost.exe
  38. (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
  39. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
  40. (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
  41. (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
  42. (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
  43. (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
  44. (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
  45. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
  46. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  47. () C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
  48. (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
  49. (McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
  50. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
  51. (Acer Incorporate) C:\Program Files (x86)\Acer\Acer Audio Invert Utility\AudioInvertAgent.exe
  52. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
  53. (Intel Corporation) C:\Windows\System32\igfxext.exe
  54. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
  55. (McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.5.471.0\McCSPServiceHost.exe
  56. (McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
  57. (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
  58. (McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
  59. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe
  60. () C:\OEM\Preload\FubTracking\FubTracking.exe
  61. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  62.  
  63. ==================== Registry (Whitelisted) ===========================
  64.  
  65. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  66.  
  67. HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
  68. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16407296 2015-10-06] (Realtek Semiconductor)
  69. HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-10-06] (Realtek Semiconductor)
  70. HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [628736 2015-09-22] ()
  71. HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation)
  72. HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe [719272 2015-04-02] (McAfee, Inc.)
  73.  
  74. ==================== Internet (Whitelisted) ====================
  75.  
  76. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  77.  
  78. Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
  79. Tcpip\..\Interfaces\{41b253f2-a1d0-48ef-a07f-9c37eaad9bb6}: [DhcpNameServer] 192.168.184.1
  80. Tcpip\..\Interfaces\{ebf99745-6ae8-4a3a-b6ec-d90ede0c9601}: [DhcpNameServer] 75.75.75.75 75.75.76.76
  81.  
  82. Internet Explorer:
  83. ==================
  84. HKU\S-1-5-21-35610016-3709973805-3043799172-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
  85. HKU\S-1-5-21-35610016-3709973805-3043799172-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
  86. SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://us.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
  87. SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://us.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
  88. SearchScopes: HKU\S-1-5-21-35610016-3709973805-3043799172-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://us.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
  89. BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Internet Security\Engine\22.11.2.7\coIEPlg.dll [2017-11-10] (Symantec Corporation)
  90. BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Internet Security\Engine32\22.11.2.7\coIEPlg.dll [2017-11-10] (Symantec Corporation)
  91. Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\22.11.2.7\coIEPlg.dll [2017-11-10] (Symantec Corporation)
  92. Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine32\22.11.2.7\coIEPlg.dll [2017-11-10] (Symantec Corporation)
  93. Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-07-16] (McAfee, Inc.)
  94. Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-07-16] (McAfee, Inc.)
  95.  
  96. FireFox:
  97. ========
  98. FF Extension: (Amazon 1Button App for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb@amazon.com [2018-01-17] [Legacy] [not signed]
  99. FF Extension: (English (US) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-en-US@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  100. FF Extension: (No Name) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fi@firefox.mozilla.org [2018-01-17] [not signed]
  101. FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  102. FF Extension: (Hebrew (IL) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-he@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  103. FF Extension: (Magyar (HU) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-hu@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  104. FF Extension: (Italiano (IT) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-it@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  105. FF Extension: (Japanese Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ja@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  106. FF Extension: (Korean (KR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ko@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  107. FF Extension: (Lietuvių Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-lt@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  108. FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-nb-NO@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  109. FF Extension: (Nederlands (NL) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-nl@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  110. FF Extension: (Polski Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pl@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  111. FF Extension: (Português Brasileiro Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pt-BR@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  112. FF Extension: (Português Portugal Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-pt-PT@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  113. FF Extension: (Russian (RU) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-ru@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  114. FF Extension: (Slovak (SK) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sk@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  115. FF Extension: (Slovenski jezik Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sl@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  116. FF Extension: (српски (sr) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sr@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  117. FF Extension: (Svenska (SE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-sv-SE@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  118. FF Extension: (Thai Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-th@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  119. FF Extension: (Türkçe (TR) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-tr@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  120. FF Extension: (Ukrainian (UA) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-uk@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  121. FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-zh-CN@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  122. FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-zh-TW@firefox.mozilla.org [2018-01-17] [Legacy] [not signed]
  123. FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
  124. FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2018-01-17] [Legacy] [not signed]
  125. FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-07-16] ()
  126. FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
  127. FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
  128. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
  129. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
  130. FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-07-16] ()
  131. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-01-17] (Google Inc.)
  132. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-01-17] (Google Inc.)
  133. FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-14] ()
  134.  
  135. Chrome:
  136. =======
  137. CHR Profile: C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default [2018-01-17]
  138. CHR Extension: (Slides) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-17]
  139. CHR Extension: (Docs) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-17]
  140. CHR Extension: (Google Drive) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-17]
  141. CHR Extension: (YouTube) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-17]
  142. CHR Extension: (Norton Security Toolbar) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2018-01-17]
  143. CHR Extension: (Sheets) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-17]
  144. CHR Extension: (Google Docs Offline) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-01-17]
  145. CHR Extension: (Norton Identity Safe) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2018-01-17]
  146. CHR Extension: (Chrome Web Store Payments) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-01-17]
  147. CHR Extension: (Gmail) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-01-17]
  148. CHR Extension: (Chrome Media Router) - C:\Users\drpmc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-01-17]
  149. CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Internet Security\Engine\22.11.2.7\Exts\Chrome.crx <not found>
  150. CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
  151. CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Internet Security\Engine\22.11.2.7\Exts\Chrome.crx <not found>
  152. CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
  153.  
  154. ==================== Services (Whitelisted) ====================
  155.  
  156. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  157.  
  158. R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278616 2017-03-19] (Acer Incorporated)
  159. S3 cplspcon; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [630752 2016-05-19] (Intel Corporation)
  160. S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [75056 2015-06-24] (Dashlane SAS)
  161. R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [176640 2015-09-22] () [File not signed]
  162. R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated)
  163. S2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-14] (WildTangent)
  164. S2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
  165. S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-27] (Intel Corporation)
  166. R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [382424 2016-05-19] (Intel Corporation)
  167. S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
  168. S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
  169. R2 IntelSSTSvc; C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe [25928 2015-09-22] (Intel Corporation)
  170. R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
  171. S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
  172. R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
  173. R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [754792 2015-07-16] (McAfee, Inc.)
  174. S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [338208 2015-03-19] (McAfee, Inc.)
  175. R2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
  176. R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.5.471.0\McCSPServiceHost.exe [207344 2015-04-27] (McAfee, Inc.)
  177. R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
  178. R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
  179. S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [612688 2015-04-09] (McAfee, Inc.)
  180. S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
  181. R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
  182. R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
  183. R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-06-29] (McAfee, Inc.)
  184. R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-07-30] (McAfee, Inc.)
  185. R3 mfevtp; C:\Windows\system32\mfevtps.exe [254792 2015-06-29] (McAfee, Inc.)
  186. R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744 2015-04-02] (McAfee, Inc.)
  187. R2 NIS; C:\Program Files\Norton Internet Security\Engine\22.11.2.7\NIS.exe [326144 2017-11-10] (Symantec Corporation)
  188. R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [401248 2015-09-04] (Acer Incorporated)
  189. R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [453984 2015-09-04] (Acer Incorporated)
  190. R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2018-01-17] ()
  191. S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-26] (acer)
  192. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
  193. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
  194.  
  195. ===================== Drivers (Whitelisted) ======================
  196.  
  197. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  198.  
  199. R1 BHDrvx64; C:\Program Files\Norton Internet Security\NortonData\22.11.2.7\Definitions\BASHDefs\20171016.001\BHDrvx64.sys [1872024 2017-11-10] (Symantec Corporation)
  200. R1 ccSet_NIS; C:\WINDOWS\system32\drivers\NISx64\160B020.007\ccSetx64.sys [187544 2017-11-10] (Symantec Corporation)
  201. R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77536 2015-07-02] (McAfee, Inc.)
  202. S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
  203. R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2017-12-27] (Symantec Corporation)
  204. R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [152656 2017-12-27] (Symantec Corporation)
  205. R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-29] ()
  206. S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
  207. S3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [84264 2015-06-16] (Intel Corporation)
  208. R1 IDSVia64; C:\Program Files\Norton Internet Security\NortonData\22.11.2.7\Definitions\IPSDefs\20171013.101\IDSVia64.sys [1056920 2017-11-10] (Symantec Corporation)
  209. R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21344 2015-09-04] (Acer Incorporated)
  210. R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193968 2018-01-17] (Malwarebytes)
  211. R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2018-01-17] (Malwarebytes)
  212. R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2018-01-17] (Malwarebytes)
  213. R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2018-01-17] (Malwarebytes)
  214. R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2018-01-17] (Malwarebytes)
  215. R2 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [412440 2015-07-02] (McAfee, Inc.)
  216. R2 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [347800 2015-07-02] (McAfee, Inc.)
  217. S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
  218. R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [496888 2015-07-02] (McAfee, Inc.)
  219. R2 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [875928 2015-07-02] (McAfee, Inc.)
  220. R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [492000 2015-05-27] (McAfee, Inc.)
  221. S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109480 2015-05-27] (McAfee, Inc.)
  222. R2 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [344704 2015-07-02] (McAfee, Inc.)
  223. S3 pelmouse; C:\WINDOWS\System32\drivers\pelmouse.sys [26880 2016-07-11] (TPMX Electronics Ltd.)
  224. S3 pelusblf; C:\WINDOWS\System32\drivers\pelusblf.sys [33048 2016-07-11] ()
  225. S3 pelvendr; C:\WINDOWS\System32\drivers\pelvendr.sys [15032 2016-07-11] (TPMX Electronics Ltd.)
  226. S3 phidmice; C:\WINDOWS\System32\drivers\phidmice.sys [33048 2016-07-11] ()
  227. S3 pmouself; C:\WINDOWS\System32\drivers\pmouself.sys [26880 2016-07-11] (TPMX Electronics Ltd.)
  228. S3 pvendrlf; C:\WINDOWS\System32\drivers\pvendrlf.sys [15032 2016-07-11] (TPMX Electronics Ltd.)
  229. R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14688 2015-09-04] (Acer Incorporated)
  230. R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [433912 2016-08-03] (Realsil Semiconductor Corporation)
  231. S3 SRTSP; C:\WINDOWS\system32\drivers\NISx64\160B020.007\SRTSP64.SYS [812696 2017-11-10] (Symantec Corporation)
  232. R1 SRTSPX; C:\WINDOWS\system32\drivers\NISx64\160B020.007\SRTSPX64.SYS [49304 2017-11-10] (Symantec Corporation)
  233. S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (QUALCOMM Incorporated)
  234. R0 SymEFASI; C:\WINDOWS\System32\drivers\NISx64\160B020.007\SYMEFASI64.SYS [1938584 2017-11-10] (Symantec Corporation)
  235. S0 SymELAM; C:\WINDOWS\System32\drivers\NISx64\160B020.007\SymELAM.sys [24608 2017-11-10] (Symantec Corporation)
  236. R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [102600 2018-01-17] (Symantec Corporation)
  237. R1 SymIRON; C:\WINDOWS\system32\drivers\NISx64\160B020.007\Ironx64.SYS [309984 2017-11-10] (Symantec Corporation)
  238. R1 SymNetS; C:\WINDOWS\system32\drivers\NISx64\160B020.007\SYMNETS.SYS [566936 2017-11-10] (Symantec Corporation)
  239. R3 VirtualButtons; C:\WINDOWS\System32\drivers\VirtualButtons.sys [41992 2017-03-31] (Intel Corporation)
  240. S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
  241. S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
  242. S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
  243.  
  244. ==================== NetSvcs (Whitelisted) ===================
  245.  
  246. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  247.  
  248.  
  249. ==================== One Month Created files and folders ========
  250.  
  251. (If an entry is included in the fixlist, the file/folder will be moved.)
  252.  
  253. 2018-01-17 17:22 - 2018-01-17 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
  254. 2018-01-17 17:08 - 2018-01-17 17:08 - 000038044 _____ C:\Users\drpmc\Downloads\Addition.txt
  255. 2018-01-17 17:07 - 2018-01-17 17:25 - 000025235 _____ C:\Users\drpmc\Downloads\FRST.txt
  256. 2018-01-17 17:07 - 2018-01-17 17:07 - 000000000 ____D C:\Users\drpmc\AppData\Roaming\AVAST Software
  257. 2018-01-17 17:06 - 2018-01-17 17:25 - 000000000 ____D C:\FRST
  258. 2018-01-17 16:57 - 2018-01-17 16:57 - 002393088 _____ (Farbar) C:\Users\drpmc\Downloads\FRST64.exe
  259. 2018-01-17 16:51 - 2018-01-17 17:23 - 000000000 ____D C:\Users\drpmc\AppData\Local\PlaceholderTileLogoFolder
  260. 2018-01-17 16:50 - 2018-01-17 16:54 - 000000000 ____D C:\Users\drpmc\AppData\Local\PackageStaging
  261. 2018-01-17 16:50 - 2018-01-17 16:50 - 000000000 ____D C:\Users\drpmc\AppData\Local\Comms
  262. 2018-01-17 16:46 - 2018-01-17 17:23 - 000000000 ____D C:\AdwCleaner
  263. 2018-01-17 16:44 - 2018-01-17 17:13 - 000000000 ____D C:\WINDOWS\System32\Tasks\Norton Internet Security
  264. 2018-01-17 16:42 - 2018-01-17 16:42 - 000102600 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
  265. 2018-01-17 16:42 - 2018-01-17 16:42 - 000008471 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
  266. 2018-01-17 16:42 - 2018-01-17 16:42 - 000003392 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
  267. 2018-01-17 16:42 - 2018-01-17 16:42 - 000002325 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk
  268. 2018-01-17 16:42 - 2018-01-17 16:42 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
  269. 2018-01-17 16:41 - 2018-01-17 16:42 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
  270. 2018-01-17 16:41 - 2018-01-17 16:41 - 000000000 ____D C:\WINDOWS\system32\Drivers\NISx64
  271. 2018-01-17 16:41 - 2018-01-17 16:41 - 000000000 ____D C:\ProgramData\NortonInstaller
  272. 2018-01-17 16:41 - 2018-01-17 16:41 - 000000000 ____D C:\Program Files\Norton Internet Security
  273. 2018-01-17 16:41 - 2018-01-17 16:41 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
  274. 2018-01-17 16:40 - 2018-01-17 16:44 - 000000000 ____D C:\ProgramData\Norton
  275. 2018-01-17 16:40 - 2018-01-17 16:40 - 001120240 _____ (Symantec Corporation) C:\Users\drpmc\Downloads\NortonNISDownloader.exe
  276. 2018-01-17 16:40 - 2018-01-17 16:40 - 000001341 _____ C:\Users\drpmc\Desktop\Norton Installation Files.lnk
  277. 2018-01-17 16:40 - 2018-01-17 16:40 - 000000000 ____D C:\Users\Public\Downloads\Norton
  278. 2018-01-17 16:39 - 2018-01-17 17:24 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
  279. 2018-01-17 16:39 - 2018-01-17 17:23 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
  280. 2018-01-17 16:39 - 2018-01-17 17:23 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
  281. 2018-01-17 16:39 - 2018-01-17 17:05 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
  282. 2018-01-17 16:39 - 2018-01-17 16:39 - 000193968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
  283. 2018-01-17 16:39 - 2018-01-17 16:39 - 000001916 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
  284. 2018-01-17 16:39 - 2018-01-17 16:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
  285. 2018-01-17 16:38 - 2018-01-17 16:39 - 008198432 _____ (Malwarebytes) C:\Users\drpmc\Downloads\adwcleaner_7.0.6.0.exe
  286. 2018-01-17 16:38 - 2018-01-17 16:38 - 082358616 _____ (Malwarebytes ) C:\Users\drpmc\Downloads\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3707.exe
  287. 2018-01-17 16:38 - 2018-01-17 16:38 - 000000000 ____D C:\ProgramData\Malwarebytes
  288. 2018-01-17 16:38 - 2018-01-17 16:38 - 000000000 ____D C:\Program Files\Malwarebytes
  289. 2018-01-17 16:38 - 2017-11-29 09:11 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
  290. 2018-01-17 16:37 - 2018-01-17 16:37 - 000003508 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent
  291. 2018-01-17 16:37 - 2018-01-17 16:37 - 000002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  292. 2018-01-17 16:37 - 2018-01-17 16:37 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  293. 2018-01-17 16:37 - 2018-01-17 16:37 - 000000000 ____D C:\Users\drpmc\AppData\Roaming\Macromedia
  294. 2018-01-17 16:37 - 2018-01-17 16:37 - 000000000 ____D C:\ProgramData\Apple
  295. 2018-01-17 16:37 - 2018-01-17 16:37 - 000000000 ____D C:\Program Files\Bonjour
  296. 2018-01-17 16:37 - 2018-01-17 16:37 - 000000000 ____D C:\Program Files (x86)\Bonjour
  297. 2018-01-17 16:36 - 2018-01-17 16:45 - 000000000 ____D C:\Users\drpmc\AppData\Local\Google
  298. 2018-01-17 16:36 - 2018-01-17 16:37 - 000000000 ____D C:\Program Files (x86)\Google
  299. 2018-01-17 16:36 - 2018-01-17 16:36 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
  300. 2018-01-17 16:36 - 2018-01-17 16:36 - 000003374 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-35610016-3709973805-3043799172-1001
  301. 2018-01-17 16:36 - 2018-01-17 16:36 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
  302. 2018-01-17 16:36 - 2018-01-17 16:36 - 000000000 ____D C:\Users\drpmc\AppData\Roaming\Intel Corporation
  303. 2018-01-17 16:36 - 2018-01-17 16:36 - 000000000 ____D C:\Users\drpmc\AppData\Local\CareCenter
  304. 2018-01-17 16:35 - 2018-01-17 17:07 - 000000000 ____D C:\Users\drpmc\AppData\Local\clear.fi
  305. 2018-01-17 16:35 - 2018-01-17 16:36 - 000002367 _____ C:\Users\drpmc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  306. 2018-01-17 16:35 - 2018-01-17 16:36 - 000000000 ___RD C:\Users\drpmc\OneDrive
  307. 2018-01-17 16:35 - 2018-01-17 16:35 - 000001333 _____ C:\Users\drpmc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HD Audio Manager.lnk
  308. 2018-01-17 16:35 - 2018-01-17 16:35 - 000000000 ____D C:\Users\drpmc\PicStream
  309. 2018-01-17 16:34 - 2018-01-17 16:34 - 000000000 ___HD C:\Users\drpmc\MicrosoftEdgeBackups
  310. 2018-01-17 16:34 - 2018-01-17 16:34 - 000000000 ____D C:\ProgramData\OEM_YAHOO
  311. 2018-01-17 16:34 - 2018-01-17 16:34 - 000000000 ____D C:\Program Files (x86)\OEM
  312. 2018-01-17 16:33 - 2018-01-17 17:24 - 000000000 __SHD C:\Users\drpmc\IntelGraphicsProfiles
  313. 2018-01-17 16:33 - 2018-01-17 17:18 - 000000000 ____D C:\Users\drpmc\AppData\Local\Publishers
  314. 2018-01-17 16:33 - 2018-01-17 17:18 - 000000000 ____D C:\Users\drpmc\AppData\Local\Packages
  315. 2018-01-17 16:33 - 2018-01-17 16:35 - 000000000 ____D C:\Users\drpmc\AppData\Local\AOP SDK
  316. 2018-01-17 16:33 - 2018-01-17 16:34 - 000000000 ____D C:\Users\drpmc\AppData\Local\ConnectedDevicesPlatform
  317. 2018-01-17 16:33 - 2018-01-17 16:33 - 000002170 _____ C:\Users\drpmc\Desktop\Dashlane Password Manager.lnk
  318. 2018-01-17 16:33 - 2018-01-17 16:33 - 000001786 _____ C:\Users\Public\Desktop\Acer Store.lnk
  319. 2018-01-17 16:33 - 2018-01-17 16:33 - 000000000 ___RD C:\Users\drpmc\3D Objects
  320. 2018-01-17 16:33 - 2018-01-17 16:33 - 000000000 ____D C:\Users\drpmc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
  321. 2018-01-17 16:33 - 2018-01-17 16:33 - 000000000 ____D C:\Users\drpmc\AppData\Roaming\Adobe
  322. 2018-01-17 16:33 - 2018-01-17 16:33 - 000000000 ____D C:\Users\drpmc\AppData\Local\VirtualStore
  323. 2018-01-17 16:33 - 2018-01-17 16:33 - 000000000 ____D C:\Users\drpmc\AppData\Local\MicrosoftEdge
  324. 2018-01-17 16:33 - 2018-01-17 16:33 - 000000000 ____D C:\Users\drpmc\AppData\Local\DBG
  325. 2018-01-17 16:33 - 2018-01-17 16:33 - 000000000 ____D C:\Program Files\Accessory Store
  326. 2018-01-17 16:31 - 2018-01-17 17:04 - 000000000 ____D C:\Users\drpmc
  327. 2018-01-17 16:31 - 2018-01-17 16:31 - 000000020 ___SH C:\Users\drpmc\ntuser.ini
  328. 2018-01-17 16:30 - 2018-01-17 16:30 - 000000000 ____D C:\WINDOWS\oem
  329. 2018-01-17 16:30 - 2018-01-17 16:30 - 000000000 ____D C:\ProgramData\Dashlane
  330. 2018-01-17 16:29 - 2018-01-17 17:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  331. 2018-01-17 16:29 - 2018-01-17 17:11 - 000003388 _____ C:\WINDOWS\System32\Tasks\AcerCloud
  332. 2018-01-17 16:29 - 2018-01-17 16:51 - 000000000 ____D C:\Users\defaultuser0
  333. 2018-01-17 16:29 - 2018-01-17 16:29 - 000004302 _____ C:\WINDOWS\System32\Tasks\Software Update Application
  334. 2018-01-17 16:29 - 2018-01-17 16:29 - 000003852 _____ C:\WINDOWS\System32\Tasks\ACCAgent
  335. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002926 _____ C:\WINDOWS\System32\Tasks\avast! SL Update
  336. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002888 _____ C:\WINDOWS\System32\Tasks\ACC
  337. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002780 _____ C:\WINDOWS\System32\Tasks\WindowsStoreGiftCardPromoBackgroundTaskX86
  338. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002706 _____ C:\WINDOWS\System32\Tasks\UbtFrameworkService
  339. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002654 _____ C:\WINDOWS\System32\Tasks\Avast SecureLine
  340. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002328 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication
  341. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002238 _____ C:\WINDOWS\System32\Tasks\Audio Invert Utility
  342. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002222 _____ C:\WINDOWS\System32\Tasks\Power Management
  343. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002180 _____ C:\WINDOWS\System32\Tasks\Quick Access
  344. 2018-01-17 16:29 - 2018-01-17 16:29 - 000002074 _____ C:\WINDOWS\System32\Tasks\FUBTrackingByPLD
  345. 2018-01-17 16:29 - 2018-01-17 16:29 - 000000000 _SHDL C:\Users\Default User
  346. 2018-01-17 16:29 - 2018-01-17 16:29 - 000000000 _SHDL C:\Users\All Users
  347. 2018-01-17 16:28 - 2018-01-17 16:28 - 000022744 _____ C:\WINDOWS\system32\emptyregdb.dat
  348. 2018-01-17 16:28 - 2017-09-29 05:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
  349. 2018-01-17 16:27 - 2018-01-17 16:27 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
  350. 2018-01-17 16:26 - 2018-01-17 16:26 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
  351. 2018-01-17 16:24 - 2018-01-17 17:24 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
  352. 2018-01-17 16:24 - 2018-01-17 16:26 - 000000000 ____D C:\Program Files\Intel
  353. 2018-01-17 16:24 - 2018-01-17 16:26 - 000000000 ____D C:\Program Files (x86)\Realtek
  354. 2018-01-17 16:24 - 2018-01-17 16:26 - 000000000 ____D C:\Intel
  355. 2018-01-17 16:24 - 2018-01-17 16:24 - 001151965 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
  356. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
  357. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000102 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
  358. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000000 ____H C:\ProgramData\DP45977C.lfl
  359. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000000 ____D C:\WINDOWS\system32\IntelSSTAPO
  360. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000000 ____D C:\WINDOWS\system32\DAX2
  361. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000000 ____D C:\ProgramData\rtkSSTSetting
  362. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000000 ____D C:\ProgramData\Dolby
  363. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000000 ____D C:\Program Files\Dolby
  364. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000000 ____D C:\Program Files\Common Files\Atheros
  365. 2018-01-17 16:24 - 2018-01-17 16:24 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
  366. 2018-01-17 16:24 - 2016-05-19 20:37 - 000112648 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
  367. 2018-01-17 16:24 - 2016-05-19 20:37 - 000108560 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
  368. 2018-01-17 16:24 - 2015-10-06 11:24 - 003154607 _____ C:\WINDOWS\system32\Drivers\rtkSSTSetting.zip
  369. 2018-01-17 16:23 - 2018-01-17 17:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
  370. 2018-01-17 16:23 - 2018-01-17 16:28 - 000222608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  371. 2018-01-17 16:23 - 2018-01-17 16:23 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
  372. 2018-01-17 16:23 - 2018-01-17 16:23 - 000000000 ____D C:\WINDOWS\ServiceProfiles
  373. 2018-01-17 16:23 - 2018-01-17 16:23 - 000000000 ____D C:\Program Files\Realtek
  374. 2018-01-17 16:08 - 2018-01-17 16:09 - 000000000 ____D C:\Windows.old
  375. 2018-01-17 16:08 - 2018-01-17 16:08 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
  376. 2018-01-17 16:08 - 2018-01-17 16:08 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
  377. 2018-01-17 16:08 - 2018-01-17 16:08 - 000000000 ____D C:\WINDOWS\InfusedApps
  378. 2018-01-17 16:08 - 2018-01-17 16:08 - 000000000 ____D C:\Program Files\Lenovo
  379. 2018-01-17 16:07 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\Setup
  380. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
  381. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
  382. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
  383. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
  384. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
  385. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
  386. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
  387. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
  388. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
  389. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
  390. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
  391. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
  392. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
  393. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
  394. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
  395. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
  396. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
  397. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
  398. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
  399. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
  400. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
  401. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
  402. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
  403. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
  404. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
  405. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
  406. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
  407. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
  408. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
  409. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
  410. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
  411. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
  412. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
  413. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
  414. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
  415. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
  416. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
  417. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
  418. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
  419. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
  420. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
  421. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
  422. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
  423. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
  424. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
  425. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
  426. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
  427. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
  428. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
  429. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
  430. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
  431. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
  432. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
  433. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
  434. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
  435. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
  436. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
  437. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
  438. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
  439. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
  440. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
  441. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
  442. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
  443. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
  444. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
  445. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
  446. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
  447. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
  448. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\yo-NG
  449. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
  450. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\wo-SN
  451. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\vi-VN
  452. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
  453. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ur-PK
  454. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ug-CN
  455. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\tt-RU
  456. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
  457. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\tk-TM
  458. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ti-ET
  459. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
  460. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\te-IN
  461. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ta-IN
  462. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\sw-KE
  463. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
  464. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
  465. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\sq-AL
  466. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\si-LK
  467. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
  468. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\rw-RW
  469. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\quz-PE
  470. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
  471. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\prs-AF
  472. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\pa-IN
  473. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
  474. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\or-IN
  475. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
  476. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\nn-NO
  477. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ne-NP
  478. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\mt-MT
  479. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\mr-IN
  480. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\mn-MN
  481. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ml-IN
  482. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\mk-MK
  483. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
  484. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\lo-LA
  485. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\lb-LU
  486. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ky-KG
  487. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
  488. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\kok-IN
  489. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\kn-IN
  490. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\km-KH
  491. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
  492. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ka-GE
  493. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\is-IS
  494. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ig-NG
  495. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\id-ID
  496. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\hy-AM
  497. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
  498. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\gu-IN
  499. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\gd-GB
  500. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ga-IE
  501. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\fil-PH
  502. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\fa-IR
  503. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\cy-GB
  504. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
  505. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
  506. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
  507. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\bn-IN
  508. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\bn-BD
  509. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\be-BY
  510. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
  511. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\as-IN
  512. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\am-ET
  513. 2018-01-17 16:05 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\af-ZA
  514. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
  515. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
  516. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
  517. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
  518. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
  519. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
  520. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
  521. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
  522. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
  523. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
  524. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
  525. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\winrm
  526. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\WCN
  527. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\slmgr
  528. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
  529. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
  530. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\hi-IN
  531. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\gl-ES
  532. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\eu-ES
  533. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\ca-ES
  534. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\0409
  535. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\OCR
  536. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\DigitalLocker
  537. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\Program Files\Reference Assemblies
  538. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\Program Files\MSBuild
  539. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
  540. 2018-01-17 16:05 - 2018-01-17 16:05 - 000000000 ____D C:\Program Files (x86)\MSBuild
  541. 2018-01-17 16:04 - 2017-12-22 05:45 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
  542. 2018-01-17 16:04 - 2017-12-22 05:45 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
  543. 2018-01-17 16:03 - 2018-01-17 17:23 - 000000000 ____D C:\WINDOWS\AppReadiness
  544. 2018-01-17 16:03 - 2018-01-17 17:19 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
  545. 2018-01-17 16:03 - 2018-01-17 17:14 - 000000000 ___RD C:\Program Files (x86)
  546. 2018-01-17 16:03 - 2018-01-17 16:59 - 000000000 ___HD C:\Program Files\WindowsApps
  547. 2018-01-17 16:03 - 2018-01-17 16:42 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
  548. 2018-01-17 16:03 - 2018-01-17 16:30 - 000000000 ____D C:\WINDOWS\Registration
  549. 2018-01-17 16:03 - 2018-01-17 16:29 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
  550. 2018-01-17 16:03 - 2018-01-17 16:28 - 000000000 __RHD C:\Users\Public\Libraries
  551. 2018-01-17 16:03 - 2018-01-17 16:28 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
  552. 2018-01-17 16:03 - 2018-01-17 16:27 - 000000000 ____D C:\WINDOWS\system32\spool
  553. 2018-01-17 16:03 - 2018-01-17 16:27 - 000000000 ____D C:\ProgramData\USOPrivate
  554. 2018-01-17 16:03 - 2018-01-17 16:27 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  555. 2018-01-17 16:03 - 2018-01-17 16:26 - 000000000 ____D C:\WINDOWS\appcompat
  556. 2018-01-17 16:03 - 2018-01-17 16:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
  557. 2018-01-17 16:03 - 2018-01-17 16:25 - 000000000 ____D C:\WINDOWS\system32\Sysprep
  558. 2018-01-17 16:03 - 2018-01-17 16:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
  559. 2018-01-17 16:03 - 2018-01-17 16:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
  560. 2018-01-17 16:03 - 2018-01-17 16:09 - 000000000 ____D C:\WINDOWS\system32\oobe
  561. 2018-01-17 16:03 - 2018-01-17 16:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
  562. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
  563. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ___SD C:\WINDOWS\system32\F12
  564. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\TextInput
  565. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
  566. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
  567. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
  568. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
  569. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\migwiz
  570. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\Dism
  571. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\system32\appraiser
  572. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\ShellExperiences
  573. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\WINDOWS\Provisioning
  574. 2018-01-17 16:03 - 2018-01-17 16:07 - 000000000 ____D C:\Program Files\Windows Defender
  575. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
  576. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ___SD C:\WINDOWS\system32\dsc
  577. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
  578. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
  579. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
  580. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
  581. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\SysWOW64\com
  582. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
  583. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\setup
  584. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\MUI
  585. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\system32\com
  586. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
  587. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\IME
  588. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\Help
  589. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\Program Files\Windows Photo Viewer
  590. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\Program Files\Common Files\system
  591. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
  592. 2018-01-17 16:03 - 2018-01-17 16:05 - 000000000 ____D C:\Program Files (x86)\Windows Defender
  593. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 __SHD C:\Program Files\Windows Sidebar
  594. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
  595. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 __RSD C:\WINDOWS\media
  596. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
  597. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
  598. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ___SD C:\WINDOWS\system32\UNP
  599. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ___SD C:\WINDOWS\system32\Nui
  600. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ___SD C:\WINDOWS\system32\Configuration
  601. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
  602. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
  603. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\Web
  604. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\Vss
  605. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\tracing
  606. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\TAPI
  607. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
  608. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
  609. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
  610. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
  611. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
  612. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
  613. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
  614. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
  615. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
  616. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
  617. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
  618. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
  619. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
  620. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
  621. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
  622. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
  623. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
  624. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
  625. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SystemResources
  626. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SystemApps
  627. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\winevt
  628. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
  629. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\ras
  630. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
  631. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\PointOfService
  632. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\NDF
  633. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\MsDtc
  634. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
  635. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\Ipmi
  636. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\InputMethod
  637. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\inetsrv
  638. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\IME
  639. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\icsxml
  640. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\ias
  641. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\hydrogen
  642. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
  643. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
  644. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\downlevel
  645. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\DDFs
  646. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\config\TxR
  647. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
  648. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
  649. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\config\Journal
  650. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\Bthprops
  651. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\AppLocker
  652. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
  653. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\System
  654. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SKB
  655. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\security
  656. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\schemas
  657. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\SchCache
  658. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\Resources
  659. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\rescache
  660. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\PLA
  661. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\Performance
  662. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\ModemLogs
  663. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
  664. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\L2Schemas
  665. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\InputMethod
  666. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\Globalization
  667. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
  668. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\Cursors
  669. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\Branding
  670. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\bcastdvr
  671. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\addins
  672. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
  673. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\Program Files\Windows Security
  674. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\Program Files\Windows Portable Devices
  675. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\Program Files\windows nt
  676. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
  677. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\Program Files\Common Files\Services
  678. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
  679. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\Program Files (x86)\windows nt
  680. 2018-01-17 16:03 - 2018-01-17 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
  681. 2018-01-17 16:03 - 2018-01-17 16:02 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
  682. 2018-01-17 16:03 - 2018-01-17 16:02 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
  683. 2018-01-17 16:03 - 2018-01-17 16:02 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
  684. 2018-01-17 16:03 - 2018-01-17 16:01 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
  685. 2018-01-17 16:03 - 2018-01-17 16:01 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
  686. 2018-01-17 16:03 - 2018-01-17 16:01 - 000017572 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
  687. 2018-01-17 16:03 - 2018-01-17 16:01 - 000004096 _____ C:\WINDOWS\system32\config\VSMIDK
  688. 2018-01-17 16:03 - 2018-01-17 16:01 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
  689. 2018-01-17 16:03 - 2018-01-17 16:01 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
  690. 2018-01-17 16:03 - 2018-01-17 16:01 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
  691. 2018-01-17 16:02 - 2018-01-17 17:13 - 000000000 ____D C:\WINDOWS\INF
  692. 2018-01-17 16:00 - 2018-01-17 16:50 - 000000000 ____D C:\WINDOWS\CbsTemp
  693. 2018-01-17 15:59 - 2018-01-17 17:23 - 077594624 _____ C:\WINDOWS\system32\config\SOFTWARE
  694. 2018-01-17 15:59 - 2018-01-17 17:23 - 020447232 _____ C:\WINDOWS\system32\config\SYSTEM
  695. 2018-01-17 15:59 - 2018-01-17 17:23 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
  696. 2018-01-17 15:59 - 2018-01-17 17:23 - 000524288 _____ C:\WINDOWS\system32\config\BBI
  697. 2018-01-17 15:59 - 2018-01-17 17:23 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY
  698. 2018-01-17 15:59 - 2018-01-17 16:43 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
  699. 2018-01-17 15:59 - 2018-01-17 16:30 - 000000000 ____D C:\WINDOWS\Panther
  700. 2018-01-17 15:59 - 2018-01-17 16:05 - 000000000 ____D C:\WINDOWS\servicing
  701. 2018-01-17 15:59 - 2018-01-17 16:04 - 000131072 _____ C:\WINDOWS\system32\config\SAM
  702. 2018-01-17 15:59 - 2018-01-17 16:03 - 000000000 ____D C:\WINDOWS\system32\SMI
  703. 2018-01-17 15:56 - 2018-01-17 16:09 - 000000000 ___HD C:\$SysReset
  704. 2018-01-08 23:43 - 2018-01-01 04:51 - 001055128 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
  705. 2018-01-08 23:43 - 2018-01-01 04:51 - 000059800 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
  706. 2018-01-08 23:43 - 2018-01-01 04:49 - 008605080 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
  707. 2018-01-08 23:43 - 2018-01-01 04:48 - 001954048 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
  708. 2018-01-08 23:43 - 2018-01-01 04:47 - 000082840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
  709. 2018-01-08 23:43 - 2018-01-01 04:46 - 002709704 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
  710. 2018-01-08 23:43 - 2018-01-01 04:46 - 000471960 ____N (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
  711. 2018-01-08 23:43 - 2018-01-01 04:45 - 000398744 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
  712. 2018-01-08 23:43 - 2018-01-01 04:42 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
  713. 2018-01-08 23:43 - 2018-01-01 04:39 - 000902416 ____N (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
  714. 2018-01-08 23:43 - 2018-01-01 04:39 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
  715. 2018-01-08 23:43 - 2018-01-01 04:39 - 000129432 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
  716. 2018-01-08 23:43 - 2018-01-01 04:37 - 001426664 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
  717. 2018-01-08 23:43 - 2018-01-01 04:36 - 000166296 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
  718. 2018-01-08 23:43 - 2018-01-01 04:35 - 001170008 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
  719. 2018-01-08 23:43 - 2018-01-01 04:34 - 007385088 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
  720. 2018-01-08 23:43 - 2018-01-01 04:33 - 000603920 ____N (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
  721. 2018-01-08 23:43 - 2018-01-01 04:26 - 000428952 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
  722. 2018-01-08 23:43 - 2018-01-01 04:25 - 000147864 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
  723. 2018-01-08 23:43 - 2018-01-01 03:53 - 001615712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
  724. 2018-01-08 23:43 - 2018-01-01 03:45 - 005615968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
  725. 2018-01-08 23:43 - 2018-01-01 03:45 - 002192624 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
  726. 2018-01-08 23:43 - 2018-01-01 03:42 - 006479552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
  727. 2018-01-08 23:43 - 2018-01-01 03:42 - 004644912 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
  728. 2018-01-08 23:43 - 2018-01-01 03:42 - 001246432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
  729. 2018-01-08 23:43 - 2018-01-01 03:42 - 000982528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
  730. 2018-01-08 23:43 - 2018-01-01 03:34 - 000703568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
  731. 2018-01-08 23:43 - 2018-01-01 03:25 - 002905600 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
  732. 2018-01-08 23:43 - 2018-01-01 03:25 - 000344576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
  733. 2018-01-08 23:43 - 2018-01-01 03:24 - 003668480 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
  734. 2018-01-08 23:43 - 2018-01-01 03:24 - 000202240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
  735. 2018-01-08 23:43 - 2018-01-01 03:23 - 000536576 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
  736. 2018-01-08 23:43 - 2018-01-01 03:21 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
  737. 2018-01-08 23:43 - 2018-01-01 03:20 - 019337216 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
  738. 2018-01-08 23:43 - 2018-01-01 03:20 - 018917888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
  739. 2018-01-08 23:43 - 2018-01-01 03:19 - 000369152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
  740. 2018-01-08 23:43 - 2018-01-01 03:19 - 000365568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
  741. 2018-01-08 23:43 - 2018-01-01 03:18 - 000374784 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
  742. 2018-01-08 23:43 - 2018-01-01 03:18 - 000261632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
  743. 2018-01-08 23:43 - 2018-01-01 03:17 - 011923968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
  744. 2018-01-08 23:43 - 2018-01-01 03:17 - 000708096 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
  745. 2018-01-08 23:43 - 2018-01-01 03:17 - 000559104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
  746. 2018-01-08 23:43 - 2018-01-01 03:17 - 000542208 ____N (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
  747. 2018-01-08 23:43 - 2018-01-01 03:16 - 003676672 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
  748. 2018-01-08 23:43 - 2018-01-01 03:16 - 000815616 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
  749. 2018-01-08 23:43 - 2018-01-01 03:16 - 000664576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
  750. 2018-01-08 23:43 - 2018-01-01 03:16 - 000594944 ____N (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
  751. 2018-01-08 23:43 - 2018-01-01 03:16 - 000463360 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
  752. 2018-01-08 23:43 - 2018-01-01 03:15 - 012687872 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
  753. 2018-01-08 23:43 - 2018-01-01 03:15 - 006029312 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
  754. 2018-01-08 23:43 - 2018-01-01 03:15 - 000588800 ____N (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
  755. 2018-01-08 23:43 - 2018-01-01 03:14 - 002465280 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
  756. 2018-01-08 23:43 - 2018-01-01 03:13 - 012830208 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
  757. 2018-01-08 23:43 - 2018-01-01 03:13 - 002869760 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
  758. 2018-01-08 23:43 - 2018-01-01 03:12 - 001547776 ____N (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
  759. 2018-01-08 23:43 - 2018-01-01 03:11 - 008108544 ____N (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
  760. 2018-01-08 23:43 - 2018-01-01 03:11 - 004748288 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
  761. 2018-01-08 23:43 - 2018-01-01 03:11 - 000812032 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
  762. 2018-01-08 23:43 - 2018-01-01 03:09 - 001487872 ____N (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
  763. 2018-01-08 23:43 - 2018-01-01 03:08 - 000685056 ____N (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
  764. 2018-01-08 23:42 - 2018-01-01 09:15 - 000956416 ____N (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
  765. 2018-01-08 23:42 - 2018-01-01 04:54 - 000924648 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
  766. 2018-01-08 23:42 - 2018-01-01 04:53 - 001090984 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
  767. 2018-01-08 23:42 - 2018-01-01 04:52 - 000066712 ____N (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
  768. 2018-01-08 23:42 - 2018-01-01 04:51 - 001414784 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
  769. 2018-01-08 23:42 - 2018-01-01 04:51 - 001209240 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
  770. 2018-01-08 23:42 - 2018-01-01 04:51 - 000191816 ____N (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
  771. 2018-01-08 23:42 - 2018-01-01 04:50 - 005905752 ____N (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
  772. 2018-01-08 23:42 - 2018-01-01 04:50 - 000780464 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
  773. 2018-01-08 23:42 - 2018-01-01 04:50 - 000479912 ____N (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
  774. 2018-01-08 23:42 - 2018-01-01 04:50 - 000077208 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
  775. 2018-01-08 23:42 - 2018-01-01 04:49 - 000599448 ____N (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
  776. 2018-01-08 23:42 - 2018-01-01 04:49 - 000319352 ____N (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
  777. 2018-01-08 23:42 - 2018-01-01 04:49 - 000292376 ____N (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
  778. 2018-01-08 23:42 - 2018-01-01 04:48 - 007831760 ____N (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
  779. 2018-01-08 23:42 - 2018-01-01 04:48 - 000382360 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
  780. 2018-01-08 23:42 - 2018-01-01 04:47 - 000649304 ____N (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
  781. 2018-01-08 23:42 - 2018-01-01 04:46 - 000898216 ____N (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
  782. 2018-01-08 23:42 - 2018-01-01 04:46 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
  783. 2018-01-08 23:42 - 2018-01-01 04:45 - 002395032 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
  784. 2018-01-08 23:42 - 2018-01-01 04:45 - 001277848 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
  785. 2018-01-08 23:42 - 2018-01-01 04:43 - 001173576 ____N (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
  786. 2018-01-08 23:42 - 2018-01-01 04:43 - 000367336 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
  787. 2018-01-08 23:42 - 2018-01-01 04:43 - 000062872 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
  788. 2018-01-08 23:42 - 2018-01-01 04:42 - 001029016 ____N (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
  789. 2018-01-08 23:42 - 2018-01-01 04:42 - 000494488 ____N (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
  790. 2018-01-08 23:42 - 2018-01-01 04:42 - 000184984 ____N (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
  791. 2018-01-08 23:42 - 2018-01-01 04:42 - 000109976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
  792. 2018-01-08 23:42 - 2018-01-01 04:41 - 007676296 ____N (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
  793. 2018-01-08 23:42 - 2018-01-01 04:41 - 000559512 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
  794. 2018-01-08 23:42 - 2018-01-01 04:41 - 000549552 ____N (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
  795. 2018-01-08 23:42 - 2018-01-01 04:40 - 001206680 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
  796. 2018-01-08 23:42 - 2018-01-01 04:39 - 000677784 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
  797. 2018-01-08 23:42 - 2018-01-01 04:39 - 000508264 ____N (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
  798. 2018-01-08 23:42 - 2018-01-01 04:38 - 003904808 ____N (Microsoft Corporation) C:\WINDOWS\explorer.exe
  799. 2018-01-08 23:42 - 2018-01-01 04:38 - 000727448 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
  800. 2018-01-08 23:42 - 2018-01-01 04:38 - 000519152 ____N (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
  801. 2018-01-08 23:42 - 2018-01-01 04:38 - 000103320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
  802. 2018-01-08 23:42 - 2018-01-01 04:38 - 000038808 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
  803. 2018-01-08 23:42 - 2018-01-01 04:37 - 000461720 ____N (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
  804. 2018-01-08 23:42 - 2018-01-01 04:36 - 000413888 ____N (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
  805. 2018-01-08 23:42 - 2018-01-01 04:36 - 000374032 ____N (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
  806. 2018-01-08 23:42 - 2018-01-01 04:36 - 000113560 ____N (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
  807. 2018-01-08 23:42 - 2018-01-01 04:36 - 000057752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
  808. 2018-01-08 23:42 - 2018-01-01 04:35 - 000075160 ____N (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
  809. 2018-01-08 23:42 - 2018-01-01 04:34 - 001336344 ____N (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
  810. 2018-01-08 23:42 - 2018-01-01 04:34 - 000260896 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
  811. 2018-01-08 23:42 - 2018-01-01 04:34 - 000087384 ____N (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
  812. 2018-01-08 23:42 - 2018-01-01 04:33 - 002773400 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
  813. 2018-01-08 23:42 - 2018-01-01 04:32 - 004481240 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
  814. 2018-01-08 23:42 - 2018-01-01 04:32 - 000617304 ____N (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
  815. 2018-01-08 23:42 - 2018-01-01 04:27 - 000713624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
  816. 2018-01-08 23:42 - 2018-01-01 04:27 - 000163736 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
  817. 2018-01-08 23:42 - 2018-01-01 04:26 - 000081304 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
  818. 2018-01-08 23:42 - 2018-01-01 04:25 - 000615768 ____N (Microsoft Corporation) C:\WINDOWS\system32\services.exe
  819. 2018-01-08 23:42 - 2018-01-01 04:23 - 021352144 ____N (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
  820. 2018-01-08 23:42 - 2018-01-01 04:21 - 001103768 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
  821. 2018-01-08 23:42 - 2018-01-01 04:21 - 000614296 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
  822. 2018-01-08 23:42 - 2018-01-01 04:06 - 000311192 ____N (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
  823. 2018-01-08 23:42 - 2018-01-01 04:03 - 000777904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
  824. 2018-01-08 23:42 - 2018-01-01 04:03 - 000650328 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
  825. 2018-01-08 23:42 - 2018-01-01 04:03 - 000566664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
  826. 2018-01-08 23:42 - 2018-01-01 04:03 - 000123512 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
  827. 2018-01-08 23:42 - 2018-01-01 03:49 - 000481464 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
  828. 2018-01-08 23:42 - 2018-01-01 03:49 - 000258808 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
  829. 2018-01-08 23:42 - 2018-01-01 03:46 - 003485392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
  830. 2018-01-08 23:42 - 2018-01-01 03:46 - 000289816 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
  831. 2018-01-08 23:42 - 2018-01-01 03:45 - 006092152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
  832. 2018-01-08 23:42 - 2018-01-01 03:45 - 000450928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
  833. 2018-01-08 23:42 - 2018-01-01 03:43 - 020286120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
  834. 2018-01-08 23:42 - 2018-01-01 03:42 - 001003152 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
  835. 2018-01-08 23:42 - 2018-01-01 03:42 - 000386424 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
  836. 2018-01-08 23:42 - 2018-01-01 03:42 - 000129184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
  837. 2018-01-08 23:42 - 2018-01-01 03:42 - 000074992 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
  838. 2018-01-08 23:42 - 2018-01-01 03:37 - 025247232 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
  839. 2018-01-08 23:42 - 2018-01-01 03:25 - 001008640 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
  840. 2018-01-08 23:42 - 2018-01-01 03:25 - 000475648 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
  841. 2018-01-08 23:42 - 2018-01-01 03:25 - 000097792 ____N C:\WINDOWS\system32\runexehelper.exe
  842. 2018-01-08 23:42 - 2018-01-01 03:24 - 000240640 ____N (Microsoft Corporation) C:\WINDOWS\system32\AboutSettingsHandlers.dll
  843. 2018-01-08 23:42 - 2018-01-01 03:24 - 000096256 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
  844. 2018-01-08 23:42 - 2018-01-01 03:24 - 000038912 ____N (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
  845. 2018-01-08 23:42 - 2018-01-01 03:23 - 001313792 ____N (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
  846. 2018-01-08 23:42 - 2018-01-01 03:23 - 000561152 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
  847. 2018-01-08 23:42 - 2018-01-01 03:23 - 000385024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
  848. 2018-01-08 23:42 - 2018-01-01 03:23 - 000250368 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
  849. 2018-01-08 23:42 - 2018-01-01 03:23 - 000232960 ____N (Microsoft Corporation) C:\WINDOWS\system32\convertvhd.exe
  850. 2018-01-08 23:42 - 2018-01-01 03:23 - 000121344 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
  851. 2018-01-08 23:42 - 2018-01-01 03:23 - 000080384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
  852. 2018-01-08 23:42 - 2018-01-01 03:23 - 000047104 ____N (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
  853. 2018-01-08 23:42 - 2018-01-01 03:22 - 000031744 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
  854. 2018-01-08 23:42 - 2018-01-01 03:22 - 000025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
  855. 2018-01-08 23:42 - 2018-01-01 03:22 - 000017408 ____N (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
  856. 2018-01-08 23:42 - 2018-01-01 03:21 - 000268288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
  857. 2018-01-08 23:42 - 2018-01-01 03:21 - 000233984 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
  858. 2018-01-08 23:42 - 2018-01-01 03:21 - 000133632 ____N (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
  859. 2018-01-08 23:42 - 2018-01-01 03:21 - 000097280 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
  860. 2018-01-08 23:42 - 2018-01-01 03:21 - 000097280 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
  861. 2018-01-08 23:42 - 2018-01-01 03:21 - 000080896 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
  862. 2018-01-08 23:42 - 2018-01-01 03:21 - 000062976 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
  863. 2018-01-08 23:42 - 2018-01-01 03:20 - 000524288 ____N (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
  864. 2018-01-08 23:42 - 2018-01-01 03:20 - 000459776 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
  865. 2018-01-08 23:42 - 2018-01-01 03:20 - 000397824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
  866. 2018-01-08 23:42 - 2018-01-01 03:20 - 000225792 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
  867. 2018-01-08 23:42 - 2018-01-01 03:20 - 000215552 ____N (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
  868. 2018-01-08 23:42 - 2018-01-01 03:20 - 000212992 ____N (Microsoft Corporation) C:\WINDOWS\system32\container.dll
  869. 2018-01-08 23:42 - 2018-01-01 03:20 - 000204288 ____N (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
  870. 2018-01-08 23:42 - 2018-01-01 03:20 - 000186368 ____N (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
  871. 2018-01-08 23:42 - 2018-01-01 03:20 - 000175616 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
  872. 2018-01-08 23:42 - 2018-01-01 03:20 - 000134656 ____N (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
  873. 2018-01-08 23:42 - 2018-01-01 03:20 - 000133632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
  874. 2018-01-08 23:42 - 2018-01-01 03:20 - 000104960 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
  875. 2018-01-08 23:42 - 2018-01-01 03:20 - 000082432 ____N (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
  876. 2018-01-08 23:42 - 2018-01-01 03:20 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
  877. 2018-01-08 23:42 - 2018-01-01 03:20 - 000035328 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
  878. 2018-01-08 23:42 - 2018-01-01 03:19 - 008014848 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
  879. 2018-01-08 23:42 - 2018-01-01 03:19 - 000795136 ____N (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
  880. 2018-01-08 23:42 - 2018-01-01 03:19 - 000675328 ____N (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
  881. 2018-01-08 23:42 - 2018-01-01 03:19 - 000461312 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
  882. 2018-01-08 23:42 - 2018-01-01 03:19 - 000450048 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
  883. 2018-01-08 23:42 - 2018-01-01 03:19 - 000430080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
  884. 2018-01-08 23:42 - 2018-01-01 03:19 - 000416768 ____N (Microsoft Corporation) C:\WINDOWS\system32\html.iec
  885. 2018-01-08 23:42 - 2018-01-01 03:19 - 000366080 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
  886. 2018-01-08 23:42 - 2018-01-01 03:19 - 000340480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
  887. 2018-01-08 23:42 - 2018-01-01 03:19 - 000334848 ____N (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
  888. 2018-01-08 23:42 - 2018-01-01 03:19 - 000316928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
  889. 2018-01-08 23:42 - 2018-01-01 03:19 - 000188416 ____N (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
  890. 2018-01-08 23:42 - 2018-01-01 03:19 - 000174592 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
  891. 2018-01-08 23:42 - 2018-01-01 03:19 - 000149504 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
  892. 2018-01-08 23:42 - 2018-01-01 03:19 - 000142848 ____N (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
  893. 2018-01-08 23:42 - 2018-01-01 03:19 - 000097792 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msoert2.dll
  894. 2018-01-08 23:42 - 2018-01-01 03:19 - 000093696 ____N (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
  895. 2018-01-08 23:42 - 2018-01-01 03:19 - 000079872 ____N (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
  896. 2018-01-08 23:42 - 2018-01-01 03:19 - 000073216 ____N (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
  897. 2018-01-08 23:42 - 2018-01-01 03:19 - 000063488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
  898. 2018-01-08 23:42 - 2018-01-01 03:19 - 000043008 ____N (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
  899. 2018-01-08 23:42 - 2018-01-01 03:18 - 000748032 ____N (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
  900. 2018-01-08 23:42 - 2018-01-01 03:18 - 000699904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
  901. 2018-01-08 23:42 - 2018-01-01 03:18 - 000588800 ____N (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
  902. 2018-01-08 23:42 - 2018-01-01 03:18 - 000465920 ____N (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
  903. 2018-01-08 23:42 - 2018-01-01 03:18 - 000436224 ____N (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
  904. 2018-01-08 23:42 - 2018-01-01 03:18 - 000432640 ____N (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
  905. 2018-01-08 23:42 - 2018-01-01 03:18 - 000431616 ____N (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
  906. 2018-01-08 23:42 - 2018-01-01 03:18 - 000427008 ____N (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
  907. 2018-01-08 23:42 - 2018-01-01 03:18 - 000425984 ____N (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
  908. 2018-01-08 23:42 - 2018-01-01 03:18 - 000391168 ____N (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
  909. 2018-01-08 23:42 - 2018-01-01 03:18 - 000380928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
  910. 2018-01-08 23:42 - 2018-01-01 03:18 - 000369664 ____N (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
  911. 2018-01-08 23:42 - 2018-01-01 03:18 - 000343040 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
  912. 2018-01-08 23:42 - 2018-01-01 03:18 - 000336896 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
  913. 2018-01-08 23:42 - 2018-01-01 03:18 - 000276480 ____N (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
  914. 2018-01-08 23:42 - 2018-01-01 03:18 - 000259072 ____N (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
  915. 2018-01-08 23:42 - 2018-01-01 03:18 - 000210944 ____N (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
  916. 2018-01-08 23:42 - 2018-01-01 03:18 - 000144896 ____N (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
  917. 2018-01-08 23:42 - 2018-01-01 03:18 - 000082944 ____N (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
  918. 2018-01-08 23:42 - 2018-01-01 03:17 - 006564864 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
  919. 2018-01-08 23:42 - 2018-01-01 03:17 - 001485312 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
  920. 2018-01-08 23:42 - 2018-01-01 03:17 - 000791552 ____N (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
  921. 2018-01-08 23:42 - 2018-01-01 03:17 - 000616960 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
  922. 2018-01-08 23:42 - 2018-01-01 03:17 - 000594432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
  923. 2018-01-08 23:42 - 2018-01-01 03:17 - 000568832 ____N (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
  924. 2018-01-08 23:42 - 2018-01-01 03:17 - 000555520 ____N (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
  925. 2018-01-08 23:42 - 2018-01-01 03:17 - 000456704 ____N (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
  926. 2018-01-08 23:42 - 2018-01-01 03:17 - 000423936 ____N (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
  927. 2018-01-08 23:42 - 2018-01-01 03:17 - 000341504 ____N (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
  928. 2018-01-08 23:42 - 2018-01-01 03:17 - 000228352 ____N (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
  929. 2018-01-08 23:42 - 2018-01-01 03:17 - 000112640 ____N (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
  930. 2018-01-08 23:42 - 2018-01-01 03:16 - 005833216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
  931. 2018-01-08 23:42 - 2018-01-01 03:16 - 004839424 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
  932. 2018-01-08 23:42 - 2018-01-01 03:16 - 000966656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
  933. 2018-01-08 23:42 - 2018-01-01 03:16 - 000956928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
  934. 2018-01-08 23:42 - 2018-01-01 03:16 - 000831488 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
  935. 2018-01-08 23:42 - 2018-01-01 03:16 - 000812544 ____N (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
  936. 2018-01-08 23:42 - 2018-01-01 03:16 - 000720896 ____N (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
  937. 2018-01-08 23:42 - 2018-01-01 03:16 - 000668160 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
  938. 2018-01-08 23:42 - 2018-01-01 03:16 - 000624128 ____N (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
  939. 2018-01-08 23:42 - 2018-01-01 03:16 - 000401920 ____N (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
  940. 2018-01-08 23:42 - 2018-01-01 03:16 - 000235008 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
  941. 2018-01-08 23:42 - 2018-01-01 03:16 - 000086528 ____N (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
  942. 2018-01-08 23:42 - 2018-01-01 03:16 - 000076288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
  943. 2018-01-08 23:42 - 2018-01-01 03:15 - 002349568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
  944. 2018-01-08 23:42 - 2018-01-01 03:15 - 001657856 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
  945. 2018-01-08 23:42 - 2018-01-01 03:15 - 001245184 ____N (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
  946. 2018-01-08 23:42 - 2018-01-01 03:15 - 000970240 ____N (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
  947. 2018-01-08 23:42 - 2018-01-01 03:15 - 000951808 ____N (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
  948. 2018-01-08 23:42 - 2018-01-01 03:15 - 000756736 ____N (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
  949. 2018-01-08 23:42 - 2018-01-01 03:15 - 000434176 ____N (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
  950. 2018-01-08 23:42 - 2018-01-01 03:15 - 000366080 ____N (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
  951. 2018-01-08 23:42 - 2018-01-01 03:15 - 000258560 ____N (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
  952. 2018-01-08 23:42 - 2018-01-01 03:14 - 023655936 ____N (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
  953. 2018-01-08 23:42 - 2018-01-01 03:14 - 001495040 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
  954. 2018-01-08 23:42 - 2018-01-01 03:14 - 001097728 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
  955. 2018-01-08 23:42 - 2018-01-01 03:14 - 001003008 ____N (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
  956. 2018-01-08 23:42 - 2018-01-01 03:14 - 000985600 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
  957. 2018-01-08 23:42 - 2018-01-01 03:14 - 000917504 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
  958. 2018-01-08 23:42 - 2018-01-01 03:14 - 000870912 ____N (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
  959. 2018-01-08 23:42 - 2018-01-01 03:13 - 013657600 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
  960. 2018-01-08 23:42 - 2018-01-01 03:13 - 003121664 ____N (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
  961. 2018-01-08 23:42 - 2018-01-01 03:13 - 002013184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
  962. 2018-01-08 23:42 - 2018-01-01 03:13 - 001559552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
  963. 2018-01-08 23:42 - 2018-01-01 03:13 - 001474560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
  964. 2018-01-08 23:42 - 2018-01-01 03:13 - 000897024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
  965. 2018-01-08 23:42 - 2018-01-01 03:12 - 002633216 ____N (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
  966. 2018-01-08 23:42 - 2018-01-01 03:12 - 002208768 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
  967. 2018-01-08 23:42 - 2018-01-01 03:12 - 001573376 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
  968. 2018-01-08 23:42 - 2018-01-01 03:12 - 001424896 ____N (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
  969. 2018-01-08 23:42 - 2018-01-01 03:12 - 000760320 ____N (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
  970. 2018-01-08 23:42 - 2018-01-01 03:12 - 000464384 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
  971. 2018-01-08 23:42 - 2018-01-01 03:11 - 003334144 ____N (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
  972. 2018-01-08 23:42 - 2018-01-01 03:11 - 003165696 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
  973. 2018-01-08 23:42 - 2018-01-01 03:11 - 002859520 ____N (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
  974. 2018-01-08 23:42 - 2018-01-01 03:11 - 002082304 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
  975. 2018-01-08 23:42 - 2018-01-01 03:11 - 001822208 ____N (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
  976. 2018-01-08 23:42 - 2018-01-01 03:11 - 001816576 ____N (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
  977. 2018-01-08 23:42 - 2018-01-01 03:11 - 001597952 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
  978. 2018-01-08 23:42 - 2018-01-01 03:11 - 001343488 ____N (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
  979. 2018-01-08 23:42 - 2018-01-01 03:11 - 001231872 ____N (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
  980. 2018-01-08 23:42 - 2018-01-01 03:11 - 000880640 ____N (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
  981. 2018-01-08 23:42 - 2018-01-01 03:11 - 000715776 ____N (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
  982. 2018-01-08 23:42 - 2018-01-01 03:10 - 003126272 ____N (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
  983. 2018-01-08 23:42 - 2018-01-01 03:10 - 002528256 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
  984. 2018-01-08 23:42 - 2018-01-01 03:10 - 000012800 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
  985. 2018-01-08 23:42 - 2018-01-01 03:09 - 000925184 ____N (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
  986. 2018-01-08 23:42 - 2018-01-01 03:09 - 000666624 ____N (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
  987. 2018-01-08 23:42 - 2018-01-01 03:09 - 000599552 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
  988. 2018-01-08 23:42 - 2018-01-01 03:08 - 000963072 ____N (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
  989. 2018-01-08 23:42 - 2018-01-01 03:08 - 000726016 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
  990. 2018-01-08 23:42 - 2018-01-01 03:08 - 000505344 ____N (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
  991. 2018-01-08 23:42 - 2018-01-01 03:06 - 000018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
  992. 2018-01-08 23:42 - 2018-01-01 03:05 - 002510848 ____N (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
  993. 2018-01-08 23:42 - 2018-01-01 03:05 - 001160704 ____N (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
  994. 2018-01-08 23:42 - 2018-01-01 03:05 - 000050176 ____N (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
  995. 2017-12-22 12:02 - 2017-09-28 15:50 - 001166520 ____N (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
  996. 2017-12-22 12:02 - 2017-09-28 15:50 - 000124624 ____N (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
  997. 2017-12-22 12:02 - 2017-09-28 15:50 - 000035456 ____N (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
  998. 2017-12-22 12:02 - 2017-09-22 18:19 - 000778936 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
  999. 2017-12-22 12:02 - 2017-09-22 18:19 - 000103120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
  1000. 2017-12-22 12:02 - 2017-09-22 18:19 - 000035456 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
  1001.  
  1002. ==================== One Month Modified files and folders ========
  1003.  
  1004. (If an entry is included in the fixlist, the file/folder will be moved.)
  1005.  
  1006. 2018-01-17 17:17 - 2015-11-04 15:50 - 000000000 ____D C:\Program Files (x86)\Amazon
  1007. 2018-01-17 17:11 - 2015-09-08 00:50 - 000000000 ____D C:\ProgramData\McAfee
  1008. 2018-01-17 17:11 - 2015-09-08 00:49 - 000907068 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  1009. 2018-01-17 17:11 - 2015-09-08 00:48 - 000000000 ____D C:\ProgramData\OEM
  1010. 2018-01-17 17:11 - 2015-09-08 00:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
  1011. 2018-01-17 17:10 - 2015-09-08 00:48 - 000000000 ____D C:\ProgramData\Acer
  1012. 2018-01-17 17:03 - 2015-09-08 00:50 - 000000000 ____D C:\Program Files (x86)\McAfee
  1013. 2018-01-17 16:37 - 2015-09-08 01:31 - 000000000 ___HD C:\OEM
  1014. 2018-01-17 16:33 - 2015-09-08 00:46 - 000000000 __RHD C:\Users\Public\AccountPictures
  1015. 2018-01-17 16:28 - 2015-07-10 03:04 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
  1016. 2018-01-17 16:27 - 2015-11-04 15:52 - 000000000 __HDC C:\ProgramData\{2B89F58C-32F7-46EC-A448-AECDF1F22B7B}
  1017. 2018-01-17 16:27 - 2015-11-04 15:44 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
  1018. 2018-01-17 16:27 - 2015-11-04 15:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
  1019. 2018-01-17 16:27 - 2015-11-04 15:36 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
  1020. 2018-01-17 16:27 - 2015-11-04 15:29 - 000000000 ____D C:\ProgramData\Package Cache
  1021. 2018-01-17 16:27 - 2015-11-04 15:26 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
  1022. 2018-01-17 16:27 - 2015-11-04 15:02 - 000000000 ____D C:\WINDOWS\NAPP_Dism_Log
  1023. 2018-01-17 16:27 - 2015-09-08 00:49 - 000000000 ____D C:\ProgramData\Mozilla
  1024. 2018-01-17 16:27 - 2015-09-08 00:48 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
  1025. 2018-01-17 16:27 - 2015-09-08 00:48 - 000000000 ____D C:\ProgramData\WildTangent
  1026. 2018-01-17 16:27 - 2015-09-08 00:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
  1027. 2018-01-17 16:27 - 2015-09-08 00:47 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
  1028. 2018-01-17 16:27 - 2015-07-10 04:22 - 000000000 ____D C:\ProgramData\USOShared
  1029. 2018-01-17 16:27 - 2015-07-10 03:04 - 000000000 ___RD C:\WINDOWS\PurchaseDialog
  1030. 2018-01-17 16:27 - 2015-07-10 03:04 - 000000000 ___RD C:\WINDOWS\DesktopTileResources
  1031. 2018-01-17 16:26 - 2015-11-04 15:52 - 000000000 ____D C:\Program Files (x86)\Dashlane
  1032. 2018-01-17 16:26 - 2015-11-04 15:49 - 000000000 ____D C:\Program Files (x86)\Windows Store Promo
  1033. 2018-01-17 16:26 - 2015-11-04 15:46 - 000000000 ____D C:\Program Files\Common Files\QCA_Bluetooth
  1034. 2018-01-17 16:26 - 2015-11-04 15:44 - 000000000 ____D C:\Program Files (x86)\Qualcomm Atheros
  1035. 2018-01-17 16:26 - 2015-11-04 15:39 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
  1036. 2018-01-17 16:26 - 2015-11-04 15:27 - 000000000 ____D C:\Program Files (x86)\Intel
  1037. 2018-01-17 16:26 - 2015-11-04 15:26 - 000000000 ____D C:\ProgramData\Intel
  1038. 2018-01-17 16:26 - 2015-11-04 15:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
  1039. 2018-01-17 16:26 - 2015-09-08 00:50 - 000000000 ____D C:\Program Files\mcafee.com
  1040. 2018-01-17 16:26 - 2015-09-08 00:50 - 000000000 ____D C:\Program Files\mcafee
  1041. 2018-01-17 16:26 - 2015-09-08 00:50 - 000000000 ____D C:\Program Files\Common Files\McAfee
  1042. 2018-01-17 16:26 - 2015-09-08 00:50 - 000000000 ____D C:\Program Files\Acer
  1043. 2018-01-17 16:26 - 2015-09-08 00:50 - 000000000 ____D C:\Program Files (x86)\mcafee.com
  1044. 2018-01-17 16:26 - 2015-09-08 00:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  1045. 2018-01-17 16:26 - 2015-09-08 00:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
  1046. 2018-01-17 16:26 - 2015-09-08 00:48 - 000000000 ____D C:\ProgramData\AVAST Software
  1047. 2018-01-17 16:26 - 2015-09-08 00:48 - 000000000 ____D C:\Program Files\AVAST Software
  1048. 2018-01-17 16:26 - 2015-09-08 00:48 - 000000000 ____D C:\Program Files (x86)\WildTangent Games
  1049. 2018-01-17 16:26 - 2015-09-08 00:48 - 000000000 ____D C:\Program Files (x86)\WildGames
  1050. 2018-01-17 16:26 - 2015-09-08 00:48 - 000000000 ____D C:\Program Files (x86)\Acer
  1051. 2018-01-17 16:26 - 2015-07-10 05:14 - 000000000 ____D C:\Program Files\Windows Journal
  1052. 2018-01-13 02:03 - 2017-09-29 05:40 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
  1053. 2018-01-08 23:45 - 2017-09-29 05:41 - 000403968 ____N (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
  1054. 2018-01-08 23:45 - 2017-09-29 05:41 - 000140800 ____N (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
  1055. 2018-01-08 23:45 - 2017-09-29 05:41 - 000106496 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
  1056.  
  1057. Some files in TEMP:
  1058. ====================
  1059. 2018-01-17 17:13 - 2015-03-16 11:12 - 005912800 _____ (Foxit Corporation) C:\Users\drpmc\AppData\Local\Temp\FoxitUpdater.exe
  1060.  
  1061. ==================== Bamital & volsnap ======================
  1062.  
  1063. (There is no automatic fix for files that do not pass verification.)
  1064.  
  1065. C:\WINDOWS\system32\winlogon.exe => File is digitally signed
  1066. C:\WINDOWS\system32\wininit.exe => File is digitally signed
  1067. C:\WINDOWS\explorer.exe => File is digitally signed
  1068. C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
  1069. C:\WINDOWS\system32\svchost.exe => File is digitally signed
  1070. C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
  1071. C:\WINDOWS\system32\services.exe => File is digitally signed
  1072. C:\WINDOWS\system32\User32.dll => File is digitally signed
  1073. C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
  1074. C:\WINDOWS\system32\userinit.exe => File is digitally signed
  1075. C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
  1076. C:\WINDOWS\system32\rpcss.dll => File is digitally signed
  1077. C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
  1078. C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
  1079. C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
  1080.  
  1081. LastRegBack: 2018-01-17 16:23
  1082.  
  1083. ==================== End of FRST.txt ============================
Advertisement
RAW Paste Data Copied
Advertisement