FRST/Sca

1. FRST TXT:
2.  
3. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2017
4. Ran by Cory Smith (administrator) on DESKTOP-GU6TEMK (29-05-2017 14:53:16)
5. Running from C:\Users\Cory Smith\Downloads
6. Loaded Profiles: Cory Smith (Available Profiles: Cory Smith)
7. Platform: Windows 10 Home Version 1703 (X64) Language: English (United Kingdom)
8. Internet Explorer Version 11 (Default browser: Edge)
9. Boot Mode: Normal
10. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
11.  
12. ==================== Processes (Whitelisted) =================
13.  
14. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
15.  
16. (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
17. (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
18. (Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
19. (Megaify Software Co., Ltd.) C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
20. (Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
21. (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
22. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
23. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
24. (Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegister.exe
25. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
26. (Microsoft Corporation) C:\Windows\System32\browser_broker.exe
27. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
28. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
29. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
30. (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
31. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
32. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
33. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
34. (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
35. (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
36. (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
37. (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
38. (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
39. (Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
40.  
41. ==================== Registry (Whitelisted) ====================
42.  
43. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
44.  
45. HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
46. HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-03-13] (NVIDIA Corporation)
47. HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
48. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9198592 2017-02-10] (Realtek Semiconductor)
49. HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1258448 2016-11-09] (Micro-Star INT'L CO., LTD.)
50. HKU\S-1-5-21-3729940396-3466973117-3832101617-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-04-26] (Valve Corporation)
51. HKU\S-1-5-21-3729940396-3466973117-3832101617-1001\...\MountPoints2: {68d6cd8e-4312-11e7-a2a2-806e6f6e6963} - "E:\DVDSetup.exe"
52.  
53. ==================== Internet (Whitelisted) ====================
54.  
55. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
56.  
57. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
58. Tcpip\..\Interfaces\{8e718f8d-bb18-4e6e-822f-2282f5ca7ca0}: [DhcpNameServer] 192.168.1.1
59. Tcpip\..\Interfaces\{f9eb04e3-132c-4eb8-9fed-af41e4fe0996}: [DhcpNameServer] 192.168.1.1
60.  
61. Internet Explorer:
62. ==================
63.  
64. FireFox:
65. ========
66. FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-23] (NVIDIA Corporation)
67. FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-23] (NVIDIA Corporation)
68. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-28] (Google Inc.)
69. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-28] (Google Inc.)
70.  
71. Chrome:
72. =======
73. CHR Profile: C:\Users\Cory Smith\AppData\Local\Google\Chrome\User Data\Default [2017-05-28]
74. CHR Extension: (Google Docs) - C:\Users\Cory Smith\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-28]
75. CHR Extension: (Google Drive) - C:\Users\Cory Smith\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-28]
76. CHR Extension: (YouTube) - C:\Users\Cory Smith\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-28]
77. CHR Extension: (Google Docs Offline) - C:\Users\Cory Smith\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-28]
78. CHR Extension: (Chrome Web Store Payments) - C:\Users\Cory Smith\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-28]
79. CHR Extension: (Gmail) - C:\Users\Cory Smith\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-28]
80.  
81. ==================== Services (Whitelisted) ====================
82.  
83. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
84.  
85. S3 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-03-13] (NVIDIA Corporation)
86. S3 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [132048 2016-10-07] (Micro-Star INT'L CO., LTD.)
87. S3 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-23] (NVIDIA Corporation)
88. R3 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-03-13] (NVIDIA Corporation)
89. S3 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-03-13] (NVIDIA Corporation)
90. R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [8515952 2017-05-14] (Reimage®)
91. R2 tbaseprovisioning; C:\Windows\SysWOW64\tbaseprovisioning.exe [51208 2017-01-09] (Advanced Micro Devices, Inc.)
92. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
93. R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
94.  
95. ===================== Drivers (Whitelisted) ======================
96.  
97. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
98.  
99. R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [43400 2017-03-01] (Advanced Micro Devices, Inc)
100. R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24424 2016-08-12] (Advanced Micro Devices, Inc)
101. S3 amdkmcsp; C:\Windows\system32\DRIVERS\amdkmcsp.sys [100744 2017-01-09] (Advanced Micro Devices, Inc. )
102. R0 amdpsp; C:\Windows\System32\DRIVERS\amdpsp.sys [255368 2017-01-09] (Advanced Micro Devices, Inc. )
103. S3 NTIOLib_1_0_C; E:\NTIOLib_X64.sys [11888 2011-06-29] (MSI) [File not signed]
104. R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_e619501ce2023445\nvlddmkm.sys [14569520 2017-03-23] (NVIDIA Corporation)
105. S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [40136 2015-03-13] (NVIDIA Corporation)
106. R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-03-13] (NVIDIA Corporation)
107. R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [943112 2016-08-22] (Realtek )
108. R3 RtlWlanu_OldIC; C:\Windows\System32\drivers\rtwlanu_oldIC.sys [3814400 2017-03-18] (Realtek Semiconductor Corporation )
109. S3 SDFRd; C:\Windows\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
110. S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
111. R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
112. S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
113. S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\SDSDefs\20170527.002\ENG64.SYS [X]
114. S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\SDSDefs\20170527.002\EX64.SYS [X]
115.  
116. ==================== NetSvcs (Whitelisted) ===================
117.  
118. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
119.  
120.  
121. ==================== One Month Created files and folders ========
122.  
123. (If an entry is included in the fixlist, the file/folder will be moved.)
124.  
125. 2017-05-29 14:53 - 2017-05-29 14:53 - 00009377 _____ C:\Users\Cory Smith\Downloads\FRST.txt
126. 2017-05-29 14:52 - 2017-05-29 14:53 - 00000000 ____D C:\FRST
127. 2017-05-29 14:51 - 2017-05-29 14:51 - 02429952 _____ (Farbar) C:\Users\Cory Smith\Downloads\FRST64.exe
128. 2017-05-29 14:45 - 2017-05-29 14:50 - 00003808 _____ C:\Windows\System32\Tasks\AutoKMS
129. 2017-05-29 14:45 - 2017-05-29 14:49 - 00000000 ____D C:\Windows\AutoKMS
130. 2017-05-29 14:44 - 2017-05-29 14:44 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
131. 2017-05-29 14:26 - 2017-05-29 14:31 - 55165315 _____ C:\Users\Cory Smith\Downloads\mstoolkit.zip
132. 2017-05-29 14:16 - 2017-05-29 14:16 - 00000000 ____D C:\Users\Cory Smith\Documents\FeedbackHub
133. 2017-05-28 21:05 - 2017-05-28 21:05 - 00004362 _____ C:\Windows\System32\Tasks\ReimageUpdater
134. 2017-05-28 21:05 - 2017-05-28 21:05 - 00003568 _____ C:\Windows\System32\Tasks\Reimage Reminder
135. 2017-05-28 21:04 - 2017-05-28 21:05 - 00000000 ____D C:\rei
136. 2017-05-28 21:04 - 2017-05-28 21:05 - 00000000 ____D C:\ProgramData\Reimage Protector
137. 2017-05-28 21:04 - 2017-05-28 21:05 - 00000000 ____D C:\Program Files\Reimage
138. 2017-05-28 21:04 - 2017-05-28 21:04 - 00001984 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
139. 2017-05-28 21:04 - 2017-05-28 21:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
140. 2017-05-28 21:03 - 2017-05-28 21:05 - 00000140 _____ C:\Windows\Reimage.ini
141. 2017-05-28 20:26 - 2017-05-28 20:26 - 00000000 ____D C:\Windows\LastGood
142. 2017-05-28 19:55 - 2017-05-28 19:55 - 00000222 _____ C:\Users\Cory Smith\Desktop\Arma 3.url
143. 2017-05-28 19:49 - 2017-05-28 19:49 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\Steam
144. 2017-05-28 19:49 - 2017-05-28 19:49 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\CEF
145. 2017-05-28 19:39 - 2017-05-28 19:39 - 00000000 ____D C:\Users\Cory Smith\AppData\Roaming\Macromedia
146. 2017-05-28 19:38 - 2017-05-29 14:52 - 00000000 ____D C:\Program Files (x86)\Steam
147. 2017-05-28 19:38 - 2017-05-28 19:38 - 00001036 _____ C:\Users\Public\Desktop\Steam.lnk
148. 2017-05-28 19:38 - 2017-05-28 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
149. 2017-05-28 19:37 - 2017-05-28 19:37 - 01446792 _____ C:\Users\Cory Smith\Downloads\SteamSetup.exe
150. 2017-05-28 18:27 - 2017-05-29 14:41 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
151. 2017-05-28 18:27 - 2017-05-28 18:27 - 00000000 ____D C:\Program Files\Common Files\AV
152. 2017-05-28 17:52 - 2017-05-28 17:52 - 00000000 ____D C:\Program Files (x86)\VulkanRT
153. 2017-05-28 17:52 - 2017-02-23 09:28 - 00548288 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
154. 2017-05-28 17:52 - 2017-02-23 09:28 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
155. 2017-05-28 17:52 - 2017-02-23 09:17 - 00136064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
156. 2017-05-28 17:52 - 2017-01-26 01:13 - 00103936 _____ C:\Windows\SysWOW64\vulkaninfo.exe
157. 2017-05-28 17:52 - 2017-01-26 01:12 - 00326656 _____ C:\Windows\SysWOW64\vulkan-1.dll
158. 2017-05-28 17:52 - 2017-01-26 01:09 - 00322560 _____ C:\Windows\system32\vulkan-1.dll
159. 2017-05-28 17:52 - 2017-01-26 01:09 - 00118272 _____ C:\Windows\system32\vulkaninfo.exe
160. 2017-05-28 17:51 - 2017-02-23 09:43 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
161. 2017-05-28 17:50 - 2017-05-28 17:52 - 00000000 ____D C:\Windows\LastGood.Tmp
162. 2017-05-28 17:45 - 2017-05-28 17:45 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\Google
163. 2017-05-28 17:44 - 2017-05-29 14:49 - 00000000 ____D C:\ProgramData\Norton
164. 2017-05-28 17:44 - 2017-05-29 14:49 - 00000000 ____D C:\Program Files (x86)\Norton Security
165. 2017-05-28 17:44 - 2017-05-29 14:06 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
166. 2017-05-28 17:44 - 2017-05-29 14:06 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
167. 2017-05-28 17:44 - 2017-05-28 17:44 - 00000000 ____D C:\ProgramData\NortonInstaller
168. 2017-05-28 17:43 - 2017-05-28 17:50 - 00003416 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
169. 2017-05-28 17:43 - 2017-05-28 17:50 - 00003292 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
170. 2017-05-28 17:43 - 2017-05-28 17:43 - 00000000 ____D C:\Program Files (x86)\Google
171. 2017-05-28 17:25 - 2017-05-28 17:25 - 00007606 _____ C:\Users\Cory Smith\AppData\Local\Resmon.ResmonCfg
172. 2017-05-28 17:18 - 2017-05-28 16:09 - 00532136 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
173. 2017-05-28 16:38 - 2017-05-28 16:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
174. 2017-05-28 16:38 - 2017-05-28 16:38 - 00000000 ____D C:\Program Files\7-Zip
175. 2017-05-28 16:32 - 2017-05-28 16:32 - 00002705 _____ C:\Users\Cory Smith\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
176. 2017-05-28 16:31 - 2017-05-28 17:36 - 00000000 ____D C:\Users\Cory Smith\AppData\Roaming\uTorrent
177. 2017-05-28 16:30 - 2017-05-28 16:31 - 02240192 _____ (BitTorrent Inc.) C:\Users\Cory Smith\Downloads\uTorrent.exe
178. 2017-05-28 16:28 - 2017-05-28 16:28 - 00201030 _____ C:\Users\Cory Smith\Downloads\lspfix.zip
179. 2017-05-28 11:08 - 2017-05-28 11:08 - 00000000 ____H C:\ProgramData\DP45977C.lfl
180. 2017-05-28 11:08 - 2017-05-28 11:08 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
181. 2017-05-28 11:08 - 2017-05-28 11:08 - 00000000 ____D C:\Windows\system32\DAX3
182. 2017-05-28 11:08 - 2017-05-28 11:08 - 00000000 ____D C:\Windows\system32\DAX2
183. 2017-05-28 11:08 - 2017-05-28 11:08 - 00000000 ____D C:\ProgramData\Audyssey Labs
184. 2017-05-28 11:08 - 2017-05-28 11:08 - 00000000 ____D C:\Program Files\Realtek
185. 2017-05-28 11:07 - 2017-02-10 05:53 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
186. 2017-05-28 11:07 - 2017-02-10 05:53 - 15202032 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
187. 2017-05-28 11:07 - 2017-02-10 05:53 - 10283532 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
188. 2017-05-28 11:07 - 2017-02-10 05:53 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
189. 2017-05-28 11:07 - 2017-02-10 05:53 - 05611520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
190. 2017-05-28 11:07 - 2017-02-10 05:53 - 03503040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
191. 2017-05-28 11:07 - 2017-02-10 05:53 - 03410832 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
192. 2017-05-28 11:07 - 2017-02-10 05:53 - 03299816 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
193. 2017-05-28 11:07 - 2017-02-10 05:53 - 03203584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
194. 2017-05-28 11:07 - 2017-02-10 05:53 - 03203416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
195. 2017-05-28 11:07 - 2017-02-10 05:53 - 03122648 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
196. 2017-05-28 11:07 - 2017-02-10 05:53 - 03014656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
197. 2017-05-28 11:07 - 2017-02-10 05:53 - 02830480 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
198. 2017-05-28 11:07 - 2017-02-10 05:53 - 02202624 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
199. 2017-05-28 11:07 - 2017-02-10 05:53 - 02190976 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
200. 2017-05-28 11:07 - 2017-02-10 05:53 - 01435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
201. 2017-05-28 11:07 - 2017-02-10 05:53 - 01382232 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
202. 2017-05-28 11:07 - 2017-02-10 05:53 - 01353816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
203. 2017-05-28 11:07 - 2017-02-10 05:53 - 01337632 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
204. 2017-05-28 11:07 - 2017-02-10 05:53 - 01003512 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
205. 2017-05-28 11:07 - 2017-02-10 05:53 - 00984904 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
206. 2017-05-28 11:07 - 2017-02-10 05:53 - 00965016 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
207. 2017-05-28 11:07 - 2017-02-10 05:53 - 00962120 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
208. 2017-05-28 11:07 - 2017-02-10 05:53 - 00873464 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
209. 2017-05-28 11:07 - 2017-02-10 05:53 - 00866096 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
210. 2017-05-28 11:07 - 2017-02-10 05:53 - 00859912 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
211. 2017-05-28 11:07 - 2017-02-10 05:53 - 00856296 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
212. 2017-05-28 11:07 - 2017-02-10 05:53 - 00726632 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
213. 2017-05-28 11:07 - 2017-02-10 05:53 - 00689872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
214. 2017-05-28 11:07 - 2017-02-10 05:53 - 00601144 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
215. 2017-05-28 11:07 - 2017-02-10 05:53 - 00532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
216. 2017-05-28 11:07 - 2017-02-10 05:53 - 00518528 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
217. 2017-05-28 11:07 - 2017-02-10 05:53 - 00467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
218. 2017-05-28 11:07 - 2017-02-10 05:53 - 00447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
219. 2017-05-28 11:07 - 2017-02-10 05:53 - 00387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
220. 2017-05-28 11:07 - 2017-02-10 05:53 - 00381400 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
221. 2017-05-28 11:07 - 2017-02-10 05:53 - 00343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
222. 2017-05-28 11:07 - 2017-02-10 05:53 - 00341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
223. 2017-05-28 11:07 - 2017-02-10 05:53 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
224. 2017-05-28 11:07 - 2017-02-10 05:53 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
225. 2017-05-28 11:07 - 2017-02-10 05:53 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
226. 2017-05-28 11:07 - 2017-02-10 05:53 - 00258856 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
227. 2017-05-28 11:07 - 2017-02-10 05:53 - 00231912 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
228. 2017-05-28 11:07 - 2017-02-10 05:53 - 00221968 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
229. 2017-05-28 11:07 - 2017-02-10 05:53 - 00214824 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
230. 2017-05-28 11:07 - 2017-02-10 05:53 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
231. 2017-05-28 11:07 - 2017-02-10 05:53 - 00192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
232. 2017-05-28 11:07 - 2017-02-10 05:53 - 00166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
233. 2017-05-28 11:07 - 2017-02-10 05:53 - 00158688 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
234. 2017-05-28 11:07 - 2017-02-10 05:53 - 00110976 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
235. 2017-05-28 11:07 - 2017-02-10 05:53 - 00105304 _____ C:\Windows\system32\audioLibVc.dll
236. 2017-05-28 11:07 - 2017-02-10 05:53 - 00090912 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
237. 2017-05-28 11:07 - 2017-02-10 05:53 - 00088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
238. 2017-05-28 11:07 - 2017-02-10 05:53 - 00088320 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
239. 2017-05-28 11:07 - 2017-02-10 05:53 - 00083616 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
240. 2017-05-28 11:07 - 2017-02-10 05:53 - 00075536 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
241. 2017-05-28 11:07 - 2017-02-10 05:53 - 00023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
242. 2017-05-28 11:06 - 2017-05-28 11:08 - 00000000 ___HD C:\Program Files (x86)\Temp
243. 2017-05-28 11:06 - 2017-02-10 05:53 - 07172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
244. 2017-05-28 11:06 - 2017-02-10 05:53 - 07096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
245. 2017-05-28 11:06 - 2017-02-10 05:53 - 06264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
246. 2017-05-28 11:06 - 2017-02-10 05:53 - 05347000 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
247. 2017-05-28 11:06 - 2017-02-10 05:53 - 02993712 _____ (Audyssey Labs) C:\Windows\system32\AudysseyEfx.dll
248. 2017-05-28 11:06 - 2017-02-10 05:53 - 02444688 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
249. 2017-05-28 11:06 - 2017-02-10 05:53 - 01965808 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
250. 2017-05-28 11:06 - 2017-02-10 05:53 - 01959600 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
251. 2017-05-28 11:06 - 2017-02-10 05:53 - 01780616 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
252. 2017-05-28 11:06 - 2017-02-10 05:53 - 01591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
253. 2017-05-28 11:06 - 2017-02-10 05:53 - 01516896 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
254. 2017-05-28 11:06 - 2017-02-10 05:53 - 01508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
255. 2017-05-28 11:06 - 2017-02-10 05:53 - 01363096 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
256. 2017-05-28 11:06 - 2017-02-10 05:53 - 01133584 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
257. 2017-05-28 11:06 - 2017-02-10 05:53 - 00785608 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
258. 2017-05-28 11:06 - 2017-02-10 05:53 - 00743960 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
259. 2017-05-28 11:06 - 2017-02-10 05:53 - 00727432 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
260. 2017-05-28 11:06 - 2017-02-10 05:53 - 00708304 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
261. 2017-05-28 11:06 - 2017-02-10 05:53 - 00680504 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
262. 2017-05-28 11:06 - 2017-02-10 05:53 - 00504304 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
263. 2017-05-28 11:06 - 2017-02-10 05:53 - 00447712 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
264. 2017-05-28 11:06 - 2017-02-10 05:53 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
265. 2017-05-28 11:06 - 2017-02-10 05:53 - 00441264 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
266. 2017-05-28 11:06 - 2017-02-10 05:53 - 00426560 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
267. 2017-05-28 11:06 - 2017-02-10 05:53 - 00416504 _____ (Harman) C:\Windows\system32\HMUI.dll
268. 2017-05-28 11:06 - 2017-02-10 05:53 - 00378384 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
269. 2017-05-28 11:06 - 2017-02-10 05:53 - 00366112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
270. 2017-05-28 11:06 - 2017-02-10 05:53 - 00362048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
271. 2017-05-28 11:06 - 2017-02-10 05:53 - 00360336 _____ (Harman) C:\Windows\system32\HMClariFi.dll
272. 2017-05-28 11:06 - 2017-02-10 05:53 - 00327456 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
273. 2017-05-28 11:06 - 2017-02-10 05:53 - 00310416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
274. 2017-05-28 11:06 - 2017-02-10 05:53 - 00272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
275. 2017-05-28 11:06 - 2017-02-10 05:53 - 00253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
276. 2017-05-28 11:06 - 2017-02-10 05:53 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
277. 2017-05-28 11:06 - 2017-02-10 05:53 - 00252872 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
278. 2017-05-28 11:06 - 2017-02-10 05:53 - 00203832 _____ (Harman) C:\Windows\system32\HMHVS.dll
279. 2017-05-28 11:06 - 2017-02-10 05:53 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
280. 2017-05-28 11:06 - 2017-02-10 05:53 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ.dll
281. 2017-05-28 11:06 - 2017-02-10 05:53 - 00179592 _____ (Harman) C:\Windows\system32\HMLimiter.dll
282. 2017-05-28 11:06 - 2017-02-10 05:53 - 00154360 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
283. 2017-05-28 11:06 - 2017-02-10 05:53 - 00151784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
284. 2017-05-28 11:06 - 2017-02-10 05:53 - 00134192 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
285. 2017-05-28 11:06 - 2017-02-10 05:53 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
286. 2017-05-28 11:06 - 2017-02-10 05:53 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
287. 2017-05-28 11:06 - 2017-02-10 05:53 - 00084608 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
288. 2017-05-28 11:06 - 2016-09-22 07:55 - 02839520 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
289. 2017-05-28 11:04 - 2017-05-28 11:06 - 00000000 ____D C:\Program Files (x86)\Realtek
290. 2017-05-28 11:04 - 2017-05-28 11:04 - 00000000 ____D C:\ProgramData\Package Cache
291. 2017-05-28 11:04 - 2017-05-28 11:04 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
292. 2017-05-28 11:04 - 2016-08-22 21:19 - 00943112 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
293. 2017-05-28 11:04 - 2016-08-22 21:19 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
294. 2017-05-28 11:03 - 2017-05-28 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
295. 2017-05-28 11:03 - 2017-05-28 11:03 - 00000000 ____D C:\Program Files\AMD
296. 2017-05-28 11:03 - 2017-05-28 11:03 - 00000000 ____D C:\MSI
297. 2017-05-27 21:19 - 2017-05-29 14:49 - 00000400 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
298. 2017-05-27 21:19 - 2017-05-27 21:19 - 00002838 _____ C:\Windows\System32\Tasks\DriverToolkit Autorun
299. 2017-05-27 21:11 - 2017-05-27 21:11 - 00001140 _____ C:\Users\Public\Desktop\DriverToolkit.lnk
300. 2017-05-27 21:11 - 2017-05-27 21:11 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\DriverToolkit
301. 2017-05-27 21:11 - 2017-05-27 21:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
302. 2017-05-27 21:11 - 2017-05-27 21:11 - 00000000 ____D C:\Program Files (x86)\DriverToolkit
303. 2017-05-27 21:02 - 2017-05-27 21:08 - 02458632 _____ (Megaify Software ) C:\Users\Cory Smith\Downloads\DriverToolkitInstaller.exe
304. 2017-05-27 20:49 - 2017-05-27 20:49 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\DBG
305. 2017-05-27 20:46 - 2017-05-27 20:46 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\NVIDIA Corporation
306. 2017-05-27 20:45 - 2017-05-27 20:48 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\NVIDIA
307. 2017-05-27 20:45 - 2017-05-27 20:45 - 00001424 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
308. 2017-05-27 20:45 - 2017-05-27 20:45 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
309. 2017-05-27 20:45 - 2015-03-13 20:41 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
310. 2017-05-27 20:45 - 2015-03-13 20:41 - 01514528 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
311. 2017-05-27 20:45 - 2015-03-13 20:41 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
312. 2017-05-27 20:45 - 2015-03-13 20:41 - 01278920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
313. 2017-05-27 20:45 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
314. 2017-05-27 20:45 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
315. 2017-05-27 20:45 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
316. 2017-05-27 20:45 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
317. 2017-05-27 20:45 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
318. 2017-05-27 20:45 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
319. 2017-05-27 20:44 - 2017-05-28 18:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
320. 2017-05-27 20:44 - 2017-05-28 18:13 - 00000000 ____D C:\ProgramData\NVIDIA
321. 2017-05-27 20:44 - 2017-02-23 09:28 - 06401984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
322. 2017-05-27 20:44 - 2017-02-23 09:28 - 02479160 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
323. 2017-05-27 20:44 - 2017-02-23 09:28 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
324. 2017-05-27 20:44 - 2017-02-23 09:28 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
325. 2017-05-27 20:44 - 2017-02-23 09:28 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
326. 2017-05-27 20:44 - 2017-02-23 07:38 - 07807027 _____ C:\Windows\system32\nvcoproc.bin
327. 2017-05-27 20:43 - 2017-05-28 17:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
328. 2017-05-27 20:43 - 2017-05-28 17:51 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
329. 2017-05-27 20:43 - 2017-03-23 15:44 - 00521656 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
330. 2017-05-27 20:43 - 2017-03-23 15:44 - 00427448 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
331. 2017-05-27 20:43 - 2017-03-23 15:34 - 04122584 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
332. 2017-05-27 20:43 - 2017-03-23 12:15 - 00043566 _____ C:\Windows\system32\nvinfo.pb
333. 2017-05-27 20:43 - 2015-03-13 20:41 - 18580512 ____N (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
334. 2017-05-27 20:43 - 2015-03-13 20:41 - 16022016 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
335. 2017-05-27 20:43 - 2015-03-13 20:41 - 10262160 ____N (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
336. 2017-05-27 20:43 - 2015-03-13 20:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
337. 2017-05-27 20:43 - 2015-03-13 20:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
338. 2017-05-27 20:43 - 2015-03-13 20:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
339. 2017-05-27 20:43 - 2015-03-13 20:41 - 00997856 ____N (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
340. 2017-05-27 20:43 - 2015-03-13 20:41 - 00101576 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
341. 2017-05-27 20:43 - 2015-03-13 20:41 - 00040136 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
342. 2017-05-27 20:43 - 2015-03-13 20:41 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
343. 2017-05-27 20:43 - 2015-03-13 20:41 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
344. 2017-05-27 20:43 - 2015-03-13 20:41 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
345. 2017-05-27 20:42 - 2017-05-28 17:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
346. 2017-05-27 20:41 - 2017-05-27 20:41 - 00000000 ____D C:\NVIDIA
347. 2017-05-27 20:40 - 2017-05-27 20:40 - 00000000 ____D C:\Windows\tbaseregistry
348. 2017-05-27 20:40 - 2017-03-18 21:56 - 00407552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEShims.dll
349. 2017-05-27 20:26 - 2017-05-27 19:29 - 00000000 ____D C:\Windows\Panther
350. 2017-05-27 19:56 - 2017-05-28 11:06 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
351. 2017-05-27 19:56 - 2017-05-27 19:56 - 00000000 ____D C:\ProgramData\Ralink Driver
352. 2017-05-27 19:56 - 2017-05-27 19:56 - 00000000 ____D C:\Program Files (x86)\Ralink
353. 2017-05-27 19:56 - 2012-09-25 16:16 - 02042952 _____ (Ralink Technology, Corp.) C:\Windows\system32\Drivers\netr28x.sys
354. 2017-05-27 19:56 - 2012-09-25 15:03 - 00327008 _____ (Ralink Technology, Inc.) C:\Windows\system32\RaCoInstx.dll
355. 2017-05-27 19:56 - 2012-09-25 15:03 - 00014119 ____R C:\Windows\SysWOW64\RaCoInst.dat
356. 2017-05-27 19:56 - 2012-09-25 15:03 - 00014119 ____R C:\Windows\system32\RaCoInst.dat
357. 2017-05-27 19:56 - 2012-05-10 22:01 - 01503744 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\libeay32.dll
358. 2017-05-27 19:56 - 2012-05-10 22:01 - 00308736 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\system32\ssleay32.dll
359. 2017-05-27 19:48 - 2017-05-27 19:48 - 00000000 ____D C:\ProgramData\USOShared
360. 2017-05-27 19:45 - 2017-05-27 19:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf
361. 2017-05-27 19:42 - 2017-05-27 19:42 - 00003300 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
362. 2017-05-27 19:42 - 2017-05-27 19:42 - 00002382 _____ C:\Users\Cory Smith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
363. 2017-05-27 19:42 - 2017-05-27 19:42 - 00000000 ___RD C:\Users\Cory Smith\OneDrive
364. 2017-05-27 19:42 - 2017-05-27 19:42 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\Comms
365. 2017-05-27 19:41 - 2017-05-27 21:00 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\MicrosoftEdge
366. 2017-05-27 19:40 - 2017-05-27 19:40 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\Publishers
367. 2017-05-27 19:40 - 2017-05-27 19:40 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
368. 2017-05-27 19:37 - 2017-05-28 18:20 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\Packages
369. 2017-05-27 19:37 - 2017-05-28 18:12 - 00000000 ____D C:\Users\Cory Smith
370. 2017-05-27 19:37 - 2017-05-27 19:37 - 00000020 ___SH C:\Users\Cory Smith\ntuser.ini
371. 2017-05-27 19:37 - 2017-05-27 19:37 - 00000000 __RHD C:\Users\Public\AccountPictures
372. 2017-05-27 19:37 - 2017-05-27 19:37 - 00000000 ____D C:\Users\Cory Smith\AppData\Roaming\Adobe
373. 2017-05-27 19:37 - 2017-05-27 19:37 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\VirtualStore
374. 2017-05-27 19:37 - 2017-05-27 19:37 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\TileDataLayer
375. 2017-05-27 19:37 - 2017-05-27 19:37 - 00000000 ____D C:\Users\Cory Smith\AppData\Local\ConnectedDevicesPlatform
376. 2017-05-27 19:35 - 2017-05-28 20:55 - 00927954 _____ C:\Windows\system32\PerfStringBackup.INI
377. 2017-05-27 19:33 - 2017-03-18 21:56 - 02233344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
378. 2017-05-27 19:27 - 2017-05-29 14:49 - 00000006 ____H C:\Windows\Tasks\SA.DAT
379. 2017-05-27 19:27 - 2017-05-27 19:27 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
380. 2017-05-27 19:26 - 2017-05-28 19:31 - 00000000 ____D C:\Windows\system32\SleepStudy
381. 2017-05-27 19:26 - 2017-05-27 19:27 - 00217000 _____ C:\Windows\system32\FNTCACHE.DAT
382. 2017-05-27 19:26 - 2017-05-27 19:26 - 00000000 ____D C:\Windows\ServiceProfiles
383.  
384. ==================== One Month Modified files and folders ========
385.  
386. (If an entry is included in the fixlist, the file/folder will be moved.)
387.  
388. 2017-05-29 14:48 - 2017-03-18 12:40 - 00524288 _____ C:\Windows\system32\config\BBI
389. 2017-05-29 14:41 - 2017-03-18 22:03 - 00000000 ___HD C:\Windows\ELAMBKUP
390. 2017-05-29 14:41 - 2017-03-18 12:40 - 00032768 _____ C:\Windows\system32\config\ELAM
391. 2017-05-28 20:26 - 2017-03-18 22:01 - 00000000 ____D C:\Windows\INF
392. 2017-05-28 18:25 - 2017-03-18 22:03 - 00000000 ___HD C:\Program Files\WindowsApps
393. 2017-05-28 18:25 - 2017-03-18 22:03 - 00000000 ____D C:\Windows\AppReadiness
394. 2017-05-28 17:20 - 2017-03-18 21:51 - 00000000 ____D C:\Windows\CbsTemp
395. 2017-05-28 11:52 - 2017-03-18 22:03 - 00000000 ____D C:\Windows\system32\NDF
396. 2017-05-28 10:56 - 2017-03-18 22:03 - 00000000 ____D C:\Windows\appcompat
397. 2017-05-27 20:44 - 2017-03-18 22:03 - 00000000 ____D C:\Windows\Help
398. 2017-05-27 20:25 - 2017-03-18 22:03 - 00028672 _____ C:\Windows\system32\config\BCD-Template
399. 2017-05-27 19:48 - 2017-03-18 22:03 - 00000000 ____D C:\ProgramData\USOPrivate
400. 2017-05-27 19:37 - 2017-03-18 22:03 - 00000000 ____D C:\Windows\system32\WinBioDatabase
401. 2017-05-27 19:33 - 2017-03-18 22:03 - 00000000 ____D C:\Windows\system32\spool
402. 2017-05-27 19:33 - 2017-03-18 22:03 - 00000000 ____D C:\Windows\system32\FxsTmp
403. 2017-05-27 19:32 - 2017-03-18 22:03 - 00000000 ____D C:\Windows\rescache
404. 2017-05-27 19:29 - 2017-03-18 12:40 - 00000000 ____D C:\Windows\system32\Sysprep
405. 2017-05-27 19:28 - 2017-03-18 22:03 - 00000000 ___RD C:\Windows\PrintDialog
406. 2017-05-27 19:28 - 2017-03-18 22:03 - 00000000 ___RD C:\Windows\MiracastView
407. 2017-05-27 19:28 - 2017-03-18 22:03 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
408. 2017-05-27 19:27 - 2017-03-20 04:44 - 00000000 ____D C:\Windows\HoloShell
409.  
410. ==================== Files in the root of some directories =======
411.  
412. 2017-05-28 17:25 - 2017-05-28 17:25 - 0007606 _____ () C:\Users\Cory Smith\AppData\Local\Resmon.ResmonCfg
413. 2017-05-28 11:08 - 2017-05-28 11:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
414.  
415. Some files in TEMP:
416. ====================
417. 2017-05-28 21:03 - 2017-05-28 21:04 - 13460656 _____ (Reimage) C:\Users\Cory Smith\AppData\Local\Temp\ReimagePackage.exe
418. 2017-05-28 18:12 - 2017-05-28 18:12 - 0000000 _____ () C:\Users\Cory Smith\AppData\Local\Temp\{A528772F-EC96-4F45-ABD2-61CD1F4C5DE4}-58.0.3029.110_chrome_installer.exe
419.  
420. ==================== Bamital & volsnap ======================
421.  
422. (There is no automatic fix for files that do not pass verification.)
423.  
424. C:\Windows\system32\winlogon.exe => File is digitally signed
425. C:\Windows\system32\wininit.exe => File is digitally signed
426. C:\Windows\explorer.exe => File is digitally signed
427. C:\Windows\SysWOW64\explorer.exe => File is digitally signed
428. C:\Windows\system32\svchost.exe => File is digitally signed
429. C:\Windows\SysWOW64\svchost.exe => File is digitally signed
430. C:\Windows\system32\services.exe => File is digitally signed
431. C:\Windows\system32\User32.dll => File is digitally signed
432. C:\Windows\SysWOW64\User32.dll => File is digitally signed
433. C:\Windows\system32\userinit.exe => File is digitally signed
434. C:\Windows\SysWOW64\userinit.exe => File is digitally signed
435. C:\Windows\system32\rpcss.dll => File is digitally signed
436. C:\Windows\system32\dnsapi.dll => File is digitally signed
437. C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
438. C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
439.  
440. LastRegBack: 2017-05-27 19:26
441.  
442. ==================== End of FRST.txt ============================
443. ADDITION TXT:
444.  
445. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-05-2017
446. Ran by Cory Smith (29-05-2017 14:53:56)
447. Running from C:\Users\Cory Smith\Downloads
448. Windows 10 Home Version 1703 (X64) (2017-05-27 18:31:46)
449. Boot Mode: Normal
450. ==========================================================
451.  
452.  
453. ==================== Accounts: =============================
454.  
455. Administrator (S-1-5-21-3729940396-3466973117-3832101617-500 - Administrator - Disabled)
456. Cory Smith (S-1-5-21-3729940396-3466973117-3832101617-1001 - Administrator - Enabled) => C:\Users\Cory Smith
457. DefaultAccount (S-1-5-21-3729940396-3466973117-3832101617-503 - Limited - Disabled)
458. Guest (S-1-5-21-3729940396-3466973117-3832101617-501 - Limited - Disabled)
459.  
460. ==================== Security Center ========================
461.  
462. (If an entry is included in the fixlist, it will be removed.)
463.  
464. AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
465. AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
466.  
467. ==================== Installed Programs ======================
468.  
469. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
470.  
471. µTorrent (HKU\S-1-5-21-3729940396-3466973117-3832101617-1001\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
472. 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
473. AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
474. Ansel (Version: 378.78 - NVIDIA Corporation) Hidden
475. Arma 3 (HKLM\...\Steam App 107410) (Version: - Bohemia Interactive)
476. DriverToolkit version 8.5.1.0 (HKLM-x32\...\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1) (Version: 8.5.1.0 - Megaify Software)
477. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
478. Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
479. Microsoft OneDrive (HKU\S-1-5-21-3729940396-3466973117-3832101617-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
480. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
481. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
482. MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.05 - MSI)
483. NVIDIA 3D Vision Controller Driver 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
484. NVIDIA 3D Vision Driver 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.78 - NVIDIA Corporation)
485. NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
486. NVIDIA Graphics Driver 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.78 - NVIDIA Corporation)
487. NVIDIA HD Audio Driver 1.3.34.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.23 - NVIDIA Corporation)
488. NVIDIA Miracast Virtual Audio 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 347.88 - NVIDIA Corporation)
489. NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
490. OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
491. Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.24.0 - Ralink)
492. Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
493. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8059 - Realtek Semiconductor Corp.)
494. Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.8.5.8 - Reimage) <==== ATTENTION
495. SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
496. SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
497. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
498. Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
499.  
500. ==================== Custom CLSID (Whitelisted): ==========================
501.  
502. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
503.  
504.  
505. ==================== Scheduled Tasks (Whitelisted) =============
506.  
507. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
508.  
509. Task: {09BF8E29-5E32-4253-A671-B5DD1C722474} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [2017-05-10] (Reimage ltd.) <==== ATTENTION
510. Task: {6817078E-C16D-4600-ABD7-51634159774A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-28] (Google Inc.)
511. Task: {68EEE93F-D498-496A-8FFB-70EF41F9D189} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-05-29] ()
512. Task: {7953A384-146C-4CD6-8AF9-B4F8B21A7A51} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe [2017-05-15] (Megaify Software Co., Ltd.)
513. Task: {C4FDBD42-8E9E-4C9F-9604-D781E99A55D7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-28] (Google Inc.)
514. Task: {FF340766-4B98-4433-AFB6-2580906B53ED} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2017-05-14] (Reimage®) <==== ATTENTION
515.  
516. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
517.  
518. Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
519.  
520. ==================== Shortcuts =============================
521.  
522. (The entries could be listed to be restored or removed.)
523.  
524. ==================== Loaded Modules (Whitelisted) ==============
525.  
526. 2017-03-18 21:58 - 2017-03-18 21:58 - 00138000 _____ () C:\Windows\SYSTEM32\inputhost.dll
527. 2017-03-18 21:59 - 2017-03-20 04:43 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
528. 2017-03-18 21:58 - 2017-03-18 21:58 - 00047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
529. 2017-03-18 21:58 - 2017-03-18 21:58 - 02328576 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
530. 2017-03-18 21:58 - 2017-03-18 21:58 - 02836480 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
531. 2017-05-27 21:11 - 2014-02-17 19:13 - 00092984 _____ () C:\Program Files (x86)\DriverToolkit\zlibwapi.dll
532. 2017-05-28 19:46 - 2017-03-10 01:13 - 00674592 _____ () C:\Program Files (x86)\Steam\SDL2.dll
533. 2017-05-28 19:46 - 2017-04-26 00:55 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
534. 2017-05-28 19:46 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
535. 2017-05-28 19:46 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
536. 2017-05-28 19:46 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
537. 2017-05-28 19:46 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
538. 2017-05-28 19:46 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
539. 2017-05-28 19:46 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
540. 2017-05-28 19:46 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
541. 2017-05-28 19:46 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
542. 2017-05-28 19:46 - 2017-04-26 00:55 - 00848672 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
543. 2017-05-28 19:46 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
544. 2017-05-28 19:49 - 2017-01-30 22:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
545. 2017-05-28 19:46 - 2015-09-25 00:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
546.  
547. ==================== Alternate Data Streams (Whitelisted) =========
548.  
549. (If an entry is included in the fixlist, only the ADS will be removed.)
550.  
551.  
552. ==================== Safe Mode (Whitelisted) ===================
553.  
554. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
555.  
556.  
557. ==================== Association (Whitelisted) ===============
558.  
559. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
560.  
561.  
562. ==================== Internet Explorer trusted/restricted ===============
563.  
564. (If an entry is included in the fixlist, it will be removed from the registry.)
565.  
566.  
567. ==================== Hosts content: ===============================
568.  
569. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
570.  
571. 2017-03-18 22:03 - 2017-03-18 22:01 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts
572.  
573.  
574. ==================== Other Areas ============================
575.  
576. (Currently there is no automatic fix for this section.)
577.  
578. HKU\S-1-5-21-3729940396-3466973117-3832101617-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
579. DNS Servers: 192.168.1.1
580. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
581. Windows Firewall is disabled.
582.  
583. ==================== MSCONFIG/TASK MANAGER disabled items ==
584.  
585. HKU\S-1-5-21-3729940396-3466973117-3832101617-1001\...\StartupApproved\Run: => "Steam"
586.  
587. ==================== FirewallRules (Whitelisted) ===============
588.  
589. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
590.  
591. FirewallRules: [{515A9A5D-8388-4182-8A21-26DFEF2BAA78}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
592. FirewallRules: [{57B0740E-187E-4627-99F0-A11C2268E866}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
593. FirewallRules: [{D0BF19E7-67A2-4338-B1B7-B15EC7D0C7EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
594. FirewallRules: [{6C2BBCFB-69D6-4ECC-A776-6D6B52983D73}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
595. FirewallRules: [{42608FC1-AD69-41D7-8883-D1225A5F6F76}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
596. FirewallRules: [{4C5B9436-7364-4F6A-958D-FBA5E3CA9511}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
597. FirewallRules: [{7A0BAC4B-8FF7-4DBB-9AFA-D71FFAAF0B52}] => (Allow) C:\Users\Cory Smith\AppData\Roaming\uTorrent\uTorrent.exe
598. FirewallRules: [{DBE02383-6718-4A5D-87DD-5ED832D7C1BD}] => (Allow) C:\Users\Cory Smith\AppData\Roaming\uTorrent\uTorrent.exe
599. FirewallRules: [{661D403E-FCB1-4CCC-94CD-7F7D5B3DED64}] => (Allow) C:\Users\Cory Smith\AppData\Roaming\uTorrent\uTorrent.exe
600. FirewallRules: [{9111CA6B-1F7B-4948-99D8-1BAAA58CB1BD}] => (Allow) C:\Users\Cory Smith\AppData\Roaming\uTorrent\uTorrent.exe
601. FirewallRules: [{08D6F8B2-D05A-4692-9B34-6CFD0B159335}] => (Allow) C:\Users\Cory Smith\AppData\Roaming\uTorrent\uTorrent.exe
602. FirewallRules: [{FF477E30-34D5-4F47-9714-9DD38AB40DEB}] => (Allow) C:\Users\Cory Smith\AppData\Roaming\uTorrent\uTorrent.exe
603. FirewallRules: [{95322A27-5273-4644-BF80-950F221F5DA9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
604. FirewallRules: [{95BDABD8-BB23-46F7-9373-060052BED6CF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
605. FirewallRules: [{200D6A59-4888-4644-9158-0F2B04DA14A3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
606. FirewallRules: [{DDE776C0-4E99-4706-B010-277F2872C688}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
607. FirewallRules: [{C9C62B4B-692B-4B22-87FE-B89425580166}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
608.  
609. ==================== Restore Points =========================
610.  
611. 27-05-2017 19:44:41 Windows Update
612.  
613. ==================== Faulty Device Manager Devices =============
614.  
615.  
616. ==================== Event log errors: =========================
617.  
618. Application errors:
619. ==================
620. Error: (05/29/2017 02:46:32 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
621. Description: License Activation (slui.exe) failed with the following error code:
622. hr=0xC004F074
623. Command-line arguments:
624. RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=TimerEvent
625.  
626. Error: (05/29/2017 02:41:27 PM) (Source: Application Error) (EventID: 1000) (User: )
627. Description: Faulting application name: SecHealthUI.exe, version: 10.0.15063.0, time stamp: 0x58ccbce5
628. Faulting module name: SecHealthUIDataModel.dll, version: 0.0.0.0, time stamp: 0x58ccbc8d
629. Exception code: 0xc0000005
630. Fault offset: 0x000000000015b847
631. Faulting process ID: 0x4f0
632. Faulting application start time: 0x01d2d8811c575de4
633. Faulting application path: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
634. Faulting module path: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
635. Report ID: be33e280-de4e-4d56-b954-19d8e1f79f1e
636. Faulting package full name: Microsoft.Windows.SecHealthUI_10.0.15063.0_neutral__cw5n1h2txyewy
637. Faulting package-relative application ID: SecHealthUI
638.  
639. Error: (05/29/2017 02:06:05 PM) (Source: SideBySide) (EventID: 33) (User: )
640. Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
641. Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
642. Please use sxstrace.exe for detailed diagnosis.
643.  
644. Error: (05/29/2017 02:05:36 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
645. Description: License Activation (slui.exe) failed with the following error code:
646. hr=0x80070422
647. Command-line arguments:
648. RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
649.  
650. Error: (05/29/2017 02:03:07 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
651. Description: License Activation (slui.exe) failed with the following error code:
652. hr=0x8007139F
653. Command-line arguments:
654. RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=NetworkAvailable
655.  
656. Error: (05/29/2017 02:02:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
657. Description: License Activation (slui.exe) failed with the following error code:
658. hr=0x8007139F
659. Command-line arguments:
660. RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=NetworkAvailable
661.  
662. Error: (05/28/2017 09:12:11 PM) (Source: SideBySide) (EventID: 33) (User: )
663. Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
664. Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
665. Please use sxstrace.exe for detailed diagnosis.
666.  
667. Error: (05/28/2017 09:06:01 PM) (Source: SideBySide) (EventID: 33) (User: )
668. Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
669. Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
670. Please use sxstrace.exe for detailed diagnosis.
671.  
672. Error: (05/28/2017 08:55:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
673. Description: License Activation (slui.exe) failed with the following error code:
674. hr=0x80070422
675. Command-line arguments:
676. RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=NetworkAvailable
677.  
678. Error: (05/28/2017 08:55:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
679. Description: License Activation (slui.exe) failed with the following error code:
680. hr=0x80070422
681. Command-line arguments:
682. RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2b1f36bb-c1cd-4306-bf5c-a0367c2d97d8;NotificationInterval=1440;Trigger=NetworkAvailable
683.  
684.  
685. System errors:
686. =============
687. Error: (05/29/2017 02:49:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
688. Description: The CldFlt service failed to start due to the following error:
689. The request is not supported.
690.  
691. Error: (05/28/2017 08:48:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
692. Description: The CldFlt service failed to start due to the following error:
693. The request is not supported.
694.  
695. Error: (05/28/2017 08:47:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GU6TEMK)
696. Description: The server {0002DF02-0000-0000-C000-000000000046} did not register with DCOM within the required timeout.
697.  
698. Error: (05/28/2017 08:47:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GU6TEMK)
699. Description: The server {0002DF02-0000-0000-C000-000000000046} did not register with DCOM within the required timeout.
700.  
701. Error: (05/28/2017 08:27:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
702. Description: The CldFlt service failed to start due to the following error:
703. The request is not supported.
704.  
705. Error: (05/28/2017 08:26:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GU6TEMK)
706. Description: The server {0002DF02-0000-0000-C000-000000000046} did not register with DCOM within the required timeout.
707.  
708. Error: (05/28/2017 08:26:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-GU6TEMK)
709. Description: The server {0002DF02-0000-0000-C000-000000000046} did not register with DCOM within the required timeout.
710.  
711. Error: (05/28/2017 07:49:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
712. Description: The Steam Client Service service failed to start due to the following error:
713. The service did not respond to the start or control request in a timely fashion.
714.  
715. Error: (05/28/2017 07:49:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
716. Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
717.  
718. Error: (05/28/2017 07:32:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
719. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
720. {D63B10C5-BB46-4990-A94F-E40B9D520160}
721. and APPID
722. {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
723. to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
724.  
725.  
726. ==================== Memory info ===========================
727.  
728. Processor: AMD Ryzen 5 1500X Quad-Core Processor
729. Percentage of memory in use: 25%
730. Total physical RAM: 8144.74 MB
731. Available physical RAM: 6064.52 MB
732. Total Virtual: 10064.74 MB
733. Available Virtual: 7802.2 MB
734.  
735. ==================== Drives ================================
736.  
737. Drive c: () (Fixed) (Total:930.96 GB) (Free:883.39 GB) NTFS
738. Drive e: (G71-MAD1038) (CDROM) (Total:4.18 GB) (Free:0 GB) CDFS
739.  
740. ==================== MBR & Partition Table ==================
741.  
742. ========================================================
743. Disk: 0 (Size: 931.5 GB) (Disk ID: EE7BE432)
744.  
745. Partition: GPT.
746.  
747. ==================== End of Addition.txt ============================
748.  
749. Scan_Registery_Run_Key:
750.  
751. **************************************************************************************************************************************************
752. Started on 29/05/2017 15:00:34.76 "Scan_Registery_Run_Key.bat" with username : "Cory Smith" on Computer "DESKTOP-GU6TEMK"
753. **************************************************************************************************************************************************
754.  
755.  
756. ***************************** General infos ***********************************
757.  
758. Running under: Cory Smith on profile: C:\Users\Cory Smith
759. Computer name: DESKTOP-GU6TEMK
760.  
761.  
762. Host Name: DESKTOP-GU6TEMK
763. OS Name: Microsoft Windows 10 Home
764. OS Version: 10.0.15063 N/A Build 15063
765. OS Manufacturer: Microsoft Corporation
766. OS Configuration: Standalone Workstation
767. OS Build Type: Multiprocessor Free
768. Registered Owner: Windows User
769. Registered Organization:
770. Product ID: 00326-30000-00001-AA717
771. Original Install Date: 27/05/2017, 19:31:46
772. System Boot Time: 29/05/2017, 14:48:48
773. System Manufacturer: MSI
774. System Model: MS-7A39
775. System Type: x64-based PC
776. Processor(s): 1 Processor(s) Installed.
777. [01]: AMD64 Family 23 Model 1 Stepping 1 AuthenticAMD ~1550 Mhz
778. BIOS Version: American Megatrends Inc. 2.30, 24/03/2017
779. Windows Directory: C:\Windows
780. System Directory: C:\Windows\system32
781. Boot Device: \Device\HarddiskVolume2
782. System Locale: en-gb;English (United Kingdom)
783. Input Locale: en-gb;English (United Kingdom)
784. Time Zone: (UTC+00:00) Dublin, Edinburgh, Lisbon, London
785. Total Physical Memory: 8,145 MB
786. Available Physical Memory: 6,030 MB
787. Virtual Memory: Max Size: 10,065 MB
788. Virtual Memory: Available: 7,682 MB
789. Virtual Memory: In Use: 2,383 MB
790. Page File Location(s): C:\pagefile.sys
791. Domain: WORKGROUP
792. Logon Server: \\DESKTOP-GU6TEMK
793. Hotfix(s): N/A
794. Network Card(s): 3 NIC(s) Installed.
795. [01]: Realtek PCIe GBE Family Controller
796. Connection Name: Ethernet
797. Status: Media disconnected
798. [02]: 802.11n Wireless LAN Card
799. Connection Name: WiFi
800. Status: Media disconnected
801. [03]: N300 USB Network Adapter
802. Connection Name: WiFi 2
803. DHCP Enabled: Yes
804. DHCP Server: 192.168.1.1
805. IP address(es)
806. [01]: 192.168.1.62
807. [02]: fe80::e8eb:65c6:13c9:ccb4
808. Hyper-V Requirements: VM Monitor Mode Extensions: Yes
809. Virtualization Enabled In Firmware: No
810. Second Level Address Translation: Yes
811. Data Execution Prevention Available: Yes
812. Operating System:
813. Microsoft Windows 10 Home
814.  
815. PROCESSOR ARCHITECTURE : AMD64
816. NUMBER_OF_PROCESSORS : 8
817. PROCESSOR_IDENTIFIER : AMD64 Family 23 Model 1 Stepping 1, AuthenticAMD
818. PROCESSOR_LEVEL : 23
819. PROCESSOR_REVISION : 0101
820. OS TYPE : Windows_NT
821. CMD PATH : C:\Windows\system32\cmd.exe
822. EXTENSIONS : .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
823.  
824. PATH : "C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Users\Cory Smith\AppData\Local\Microsoft\WindowsApps"
825.  
826. Program files path : C:\Program Files
827. Program files(86) path :
828. ProgramW6432 path : C:\Program Files
829. PSModulePath : C:\Program Files\WindowsPowerShell\Modules;C:\Windows\system32\WindowsPowerShell\v1.0\Modules
830. SystemRoot : C:\Windows
831. Temp Folder : C:\Users\CORYSM~1\AppData\Local\Temp
832. Boot Mode:
833. Normal boot
834.  
835. Antivirus software installed:
836. Windows Defender
837.  
838.  
839. **************************** Drives infos *************************************
840.  
841. Listing currently attached drives:
842. Caption Description VolumeName
843.  
844. C: Local Fixed Disk
845.  
846. E: CD-ROM Disc G71-MAD1038
847.  
848.  
849.  
850.  
851. Physical drives information:
852. C: \Device\HarddiskVolume4 NTFS
853. E: \Device\CdRom0 CDFS
854.  
855. ************************** DriverQuery infos **********************************
856.  
857. Module Name Display Name Driver Type Link Date
858. ============ ====================== ============= ======================
859. 1394ohci 1394 OHCI Compliant Ho Kernel 10/12/2006 21:44:38
860. 3ware 3ware Kernel 18/05/2015 23:28:03
861. ACPI Microsoft ACPI Driver Kernel 09/12/1975 11:17:08
862. AcpiDev ACPI Devices driver Kernel 07/12/1993 11:22:19
863. acpiex Microsoft ACPIEx Drive Kernel 01/03/2087 13:53:50
864. acpipagr ACPI Processor Aggrega Kernel 24/01/2081 13:36:36
865. AcpiPmi ACPI Power Meter Drive Kernel 20/11/2006 02:20:15
866. acpitime ACPI Wake Alarm Driver Kernel 09/02/1974 12:10:30
867. ADP80XX ADP80XX Kernel 09/04/2015 21:49:48
868. AFD Ancillary Function Dri Kernel 25/03/2096 17:36:43
869. ahcache Application Compatibil Kernel 29/07/2004 05:52:50
870. amdgpio2 AMD GPIO Client Driver Kernel 09/08/2016 11:05:07
871. amdgpio3 AMD GPIO Client Driver Kernel 14/03/2016 10:19:36
872. AmdK8 AMD K8 Processor Drive Kernel 16/06/2040 08:17:43
873. amdkmcsp AMD Kernel Mode CSP Se Kernel 06/12/2016 16:55:14
874. AmdPPM AMD Processor Driver Kernel 23/12/2077 21:48:10
875. amdpsp AMD PSP Service Kernel 06/12/2016 16:53:23
876. amdsata amdsata Kernel 14/05/2015 13:14:52
877. amdsbs amdsbs Kernel 11/12/2012 21:21:44
878. amdxata amdxata Kernel 01/05/2015 01:55:35
879. AppID AppID Driver Kernel 18/03/2072 00:13:51
880. applockerflt Smartlocker Filter Dri Kernel 17/09/2101 10:17:41
881. arcsas Adaptec SAS/SATA-II RA Kernel 09/04/2015 20:12:07
882. AsyncMac RAS Asynchronous Media Kernel 08/08/2097 15:12:49
883. atapi IDE Channel Kernel 27/11/2000 23:57:51
884. b06bdrv QLogic Network Adapter Kernel 25/05/2016 08:03:08
885. BasicDisplay BasicDisplay Kernel 22/02/2093 15:33:08
886. BasicRender BasicRender Kernel 04/04/2070 19:19:55
887. bcmfn2 bcmfn2 Service Kernel 01/11/2016 02:09:15
888. Beep Beep Kernel 01/01/2060 16:27:10
889. bowser Browser Support Driver File System 14/11/2063 22:49:42
890. BthAvrcpTg Bluetooth Audio/Video Kernel 11/09/2022 20:32:06
891. BthHFEnum Bluetooth Hands-Free A Kernel 19/04/2004 05:32:55
892. bthhfhid Bluetooth Hands-Free C Kernel 25/04/2011 05:21:49
893. BTHMODEM Bluetooth Modem Commun Kernel 04/04/2079 10:31:37
894. buttonconver Service for Portable D Kernel 19/11/2000 03:01:50
895. CAD Charge Arbitration Dri Kernel 03/12/2017 09:31:49
896. CapImg HID driver for CapImg Kernel 27/12/2059 15:11:50
897. cdfs CD/DVD File System Rea File System 06/01/2064 18:54:26
898. cdrom CD-ROM Driver Kernel 20/07/1972 23:39:41
899. cht4iscsi cht4iscsi Kernel 20/04/2016 10:54:30
900. cht4vbd Chelsio Virtual Bus Dr Kernel 15/04/2016 08:32:54
901. circlass Consumer IR Devices Kernel 11/07/2094 04:26:42
902. CldFlt Windows Cloud Files Fi File System 17/05/2064 10:03:21
903. CLFS Common Log (CLFS) Kernel 09/08/2066 16:12:22
904. clreg Virtual Registry for C Kernel 16/08/2055 10:08:54
905. CmBatt Microsoft ACPI Control Kernel 26/07/2053 13:56:57
906. CNG CNG Kernel 21/02/2099 13:35:34
907. cnghwassist CNG Hardware Assist al Kernel 16/02/2009 02:39:48
908. CompositeBus Composite Bus Enumerat Kernel 16/06/2056 14:59:53
909. condrv Console Driver Kernel 26/06/2031 02:27:43
910. dam Desktop Activity Moder Kernel 06/12/2087 09:31:06
911. Dfsc DFS Namespace Client D File System 04/03/2023 10:04:07
912. Disk Disk Driver Kernel 28/03/2009 18:37:28
913. dmvsc dmvsc Kernel 14/03/2099 09:44:35
914. drmkaud Microsoft Trusted Audi Kernel 26/09/1996 17:21:58
915. DXGKrnl LDDM Graphics Subsyste Kernel 04/02/2025 08:30:42
916. ebdrv QLogic 10 Gigabit Ethe Kernel 25/05/2016 08:01:05
917. EhStorClass Enhanced Storage Filte Kernel 03/01/2088 01:18:11
918. EhStorTcgDrv Microsoft driver for s Kernel 13/06/2100 03:14:48
919. ErrDev Microsoft Hardware Err Kernel 27/02/2013 20:51:53
920. exfat exFAT File System Driv File System 27/09/2034 11:25:11
921. fastfat FAT12/16/32 File Syste File System 17/05/1977 04:56:00
922. fdc Floppy Disk Controller Kernel 02/02/1975 16:36:16
923. FileCrypt FileCrypt File System 28/05/2030 09:10:59
924. FileInfo File Information FS Mi File System 30/06/2042 15:43:32
925. Filetrace Filetrace File System 24/02/2101 18:55:03
926. flpydisk Floppy Disk Driver Kernel 21/05/2084 16:16:11
927. FltMgr FltMgr File System 01/01/2047 11:09:19
928. FsDepends File System Dependency File System 21/04/2018 00:09:27
929. fvevol BitLocker Drive Encryp Kernel 03/02/1999 07:04:49
930. gencounter Microsoft Hyper-V Gene Kernel 05/05/1995 05:36:10
931. genericusbfn Generic USB Function C Kernel 15/05/2006 16:31:15
932. GPIOClx0101 Microsoft GPIO Class E Kernel 17/06/2039 21:01:13
933. GpuEnergyDrv GPU Energy Driver Kernel 11/11/1972 08:01:57
934. HdAudAddServ Microsoft 1.1 UAA Func Kernel 24/06/1988 03:07:39
935. HDAudBus Microsoft UAA Bus Driv Kernel 27/01/1988 06:21:45
936. HidBatt HID UPS Battery Driver Kernel 03/07/2016 11:25:51
937. HidBth Microsoft Bluetooth HI Kernel 03/06/1986 22:53:22
938. hidi2c Microsoft I2C HID Mini Kernel 04/03/2045 20:13:23
939. hidinterrupt Common Driver for HID Kernel 06/07/1991 08:10:26
940. HidIr Microsoft Infrared HID Kernel 30/03/2078 22:28:49
941. HidUsb Microsoft HID Class Dr Kernel 03/05/2016 08:23:27
942. HpSAMD HpSAMD Kernel 26/03/2013 21:36:54
943. HTTP HTTP Service Kernel 27/12/2076 02:18:09
944. hvservice Hypervisor/Virtual Mac Kernel 09/06/1977 15:05:34
945. hwpolicy Hardware Policy Driver Kernel 04/02/2045 11:49:56
946. hyperkbd hyperkbd Kernel 08/11/2104 23:18:45
947. i8042prt PS/2 Keyboard and Mous Kernel 10/11/1995 17:53:53
948. iagpio Intel Serial IO GPIO C Kernel 18/02/2016 07:35:09
949. iai2c Intel(R) Serial IO I2C Kernel 22/09/2015 07:53:03
950. iaLPSS2i_GPI Intel(R) Serial IO GPI Kernel 09/08/2016 03:23:09
951. iaLPSS2i_GPI Intel(R) Serial IO GPI Kernel 03/02/2017 05:51:05
952. iaLPSS2i_I2C Intel(R) Serial IO I2C Kernel 09/08/2016 03:22:47
953. iaLPSS2i_I2C Intel(R) Serial IO I2C Kernel 03/02/2017 05:50:37
954. iaLPSSi_GPIO Intel(R) Serial IO GPI Kernel 02/02/2015 09:00:09
955. iaLPSSi_I2C Intel(R) Serial IO I2C Kernel 24/02/2015 15:52:07
956. iaStorAV Intel(R) SATA RAID Con Kernel 19/02/2015 12:08:39
957. iaStorV Intel RAID Controller Kernel 11/04/2011 19:48:16
958. ibbus Mellanox InfiniBand Bu Kernel 10/04/2016 14:46:21
959. IndirectKmd Indirect Displays Kern Kernel 24/02/2060 02:30:57
960. IntcAzAudAdd Service for Realtek HD Kernel 07/02/2017 11:19:23
961. intelide intelide Kernel 07/12/2008 05:16:35
962. intelpep Intel(R) Power Engine Kernel 19/04/2007 09:53:10
963. intelppm Intel Processor Driver Kernel 07/06/2079 05:38:54
964. iorate Disk I/O Rate Filter D Kernel 01/02/2013 23:15:43
965. IpFilterDriv IP Traffic Filter Driv Kernel 25/05/2028 05:01:58
966. IPMIDRV IPMIDRV Kernel 03/05/1995 12:19:39
967. IPNAT IP Network Address Tra Kernel 03/09/2077 01:24:53
968. irda irda Kernel 06/10/2004 00:00:37
969. IRENUM IR Bus Enumerator Kernel 22/12/2038 21:31:52
970. isapnp isapnp Kernel 08/12/2055 17:46:48
971. iScsiPrt iScsiPort Driver Kernel 25/12/2067 07:56:36
972. kbdclass Keyboard Class Driver Kernel 11/01/2084 06:17:01
973. kbdhid Keyboard HID Driver Kernel 24/04/2022 05:10:44
974. kdnic Microsoft Kernel Debug Kernel 21/08/2093 09:38:50
975. KSecDD KSecDD Kernel 01/03/2041 17:51:04
976. KSecPkg KSecPkg Kernel 02/09/2061 04:23:07
977. ksthunk Kernel Streaming Thunk Kernel 13/06/2020 00:29:26
978. lltdio Link-Layer Topology Di Kernel 12/09/2087 12:48:37
979. LSI_SAS LSI_SAS Kernel 25/03/2015 19:36:48
980. LSI_SAS2i LSI_SAS2i Kernel 05/08/2016 15:08:34
981. LSI_SAS3i LSI_SAS3i Kernel 08/08/2016 13:07:48
982. LSI_SSS LSI_SSS Kernel 15/03/2013 23:39:38
983. luafv UAC File Virtualizatio File System 08/06/2037 10:55:59
984. mausbhost MA-USB Host Controller Kernel 18/07/2039 00:48:45
985. mausbip MA-USB IP Filter Drive Kernel 18/07/2100 00:05:24
986. megasas megasas Kernel 05/03/2015 02:36:29
987. megasas2i megasas2i Kernel 22/07/2016 22:36:46
988. megasr megasr Kernel 03/06/2013 23:02:39
989. mlx4_bus Mellanox ConnectX Bus Kernel 10/04/2016 14:49:39
990. MMCSS Multimedia Class Sched Kernel 15/09/2049 02:25:49
991. Modem Modem Kernel 13/09/2094 13:41:38
992. monitor Microsoft Monitor Clas Kernel 18/11/2014 01:45:15
993. mouclass Mouse Class Driver Kernel 23/10/2035 15:38:45
994. mouhid Mouse HID Driver Kernel 26/05/2090 11:52:31
995. mountmgr Mount Point Manager Kernel 27/07/2094 16:10:51
996. mpsdrv Windows Firewall Autho Kernel 27/11/1980 02:16:18
997. MRxDAV WebDav Client Redirect File System 01/03/2052 05:11:57
998. mrxsmb SMB MiniRedirector Wra File System 16/10/2004 02:47:34
999. mrxsmb10 SMB 1.x MiniRedirector File System 06/09/2053 16:34:23
1000. mrxsmb20 SMB 2.0 MiniRedirector File System 13/09/2080 04:14:32
1001. MsBridge Microsoft MAC Bridge Kernel 12/05/1975 11:26:23
1002. Msfs Msfs File System 24/10/2000 12:07:15
1003. msgpiowin32 Common Driver for Butt Kernel 11/01/1982 06:02:43
1004. mshidkmdf Pass-through HID to KM Kernel 17/12/2018 13:08:26
1005. mshidumdf Pass-through HID to UM Kernel 14/07/2086 18:42:47
1006. msisadrv msisadrv Kernel 24/05/2069 17:53:03
1007. MSKSSRV Microsoft Streaming Se Kernel 04/02/2044 17:59:04
1008. MsLldp Microsoft Link-Layer D Kernel 16/10/2073 19:14:38
1009. MSPCLOCK Microsoft Streaming Cl Kernel 10/02/1993 13:28:02
1010. MSPQM Microsoft Streaming Qu Kernel 23/03/2058 10:23:03
1011. MsRPC MsRPC Kernel 17/01/1982 12:05:49
1012. mssmbios Microsoft System Manag Kernel 10/02/2070 05:40:28
1013. MSTEE Microsoft Streaming Te Kernel 28/10/1990 02:17:55
1014. MTConfig Microsoft Input Config Kernel 18/06/2024 04:06:38
1015. Mup Mup File System 30/11/2050 14:03:56
1016. mvumis mvumis Kernel 23/05/2014 21:39:04
1017. NativeWifiP NativeWiFi Filter Kernel 13/02/2003 08:44:49
1018. ndfltr NetworkDirect Service Kernel 10/04/2016 14:46:09
1019. NDIS NDIS System Driver Kernel 15/12/1981 05:19:38
1020. NdisCap Microsoft NDIS Capture Kernel 29/10/1982 06:29:24
1021. NdisImPlatfo Microsoft Network Adap Kernel 14/06/1978 03:11:23
1022. NdisTapi Remote Access NDIS TAP Kernel 11/04/2012 05:36:41
1023. Ndisuio NDIS Usermode I/O Prot Kernel 14/02/2104 04:22:17
1024. NdisVirtualB Microsoft Virtual Netw Kernel 05/01/2065 21:02:04
1025. NdisWan Remote Access NDIS WAN Kernel 30/11/2097 08:10:29
1026. ndiswanlegac Remote Access LEGACY N Kernel 30/11/2097 08:10:29
1027. ndproxy @%SystemRoot%\system32 Kernel 15/11/1988 07:08:24
1028. Ndu Windows Network Data U Kernel 08/07/2040 10:00:03
1029. NetAdapterCx Network Adapter Wdf Cl Kernel 24/08/2091 23:40:33
1030. NetBIOS NetBIOS Interface File System 21/07/2048 20:30:47
1031. NetBT NetBT Kernel 28/12/2064 12:10:38
1032. netr28x Ralink 802.11n Extensi Kernel 25/09/2012 09:10:07
1033. netvsc netvsc Kernel 25/12/1973 23:52:13
1034. Npfs Npfs File System 14/07/2030 23:34:01
1035. npsvctrig Named pipe service tri Kernel 25/07/2097 11:18:05
1036. nsiproxy NSI Proxy Service Driv Kernel 14/02/2093 00:25:01
1037. NTFS NTFS File System 06/07/1994 05:59:02
1038. NTIOLib_1_0_ NTIOLib_1_0_C Kernel 29/06/2011 02:57:56
1039. Null Null Kernel 15/07/2081 07:14:03
1040. nvdimmn Microsoft NVDIMM-N dev Kernel 21/10/2087 00:03:12
1041. NVHDA Service for NVIDIA Hig Kernel 08/02/2017 12:32:14
1042. nvlddmkm nvlddmkm Kernel 23/02/2017 07:38:50
1043. nvraid nvraid Kernel 21/04/2014 19:28:42
1044. nvstor nvstor Kernel 21/04/2014 19:34:03
1045. NVVADARM NVIDIA Miracast Audio Kernel 13/03/2015 16:15:56
1046. nvvad_WaveEx NVIDIA Virtual Audio D Kernel 20/11/2014 15:33:54
1047. Parport Parallel port driver Kernel 10/05/2059 02:00:32
1048. partmgr Partition driver Kernel 23/12/2025 13:10:05
1049. pci PCI Bus Driver Kernel 02/08/2025 10:15:37
1050. pciide pciide Kernel 15/04/1992 02:00:15
1051. pcmcia pcmcia Kernel 04/05/2055 04:46:24
1052. pcw Performance Counters f Kernel 10/01/1970 19:29:41
1053. pdc pdc Kernel 12/03/2034 12:41:46
1054. PEAUTH PEAUTH Kernel 10/12/1989 02:03:08
1055. percsas2i percsas2i Kernel 15/03/2016 00:50:11
1056. percsas3i percsas3i Kernel 04/03/2016 21:22:10
1057. pmem Microsoft persistent m Kernel 21/10/2067 05:47:22
1058. PptpMiniport WAN Miniport (PPTP) Kernel 10/02/2097 07:13:17
1059. Processor Processor Driver Kernel 06/03/1995 16:17:51
1060. Psched QoS Packet Scheduler Kernel 03/05/2072 01:51:28
1061. QWAVEdrv QWAVE driver Kernel 06/05/2100 18:01:39
1062. RasAcd Remote Access Auto Con Kernel 16/08/2004 23:15:01
1063. RasAgileVpn WAN Miniport (IKEv2) Kernel 04/05/2078 00:47:35
1064. Rasl2tp WAN Miniport (L2TP) Kernel 16/12/2073 14:16:30
1065. RasPppoe Remote Access PPPOE Dr Kernel 21/07/2061 08:38:01
1066. RasSstp WAN Miniport (SSTP) Kernel 06/12/2052 05:50:21
1067. rdbss Redirected Buffering S File System 15/06/2090 08:46:18
1068. rdpbus Remote Desktop Device Kernel 01/02/2004 21:17:30
1069. RDPDR Remote Desktop Device Kernel 10/03/2085 00:28:19
1070. RdpVideoMini Remote Desktop Video M Kernel 22/02/2001 04:39:13
1071. rdyboost ReadyBoost Kernel 30/08/2077 22:53:16
1072. ReFS ReFS File System 13/04/2042 07:13:32
1073. ReFSv1 ReFSv1 File System 08/05/1970 08:19:18
1074. rspndr Link-Layer Topology Di Kernel 20/05/1991 03:37:53
1075. rt640x64 Realtek RT640 NT Drive Kernel 14/07/2016 10:04:28
1076. RtlWlanu_Old Realtek Wireless LAN 8 Kernel 21/04/2016 02:43:34
1077. s3cap s3cap Kernel 20/11/2091 02:09:03
1078. sbp2port SBP-2 Transport/Protoc Kernel 14/09/2033 17:32:13
1079. scfilter Smart card PnP Class F Kernel 11/03/2088 06:32:31
1080. scmbus Microsoft Storage Clas Kernel 23/11/2077 11:35:32
1081. sdbus sdbus Kernel 10/10/1975 08:57:39
1082. SDFRd SDF Reflector Kernel 10/05/2089 04:19:49
1083. sdstor SD Storage Port Driver Kernel 04/01/2035 13:59:31
1084. SerCx Serial UART Support Li Kernel 13/04/2089 21:38:00
1085. SerCx2 Serial UART Support Li Kernel 31/10/2091 15:34:54
1086. Serenum Serenum Filter Driver Kernel 11/03/2095 12:29:34
1087. Serial Serial port driver Kernel 27/07/2023 02:01:20
1088. sermouse Serial Mouse Driver Kernel 26/08/1982 03:31:45
1089. sfloppy High-Capacity Floppy D Kernel 04/07/2008 18:35:22
1090. SiSRaid2 SiSRaid2 Kernel 24/09/2008 19:28:20
1091. SiSRaid4 SiSRaid4 Kernel 01/10/2008 22:56:04
1092. spaceport Storage Spaces Driver Kernel 25/04/2035 06:38:08
1093. SpatialGraph Holographic Spatial Gr Kernel 31/03/1994 18:54:15
1094. SpbCx Simple Peripheral Bus Kernel 22/12/2033 19:05:51
1095. srv Server SMB 1.xxx Drive File System 09/12/2041 14:57:28
1096. srv2 Server SMB 2.xxx Drive File System 08/04/2056 04:49:55
1097. srvnet srvnet File System 16/10/2013 16:29:36
1098. stexstor stexstor Kernel 27/11/2012 00:02:51
1099. storahci Microsoft Standard SAT Kernel 28/12/2071 08:20:00
1100. storflt Microsoft Hyper-V Stor Kernel 08/08/1988 18:12:33
1101. stornvme Microsoft Standard NVM Kernel 13/03/2001 07:19:09
1102. storqosflt Storage QoS Filter Dri File System 18/12/2015 03:36:27
1103. storufs Microsoft Universal Fl Kernel 08/12/2102 09:44:50
1104. storvsc storvsc Kernel 11/10/2000 13:58:13
1105. swenum Software Bus Driver Kernel 19/10/2068 23:12:20
1106. Synth3dVsc Synth3dVsc Kernel 17/01/2000 02:20:23
1107. Tcpip TCP/IP Protocol Driver Kernel 19/03/2092 18:08:44
1108. Tcpip6 @todo.dll,-100;Microso Kernel 19/03/2092 18:08:44
1109. tcpipreg TCP/IP Registry Compat Kernel 02/12/2097 03:06:07
1110. tdx NetIO Legacy TDI Suppo Kernel 01/04/2092 06:48:54
1111. terminpt Microsoft Remote Deskt Kernel 19/08/2067 03:33:46
1112. TPM TPM Kernel 18/04/2003 22:45:38
1113. TsUsbFlt Remote Desktop USB Hub Kernel 15/02/2055 00:14:40
1114. TsUsbGD Remote Desktop Generic Kernel 11/10/2001 15:37:50
1115. tunnel Microsoft Tunnel Minip Kernel 04/06/1981 23:42:24
1116. UASPStor USB Attached SCSI (UAS Kernel 12/06/2038 21:41:49
1117. UcmCx0101 USB Connector Manager Kernel 07/09/2029 05:11:02
1118. UcmTcpciCx01 UCM-TCPCI KMDF Class E Kernel 26/11/2018 15:10:48
1119. UcmUcsi USB Connector Manager Kernel 17/11/2030 01:56:35
1120. Ucx01000 USB Host Support Libra Kernel 22/02/1994 14:51:48
1121. UdeCx USB Device Emulation S Kernel 20/10/2094 03:28:22
1122. udfs udfs File System 10/06/1983 05:21:25
1123. UEFI Microsoft UEFI Driver Kernel 30/09/2022 22:36:44
1124. Ufx01000 USB Function Class Ext Kernel 24/06/1992 01:13:13
1125. UfxChipidea USB Chipidea Controlle Kernel 16/12/2030 16:45:43
1126. ufxsynopsys USB Synopsys Controlle Kernel 12/12/2018 20:36:49
1127. umbus UMBus Enumerator Drive Kernel 01/07/2025 15:26:17
1128. UmPass Microsoft UMPass Drive Kernel 29/09/2075 16:24:55
1129. UrsChipidea Chipidea USB Role-Swit Kernel 04/10/1990 15:28:10
1130. UrsCx01000 USB Role-Switch Suppor Kernel 19/08/2090 22:54:46
1131. UrsSynopsys Synopsys USB Role-Swit Kernel 06/07/2082 01:10:18
1132. usbccgp Microsoft USB Generic Kernel 21/07/2018 11:16:10
1133. usbcir eHome Infrared Receive Kernel 14/08/2021 20:58:51
1134. usbehci Microsoft USB 2.0 Enha Kernel 03/05/2066 15:42:10
1135. usbhub Microsoft USB Standard Kernel 22/01/1980 06:58:50
1136. USBHUB3 SuperSpeed Hub Kernel 07/09/2068 06:39:25
1137. usbohci Microsoft USB Open Hos Kernel 17/01/2047 13:50:11
1138. usbprint Microsoft USB PRINTER Kernel 13/08/1983 06:49:14
1139. usbser Microsoft USB Serial D Kernel 20/07/1978 08:09:07
1140. USBSTOR USB Mass Storage Drive Kernel 06/12/2090 10:31:44
1141. usbuhci Microsoft USB Universa Kernel 07/07/2079 13:39:02
1142. USBXHCI USB xHCI Compliant Hos Kernel 08/07/1989 06:08:55
1143. vdrvroot Microsoft Virtual Driv Kernel 27/06/2072 11:54:08
1144. VerifierExt VerifierExt Kernel 19/09/2105 17:47:11
1145. vhdmp vhdmp Kernel 07/12/1996 07:17:17
1146. vhf Virtual HID Framework Kernel 18/12/2014 02:46:15
1147. vmbus Virtual Machine Bus Kernel 20/03/2007 03:41:59
1148. VMBusHID VMBusHID Kernel 05/02/2016 19:49:01
1149. vmgid Microsoft Hyper-V Gues Kernel 20/03/2038 10:11:49
1150. volmgr Volume Manager Driver Kernel 05/05/2084 11:30:31
1151. volmgrx Dynamic Volume Manager Kernel 02/10/2082 04:55:30
1152. volsnap Volume Shadow Copy dri Kernel 08/01/2087 18:12:33
1153. volume Volume driver Kernel 02/05/2053 01:05:11
1154. vpci Microsoft Hyper-V Virt Kernel 10/10/2087 23:02:48
1155. vsmraid vsmraid Kernel 22/04/2014 20:21:41
1156. VSTXRAID VIA StorX Storage RAID Kernel 21/01/2013 19:00:28
1157. vwifibus Virtual Wireless Bus D Kernel 09/04/2065 14:36:26
1158. vwififlt Virtual WiFi Filter Dr Kernel 12/06/2032 13:15:16
1159. vwifimp Virtual WiFi Miniport Kernel 28/12/2104 03:12:46
1160. WacomPen Wacom Serial Pen HID D Kernel 31/03/2030 10:19:11
1161. wanarp Remote Access IP ARP D Kernel 28/05/1982 08:51:08
1162. wanarpv6 Remote Access IPv6 ARP Kernel 28/05/1982 08:51:08
1163. wcifs Windows Container Isol File System 14/02/2001 03:10:20
1164. wcnfs Windows Container Name File System 30/08/1990 10:18:50
1165. WdBoot Windows Defender Antiv Kernel 26/10/2038 04:26:40
1166. Wdf01000 Kernel Mode Driver Fra Kernel 13/09/1990 02:32:07
1167. WdFilter Windows Defender Antiv File System 04/10/2102 17:25:01
1168. wdiwifi WDI Driver Framework Kernel 19/10/2030 08:03:39
1169. WdNisDrv Windows Defender Antiv Kernel 17/11/1981 06:07:50
1170. WFPLWFS Microsoft Windows Filt Kernel 05/04/2010 20:35:50
1171. WIMMount WIMMount File System 20/06/2037 14:23:38
1172. WindowsTrust Windows Trusted Execut Kernel 19/03/2091 16:08:22
1173. WindowsTrust Microsoft Windows Trus Kernel 28/07/2006 14:32:40
1174. WinMad WinMad Service Kernel 10/04/2016 14:46:08
1175. WinNat Windows NAT Driver Kernel 05/08/2097 16:23:01
1176. WINUSB WinUsb Driver Kernel 18/07/1979 01:27:52
1177. WinVerbs WinVerbs Service Kernel 10/04/2016 14:46:10
1178. WmiAcpi Microsoft Windows Mana Kernel 23/07/1981 18:29:52
1179. Wof Windows Overlay File S File System 11/03/1974 22:47:45
1180. WpdUpFltr WPD Upper Class Filter Kernel 08/04/2102 12:39:04
1181. ws2ifsl Winsock IFS Driver Kernel 19/03/2010 00:40:36
1182. WudfPf User Mode Driver Frame Kernel 19/06/1986 04:58:15
1183. WUDFRd WUDFRd Kernel 15/03/2045 17:40:54
1184. WUDFWpdFs WUDFWpdFs Kernel 15/03/2045 17:40:54
1185. xboxgip Xbox Game Input Protoc Kernel 28/04/2055 09:35:57
1186. xinputhid XINPUT HID Filter Driv Kernel 14/09/2001 21:07:23
1187. *******************************************************************************
1188.  
1189. ************************** GPresult infos **********************************
1190.  
1191. Microsoft (R) Windows (R) Operating System Group Policy Result tool v2.0
1192. © 2017 Microsoft Corporation. All rights reserved.
1193.  
1194. Created on ?29/?05/?2017 at 15:00:41
1195.  
1196.  
1197.  
1198. RSOP data for DESKTOP-GU6TEMK\Cory Smith on DESKTOP-GU6TEMK : Logging Mode
1199. ---------------------------------------------------------------------------
1200.  
1201. OS Configuration: Standalone Workstation
1202. OS Version: 10.0.15063
1203. Site Name: N/A
1204. Roaming Profile: N/A
1205. Local Profile: C:\Users\Cory Smith
1206. Connected over a slow link?: No
1207.  
1208.  
1209. USER SETTINGS
1210. --------------
1211.  
1212. Last time Group Policy was applied: 29/05/2017 at 14:49:37
1213. Group Policy was applied from: N/A
1214. Group Policy slow link threshold: 500 kbps
1215. Domain Name: DESKTOP-GU6TEMK
1216. Domain Type: <Local Computer>
1217.  
1218. Applied Group Policy Objects
1219. -----------------------------
1220. N/A
1221.  
1222. The following GPOs were not applied because they were filtered out
1223. -------------------------------------------------------------------
1224. Local Group Policy
1225. Filtering: Not Applied (Empty)
1226.  
1227. The user is a part of the following security groups
1228. ---------------------------------------------------
1229. None
1230. Everyone
1231. Local account and member of Administrators group
1232. BUILTIN\Administrators
1233. BUILTIN\Users
1234. NT AUTHORITY\INTERACTIVE
1235. CONSOLE LOGON
1236. NT AUTHORITY\Authenticated Users
1237. This Organization
1238. Local account
1239. LOCAL
1240. NTLM Authentication
1241. High Mandatory Level
1242.  
1243. The user has the following security privileges
1244. ----------------------------------------------
1245.  
1246. Bypass traverse checking
1247. Manage auditing and security log
1248. Back up files and directories
1249. Restore files and directories
1250. Change the system time
1251. Shut down the system
1252. Force shutdown from a remote system
1253. Take ownership of files or other objects
1254. Debug programs
1255. Modify firmware environment values
1256. Profile system performance
1257. Profile single process
1258. Increase scheduling priority
1259. Load and unload device drivers
1260. Create a pagefile
1261. Adjust memory quotas for a process
1262. Remove computer from docking station
1263. Perform volume maintenance tasks
1264. Impersonate a client after authentication
1265. Create global objects
1266. Change the time zone
1267. Create symbolic links
1268. Obtain an impersonation token for another user in the same session
1269. Increase a process working set
1270.  
1271. Resultant Set Of Policies for User
1272. -----------------------------------
1273.  
1274. Software Installations
1275. ----------------------
1276. N/A
1277.  
1278. Logon Scripts
1279. -------------
1280. N/A
1281.  
1282. Logoff Scripts
1283. --------------
1284. N/A
1285.  
1286. Public Key Policies
1287. -------------------
1288. N/A
1289.  
1290. Administrative Templates
1291. ------------------------
1292. N/A
1293.  
1294. Folder Redirection
1295. ------------------
1296. N/A
1297.  
1298. Internet Explorer Browser User Interface
1299. ----------------------------------------
1300. N/A
1301.  
1302. Internet Explorer Connection
1303. ----------------------------
1304. N/A
1305.  
1306. Internet Explorer URLs
1307. ----------------------
1308. N/A
1309.  
1310. Internet Explorer Security
1311. --------------------------
1312. N/A
1313.  
1314. Internet Explorer Programs
1315. --------------------------
1316. N/A
1317. *******************************************************************************
1318.  
1319. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1320. OneDrive REG_SZ "C:\Users\Cory Smith\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
1321. Steam REG_SZ "C:\Program Files (x86)\Steam\steam.exe" -silent
1322.  
1323. *************************************************************************************************
1324.  
1325. HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
1326. SecurityHealth REG_EXPAND_SZ %PROGRAMFILES%\Windows Defender\MSASCuiL.exe
1327. NvBackend REG_SZ "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
1328. ShadowPlay REG_SZ C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
1329. RTHDVCPL REG_SZ "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
1330.  
1331. *************************************************************************************************
1332. *************************************************************************************************
1333. *************************************************************************************************
1334.  
1335. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
1336. ExcludeProfileDirs REG_SZ AppData\Local;AppData\LocalLow;$Recycle.Bin;OneDrive;Work Folders
1337. BuildNumber REG_DWORD 0x3ad7
1338. FirstLogon REG_DWORD 0x0
1339. PUUActive REG_BINARY 3A3934BC010001000B001000894F0000B75100008C090200D100000002000900D9F26CD45D2202009D6C000025270000C4210000F7050000000000004A6700000B0B00004200000003FA963282D8D201894F0000000000000100000000000000
1340. DP REG_BINARY CE005800030001000B0000003A3934BCF5FC26000000000003FA963282D8D201B8639D3F7CD8D201DB392500000000001BB6110000000000000000000000000000000000A41E000000000000000000000000000000000000
1341. ParseAutoexec REG_SZ 1
1342.  
1343. *************************************************************************************************
1344.  
1345. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
1346. AutoRestartShell REG_DWORD 0x1
1347. Background REG_SZ 0 0 0
1348. CachedLogonsCount REG_SZ 10
1349. DebugServerCommand REG_SZ no
1350. DefaultDomainName REG_SZ
1351. DefaultUserName REG_SZ Cory Smith
1352. DisableBackButton REG_DWORD 0x1
1353. EnableSIHostIntegration REG_DWORD 0x1
1354. ForceUnlockLogon REG_DWORD 0x0
1355. LegalNoticeCaption REG_SZ
1356. LegalNoticeText REG_SZ
1357. PasswordExpiryWarning REG_DWORD 0x5
1358. PowerdownAfterShutdown REG_SZ 0
1359. PreCreateKnownFolders REG_SZ {A520A1A4-1780-4FF6-BD18-167343C5AF16}
1360. ReportBootOk REG_SZ 1
1361. Shell REG_SZ explorer.exe
1362. ShellCritical REG_DWORD 0x0
1363. ShellInfrastructure REG_SZ sihost.exe
1364. SiHostCritical REG_DWORD 0x0
1365. SiHostReadyTimeOut REG_DWORD 0x0
1366. SiHostRestartCountLimit REG_DWORD 0x0
1367. SiHostRestartTimeGap REG_DWORD 0x0
1368. Userinit REG_SZ C:\Windows\system32\userinit.exe,
1369. VMApplet REG_SZ SystemPropertiesPerformance.exe /pagefile
1370. WinStationsDisabled REG_SZ 0
1371. scremoveoption REG_SZ 0
1372. DisableCAD REG_DWORD 0x1
1373. LastLogOffEndTimePerfCounter REG_QWORD 0x33788de650
1374. ShutdownFlags REG_DWORD 0xa7
1375. AutoAdminLogon REG_SZ 0
1376. DisableLockWorkstation REG_DWORD 0x0
1377. EnableFirstLogonAnimation REG_DWORD 0x1
1378. AutoLogonSID REG_SZ S-1-5-21-3729940396-3466973117-3832101617-1001
1379. LastUsedUsername REG_SZ Cory Smith
1380.  
1381. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\AlternateShells
1382.  
1383. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions
1384.  
1385. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}
1386. (Default) REG_SZ Wireless Group Policy
1387. DisplayName REG_EXPAND_SZ @wlgpclnt.dll,-100
1388. DllName REG_EXPAND_SZ wlgpclnt.dll
1389. GenerateGroupPolicy REG_SZ GenerateWLANPolicy
1390. NoGPOListChanges REG_DWORD 0x1
1391. NoUserPolicy REG_DWORD 0x1
1392. ProcessGroupPolicyEx REG_SZ ProcessWLANPolicyEx
1393.  
1394. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{16be69fa-4209-4250-88cb-716cf41954e0}
1395. (Default) REG_SZ Central Access Policy Configuration
1396. DisplayName REG_EXPAND_SZ @auditcse.dll,-4000
1397. DllName REG_EXPAND_SZ auditcse.dll
1398. EnableAsynchronousProcessing REG_DWORD 0x1
1399. ForceRefreshFG REG_DWORD 0x0
1400. GenerateGroupPolicy REG_SZ GenerateGroupPolicyCap
1401. MaxNoGPOListChangesInterval REG_DWORD 0x78
1402. NoUserPolicy REG_DWORD 0x1
1403. ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyExCap
1404.  
1405. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{25537BA6-77A8-11D2-9B6C-0000F8080861}
1406. (Default) REG_SZ Folder Redirection
1407. DisplayName REG_EXPAND_SZ @fdeploy.dll,-261
1408. DllName REG_EXPAND_SZ fdeploy.dll
1409. EventSources REG_MULTI_SZ (Folder Redirection,Application)
1410. GenerateGroupPolicy REG_SZ GenerateGroupPolicy
1411. NoBackgroundPolicy REG_DWORD 0x0
1412. NoGPOListChanges REG_DWORD 0x0
1413. NoMachinePolicy REG_DWORD 0x1
1414. NoSlowLink REG_DWORD 0x1
1415. PerUserLocalSettings REG_DWORD 0x1
1416. ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyEx
1417.  
1418. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}
1419.  
1420. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{3610eda5-77ef-11d2-8dc5-00c04fa31a66}
1421. (Default) REG_SZ Microsoft Disk Quota
1422. DisplayName REG_EXPAND_SZ @%SystemRoot%\System32\dskquota.dll,-100
1423. DllName REG_EXPAND_SZ %SystemRoot%\System32\dskquota.dll
1424. EnableAsynchronousProcessing REG_DWORD 0x0
1425. NoBackgroundPolicy REG_DWORD 0x0
1426. NoGPOListChanges REG_DWORD 0x1
1427. NoMachinePolicy REG_DWORD 0x0
1428. NoSlowLink REG_DWORD 0x1
1429. NoUserPolicy REG_DWORD 0x1
1430. PerUserLocalSettings REG_DWORD 0x0
1431. ProcessGroupPolicy REG_SZ ProcessGroupPolicy
1432. RequiresSuccessfulRegistry REG_DWORD 0x1
1433.  
1434. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{426031c0-0b47-4852-b0ca-ac3d37bfcb39}
1435. (Default) REG_SZ QoS Packet Scheduler
1436. DisplayName REG_EXPAND_SZ @gptext.dll,-201
1437. DllName REG_EXPAND_SZ gptext.dll
1438. NoGPOListChanges REG_DWORD 0x1
1439. NoUserPolicy REG_DWORD 0x1
1440. ProcessGroupPolicy REG_SZ ProcessPSCHEDPolicy
1441.  
1442. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{4bcd6cde-777b-48b6-9804-43568e23545d}
1443. (Default) REG_SZ Remote Desktop USB Redirection
1444. DisplayName REG_EXPAND_SZ @%SystemRoot%\System32\TsUsbRedirectionGroupPolicyExtension.dll,-100
1445. DllName REG_EXPAND_SZ %SystemRoot%\System32\TsUsbRedirectionGroupPolicyExtension.dll
1446. NoBackgroundPolicy REG_DWORD 0x0
1447. NoGPOListChanges REG_DWORD 0x1
1448. NoUserPolicy REG_DWORD 0x1
1449. ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyEx
1450. RequiresSuccessfulRegistry REG_DWORD 0x1
1451.  
1452. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{4CFB60C1-FAA6-47f1-89AA-0B18730C9FD3}
1453. (Default) REG_SZ Internet Explorer Zonemapping
1454. DisplayName REG_SZ @C:\Windows\System32\iedkcs32.dll,-3051
1455. DllName REG_SZ C:\Windows\System32\iedkcs32.dll
1456. NoGPOListChanges REG_DWORD 0x1
1457. ProcessGroupPolicy REG_SZ ProcessGroupPolicyForZoneMap
1458. RequiresSuccessfulRegistry REG_DWORD 0x1
1459.  
1460. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{4D2F9B6F-1E52-4711-A382-6A8B1A003DE6}
1461. DllName REG_SZ C:\Windows\System32\tsworkspace.dll
1462. NoMachinePolicy REG_DWORD 0x1
1463. PerUserLocalSettings REG_DWORD 0x1
1464. ProcessGroupPolicyEx REG_SZ RADCProcessGroupPolicyEx
1465.  
1466. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{4d968b55-cac2-4ff5-983f-0a54603781a3}
1467. (Default) REG_SZ Work Folders
1468. DisplayName REG_EXPAND_SZ @WorkFoldersGPExt.dll,-261
1469. DllName REG_EXPAND_SZ WorkFoldersGPExt.dll
1470. EnableAsynchronousProcessing REG_DWORD 0x0
1471. NoBackgroundPolicy REG_DWORD 0x0
1472. NoGPOListChanges REG_DWORD 0x0
1473. NoMachinePolicy REG_DWORD 0x0
1474. NoSlowLink REG_DWORD 0x0
1475. NoUserPolicy REG_DWORD 0x0
1476. PerUserLocalSettings REG_DWORD 0x0
1477. ProcessGroupPolicy REG_SZ ProcessGroupPolicy
1478. RequiresSuccessfulRegistry REG_DWORD 0x1
1479.  
1480. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{7933F41E-56F8-41d6-A31C-4148A711EE93}
1481. (Default) REG_SZ Windows Search Group Policy Extension
1482. DllName REG_EXPAND_SZ %SystemRoot%\System32\srchadmin.dll
1483. EnableAsynchronousProcessing REG_DWORD 0x1
1484. NoBackgroundPolicy REG_DWORD 0x0
1485. NoGPOListChanges REG_DWORD 0x1
1486. NoMachinePolicy REG_DWORD 0x0
1487. NoSlowLink REG_DWORD 0x0
1488. NoUserPolicy REG_DWORD 0x0
1489. PerUserLocalSettings REG_DWORD 0x0
1490. ProcessGroupPolicy REG_SZ ProcessGroupPolicy
1491. RequiresSuccessfulRegistry REG_DWORD 0x1
1492.  
1493. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{7B849a69-220F-451E-B3FE-2CB811AF94AE}
1494. (Default) REG_SZ Internet Explorer User Accelerators
1495. DisplayName REG_SZ @C:\Windows\System32\iedkcs32.dll,-3051
1496. DllName REG_SZ C:\Windows\System32\iedkcs32.dll
1497. NoGPOListChanges REG_DWORD 0x1
1498. ProcessGroupPolicy REG_SZ ProcessGroupPolicyForActivities
1499. ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyForActivitiesEx
1500. RequiresSuccessfulRegistry REG_DWORD 0x1
1501.  
1502. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{827D319E-6EAC-11D2-A4EA-00C04F79F83A}
1503. (Default) REG_SZ Security
1504. DisplayName REG_EXPAND_SZ @(runtime.system32)\scecli.dll,-7650
1505. DllName REG_EXPAND_SZ scecli.dll
1506. EnableAsynchronousProcessing REG_DWORD 0x1
1507. ExtensionDebugLevel REG_DWORD 0x0
1508. ExtensionRsopPlanningDebugLevel REG_DWORD 0x1
1509. GenerateGroupPolicy REG_SZ SceGenerateGroupPolicy
1510. MaxNoGPOListChangesInterval REG_DWORD 0x1
1511. NoGPOListChanges REG_DWORD 0x1
1512. NoUserPolicy REG_DWORD 0x1
1513. ProcessGroupPolicy REG_SZ SceProcessSecurityPolicyGPO
1514. ProcessGroupPolicyEx REG_SZ SceProcessSecurityPolicyGPOEx
1515.  
1516. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{8A28E2C5-8D06-49A4-A08C-632DAA493E17}
1517. (Default) REG_SZ Deployed Printer Connections
1518. DisplayName REG_EXPAND_SZ @%systemroot%\system32\gpprnext.dll,-1
1519. DllName REG_EXPAND_SZ %systemroot%\system32\gpprnext.dll
1520. EnableAsynchronousProcessing REG_DWORD 0x1
1521. ExtensionEventSource REG_SZ
1522. GenerateGroupPolicy REG_SZ PrinterGenerateGroupPolicy
1523. MaxNoGPOListChangesInterval REG_DWORD 0x0
1524. NoBackgroundPolicy REG_DWORD 0x0
1525. NoGPOListChanges REG_DWORD 0x0
1526. NoMachinePolicy REG_DWORD 0x0
1527. NoSlowLink REG_DWORD 0x1
1528. NotifyLinkTransition REG_DWORD 0x0
1529. NoUserPolicy REG_DWORD 0x0
1530. PerUserLocalSettings REG_DWORD 0x0
1531. ProcessGroupPolicy REG_SZ PrinterProcessGroupPolicy
1532. ProcessGroupPolicyEx REG_SZ PrinterProcessGroupPolicyEx
1533. RequiresSuccessfulRegistry REG_DWORD 0x0
1534.  
1535. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}
1536. (Default) REG_SZ 802.3 Group Policy
1537. DisplayName REG_EXPAND_SZ @dot3gpclnt.dll,-100
1538. DllName REG_EXPAND_SZ dot3gpclnt.dll
1539. GenerateGroupPolicy REG_SZ GenerateLANPolicy
1540. NoGPOListChanges REG_DWORD 0x1
1541. NoUserPolicy REG_DWORD 0x1
1542. ProcessGroupPolicyEx REG_SZ ProcessLANPolicyEx
1543.  
1544. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{BA649533-0AAC-4E04-B9BC-4DBAE0325B12}
1545. (Default) REG_SZ Windows To Go Startup Options
1546. DllName REG_EXPAND_SZ pwlauncher.dll
1547. ProcessGroupPolicy REG_SZ ProcessLauncherGroupPolicy
1548. RequiresSuccessfulRegistry REG_DWORD 0x1
1549.  
1550. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{C34B2751-1CF4-44F5-9262-C3FC39666591}
1551. (Default) REG_SZ Windows To Go Hibernate Options
1552. DllName REG_EXPAND_SZ pwlauncher.dll
1553. ProcessGroupPolicy REG_SZ ProcessHibernateGroupPolicy
1554. RequiresSuccessfulRegistry REG_DWORD 0x1
1555.  
1556. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}
1557. (Default) REG_SZ TCPIP
1558. DisplayName REG_EXPAND_SZ @gptext.dll,-204
1559. DllName REG_EXPAND_SZ gptext.dll
1560. NoGPOListChanges REG_DWORD 0x1
1561. NoUserPolicy REG_DWORD 0x1
1562. ProcessGroupPolicy REG_SZ ProcessTCPIPPolicy
1563. RequiresSuccessfulRegistry REG_DWORD 0x1
1564.  
1565. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D}
1566. (Default) REG_SZ Internet Explorer Machine Accelerators
1567. DisplayName REG_SZ @C:\Windows\System32\iedkcs32.dll,-3051
1568. DllName REG_SZ C:\Windows\System32\iedkcs32.dll
1569. NoGPOListChanges REG_DWORD 0x1
1570. ProcessGroupPolicy REG_SZ ProcessGroupPolicyForActivities
1571. ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyForActivitiesEx
1572. RequiresSuccessfulRegistry REG_DWORD 0x1
1573.  
1574. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{e437bc1c-aa7d-11d2-a382-00c04f991e27}
1575. (Default) REG_SZ IP Security
1576. DisplayName REG_EXPAND_SZ @C:\Windows\System32\polstore.dll,-5012
1577. DllName REG_EXPAND_SZ %SystemRoot%\System32\polstore.dll
1578. GenerateGroupPolicy REG_SZ GenerateIPSECPolicy
1579. NoGPOListChanges REG_DWORD 0x0
1580. NoUserPolicy REG_DWORD 0x1
1581. ProcessGroupPolicyEx REG_SZ ProcessIPSECPolicyEx
1582.  
1583. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{f3ccc681-b74c-4060-9f26-cd84525dca2a}
1584. (Default) REG_SZ Audit Policy Configuration
1585. DisplayName REG_EXPAND_SZ @auditcse.dll,-3000
1586. DllName REG_EXPAND_SZ auditcse.dll
1587. EnableAsynchronousProcessing REG_DWORD 0x1
1588. ForceRefreshFG REG_DWORD 0x0
1589. GenerateGroupPolicy REG_SZ GenerateGroupPolicy
1590. MaxNoGPOListChangesInterval REG_DWORD 0x3c0
1591. NoUserPolicy REG_DWORD 0x1
1592. ProcessGroupPolicyEx REG_SZ ProcessGroupPolicyEx
1593.  
1594. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{FB2CA36D-0B40-4307-821B-A13B252DE56C}
1595. (Default) REG_SZ Enterprise QoS
1596. DisplayName REG_EXPAND_SZ @gptext.dll,-203
1597. DllName REG_EXPAND_SZ gptext.dll
1598. ProcessGroupPolicy REG_SZ ProcessEQoSPolicy
1599. RequiresSuccessfulRegistry REG_DWORD 0x1
1600.  
1601. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\GPExtensions\{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}
1602. (Default) REG_SZ CP
1603. DisplayName REG_EXPAND_SZ @gptext.dll,-205
1604. DllName REG_EXPAND_SZ gptext.dll
1605. NoGPOListChanges REG_DWORD 0x1
1606. NoUserPolicy REG_DWORD 0x1
1607. ProcessGroupPolicy REG_SZ ProcessConnectivityPlatformPolicy
1608. RequiresSuccessfulRegistry REG_DWORD 0x1
1609.  
1610. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\AutoLogonChecked
1611.  
1612. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\VolatileUserMgrKey
1613.  
1614. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\VolatileUserMgrKey\1
1615.  
1616. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon\VolatileUserMgrKey\1\S-1-5-21-3729940396-3466973117-3832101617-1001
1617. contextLuid REG_QWORD 0x3875f
1618.  
1619. *************************************************************************************************
1620.  
1621. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
1622. Device REG_SZ
1623. IsMRUEstablished REG_DWORD 0xffffffff
1624. LegacyDefaultPrinterMode REG_DWORD 0xffffffff
1625.  
1626. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\InteractiveControl
1627.  
1628. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Pen
1629. PenArbitrationType REG_DWORD 0x3
1630.  
1631. *************************************************************************************************
1632.  
1633. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
1634. (Default) REG_SZ mnmsrvc
1635. AppInit_DLLs REG_SZ
1636. DdeSendTimeout REG_DWORD 0x0
1637. DesktopHeapLogging REG_DWORD 0x1
1638. DeviceNotSelectedTimeout REG_SZ 15
1639. DwmInputUsesIoCompletionPort REG_DWORD 0x1
1640. EnableDwmInputProcessing REG_DWORD 0x7
1641. EnableMitInputProcessing REG_DWORD 0x7
1642. GDIProcessHandleQuota REG_DWORD 0x2710
1643. IconServiceLib REG_SZ IconCodecService.dll
1644. LoadAppInit_DLLs REG_DWORD 0x0
1645. NaturalInputHandler REG_SZ Ninput.dll
1646. ShutdownWarningDialogTimeout REG_DWORD 0xffffffff
1647. Spooler REG_SZ yes
1648. ThreadUnresponsiveLogTimeout REG_DWORD 0x1f4
1649. TransmissionRetryTimeout REG_SZ 90
1650. USERNestedWindowLimit REG_DWORD 0x32
1651. USERPostMessageLimit REG_DWORD 0x2710
1652. USERProcessHandleQuota REG_DWORD 0x2710
1653. Win32kLastWriteTime REG_SZ 1D2A02A4539A47C
1654.  
1655. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Win32kWPP
1656.  
1657. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Win32kWPP\Parameters
1658. ForceLogsInMiniDump REG_DWORD 0x1
1659. LogPages REG_DWORD 0x14
1660. Verbose REG_DWORD 0x1
1661. WppRecorder_PerBufferMaxBytes REG_DWORD 0x14000
1662. WppRecorder_PerBufferMinBytes REG_DWORD 0x200
1663. WppRecorder_TraceGuid REG_SZ {335d5e04-5638-4e58-aa36-7ed1cfe76fd6}
1664.  
1665. *************************************************************************************************
1666.  
1667. HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main
1668. Anchor Underline REG_SZ yes
1669. Cache_Update_Frequency REG_SZ yes
1670. Disable Script Debugger REG_SZ yes
1671. DisableScriptDebuggerIE REG_SZ yes
1672. Display Inline Images REG_SZ yes
1673. Do404Search REG_BINARY 01000000
1674. Local Page REG_SZ %11%\blank.htm
1675. Save_Session_History_On_Exit REG_SZ no
1676. Search Page REG_SZ http://go.microsoft.com/fwlink/?LinkId=54896
1677. Show_FullURL REG_SZ no
1678. Show_StatusBar REG_SZ yes
1679. Show_ToolBar REG_SZ yes
1680. Show_URLinStatusBar REG_SZ yes
1681. Show_URLToolBar REG_SZ yes
1682. Use_DlgBox_Colors REG_SZ yes
1683. UseClearType REG_SZ no
1684. XMLHTTP REG_DWORD 0x1
1685. Enable Browser Extensions REG_SZ yes
1686. Play_Background_Sounds REG_SZ yes
1687. Play_Animations REG_SZ yes
1688. Start Page REG_SZ http://go.microsoft.com/fwlink/p/?LinkId=255141
1689. ImageStoreRandomFolder REG_SZ 7lopntm
1690.  
1691. HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl
1692.  
1693. HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION
1694. OneDrive.exe REG_DWORD 0x2af8
1695.  
1696. HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_CROSS_DOMAIN_REDIRECT_MITIGATION
1697.  
1698. HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SCRIPTURL_MITIGATION
1699.  
1700. *************************************************************************************************
1701.  
1702. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe
1703. MaxLoaderThreads REG_DWORD 0x1
1704.  
1705. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cscript.exe
1706. DisableExceptionChainValidation REG_DWORD 0x3
1707.  
1708. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dllhost.exe
1709. DisableExceptionChainValidation REG_DWORD 0x3
1710.  
1711. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DllNXOptions
1712. Apitrap.dll REG_DWORD 0x1
1713. ASSTE.dll REG_DWORD 0x1
1714. AVSTE.dll REG_DWORD 0x1
1715. Cleanup.dll REG_DWORD 0x1
1716. divx.dll REG_DWORD 0x1
1717. divxdec.ax REG_DWORD 0x1
1718. DJSMAR00.dll REG_DWORD 0x1
1719. DRMINST.dll REG_DWORD 0x1
1720. eMigrationmmc.dll REG_DWORD 0x1
1721. EncryptPatchVer.dll REG_DWORD 0x1
1722. eProcedureMMC.dll REG_DWORD 0x1
1723. eQueryMMC.dll REG_DWORD 0x1
1724. fullsoft.dll REG_DWORD 0x1
1725. ISSTE.dll REG_DWORD 0x1
1726. javai.dll REG_DWORD 0x1
1727. jvm.dll REG_DWORD 0x1
1728. jvm_g.dll REG_DWORD 0x1
1729. main123w.dll REG_DWORD 0x1
1730. msci_uno.dll REG_DWORD 0x1
1731. mscoree.dll REG_DWORD 0x1
1732. mscorsvr.dll REG_DWORD 0x1
1733. mscorwks.dll REG_DWORD 0x1
1734. msjava.dll REG_DWORD 0x1
1735. mso.dll REG_DWORD 0x1
1736. NAVOPTRF.dll REG_DWORD 0x1
1737. NPMLIC.dll REG_DWORD 0x1
1738. NSWSTE.dll REG_DWORD 0x1
1739. PMSTE.dll REG_DWORD 0x1
1740. ppw32hlp.dll REG_DWORD 0x1
1741. symlcnet.dll REG_DWORD 0x1
1742. TFDTCTT8.dll REG_DWORD 0x1
1743. udtapi.dll REG_DWORD 0x1
1744. ums.dll REG_DWORD 0x1
1745. vb40032.dll REG_DWORD 0x1
1746. vbe6.dll REG_DWORD 0x1
1747. Vegas60k.dll REG_DWORD 0x1
1748. xlmlEN.dll REG_DWORD 0x1
1749.  
1750. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\drvinst.exe
1751. DisableExceptionChainValidation REG_DWORD 0x3
1752.  
1753. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ehexthost32.exe
1754. DisableExceptionChainValidation REG_DWORD 0x3
1755.  
1756. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\explorer.exe
1757. DisableExceptionChainValidation REG_DWORD 0x3
1758.  
1759. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ExtExport.exe
1760. MitigationOptions REG_QWORD 0x100
1761.  
1762. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe
1763. DisableExceptionChainValidation REG_DWORD 0x0
1764.  
1765. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ie4uinit.exe
1766. MitigationOptions REG_QWORD 0x100
1767.  
1768. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ieinstal.exe
1769. MitigationOptions REG_QWORD 0x100
1770.  
1771. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ielowutil.exe
1772. MitigationOptions REG_QWORD 0x100
1773.  
1774. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ieUnatt.exe
1775. MitigationOptions REG_QWORD 0x100
1776.  
1777. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iexplore.exe
1778. DisableExceptionChainValidation REG_DWORD 0x0
1779. DisableUserModeCallbackFilter REG_DWORD 0x1
1780. MitigationOptions REG_QWORD 0x100
1781.  
1782. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MiracastView.exe
1783. MitigationOptions REG_QWORD 0x100000000
1784.  
1785. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mmc.exe
1786. DisableExceptionChainValidation REG_DWORD 0x3
1787.  
1788. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MRT.exe
1789. CFGOptions REG_DWORD 0x1
1790.  
1791. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mscorsvw.exe
1792. MitigationOptions REG_QWORD 0x100000000
1793.  
1794. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msfeedssync.exe
1795. MitigationOptions REG_QWORD 0x100
1796.  
1797. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mshta.exe
1798. MitigationOptions REG_QWORD 0x100
1799.  
1800. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MsMpEng.exe
1801. CFGOptions REG_DWORD 0x1
1802.  
1803. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ngen.exe
1804. MitigationOptions REG_QWORD 0x100000000
1805.  
1806. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ngentask.exe
1807. MitigationOptions REG_QWORD 0x100000000
1808.  
1809. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PresentationHost.exe
1810. MitigationOptions REG_QWORD 0x111111
1811.  
1812. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PrintDialog.exe
1813. MitigationOptions REG_QWORD 0x100000000
1814.  
1815. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PrintIsolationHost.exe
1816. MitigationOptions REG_QWORD 0x200000
1817.  
1818. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rundll32.exe
1819. DisableExceptionChainValidation REG_DWORD 0x3
1820.  
1821. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\runtimebroker.exe
1822. MitigationOptions REG_QWORD 0x100000000
1823.  
1824. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotocolhost.exe
1825. DisableExceptionChainValidation REG_DWORD 0x3
1826.  
1827. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\splwow64.exe
1828. MitigationOptions REG_QWORD 0x200000
1829.  
1830. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spoolsv.exe
1831. DisableExceptionChainValidation REG_DWORD 0x3
1832. MitigationOptions REG_QWORD 0x200000
1833.  
1834. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\svchost.exe
1835. MinimumStackCommitInBytes REG_DWORD 0x8000
1836.  
1837. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SystemSettings.exe
1838. MitigationOptions REG_QWORD 0x100000000
1839.  
1840. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wscript.exe
1841. DisableExceptionChainValidation REG_DWORD 0x3
1842.  
1843. *************************************************************************************************
1844. Startup files in Startup folders
1845. *****************************************************************************************************
1846.  
1847. ******************************************************************************
1848. ******************************************************************************
1849. STARTUP List
1850. ******************************************************************************
1851.  
1852.  
1853. Caption=OneDriveSetup
1854. Command=C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
1855. Description=OneDriveSetup
1856. Location=HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1857. Name=OneDriveSetup
1858. SettingID=
1859. User=NT AUTHORITY\LOCAL SERVICE
1860. UserSID=S-1-5-19
1861.  
1862.  
1863. Caption=OneDriveSetup
1864. Command=C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
1865. Description=OneDriveSetup
1866. Location=HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1867. Name=OneDriveSetup
1868. SettingID=
1869. User=NT AUTHORITY\NETWORK SERVICE
1870. UserSID=S-1-5-20
1871.  
1872.  
1873. Caption=OneDrive
1874. Command="C:\Users\Cory Smith\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
1875. Description=OneDrive
1876. Location=HKU\S-1-5-21-3729940396-3466973117-3832101617-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1877. Name=OneDrive
1878. SettingID=
1879. User=DESKTOP-GU6TEMK\Cory Smith
1880. UserSID=S-1-5-21-3729940396-3466973117-3832101617-1001
1881.  
1882.  
1883. Caption=Steam
1884. Command="C:\Program Files (x86)\Steam\steam.exe" -silent
1885. Description=Steam
1886. Location=HKU\S-1-5-21-3729940396-3466973117-3832101617-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1887. Name=Steam
1888. SettingID=
1889. User=DESKTOP-GU6TEMK\Cory Smith
1890. UserSID=S-1-5-21-3729940396-3466973117-3832101617-1001
1891.  
1892.  
1893. Caption=SecurityHealth
1894. Command=%PROGRAMFILES%\Windows Defender\MSASCuiL.exe
1895. Description=SecurityHealth
1896. Location=HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1897. Name=SecurityHealth
1898. SettingID=
1899. User=Public
1900. UserSID=
1901.  
1902.  
1903. Caption=NvBackend
1904. Command="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
1905. Description=NvBackend
1906. Location=HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1907. Name=NvBackend
1908. SettingID=
1909. User=Public
1910. UserSID=
1911.  
1912.  
1913. Caption=ShadowPlay
1914. Command=C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
1915. Description=ShadowPlay
1916. Location=HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1917. Name=ShadowPlay
1918. SettingID=
1919. User=Public
1920. UserSID=
1921.  
1922.  
1923. Caption=RTHDVCPL
1924. Command="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
1925. Description=RTHDVCPL
1926. Location=HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
1927. Name=RTHDVCPL
1928. SettingID=
1929. User=Public
1930. UserSID=
1931.  
1932.  
1933.  
1934.  
1935. ******************************************************************************
1936. Process List
1937. ******************************************************************************
1938.  
1939.  
1940. ProcessID : 0
1941. ProcessName : System Idle Process
1942. Handle : 0
1943. commandline :
1944. ExecutablePath :
1945.  
1946. ProcessID : 4
1947. ProcessName : System
1948. Handle : 4
1949. commandline :
1950. ExecutablePath :
1951.  
1952. ProcessID : 428
1953. ProcessName : smss.exe
1954. Handle : 428
1955. commandline :
1956. ExecutablePath :
1957.  
1958. ProcessID : 628
1959. ProcessName : csrss.exe
1960. Handle : 628
1961. commandline :
1962. ExecutablePath :
1963.  
1964. ProcessID : 732
1965. ProcessName : wininit.exe
1966. Handle : 732
1967. commandline :
1968. ExecutablePath :
1969.  
1970. ProcessID : 748
1971. ProcessName : csrss.exe
1972. Handle : 748
1973. commandline :
1974. ExecutablePath :
1975.  
1976. ProcessID : 808
1977. ProcessName : services.exe
1978. Handle : 808
1979. commandline :
1980. ExecutablePath :
1981.  
1982. ProcessID : 816
1983. ProcessName : lsass.exe
1984. Handle : 816
1985. commandline : C:\Windows\system32\lsass.exe
1986. ExecutablePath : C:\Windows\system32\lsass.exe
1987.  
1988. ProcessID : 896
1989. ProcessName : winlogon.exe
1990. Handle : 896
1991. commandline : winlogon.exe
1992. ExecutablePath : C:\Windows\system32\winlogon.exe
1993.  
1994. ProcessID : 996
1995. ProcessName : svchost.exe
1996. Handle : 996
1997. commandline : c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
1998. ExecutablePath : c:\windows\system32\svchost.exe
1999.  
2000. ProcessID : 1004
2001. ProcessName : fontdrvhost.exe
2002. Handle : 1004
2003. commandline : "fontdrvhost.exe"
2004. ExecutablePath : C:\Windows\system32\fontdrvhost.exe
2005.  
2006. ProcessID : 1012
2007. ProcessName : fontdrvhost.exe
2008. Handle : 1012
2009. commandline : "fontdrvhost.exe"
2010. ExecutablePath : C:\Windows\system32\fontdrvhost.exe
2011.  
2012. ProcessID : 496
2013. ProcessName : svchost.exe
2014. Handle : 496
2015. commandline : C:\Windows\system32\svchost.exe -k DcomLaunch
2016. ExecutablePath : C:\Windows\system32\svchost.exe
2017.  
2018. ProcessID : 512
2019. ProcessName : svchost.exe
2020. Handle : 512
2021. commandline : c:\windows\system32\svchost.exe -k rpcss
2022. ExecutablePath : c:\windows\system32\svchost.exe
2023.  
2024. ProcessID : 1052
2025. ProcessName : svchost.exe
2026. Handle : 1052
2027. commandline : c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
2028. ExecutablePath : c:\windows\system32\svchost.exe
2029.  
2030. ProcessID : 1128
2031. ProcessName : dwm.exe
2032. Handle : 1128
2033. commandline : "dwm.exe"
2034. ExecutablePath : C:\Windows\system32\dwm.exe
2035.  
2036. ProcessID : 1264
2037. ProcessName : svchost.exe
2038. Handle : 1264
2039. commandline : C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
2040. ExecutablePath : C:\Windows\system32\svchost.exe
2041.  
2042. ProcessID : 1316
2043. ProcessName : svchost.exe
2044. Handle : 1316
2045. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
2046. ExecutablePath : c:\windows\system32\svchost.exe
2047.  
2048. ProcessID : 1324
2049. ProcessName : svchost.exe
2050. Handle : 1324
2051. commandline : c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
2052. ExecutablePath : c:\windows\system32\svchost.exe
2053.  
2054. ProcessID : 1384
2055. ProcessName : svchost.exe
2056. Handle : 1384
2057. commandline : c:\windows\system32\svchost.exe -k netsvcs -s Schedule
2058. ExecutablePath : c:\windows\system32\svchost.exe
2059.  
2060. ProcessID : 1432
2061. ProcessName : svchost.exe
2062. Handle : 1432
2063. commandline : c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
2064. ExecutablePath : c:\windows\system32\svchost.exe
2065.  
2066. ProcessID : 1476
2067. ProcessName : svchost.exe
2068. Handle : 1476
2069. commandline : c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
2070. ExecutablePath : c:\windows\system32\svchost.exe
2071.  
2072. ProcessID : 1544
2073. ProcessName : svchost.exe
2074. Handle : 1544
2075. commandline : c:\windows\system32\svchost.exe -k netsvcs -s UserManager
2076. ExecutablePath : c:\windows\system32\svchost.exe
2077.  
2078. ProcessID : 1568
2079. ProcessName : svchost.exe
2080. Handle : 1568
2081. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s hidserv
2082. ExecutablePath : c:\windows\system32\svchost.exe
2083.  
2084. ProcessID : 1672
2085. ProcessName : tbaseprovisioning.exe
2086. Handle : 1672
2087. commandline : C:\Windows\SysWOW64\tbaseprovisioning.exe
2088. ExecutablePath : C:\Windows\SysWOW64\tbaseprovisioning.exe
2089.  
2090. ProcessID : 1748
2091. ProcessName : svchost.exe
2092. Handle : 1748
2093. commandline : c:\windows\system32\svchost.exe -k localservice -s nsi
2094. ExecutablePath : c:\windows\system32\svchost.exe
2095.  
2096. ProcessID : 1788
2097. ProcessName : svchost.exe
2098. Handle : 1788
2099. commandline : c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
2100. ExecutablePath : c:\windows\system32\svchost.exe
2101.  
2102. ProcessID : 1848
2103. ProcessName : svchost.exe
2104. Handle : 1848
2105. commandline : c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
2106. ExecutablePath : c:\windows\system32\svchost.exe
2107.  
2108. ProcessID : 1916
2109. ProcessName : svchost.exe
2110. Handle : 1916
2111. commandline : c:\windows\system32\svchost.exe -k netsvcs -s Themes
2112. ExecutablePath : c:\windows\system32\svchost.exe
2113.  
2114. ProcessID : 1924
2115. ProcessName : svchost.exe
2116. Handle : 1924
2117. commandline : c:\windows\system32\svchost.exe -k localservice -s EventSystem
2118. ExecutablePath : c:\windows\system32\svchost.exe
2119.  
2120. ProcessID : 2000
2121. ProcessName : svchost.exe
2122. Handle : 2000
2123. commandline : c:\windows\system32\svchost.exe -k localservice -s netprofm
2124. ExecutablePath : c:\windows\system32\svchost.exe
2125.  
2126. ProcessID : 1868
2127. ProcessName : svchost.exe
2128. Handle : 1868
2129. commandline : c:\windows\system32\svchost.exe -k netsvcs -s SENS
2130. ExecutablePath : c:\windows\system32\svchost.exe
2131.  
2132. ProcessID : 2076
2133. ProcessName : svchost.exe
2134. Handle : 2076
2135. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
2136. ExecutablePath : c:\windows\system32\svchost.exe
2137.  
2138. ProcessID : 2084
2139. ProcessName : svchost.exe
2140. Handle : 2084
2141. commandline : c:\windows\system32\svchost.exe -k localservice -s FontCache
2142. ExecutablePath : c:\windows\system32\svchost.exe
2143.  
2144. ProcessID : 2152
2145. ProcessName : svchost.exe
2146. Handle : 2152
2147. commandline : c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
2148. ExecutablePath : c:\windows\system32\svchost.exe
2149.  
2150. ProcessID : 2284
2151. ProcessName : svchost.exe
2152. Handle : 2284
2153. commandline : C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
2154. ExecutablePath : C:\Windows\System32\svchost.exe
2155.  
2156. ProcessID : 2364
2157. ProcessName : svchost.exe
2158. Handle : 2364
2159. commandline : C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
2160. ExecutablePath : C:\Windows\System32\svchost.exe
2161.  
2162. ProcessID : 2372
2163. ProcessName : svchost.exe
2164. Handle : 2372
2165. commandline : c:\windows\system32\svchost.exe -k networkservice -s Dnscache
2166. ExecutablePath : c:\windows\system32\svchost.exe
2167.  
2168. ProcessID : 2416
2169. ProcessName : svchost.exe
2170. Handle : 2416
2171. commandline : c:\windows\system32\svchost.exe -k appmodel -s StateRepository
2172. ExecutablePath : c:\windows\system32\svchost.exe
2173.  
2174. ProcessID : 2488
2175. ProcessName : svchost.exe
2176. Handle : 2488
2177. commandline : C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
2178. ExecutablePath : C:\Windows\system32\svchost.exe
2179.  
2180. ProcessID : 2612
2181. ProcessName : svchost.exe
2182. Handle : 2612
2183. commandline : C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
2184. ExecutablePath : C:\Windows\system32\svchost.exe
2185.  
2186. ProcessID : 2680
2187. ProcessName : svchost.exe
2188. Handle : 2680
2189. commandline : c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
2190. ExecutablePath : c:\windows\system32\svchost.exe
2191.  
2192. ProcessID : 2744
2193. ProcessName : spoolsv.exe
2194. Handle : 2744
2195. commandline : C:\Windows\System32\spoolsv.exe
2196. ExecutablePath : C:\Windows\System32\spoolsv.exe
2197.  
2198. ProcessID : 2796
2199. ProcessName : svchost.exe
2200. Handle : 2796
2201. commandline : c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
2202. ExecutablePath : c:\windows\system32\svchost.exe
2203.  
2204. ProcessID : 3012
2205. ProcessName : svchost.exe
2206. Handle : 3012
2207. commandline : c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
2208. ExecutablePath : c:\windows\system32\svchost.exe
2209.  
2210. ProcessID : 3020
2211. ProcessName : svchost.exe
2212. Handle : 3020
2213. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
2214. ExecutablePath : c:\windows\system32\svchost.exe
2215.  
2216. ProcessID : 3032
2217. ProcessName : svchost.exe
2218. Handle : 3032
2219. commandline : C:\Windows\System32\svchost.exe -k utcsvc
2220. ExecutablePath : C:\Windows\System32\svchost.exe
2221.  
2222. ProcessID : 3040
2223. ProcessName : svchost.exe
2224. Handle : 3040
2225. commandline : c:\windows\system32\svchost.exe -k netsvcs -s WpnService
2226. ExecutablePath : c:\windows\system32\svchost.exe
2227.  
2228. ProcessID : 3048
2229. ProcessName : svchost.exe
2230. Handle : 3048
2231. commandline : c:\windows\system32\svchost.exe -k netsvcs -s IKEEXT
2232. ExecutablePath : c:\windows\system32\svchost.exe
2233.  
2234. ProcessID : 3056
2235. ProcessName : svchost.exe
2236. Handle : 3056
2237. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
2238. ExecutablePath : c:\windows\system32\svchost.exe
2239.  
2240. ProcessID : 3064
2241. ProcessName : svchost.exe
2242. Handle : 3064
2243. commandline : c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
2244. ExecutablePath : c:\windows\system32\svchost.exe
2245.  
2246. ProcessID : 1964
2247. ProcessName : svchost.exe
2248. Handle : 1964
2249. commandline : c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
2250. ExecutablePath : c:\windows\system32\svchost.exe
2251.  
2252. ProcessID : 2072
2253. ProcessName : SecurityHealthService.exe
2254. Handle : 2072
2255. commandline :
2256. ExecutablePath :
2257.  
2258. ProcessID : 2304
2259. ProcessName : svchost.exe
2260. Handle : 2304
2261. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
2262. ExecutablePath : c:\windows\system32\svchost.exe
2263.  
2264. ProcessID : 3076
2265. ProcessName : svchost.exe
2266. Handle : 3076
2267. commandline : c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
2268. ExecutablePath : c:\windows\system32\svchost.exe
2269.  
2270. ProcessID : 3176
2271. ProcessName : svchost.exe
2272. Handle : 3176
2273. commandline : c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
2274. ExecutablePath : c:\windows\system32\svchost.exe
2275.  
2276. ProcessID : 3312
2277. ProcessName : svchost.exe
2278. Handle : 3312
2279. commandline : c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
2280. ExecutablePath : c:\windows\system32\svchost.exe
2281.  
2282. ProcessID : 3344
2283. ProcessName : MsMpEng.exe
2284. Handle : 3344
2285. commandline :
2286. ExecutablePath :
2287.  
2288. ProcessID : 3460
2289. ProcessName : svchost.exe
2290. Handle : 3460
2291. commandline : c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
2292. ExecutablePath : c:\windows\system32\svchost.exe
2293.  
2294. ProcessID : 3728
2295. ProcessName : Memory Compression
2296. Handle : 3728
2297. commandline :
2298. ExecutablePath :
2299.  
2300. ProcessID : 3780
2301. ProcessName : ReiGuard.exe
2302. Handle : 3780
2303. commandline : "C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe"
2304. ExecutablePath : C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
2305.  
2306. ProcessID : 4008
2307. ProcessName : svchost.exe
2308. Handle : 4008
2309. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
2310. ExecutablePath : c:\windows\system32\svchost.exe
2311.  
2312. ProcessID : 2140
2313. ProcessName : svchost.exe
2314. Handle : 2140
2315. commandline : c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s lmhosts
2316. ExecutablePath : c:\windows\system32\svchost.exe
2317.  
2318. ProcessID : 4684
2319. ProcessName : sihost.exe
2320. Handle : 4684
2321. commandline : sihost.exe
2322. ExecutablePath : c:\windows\system32\sihost.exe
2323.  
2324. ProcessID : 4708
2325. ProcessName : svchost.exe
2326. Handle : 4708
2327. commandline : c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
2328. ExecutablePath : c:\windows\system32\svchost.exe
2329.  
2330. ProcessID : 4748
2331. ProcessName : svchost.exe
2332. Handle : 4748
2333. commandline : c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
2334. ExecutablePath : c:\windows\system32\svchost.exe
2335.  
2336. ProcessID : 4804
2337. ProcessName : svchost.exe
2338. Handle : 4804
2339. commandline : c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
2340. ExecutablePath : c:\windows\system32\svchost.exe
2341.  
2342. ProcessID : 4952
2343. ProcessName : DriverToolkit.exe
2344. Handle : 4952
2345. commandline : "C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe" --autorun
2346. ExecutablePath : C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
2347.  
2348. ProcessID : 4968
2349. ProcessName : taskhostw.exe
2350. Handle : 4968
2351. commandline : taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
2352. ExecutablePath : c:\windows\system32\taskhostw.exe
2353.  
2354. ProcessID : 5108
2355. ProcessName : explorer.exe
2356. Handle : 5108
2357. commandline : C:\Windows\Explorer.EXE
2358. ExecutablePath : C:\Windows\Explorer.EXE
2359.  
2360. ProcessID : 4232
2361. ProcessName : ReiSystem.exe
2362. Handle : 4232
2363. commandline : "C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe"
2364. ExecutablePath : C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
2365.  
2366. ProcessID : 4320
2367. ProcessName : SearchIndexer.exe
2368. Handle : 4320
2369. commandline : C:\Windows\system32\SearchIndexer.exe /Embedding
2370. ExecutablePath : C:\Windows\system32\SearchIndexer.exe
2371.  
2372. ProcessID : 4316
2373. ProcessName : ShellExperienceHost.exe
2374. Handle : 4316
2375. commandline : "C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe"
2376. -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
2377. ExecutablePath : C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
2378.  
2379. ProcessID : 2816
2380. ProcessName : SearchUI.exe
2381. Handle : 2816
2382. commandline : "C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe"
2383. -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
2384. ExecutablePath : C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
2385.  
2386. ProcessID : 5220
2387. ProcessName : WmiPrvSE.exe
2388. Handle : 5220
2389. commandline : C:\Windows\system32\wbem\wmiprvse.exe
2390. ExecutablePath : C:\Windows\system32\wbem\wmiprvse.exe
2391.  
2392. ProcessID : 5260
2393. ProcessName : RuntimeBroker.exe
2394. Handle : 5260
2395. commandline : C:\Windows\System32\RuntimeBroker.exe -Embedding
2396. ExecutablePath : C:\Windows\System32\RuntimeBroker.exe
2397.  
2398. ProcessID : 6576
2399. ProcessName : svchost.exe
2400. Handle : 6576
2401. commandline : c:\windows\system32\svchost.exe -k localservice -s CDPSvc
2402. ExecutablePath : c:\windows\system32\svchost.exe
2403.  
2404. ProcessID : 6996
2405. ProcessName : MSASCuiL.exe
2406. Handle : 6996
2407. commandline : "C:\Program Files\Windows Defender\MSASCuiL.exe"
2408. ExecutablePath : C:\Program Files\Windows Defender\MSASCuiL.exe
2409.  
2410. ProcessID : 7104
2411. ProcessName : NvBackend.exe
2412. Handle : 7104
2413. commandline : "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
2414. ExecutablePath : C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
2415.  
2416. ProcessID : 7096
2417. ProcessName : RtkNGUI64.exe
2418. Handle : 7096
2419. commandline : "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
2420. ExecutablePath : C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
2421.  
2422. ProcessID : 7156
2423. ProcessName : OneDrive.exe
2424. Handle : 7156
2425. commandline : "C:\Users\Cory Smith\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
2426. ExecutablePath : C:\Users\Cory Smith\AppData\Local\Microsoft\OneDrive\OneDrive.exe
2427.  
2428. ProcessID : 7060
2429. ProcessName : MSIRegister.exe
2430. Handle : 7060
2431. commandline : "C:\MSI\MSIRegister\MSIRegister.exe"
2432. ExecutablePath : C:\MSI\MSIRegister\MSIRegister.exe
2433.  
2434. ProcessID : 5176
2435. ProcessName : svchost.exe
2436. Handle : 5176
2437. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s WdiSystemHost
2438. ExecutablePath : c:\windows\system32\svchost.exe
2439.  
2440. ProcessID : 5360
2441. ProcessName : SystemSettingsBroker.exe
2442. Handle : 5360
2443. commandline : C:\Windows\System32\SystemSettingsBroker.exe -Embedding
2444. ExecutablePath : C:\Windows\System32\SystemSettingsBroker.exe
2445.  
2446. ProcessID : 4176
2447. ProcessName : svchost.exe
2448. Handle : 4176
2449. commandline : c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
2450. ExecutablePath : c:\windows\system32\svchost.exe
2451.  
2452. ProcessID : 4508
2453. ProcessName : ApplicationFrameHost.exe
2454. Handle : 4508
2455. commandline : C:\Windows\system32\ApplicationFrameHost.exe -Embedding
2456. ExecutablePath : C:\Windows\system32\ApplicationFrameHost.exe
2457.  
2458. ProcessID : 1284
2459. ProcessName : MicrosoftEdge.exe
2460. Handle : 1284
2461. commandline : "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe"
2462. -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
2463. ExecutablePath : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2464.  
2465. ProcessID : 1948
2466. ProcessName : browser_broker.exe
2467. Handle : 1948
2468. commandline : C:\Windows\system32\browser_broker.exe -Embedding
2469. ExecutablePath : C:\Windows\system32\browser_broker.exe
2470.  
2471. ProcessID : 3976
2472. ProcessName : MicrosoftEdgeCP.exe
2473. Handle : 3976
2474. commandline : "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"
2475. -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
2476. ExecutablePath : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
2477.  
2478. ProcessID : 7756
2479. ProcessName : MicrosoftEdgeCP.exe
2480. Handle : 7756
2481. commandline : "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"
2482. -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
2483. ExecutablePath : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
2484.  
2485. ProcessID : 7220
2486. ProcessName : audiodg.exe
2487. Handle : 7220
2488. commandline : C:\Windows\system32\AUDIODG.EXE 0x474
2489. ExecutablePath : C:\Windows\system32\AUDIODG.EXE
2490.  
2491. ProcessID : 6596
2492. ProcessName : svchost.exe
2493. Handle : 6596
2494. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SensorService
2495. ExecutablePath : c:\windows\system32\svchost.exe
2496.  
2497. ProcessID : 5068
2498. ProcessName : SystemSettings.exe
2499. Handle : 5068
2500. commandline : "C:\Windows\ImmersiveControlPanel\SystemSettings.exe"
2501. -ServerName:microsoft.windows.immersivecontrolpanel
2502. ExecutablePath : C:\Windows\ImmersiveControlPanel\SystemSettings.exe
2503.  
2504. ProcessID : 6796
2505. ProcessName : NvNetworkService.exe
2506. Handle : 6796
2507. commandline : "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
2508. ExecutablePath : C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
2509.  
2510. ProcessID : 4172
2511. ProcessName : SecHealthUI.exe
2512. Handle : 4172
2513. commandline : "C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe"
2514. -ServerName:SecHealthUI.AppXep4x2tbtjws1v9qqs0rmb3hxykvkpqtn.mca
2515. ExecutablePath : C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
2516.  
2517. ProcessID : 8232
2518. ProcessName : dllhost.exe
2519. Handle : 8232
2520. commandline : C:\Windows\system32\DllHost.exe /Processid:{7E55A26D-EF95-4A45-9F55-21E52ADF9887}
2521. ExecutablePath : C:\Windows\system32\DllHost.exe
2522.  
2523. ProcessID : 8456
2524. ProcessName : svchost.exe
2525. Handle : 8456
2526. commandline : c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
2527. ExecutablePath : c:\windows\system32\svchost.exe
2528.  
2529. ProcessID : 9004
2530. ProcessName : svchost.exe
2531. Handle : 9004
2532. commandline : c:\windows\system32\svchost.exe -k netsvcs -s DoSvc
2533. ExecutablePath : c:\windows\system32\svchost.exe
2534.  
2535. ProcessID : 8644
2536. ProcessName : svchost.exe
2537. Handle : 8644
2538. commandline : c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
2539. ExecutablePath : c:\windows\system32\svchost.exe
2540.  
2541. ProcessID : 4372
2542. ProcessName : svchost.exe
2543. Handle : 4372
2544. commandline : c:\windows\system32\svchost.exe -k unistacksvcgroup
2545. ExecutablePath : c:\windows\system32\svchost.exe
2546.  
2547. ProcessID : 8908
2548. ProcessName : svchost.exe
2549. Handle : 8908
2550. commandline : c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s StorSvc
2551. ExecutablePath : c:\windows\system32\svchost.exe
2552.  
2553. ProcessID : 5688
2554. ProcessName : svchost.exe
2555. Handle : 5688
2556. commandline : c:\windows\system32\svchost.exe -k netsvcs -s Browser
2557. ExecutablePath : c:\windows\system32\svchost.exe
2558.  
2559. ProcessID : 5004
2560. ProcessName : svchost.exe
2561. Handle : 5004
2562. commandline : c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -s PolicyAgent
2563. ExecutablePath : c:\windows\system32\svchost.exe
2564.  
2565. ProcessID : 8860
2566. ProcessName : FRST64.exe
2567. Handle : 8860
2568. commandline : "C:\Users\Cory Smith\Downloads\FRST64.exe"
2569. ExecutablePath : C:\Users\Cory Smith\Downloads\FRST64.exe
2570.  
2571. ProcessID : 8720
2572. ProcessName : Steam.exe
2573. Handle : 8720
2574. commandline : "C:\Program Files (x86)\Steam\Steam.exe"
2575. ExecutablePath : C:\Program Files (x86)\Steam\Steam.exe
2576.  
2577. ProcessID : 8712
2578. ProcessName : steamwebhelper.exe
2579. Handle : 8712
2580. commandline : "C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-cachedir=C:\Users\Cory
2581. Smith\AppData\Local\Steam\htmlcache" "-steampid=8720" "-buildid=1493162727" "-steamid=0"
2582. --disable-gpu-compositing --disable-gpu --process-per-tab --disable-spell-checking
2583. --disable-out-of-process-pac --disable-smooth-scrolling --enable-direct-write
2584. "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
2585. ExecutablePath : C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
2586.  
2587. ProcessID : 5796
2588. ProcessName : SteamService.exe
2589. Handle : 5796
2590. commandline : "C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
2591. ExecutablePath : C:\Program Files (x86)\Common Files\Steam\SteamService.exe
2592.  
2593. ProcessID : 6836
2594. ProcessName : steamwebhelper.exe
2595. Handle : 6836
2596. commandline : "C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer
2597. --disable-gpu-compositing --disable-smooth-scrolling --enable-pinch
2598. --primordial-pipe-token=009587B9E01818F6699E9C4B1E164D38 --lang=en-US --lang=en-GB
2599. --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam
2600. Client" --disable-spell-checking --enable-pinch --device-scale-factor=1
2601. --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=
2602. 0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,
2603. 10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,355
2604. 3;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3
2605. 553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3
2606. 553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3
2607. ,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,
2608. 11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode
2609. --disable-webrtc-hw-encoding --disable-gpu-compositing
2610. --service-request-channel-token=009587B9E01818F6699E9C4B1E164D38 --renderer-client-id=2
2611. --mojo-platform-channel-handle=2192 /prefetch:1
2612. ExecutablePath : C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
2613.  
2614. ProcessID : 7588
2615. ProcessName : svchost.exe
2616. Handle : 7588
2617. commandline : c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
2618. ExecutablePath : c:\windows\system32\svchost.exe
2619.  
2620. ProcessID : 1248
2621. ProcessName : notepad.exe
2622. Handle : 1248
2623. commandline : notepad "C:\Users\Cory Smith\Downloads\FRST.txt"
2624. ExecutablePath : C:\Windows\SYSTEM32\notepad.exe
2625.  
2626. ProcessID : 5236
2627. ProcessName : notepad.exe
2628. Handle : 5236
2629. commandline : notepad "C:\Users\Cory Smith\Downloads\Addition.txt"
2630. ExecutablePath : C:\Windows\SYSTEM32\notepad.exe
2631.  
2632. ProcessID : 8380
2633. ProcessName : MicrosoftEdgeCP.exe
2634. Handle : 8380
2635. commandline : "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"
2636. -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
2637. ExecutablePath : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
2638.  
2639. ProcessID : 8440
2640. ProcessName : MicrosoftEdgeCP.exe
2641. Handle : 8440
2642. commandline : "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe"
2643. -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
2644. ExecutablePath : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
2645.  
2646. ProcessID : 8268
2647. ProcessName : SearchProtocolHost.exe
2648. Handle : 8268
2649. commandline : "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_
2650. Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search"
2651. "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"
2652. "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
2653. ExecutablePath : C:\Windows\system32\SearchProtocolHost.exe
2654.  
2655. ProcessID : 7216
2656. ProcessName : svchost.exe
2657. Handle : 7216
2658. commandline : C:\Windows\system32\svchost.exe -k netsvcs -s gpsvc
2659. ExecutablePath : C:\Windows\system32\svchost.exe
2660.  
2661. ProcessID : 8792
2662. ProcessName : dllhost.exe
2663. Handle : 8792
2664. commandline : C:\Windows\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
2665. ExecutablePath : C:\Windows\system32\DllHost.exe
2666.  
2667. ProcessID : 7532
2668. ProcessName : backgroundTaskHost.exe
2669. Handle : 7532
2670. commandline : "C:\Windows\system32\backgroundTaskHost.exe"
2671. -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
2672. ExecutablePath : C:\Windows\system32\backgroundTaskHost.exe
2673.  
2674. ProcessID : 5388
2675. ProcessName : SearchFilterHost.exe
2676. Handle : 5388
2677. commandline : "C:\Windows\system32\SearchFilterHost.exe" 0 688 692 700 8192 696
2678. ExecutablePath : C:\Windows\system32\SearchFilterHost.exe
2679.  
2680. ProcessID : 6516
2681. ProcessName : cmd.exe
2682. Handle : 6516
2683. commandline : "C:\Windows\System32\cmd.exe" /c "C:\Users\CORYSM~1\DOCUME~1\SCAN_R~1.BAT"
2684. ExecutablePath : C:\Windows\System32\cmd.exe
2685.  
2686. ProcessID : 7980
2687. ProcessName : conhost.exe
2688. Handle : 7980
2689. commandline : \??\C:\Windows\system32\conhost.exe 0x4
2690. ExecutablePath : C:\Windows\system32\conhost.exe
2691.  
2692. ProcessID : 2264
2693. ProcessName : WmiPrvSE.exe
2694. Handle : 2264
2695. commandline : C:\Windows\system32\wbem\wmiprvse.exe
2696. ExecutablePath : C:\Windows\system32\wbem\wmiprvse.exe
2697.  
2698. ProcessID : 6952
2699. ProcessName : TrustedInstaller.exe
2700. Handle : 6952
2701. commandline : C:\Windows\servicing\TrustedInstaller.exe
2702. ExecutablePath : C:\Windows\servicing\TrustedInstaller.exe
2703.  
2704. ProcessID : 4776
2705. ProcessName : TiWorker.exe
2706. Handle : 4776
2707. commandline : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.0_none_
2708. 1a733a82001933cc\TiWorker.exe -Embedding
2709. ExecutablePath : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.0_none_
2710. 1a733a82001933cc\TiWorker.exe
2711.  
2712. ProcessID : 2624
2713. ProcessName : powershell.exe
2714. Handle : 2624
2715. commandline : Powershell.exe Get-WmiObject Win32_Process | select
2716. ProcessID,ProcessName,Handle,commandline,ExecutablePath | Out-File -Append
2717. "C:\Users\CORYSM~1\AppData\Local\Temp\TmpLog_Keys.txt" -Encoding ascii
2718. ExecutablePath : C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
2719.  
2720.  
2721.  
2722.  
2723. ******************************************************************************
2724. Services List
2725. ******************************************************************************
2726.  
2727. SERVICE_NAME: Appinfo
2728. DISPLAY_NAME: Application Information
2729. TYPE : 30 WIN32
2730. STATE : 4 RUNNING
2731. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2732. WIN32_EXIT_CODE : 0 (0x0)
2733. SERVICE_EXIT_CODE : 0 (0x0)
2734. CHECKPOINT : 0x0
2735. WAIT_HINT : 0x0
2736. PID : 8456
2737. FLAGS :
2738.  
2739. SERVICE_NAME: AudioEndpointBuilder
2740. DISPLAY_NAME: Windows Audio Endpoint Builder
2741. TYPE : 30 WIN32
2742. STATE : 4 RUNNING
2743. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2744. WIN32_EXIT_CODE : 0 (0x0)
2745. SERVICE_EXIT_CODE : 0 (0x0)
2746. CHECKPOINT : 0x0
2747. WAIT_HINT : 0x0
2748. PID : 2076
2749. FLAGS :
2750.  
2751. SERVICE_NAME: Audiosrv
2752. DISPLAY_NAME: Windows Audio
2753. TYPE : 10 WIN32_OWN_PROCESS
2754. STATE : 4 RUNNING
2755. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2756. WIN32_EXIT_CODE : 0 (0x0)
2757. SERVICE_EXIT_CODE : 0 (0x0)
2758. CHECKPOINT : 0x0
2759. WAIT_HINT : 0x0
2760. PID : 2284
2761. FLAGS :
2762.  
2763. SERVICE_NAME: BFE
2764. DISPLAY_NAME: Base Filtering Engine
2765. TYPE : 20 WIN32_SHARE_PROCESS
2766. STATE : 4 RUNNING
2767. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2768. WIN32_EXIT_CODE : 0 (0x0)
2769. SERVICE_EXIT_CODE : 0 (0x0)
2770. CHECKPOINT : 0x0
2771. WAIT_HINT : 0x0
2772. PID : 1264
2773. FLAGS :
2774.  
2775. SERVICE_NAME: BrokerInfrastructure
2776. DISPLAY_NAME: Background Tasks Infrastructure Service
2777. TYPE : 20 WIN32_SHARE_PROCESS
2778. STATE : 4 RUNNING
2779. (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2780. WIN32_EXIT_CODE : 0 (0x0)
2781. SERVICE_EXIT_CODE : 0 (0x0)
2782. CHECKPOINT : 0x0
2783. WAIT_HINT : 0x0
2784. PID : 496
2785. FLAGS :
2786.  
2787. SERVICE_NAME: Browser
2788. DISPLAY_NAME: Computer Browser
2789. TYPE : 30 WIN32
2790. STATE : 4 RUNNING
2791. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2792. WIN32_EXIT_CODE : 0 (0x0)
2793. SERVICE_EXIT_CODE : 0 (0x0)
2794. CHECKPOINT : 0x0
2795. WAIT_HINT : 0x0
2796. PID : 5688
2797. FLAGS :
2798.  
2799. SERVICE_NAME: CDPSvc
2800. DISPLAY_NAME: Connected Devices Platform Service
2801. TYPE : 30 WIN32
2802. STATE : 4 RUNNING
2803. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2804. WIN32_EXIT_CODE : 0 (0x0)
2805. SERVICE_EXIT_CODE : 0 (0x0)
2806. CHECKPOINT : 0x0
2807. WAIT_HINT : 0x0
2808. PID : 6576
2809. FLAGS :
2810.  
2811. SERVICE_NAME: CoreMessagingRegistrar
2812. DISPLAY_NAME: CoreMessaging
2813. TYPE : 20 WIN32_SHARE_PROCESS
2814. STATE : 4 RUNNING
2815. (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2816. WIN32_EXIT_CODE : 0 (0x0)
2817. SERVICE_EXIT_CODE : 0 (0x0)
2818. CHECKPOINT : 0x0
2819. WAIT_HINT : 0x0
2820. PID : 1264
2821. FLAGS :
2822.  
2823. SERVICE_NAME: CryptSvc
2824. DISPLAY_NAME: Cryptographic Services
2825. TYPE : 30 WIN32
2826. STATE : 4 RUNNING
2827. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
2828. WIN32_EXIT_CODE : 0 (0x0)
2829. SERVICE_EXIT_CODE : 0 (0x0)
2830. CHECKPOINT : 0x0
2831. WAIT_HINT : 0x0
2832. PID : 3012
2833. FLAGS :
2834.  
2835. SERVICE_NAME: DcomLaunch
2836. DISPLAY_NAME: DCOM Server Process Launcher
2837. TYPE : 20 WIN32_SHARE_PROCESS
2838. STATE : 4 RUNNING
2839. (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2840. WIN32_EXIT_CODE : 0 (0x0)
2841. SERVICE_EXIT_CODE : 0 (0x0)
2842. CHECKPOINT : 0x0
2843. WAIT_HINT : 0x0
2844. PID : 496
2845. FLAGS :
2846.  
2847. SERVICE_NAME: DeviceAssociationService
2848. DISPLAY_NAME: Device Association Service
2849. TYPE : 30 WIN32
2850. STATE : 4 RUNNING
2851. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
2852. WIN32_EXIT_CODE : 0 (0x0)
2853. SERVICE_EXIT_CODE : 0 (0x0)
2854. CHECKPOINT : 0x0
2855. WAIT_HINT : 0x0
2856. PID : 4008
2857. FLAGS :
2858.  
2859. SERVICE_NAME: Dhcp
2860. DISPLAY_NAME: DHCP Client
2861. TYPE : 30 WIN32
2862. STATE : 4 RUNNING
2863. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
2864. WIN32_EXIT_CODE : 0 (0x0)
2865. SERVICE_EXIT_CODE : 0 (0x0)
2866. CHECKPOINT : 0x0
2867. WAIT_HINT : 0x0
2868. PID : 1788
2869. FLAGS :
2870.  
2871. SERVICE_NAME: DiagTrack
2872. DISPLAY_NAME: Connected User Experiences and Telemetry
2873. TYPE : 10 WIN32_OWN_PROCESS
2874. STATE : 4 RUNNING
2875. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
2876. WIN32_EXIT_CODE : 0 (0x0)
2877. SERVICE_EXIT_CODE : 0 (0x0)
2878. CHECKPOINT : 0x0
2879. WAIT_HINT : 0x0
2880. PID : 3032
2881. FLAGS :
2882.  
2883. SERVICE_NAME: Dnscache
2884. DISPLAY_NAME: DNS Client
2885. TYPE : 30 WIN32
2886. STATE : 4 RUNNING
2887. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2888. WIN32_EXIT_CODE : 0 (0x0)
2889. SERVICE_EXIT_CODE : 0 (0x0)
2890. CHECKPOINT : 0x0
2891. WAIT_HINT : 0x0
2892. PID : 2372
2893. FLAGS :
2894.  
2895. SERVICE_NAME: DoSvc
2896. DISPLAY_NAME: Delivery Optimization
2897. TYPE : 30 WIN32
2898. STATE : 4 RUNNING
2899. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
2900. WIN32_EXIT_CODE : 0 (0x0)
2901. SERVICE_EXIT_CODE : 0 (0x0)
2902. CHECKPOINT : 0x0
2903. WAIT_HINT : 0x0
2904. PID : 9004
2905. FLAGS :
2906.  
2907. SERVICE_NAME: DPS
2908. DISPLAY_NAME: Diagnostic Policy Service
2909. TYPE : 30 WIN32
2910. STATE : 4 RUNNING
2911. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
2912. WIN32_EXIT_CODE : 0 (0x0)
2913. SERVICE_EXIT_CODE : 0 (0x0)
2914. CHECKPOINT : 0x0
2915. WAIT_HINT : 0x0
2916. PID : 1964
2917. FLAGS :
2918.  
2919. SERVICE_NAME: DusmSvc
2920. DISPLAY_NAME: Data Usage
2921. TYPE : 10 WIN32_OWN_PROCESS
2922. STATE : 4 RUNNING
2923. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2924. WIN32_EXIT_CODE : 0 (0x0)
2925. SERVICE_EXIT_CODE : 0 (0x0)
2926. CHECKPOINT : 0x0
2927. WAIT_HINT : 0x0
2928. PID : 2364
2929. FLAGS :
2930.  
2931. SERVICE_NAME: EventLog
2932. DISPLAY_NAME: Windows Event Log
2933. TYPE : 30 WIN32
2934. STATE : 4 RUNNING
2935. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
2936. WIN32_EXIT_CODE : 0 (0x0)
2937. SERVICE_EXIT_CODE : 0 (0x0)
2938. CHECKPOINT : 0x0
2939. WAIT_HINT : 0x0
2940. PID : 1476
2941. FLAGS :
2942.  
2943. SERVICE_NAME: EventSystem
2944. DISPLAY_NAME: COM+ Event System
2945. TYPE : 30 WIN32
2946. STATE : 4 RUNNING
2947. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
2948. WIN32_EXIT_CODE : 0 (0x0)
2949. SERVICE_EXIT_CODE : 0 (0x0)
2950. CHECKPOINT : 0x0
2951. WAIT_HINT : 0x0
2952. PID : 1924
2953. FLAGS :
2954.  
2955. SERVICE_NAME: FontCache
2956. DISPLAY_NAME: Windows Font Cache Service
2957. TYPE : 30 WIN32
2958. STATE : 4 RUNNING
2959. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
2960. WIN32_EXIT_CODE : 0 (0x0)
2961. SERVICE_EXIT_CODE : 0 (0x0)
2962. CHECKPOINT : 0x0
2963. WAIT_HINT : 0x0
2964. PID : 2084
2965. FLAGS :
2966.  
2967. SERVICE_NAME: gpsvc
2968. DISPLAY_NAME: Group Policy Client
2969. TYPE : 30 WIN32
2970. STATE : 4 RUNNING
2971. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
2972. WIN32_EXIT_CODE : 0 (0x0)
2973. SERVICE_EXIT_CODE : 0 (0x0)
2974. CHECKPOINT : 0x0
2975. WAIT_HINT : 0x0
2976. PID : 7216
2977. FLAGS :
2978.  
2979. SERVICE_NAME: hidserv
2980. DISPLAY_NAME: Human Interface Device Service
2981. TYPE : 30 WIN32
2982. STATE : 4 RUNNING
2983. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
2984. WIN32_EXIT_CODE : 0 (0x0)
2985. SERVICE_EXIT_CODE : 0 (0x0)
2986. CHECKPOINT : 0x0
2987. WAIT_HINT : 0x0
2988. PID : 1568
2989. FLAGS :
2990.  
2991. SERVICE_NAME: IKEEXT
2992. DISPLAY_NAME: IKE and AuthIP IPsec Keying Modules
2993. TYPE : 30 WIN32
2994. STATE : 4 RUNNING
2995. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
2996. WIN32_EXIT_CODE : 0 (0x0)
2997. SERVICE_EXIT_CODE : 0 (0x0)
2998. CHECKPOINT : 0x0
2999. WAIT_HINT : 0x0
3000. PID : 3048
3001. FLAGS :
3002.  
3003. SERVICE_NAME: iphlpsvc
3004. DISPLAY_NAME: IP Helper
3005. TYPE : 30 WIN32
3006. STATE : 4 RUNNING
3007. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3008. WIN32_EXIT_CODE : 0 (0x0)
3009. SERVICE_EXIT_CODE : 0 (0x0)
3010. CHECKPOINT : 0x0
3011. WAIT_HINT : 0x0
3012. PID : 3312
3013. FLAGS :
3014.  
3015. SERVICE_NAME: KeyIso
3016. DISPLAY_NAME: CNG Key Isolation
3017. TYPE : 20 WIN32_SHARE_PROCESS
3018. STATE : 4 RUNNING
3019. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3020. WIN32_EXIT_CODE : 0 (0x0)
3021. SERVICE_EXIT_CODE : 0 (0x0)
3022. CHECKPOINT : 0x0
3023. WAIT_HINT : 0x0
3024. PID : 816
3025. FLAGS : RUNS_IN_SYSTEM_PROCESS
3026.  
3027. SERVICE_NAME: LanmanServer
3028. DISPLAY_NAME: Server
3029. TYPE : 30 WIN32
3030. STATE : 4 RUNNING
3031. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3032. WIN32_EXIT_CODE : 0 (0x0)
3033. SERVICE_EXIT_CODE : 0 (0x0)
3034. CHECKPOINT : 0x0
3035. WAIT_HINT : 0x0
3036. PID : 3176
3037. FLAGS :
3038.  
3039. SERVICE_NAME: LanmanWorkstation
3040. DISPLAY_NAME: Workstation
3041. TYPE : 30 WIN32
3042. STATE : 4 RUNNING
3043. (STOPPABLE, PAUSABLE, IGNORES_SHUTDOWN)
3044. WIN32_EXIT_CODE : 0 (0x0)
3045. SERVICE_EXIT_CODE : 0 (0x0)
3046. CHECKPOINT : 0x0
3047. WAIT_HINT : 0x0
3048. PID : 2796
3049. FLAGS :
3050.  
3051. SERVICE_NAME: lfsvc
3052. DISPLAY_NAME: Geolocation Service
3053. TYPE : 30 WIN32
3054. STATE : 4 RUNNING
3055. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3056. WIN32_EXIT_CODE : 0 (0x0)
3057. SERVICE_EXIT_CODE : 0 (0x0)
3058. CHECKPOINT : 0x0
3059. WAIT_HINT : 0x0
3060. PID : 4176
3061. FLAGS :
3062.  
3063. SERVICE_NAME: lmhosts
3064. DISPLAY_NAME: TCP/IP NetBIOS Helper
3065. TYPE : 30 WIN32
3066. STATE : 4 RUNNING
3067. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3068. WIN32_EXIT_CODE : 0 (0x0)
3069. SERVICE_EXIT_CODE : 0 (0x0)
3070. CHECKPOINT : 0x0
3071. WAIT_HINT : 0x0
3072. PID : 2140
3073. FLAGS :
3074.  
3075. SERVICE_NAME: LSM
3076. DISPLAY_NAME: Local Session Manager
3077. TYPE : 30 WIN32
3078. STATE : 4 RUNNING
3079. (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3080. WIN32_EXIT_CODE : 0 (0x0)
3081. SERVICE_EXIT_CODE : 0 (0x0)
3082. CHECKPOINT : 0x0
3083. WAIT_HINT : 0x0
3084. PID : 1052
3085. FLAGS :
3086.  
3087. SERVICE_NAME: MpsSvc
3088. DISPLAY_NAME: Windows Firewall
3089. TYPE : 20 WIN32_SHARE_PROCESS
3090. STATE : 4 RUNNING
3091. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3092. WIN32_EXIT_CODE : 0 (0x0)
3093. SERVICE_EXIT_CODE : 0 (0x0)
3094. CHECKPOINT : 0x0
3095. WAIT_HINT : 0x0
3096. PID : 1264
3097. FLAGS :
3098.  
3099. SERVICE_NAME: NcbService
3100. DISPLAY_NAME: Network Connection Broker
3101. TYPE : 30 WIN32
3102. STATE : 4 RUNNING
3103. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3104. WIN32_EXIT_CODE : 0 (0x0)
3105. SERVICE_EXIT_CODE : 0 (0x0)
3106. CHECKPOINT : 0x0
3107. WAIT_HINT : 0x0
3108. PID : 1316
3109. FLAGS :
3110.  
3111. SERVICE_NAME: netprofm
3112. DISPLAY_NAME: Network List Service
3113. TYPE : 30 WIN32
3114. STATE : 4 RUNNING
3115. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3116. WIN32_EXIT_CODE : 0 (0x0)
3117. SERVICE_EXIT_CODE : 0 (0x0)
3118. CHECKPOINT : 0x0
3119. WAIT_HINT : 0x0
3120. PID : 2000
3121. FLAGS :
3122.  
3123. SERVICE_NAME: NlaSvc
3124. DISPLAY_NAME: Network Location Awareness
3125. TYPE : 30 WIN32
3126. STATE : 4 RUNNING
3127. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3128. WIN32_EXIT_CODE : 0 (0x0)
3129. SERVICE_EXIT_CODE : 0 (0x0)
3130. CHECKPOINT : 0x0
3131. WAIT_HINT : 0x0
3132. PID : 1848
3133. FLAGS :
3134.  
3135. SERVICE_NAME: nsi
3136. DISPLAY_NAME: Network Store Interface Service
3137. TYPE : 30 WIN32
3138. STATE : 4 RUNNING
3139. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3140. WIN32_EXIT_CODE : 0 (0x0)
3141. SERVICE_EXIT_CODE : 0 (0x0)
3142. CHECKPOINT : 0x0
3143. WAIT_HINT : 0x0
3144. PID : 1748
3145. FLAGS :
3146.  
3147. SERVICE_NAME: NvNetworkService
3148. DISPLAY_NAME: NVIDIA Network Service
3149. TYPE : 10 WIN32_OWN_PROCESS
3150. STATE : 4 RUNNING
3151. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3152. WIN32_EXIT_CODE : 0 (0x0)
3153. SERVICE_EXIT_CODE : 0 (0x0)
3154. CHECKPOINT : 0x0
3155. WAIT_HINT : 0x0
3156. PID : 6796
3157. FLAGS :
3158.  
3159. SERVICE_NAME: PcaSvc
3160. DISPLAY_NAME: Program Compatibility Assistant Service
3161. TYPE : 30 WIN32
3162. STATE : 4 RUNNING
3163. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3164. WIN32_EXIT_CODE : 0 (0x0)
3165. SERVICE_EXIT_CODE : 0 (0x0)
3166. CHECKPOINT : 0x0
3167. WAIT_HINT : 0x0
3168. PID : 2304
3169. FLAGS :
3170.  
3171. SERVICE_NAME: PlugPlay
3172. DISPLAY_NAME: Plug and Play
3173. TYPE : 30 WIN32
3174. STATE : 4 RUNNING
3175. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3176. WIN32_EXIT_CODE : 0 (0x0)
3177. SERVICE_EXIT_CODE : 0 (0x0)
3178. CHECKPOINT : 0x0
3179. WAIT_HINT : 0x0
3180. PID : 996
3181. FLAGS :
3182.  
3183. SERVICE_NAME: PolicyAgent
3184. DISPLAY_NAME: IPsec Policy Agent
3185. TYPE : 30 WIN32
3186. STATE : 4 RUNNING
3187. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3188. WIN32_EXIT_CODE : 0 (0x0)
3189. SERVICE_EXIT_CODE : 0 (0x0)
3190. CHECKPOINT : 0x0
3191. WAIT_HINT : 0x0
3192. PID : 5004
3193. FLAGS :
3194.  
3195. SERVICE_NAME: Power
3196. DISPLAY_NAME: Power
3197. TYPE : 20 WIN32_SHARE_PROCESS
3198. STATE : 4 RUNNING
3199. (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3200. WIN32_EXIT_CODE : 0 (0x0)
3201. SERVICE_EXIT_CODE : 0 (0x0)
3202. CHECKPOINT : 0x0
3203. WAIT_HINT : 0x0
3204. PID : 496
3205. FLAGS :
3206.  
3207. SERVICE_NAME: ProfSvc
3208. DISPLAY_NAME: User Profile Service
3209. TYPE : 30 WIN32
3210. STATE : 4 RUNNING
3211. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3212. WIN32_EXIT_CODE : 0 (0x0)
3213. SERVICE_EXIT_CODE : 0 (0x0)
3214. CHECKPOINT : 0x0
3215. WAIT_HINT : 0x0
3216. PID : 1432
3217. FLAGS :
3218.  
3219. SERVICE_NAME: ReimageRealTimeProtector
3220. DISPLAY_NAME: Reimage Real Time Protector
3221. TYPE : 10 WIN32_OWN_PROCESS
3222. STATE : 4 RUNNING
3223. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3224. WIN32_EXIT_CODE : 0 (0x0)
3225. SERVICE_EXIT_CODE : 0 (0x0)
3226. CHECKPOINT : 0x0
3227. WAIT_HINT : 0x0
3228. PID : 3780
3229. FLAGS :
3230.  
3231. SERVICE_NAME: RpcEptMapper
3232. DISPLAY_NAME: RPC Endpoint Mapper
3233. TYPE : 20 WIN32_SHARE_PROCESS
3234. STATE : 4 RUNNING
3235. (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3236. WIN32_EXIT_CODE : 0 (0x0)
3237. SERVICE_EXIT_CODE : 0 (0x0)
3238. CHECKPOINT : 0x0
3239. WAIT_HINT : 0x0
3240. PID : 512
3241. FLAGS :
3242.  
3243. SERVICE_NAME: RpcSs
3244. DISPLAY_NAME: Remote Procedure Call (RPC)
3245. TYPE : 20 WIN32_SHARE_PROCESS
3246. STATE : 4 RUNNING
3247. (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3248. WIN32_EXIT_CODE : 0 (0x0)
3249. SERVICE_EXIT_CODE : 0 (0x0)
3250. CHECKPOINT : 0x0
3251. WAIT_HINT : 0x0
3252. PID : 512
3253. FLAGS :
3254.  
3255. SERVICE_NAME: SamSs
3256. DISPLAY_NAME: Security Accounts Manager
3257. TYPE : 20 WIN32_SHARE_PROCESS
3258. STATE : 4 RUNNING
3259. (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3260. WIN32_EXIT_CODE : 0 (0x0)
3261. SERVICE_EXIT_CODE : 0 (0x0)
3262. CHECKPOINT : 0x0
3263. WAIT_HINT : 0x0
3264. PID : 816
3265. FLAGS : RUNS_IN_SYSTEM_PROCESS
3266.  
3267. SERVICE_NAME: Schedule
3268. DISPLAY_NAME: Task Scheduler
3269. TYPE : 30 WIN32
3270. STATE : 4 RUNNING
3271. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3272. WIN32_EXIT_CODE : 0 (0x0)
3273. SERVICE_EXIT_CODE : 0 (0x0)
3274. CHECKPOINT : 0x0
3275. WAIT_HINT : 0x0
3276. PID : 1384
3277. FLAGS :
3278.  
3279. SERVICE_NAME: SecurityHealthService
3280. DISPLAY_NAME: Windows Defender Security Centre Service
3281. TYPE : 10 WIN32_OWN_PROCESS
3282. STATE : 4 RUNNING
3283. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3284. WIN32_EXIT_CODE : 0 (0x0)
3285. SERVICE_EXIT_CODE : 0 (0x0)
3286. CHECKPOINT : 0x0
3287. WAIT_HINT : 0x0
3288. PID : 2072
3289. FLAGS :
3290.  
3291. SERVICE_NAME: SENS
3292. DISPLAY_NAME: System Event Notification Service
3293. TYPE : 30 WIN32
3294. STATE : 4 RUNNING
3295. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3296. WIN32_EXIT_CODE : 0 (0x0)
3297. SERVICE_EXIT_CODE : 0 (0x0)
3298. CHECKPOINT : 0x0
3299. WAIT_HINT : 0x0
3300. PID : 1868
3301. FLAGS :
3302.  
3303. SERVICE_NAME: SensorService
3304. DISPLAY_NAME: Sensor Service
3305. TYPE : 30 WIN32
3306. STATE : 4 RUNNING
3307. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
3308. WIN32_EXIT_CODE : 0 (0x0)
3309. SERVICE_EXIT_CODE : 0 (0x0)
3310. CHECKPOINT : 0x0
3311. WAIT_HINT : 0x0
3312. PID : 6596
3313. FLAGS :
3314.  
3315. SERVICE_NAME: ShellHWDetection
3316. DISPLAY_NAME: Shell Hardware Detection
3317. TYPE : 30 WIN32
3318. STATE : 4 RUNNING
3319. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3320. WIN32_EXIT_CODE : 0 (0x0)
3321. SERVICE_EXIT_CODE : 0 (0x0)
3322. CHECKPOINT : 0x0
3323. WAIT_HINT : 0x0
3324. PID : 2680
3325. FLAGS :
3326.  
3327. SERVICE_NAME: Spooler
3328. DISPLAY_NAME: Print Spooler
3329. TYPE : 110 WIN32_OWN_PROCESS (interactive)
3330. STATE : 4 RUNNING
3331. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3332. WIN32_EXIT_CODE : 0 (0x0)
3333. SERVICE_EXIT_CODE : 0 (0x0)
3334. CHECKPOINT : 0x0
3335. WAIT_HINT : 0x0
3336. PID : 2744
3337. FLAGS :
3338.  
3339. SERVICE_NAME: SSDPSRV
3340. DISPLAY_NAME: SSDP Discovery
3341. TYPE : 30 WIN32
3342. STATE : 4 RUNNING
3343. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3344. WIN32_EXIT_CODE : 0 (0x0)
3345. SERVICE_EXIT_CODE : 0 (0x0)
3346. CHECKPOINT : 0x0
3347. WAIT_HINT : 0x0
3348. PID : 7588
3349. FLAGS :
3350.  
3351. SERVICE_NAME: StateRepository
3352. DISPLAY_NAME: State Repository Service
3353. TYPE : 30 WIN32
3354. STATE : 4 RUNNING
3355. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3356. WIN32_EXIT_CODE : 0 (0x0)
3357. SERVICE_EXIT_CODE : 0 (0x0)
3358. CHECKPOINT : 0x0
3359. WAIT_HINT : 0x0
3360. PID : 2416
3361. FLAGS :
3362.  
3363. SERVICE_NAME: Steam Client Service
3364. DISPLAY_NAME: Steam Client Service
3365. TYPE : 10 WIN32_OWN_PROCESS
3366. STATE : 4 RUNNING
3367. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3368. WIN32_EXIT_CODE : 0 (0x0)
3369. SERVICE_EXIT_CODE : 0 (0x0)
3370. CHECKPOINT : 0x0
3371. WAIT_HINT : 0x0
3372. PID : 5796
3373. FLAGS :
3374.  
3375. SERVICE_NAME: StorSvc
3376. DISPLAY_NAME: Storage Service
3377. TYPE : 30 WIN32
3378. STATE : 4 RUNNING
3379. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
3380. WIN32_EXIT_CODE : 0 (0x0)
3381. SERVICE_EXIT_CODE : 0 (0x0)
3382. CHECKPOINT : 0x0
3383. WAIT_HINT : 0x0
3384. PID : 8908
3385. FLAGS :
3386.  
3387. SERVICE_NAME: SysMain
3388. DISPLAY_NAME: Superfetch
3389. TYPE : 30 WIN32
3390. STATE : 4 RUNNING
3391. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3392. WIN32_EXIT_CODE : 0 (0x0)
3393. SERVICE_EXIT_CODE : 0 (0x0)
3394. CHECKPOINT : 0x0
3395. WAIT_HINT : 0x0
3396. PID : 3020
3397. FLAGS :
3398.  
3399. SERVICE_NAME: SystemEventsBroker
3400. DISPLAY_NAME: System Events Broker
3401. TYPE : 20 WIN32_SHARE_PROCESS
3402. STATE : 4 RUNNING
3403. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3404. WIN32_EXIT_CODE : 0 (0x0)
3405. SERVICE_EXIT_CODE : 0 (0x0)
3406. CHECKPOINT : 0x0
3407. WAIT_HINT : 0x0
3408. PID : 496
3409. FLAGS :
3410.  
3411. SERVICE_NAME: tbaseprovisioning
3412. DISPLAY_NAME: tbaseprovisioning
3413. TYPE : 10 WIN32_OWN_PROCESS
3414. STATE : 4 RUNNING
3415. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3416. WIN32_EXIT_CODE : 0 (0x0)
3417. SERVICE_EXIT_CODE : 0 (0x0)
3418. CHECKPOINT : 0x0
3419. WAIT_HINT : 0x0
3420. PID : 1672
3421. FLAGS :
3422.  
3423. SERVICE_NAME: Themes
3424. DISPLAY_NAME: Themes
3425. TYPE : 30 WIN32
3426. STATE : 4 RUNNING
3427. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3428. WIN32_EXIT_CODE : 0 (0x0)
3429. SERVICE_EXIT_CODE : 0 (0x0)
3430. CHECKPOINT : 0x0
3431. WAIT_HINT : 0x0
3432. PID : 1916
3433. FLAGS :
3434.  
3435. SERVICE_NAME: tiledatamodelsvc
3436. DISPLAY_NAME: Tile Data model server
3437. TYPE : 30 WIN32
3438. STATE : 4 RUNNING
3439. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
3440. WIN32_EXIT_CODE : 0 (0x0)
3441. SERVICE_EXIT_CODE : 0 (0x0)
3442. CHECKPOINT : 0x0
3443. WAIT_HINT : 0x0
3444. PID : 3064
3445. FLAGS :
3446.  
3447. SERVICE_NAME: TimeBrokerSvc
3448. DISPLAY_NAME: Time Broker
3449. TYPE : 30 WIN32
3450. STATE : 4 RUNNING
3451. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3452. WIN32_EXIT_CODE : 0 (0x0)
3453. SERVICE_EXIT_CODE : 0 (0x0)
3454. CHECKPOINT : 0x0
3455. WAIT_HINT : 0x0
3456. PID : 1324
3457. FLAGS :
3458.  
3459. SERVICE_NAME: TokenBroker
3460. DISPLAY_NAME: TokenBroker
3461. TYPE : 30 WIN32
3462. STATE : 4 RUNNING
3463. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3464. WIN32_EXIT_CODE : 0 (0x0)
3465. SERVICE_EXIT_CODE : 0 (0x0)
3466. CHECKPOINT : 0x0
3467. WAIT_HINT : 0x0
3468. PID : 4804
3469. FLAGS :
3470.  
3471. SERVICE_NAME: TrkWks
3472. DISPLAY_NAME: Distributed Link Tracking Client
3473. TYPE : 30 WIN32
3474. STATE : 4 RUNNING
3475. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3476. WIN32_EXIT_CODE : 0 (0x0)
3477. SERVICE_EXIT_CODE : 0 (0x0)
3478. CHECKPOINT : 0x0
3479. WAIT_HINT : 0x0
3480. PID : 3056
3481. FLAGS :
3482.  
3483. SERVICE_NAME: TrustedInstaller
3484. DISPLAY_NAME: Windows Modules Installer
3485. TYPE : 10 WIN32_OWN_PROCESS
3486. STATE : 4 RUNNING
3487. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
3488. WIN32_EXIT_CODE : 0 (0x0)
3489. SERVICE_EXIT_CODE : 0 (0x0)
3490. CHECKPOINT : 0x0
3491. WAIT_HINT : 0x0
3492. PID : 6952
3493. FLAGS :
3494.  
3495. SERVICE_NAME: UserManager
3496. DISPLAY_NAME: User Manager
3497. TYPE : 30 WIN32
3498. STATE : 4 RUNNING
3499. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3500. WIN32_EXIT_CODE : 0 (0x0)
3501. SERVICE_EXIT_CODE : 0 (0x0)
3502. CHECKPOINT : 0x0
3503. WAIT_HINT : 0x0
3504. PID : 1544
3505. FLAGS :
3506.  
3507. SERVICE_NAME: VaultSvc
3508. DISPLAY_NAME: Credential Manager
3509. TYPE : 20 WIN32_SHARE_PROCESS
3510. STATE : 4 RUNNING
3511. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3512. WIN32_EXIT_CODE : 0 (0x0)
3513. SERVICE_EXIT_CODE : 0 (0x0)
3514. CHECKPOINT : 0x0
3515. WAIT_HINT : 0x0
3516. PID : 816
3517. FLAGS : RUNS_IN_SYSTEM_PROCESS
3518.  
3519. SERVICE_NAME: Wcmsvc
3520. DISPLAY_NAME: Windows Connection Manager
3521. TYPE : 10 WIN32_OWN_PROCESS
3522. STATE : 4 RUNNING
3523. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3524. WIN32_EXIT_CODE : 0 (0x0)
3525. SERVICE_EXIT_CODE : 0 (0x0)
3526. CHECKPOINT : 0x0
3527. WAIT_HINT : 0x0
3528. PID : 2488
3529. FLAGS :
3530.  
3531. SERVICE_NAME: WdiServiceHost
3532. DISPLAY_NAME: Diagnostic Service Host
3533. TYPE : 30 WIN32
3534. STATE : 4 RUNNING
3535. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3536. WIN32_EXIT_CODE : 0 (0x0)
3537. SERVICE_EXIT_CODE : 0 (0x0)
3538. CHECKPOINT : 0x0
3539. WAIT_HINT : 0x0
3540. PID : 3460
3541. FLAGS :
3542.  
3543. SERVICE_NAME: WdiSystemHost
3544. DISPLAY_NAME: Diagnostic System Host
3545. TYPE : 30 WIN32
3546. STATE : 4 RUNNING
3547. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3548. WIN32_EXIT_CODE : 0 (0x0)
3549. SERVICE_EXIT_CODE : 0 (0x0)
3550. CHECKPOINT : 0x0
3551. WAIT_HINT : 0x0
3552. PID : 5176
3553. FLAGS :
3554.  
3555. SERVICE_NAME: WinDefend
3556. DISPLAY_NAME: Windows Defender Antivirus Service
3557. TYPE : 10 WIN32_OWN_PROCESS
3558. STATE : 4 RUNNING
3559. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3560. WIN32_EXIT_CODE : 0 (0x0)
3561. SERVICE_EXIT_CODE : 0 (0x0)
3562. CHECKPOINT : 0x0
3563. WAIT_HINT : 0x0
3564. PID : 3344
3565. FLAGS :
3566.  
3567. SERVICE_NAME: WinHttpAutoProxySvc
3568. DISPLAY_NAME: WinHTTP Web Proxy Auto-Discovery Service
3569. TYPE : 30 WIN32
3570. STATE : 4 RUNNING
3571. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3572. WIN32_EXIT_CODE : 0 (0x0)
3573. SERVICE_EXIT_CODE : 0 (0x0)
3574. CHECKPOINT : 0x0
3575. WAIT_HINT : 0x0
3576. PID : 3076
3577. FLAGS :
3578.  
3579. SERVICE_NAME: Winmgmt
3580. DISPLAY_NAME: Windows Management Instrumentation
3581. TYPE : 30 WIN32
3582. STATE : 4 RUNNING
3583. (STOPPABLE, PAUSABLE, ACCEPTS_SHUTDOWN)
3584. WIN32_EXIT_CODE : 0 (0x0)
3585. SERVICE_EXIT_CODE : 0 (0x0)
3586. CHECKPOINT : 0x0
3587. WAIT_HINT : 0x0
3588. PID : 2152
3589. FLAGS :
3590.  
3591. SERVICE_NAME: WlanSvc
3592. DISPLAY_NAME: WLAN AutoConfig
3593. TYPE : 10 WIN32_OWN_PROCESS
3594. STATE : 4 RUNNING
3595. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3596. WIN32_EXIT_CODE : 0 (0x0)
3597. SERVICE_EXIT_CODE : 0 (0x0)
3598. CHECKPOINT : 0x0
3599. WAIT_HINT : 0x0
3600. PID : 2612
3601. FLAGS :
3602.  
3603. SERVICE_NAME: WpnService
3604. DISPLAY_NAME: Windows Push Notifications System Service
3605. TYPE : 30 WIN32
3606. STATE : 4 RUNNING
3607. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3608. WIN32_EXIT_CODE : 0 (0x0)
3609. SERVICE_EXIT_CODE : 0 (0x0)
3610. CHECKPOINT : 0x0
3611. WAIT_HINT : 0x0
3612. PID : 3040
3613. FLAGS :
3614.  
3615. SERVICE_NAME: wscsvc
3616. DISPLAY_NAME: Security Center
3617. TYPE : 30 WIN32
3618. STATE : 4 RUNNING
3619. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3620. WIN32_EXIT_CODE : 0 (0x0)
3621. SERVICE_EXIT_CODE : 0 (0x0)
3622. CHECKPOINT : 0x0
3623. WAIT_HINT : 0x0
3624. PID : 8644
3625. FLAGS :
3626.  
3627. SERVICE_NAME: WSearch
3628. DISPLAY_NAME: Windows Search
3629. TYPE : 10 WIN32_OWN_PROCESS
3630. STATE : 4 RUNNING
3631. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
3632. WIN32_EXIT_CODE : 0 (0x0)
3633. SERVICE_EXIT_CODE : 0 (0x0)
3634. CHECKPOINT : 0x0
3635. WAIT_HINT : 0x0
3636. PID : 4320
3637. FLAGS :
3638.  
3639. SERVICE_NAME: CDPUserSvc_3875f
3640. DISPLAY_NAME: Connected Devices Platform User Service_3875f
3641. TYPE : f0 ERROR
3642. STATE : 4 RUNNING
3643. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3644. WIN32_EXIT_CODE : 0 (0x0)
3645. SERVICE_EXIT_CODE : 0 (0x0)
3646. CHECKPOINT : 0x0
3647. WAIT_HINT : 0x0
3648. PID : 4708
3649. FLAGS :
3650.  
3651. SERVICE_NAME: OneSyncSvc_3875f
3652. DISPLAY_NAME: Sync Host_3875f
3653. TYPE : e0 USER_SHARE_PROCESS INSTANCE
3654. STATE : 4 RUNNING
3655. (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
3656. WIN32_EXIT_CODE : 0 (0x0)
3657. SERVICE_EXIT_CODE : 0 (0x0)
3658. CHECKPOINT : 0x0
3659. WAIT_HINT : 0x0
3660. PID : 4372
3661. FLAGS :
3662.  
3663. SERVICE_NAME: WpnUserService_3875f
3664. DISPLAY_NAME: Windows Push Notifications User Service_3875f
3665. TYPE : f0 ERROR
3666. STATE : 4 RUNNING
3667. (STOPPABLE, NOT_PAUSABLE, ACCEPTS_PRESHUTDOWN)
3668. WIN32_EXIT_CODE : 0 (0x0)
3669. SERVICE_EXIT_CODE : 0 (0x0)
3670. CHECKPOINT : 0x0
3671. WAIT_HINT : 0x0
3672. PID : 4748
3673. FLAGS :
3674.  
3675. ******************************************************************************
3676. Scheduled task list
3677. ******************************************************************************
3678.  
3679. Folder: \
3680. HostName: DESKTOP-GU6TEMK
3681. TaskName: \AutoKMS
3682. Next Run Time: 30/05/2017 14:50:01
3683. Status: Ready
3684. Logon Mode: Interactive/Background
3685.  
3686. HostName: DESKTOP-GU6TEMK
3687. TaskName: \AutoKMS
3688. Next Run Time: 30/05/2017 14:50:01
3689. Status: Ready
3690. Logon Mode: Interactive/Background
3691.  
3692. HostName: DESKTOP-GU6TEMK
3693. TaskName: \AutoKMS
3694. Next Run Time: 30/05/2017 14:50:01
3695. Status: Ready
3696. Logon Mode: Interactive/Background
3697.  
3698. HostName: DESKTOP-GU6TEMK
3699. TaskName: \DriverToolkit Autorun
3700. Next Run Time: N/A
3701. Status: Running
3702. Logon Mode: Interactive only
3703.  
3704. HostName: DESKTOP-GU6TEMK
3705. TaskName: \GoogleUpdateTaskMachineCore
3706. Next Run Time: 29/05/2017 17:55:17
3707. Status: Ready
3708. Logon Mode: Interactive/Background
3709.  
3710. HostName: DESKTOP-GU6TEMK
3711. TaskName: \GoogleUpdateTaskMachineCore
3712. Next Run Time: 29/05/2017 17:55:17
3713. Status: Ready
3714. Logon Mode: Interactive/Background
3715.  
3716. HostName: DESKTOP-GU6TEMK
3717. TaskName: \GoogleUpdateTaskMachineUA
3718. Next Run Time: 29/05/2017 15:55:17
3719. Status: Ready
3720. Logon Mode: Interactive/Background
3721.  
3722. HostName: DESKTOP-GU6TEMK
3723. TaskName: \OneDrive Standalone Update Task v2
3724. Next Run Time: 30/05/2017 13:28:17
3725. Status: Ready
3726. Logon Mode: Interactive only
3727.  
3728. HostName: DESKTOP-GU6TEMK
3729. TaskName: \Reimage Reminder
3730. Next Run Time: 31/05/2017 21:05:00
3731. Status: Ready
3732. Logon Mode: Interactive only
3733.  
3734. HostName: DESKTOP-GU6TEMK
3735. TaskName: \ReimageUpdater
3736. Next Run Time: 29/05/2017 15:05:12
3737. Status: Ready
3738. Logon Mode: Interactive only
3739.  
3740. HostName: DESKTOP-GU6TEMK
3741. TaskName: \ReimageUpdater
3742. Next Run Time: 29/05/2017 15:05:12
3743. Status: Ready
3744. Logon Mode: Interactive only
3745.  
3746. Folder: \Microsoft
3747. INFO: There are no scheduled tasks presently available at your access level.
3748.  
3749. Folder: \Microsoft\Windows
3750. INFO: There are no scheduled tasks presently available at your access level.
3751.  
3752. Folder: \Microsoft\Windows\.NET Framework
3753. HostName: DESKTOP-GU6TEMK
3754. TaskName: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319
3755. Next Run Time: N/A
3756. Status: Ready
3757. Logon Mode: Interactive/Background
3758.  
3759. HostName: DESKTOP-GU6TEMK
3760. TaskName: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64
3761. Next Run Time: N/A
3762. Status: Ready
3763. Logon Mode: Interactive/Background
3764.  
3765. HostName: DESKTOP-GU6TEMK
3766. TaskName: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical
3767. Next Run Time: N/A
3768. Status: Disabled
3769. Logon Mode: Interactive/Background
3770.  
3771. HostName: DESKTOP-GU6TEMK
3772. TaskName: \Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical
3773. Next Run Time: N/A
3774. Status: Disabled
3775. Logon Mode: Interactive/Background
3776.  
3777. Folder: \Microsoft\Windows\Active Directory Rights Management Services Client
3778. HostName: DESKTOP-GU6TEMK
3779. TaskName: \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
3780. Next Run Time: N/A
3781. Status: Disabled
3782. Logon Mode: Interactive/Background
3783.  
3784. HostName: DESKTOP-GU6TEMK
3785. TaskName: \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
3786. Next Run Time: N/A
3787. Status: Disabled
3788. Logon Mode: Interactive/Background
3789.  
3790. HostName: DESKTOP-GU6TEMK
3791. TaskName: \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)
3792. Next Run Time: N/A
3793. Status: Ready
3794. Logon Mode: Interactive/Background
3795.  
3796. Folder: \Microsoft\Windows\AppID
3797. HostName: DESKTOP-GU6TEMK
3798. TaskName: \Microsoft\Windows\AppID\EDP Policy Manager
3799. Next Run Time: N/A
3800. Status: Ready
3801. Logon Mode: Interactive/Background
3802.  
3803. HostName: DESKTOP-GU6TEMK
3804. TaskName: \Microsoft\Windows\AppID\EDP Policy Manager
3805. Next Run Time: N/A
3806. Status: Ready
3807. Logon Mode: Interactive/Background
3808.  
3809. HostName: DESKTOP-GU6TEMK
3810. TaskName: \Microsoft\Windows\AppID\PolicyConverter
3811. Next Run Time: N/A
3812. Status: Disabled
3813. Logon Mode: Interactive/Background
3814.  
3815. HostName: DESKTOP-GU6TEMK
3816. TaskName: \Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck
3817. Next Run Time: N/A
3818. Status: Disabled
3819. Logon Mode: Interactive/Background
3820.  
3821. Folder: \Microsoft\Windows\Application Experience
3822. HostName: DESKTOP-GU6TEMK
3823. TaskName: \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser
3824. Next Run Time: 30/05/2017 04:18:39
3825. Status: Ready
3826. Logon Mode: Interactive/Background
3827.  
3828. HostName: DESKTOP-GU6TEMK
3829. TaskName: \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser
3830. Next Run Time: 30/05/2017 03:04:04
3831. Status: Ready
3832. Logon Mode: Interactive/Background
3833.  
3834. HostName: DESKTOP-GU6TEMK
3835. TaskName: \Microsoft\Windows\Application Experience\ProgramDataUpdater
3836. Next Run Time: N/A
3837. Status: Ready
3838. Logon Mode: Interactive/Background
3839.  
3840. HostName: DESKTOP-GU6TEMK
3841. TaskName: \Microsoft\Windows\Application Experience\StartupAppTask
3842. Next Run Time: N/A
3843. Status: Ready
3844. Logon Mode: Interactive/Background
3845.  
3846. Folder: \Microsoft\Windows\ApplicationData
3847. HostName: DESKTOP-GU6TEMK
3848. TaskName: \Microsoft\Windows\ApplicationData\appuriverifierdaily
3849. Next Run Time: 30/05/2017 03:00:00
3850. Status: Ready
3851. Logon Mode: Interactive/Background
3852.  
3853. HostName: DESKTOP-GU6TEMK
3854. TaskName: \Microsoft\Windows\ApplicationData\appuriverifierinstall
3855. Next Run Time: 03/06/2017 03:00:00
3856. Status: Ready
3857. Logon Mode: Interactive/Background
3858.  
3859. HostName: DESKTOP-GU6TEMK
3860. TaskName: \Microsoft\Windows\ApplicationData\appuriverifierinstall
3861. Next Run Time: 03/06/2017 03:00:00
3862. Status: Ready
3863. Logon Mode: Interactive/Background
3864.  
3865. HostName: DESKTOP-GU6TEMK
3866. TaskName: \Microsoft\Windows\ApplicationData\CleanupTemporaryState
3867. Next Run Time: N/A
3868. Status: Ready
3869. Logon Mode: Interactive/Background
3870.  
3871. HostName: DESKTOP-GU6TEMK
3872. TaskName: \Microsoft\Windows\ApplicationData\DsSvcCleanup
3873. Next Run Time: N/A
3874. Status: Ready
3875. Logon Mode: Interactive/Background
3876.  
3877. Folder: \Microsoft\Windows\AppxDeploymentClient
3878. HostName: DESKTOP-GU6TEMK
3879. TaskName: \Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup
3880. Next Run Time: N/A
3881. Status: Disabled
3882. Logon Mode: Interactive/Background
3883.  
3884. Folder: \Microsoft\Windows\Autochk
3885. HostName: DESKTOP-GU6TEMK
3886. TaskName: \Microsoft\Windows\Autochk\Proxy
3887. Next Run Time: N/A
3888. Status: Ready
3889. Logon Mode: Interactive/Background
3890.  
3891. Folder: \Microsoft\Windows\BitLocker
3892. HostName: DESKTOP-GU6TEMK
3893. TaskName: \Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh
3894. Next Run Time: N/A
3895. Status: Ready
3896. Logon Mode: Interactive/Background
3897.  
3898. Folder: \Microsoft\Windows\Bluetooth
3899. HostName: DESKTOP-GU6TEMK
3900. TaskName: \Microsoft\Windows\Bluetooth\UninstallDeviceTask
3901. Next Run Time: N/A
3902. Status: Ready
3903. Logon Mode: Interactive/Background
3904.  
3905. Folder: \Microsoft\Windows\BrokerInfrastructure
3906. HostName: DESKTOP-GU6TEMK
3907. TaskName: \Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask
3908. Next Run Time: N/A
3909. Status: Ready
3910. Logon Mode: Interactive/Background
3911.  
3912. Folder: \Microsoft\Windows\CertificateServicesClient
3913. HostName: DESKTOP-GU6TEMK
3914. TaskName: \Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask
3915. Next Run Time: N/A
3916. Status: Ready
3917. Logon Mode: Interactive/Background
3918.  
3919. HostName: DESKTOP-GU6TEMK
3920. TaskName: \Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask
3921. Next Run Time: N/A
3922. Status: Ready
3923. Logon Mode: Interactive/Background
3924.  
3925. HostName: DESKTOP-GU6TEMK
3926. TaskName: \Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
3927. Next Run Time: N/A
3928. Status: Ready
3929. Logon Mode: Interactive/Background
3930.  
3931. HostName: DESKTOP-GU6TEMK
3932. TaskName: \Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
3933. Next Run Time: N/A
3934. Status: Ready
3935. Logon Mode: Interactive/Background
3936.  
3937. HostName: DESKTOP-GU6TEMK
3938. TaskName: \Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
3939. Next Run Time: N/A
3940. Status: Ready
3941. Logon Mode: Interactive/Background
3942.  
3943. HostName: DESKTOP-GU6TEMK
3944. TaskName: \Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
3945. Next Run Time: N/A
3946. Status: Ready
3947. Logon Mode: Interactive/Background
3948.  
3949. HostName: DESKTOP-GU6TEMK
3950. TaskName: \Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
3951. Next Run Time: N/A
3952. Status: Ready
3953. Logon Mode: Interactive/Background
3954.  
3955. HostName: DESKTOP-GU6TEMK
3956. TaskName: \Microsoft\Windows\CertificateServicesClient\SystemTask
3957. Next Run Time: N/A
3958. Status: Ready
3959. Logon Mode: Interactive/Background
3960.  
3961. HostName: DESKTOP-GU6TEMK
3962. TaskName: \Microsoft\Windows\CertificateServicesClient\SystemTask
3963. Next Run Time: N/A
3964. Status: Ready
3965. Logon Mode: Interactive/Background
3966.  
3967. HostName: DESKTOP-GU6TEMK
3968. TaskName: \Microsoft\Windows\CertificateServicesClient\SystemTask
3969. Next Run Time: N/A
3970. Status: Ready
3971. Logon Mode: Interactive/Background
3972.  
3973. HostName: DESKTOP-GU6TEMK
3974. TaskName: \Microsoft\Windows\CertificateServicesClient\UserTask
3975. Next Run Time: N/A
3976. Status: Ready
3977. Logon Mode: Interactive/Background
3978.  
3979. HostName: DESKTOP-GU6TEMK
3980. TaskName: \Microsoft\Windows\CertificateServicesClient\UserTask
3981. Next Run Time: N/A
3982. Status: Ready
3983. Logon Mode: Interactive/Background
3984.  
3985. HostName: DESKTOP-GU6TEMK
3986. TaskName: \Microsoft\Windows\CertificateServicesClient\UserTask
3987. Next Run Time: N/A
3988. Status: Ready
3989. Logon Mode: Interactive/Background
3990.  
3991. HostName: DESKTOP-GU6TEMK
3992. TaskName: \Microsoft\Windows\CertificateServicesClient\UserTask
3993. Next Run Time: N/A
3994. Status: Ready
3995. Logon Mode: Interactive/Background
3996.  
3997. HostName: DESKTOP-GU6TEMK
3998. TaskName: \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
3999. Next Run Time: N/A
4000. Status: Ready
4001. Logon Mode: Interactive/Background
4002.  
4003. HostName: DESKTOP-GU6TEMK
4004. TaskName: \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
4005. Next Run Time: N/A
4006. Status: Ready
4007. Logon Mode: Interactive/Background
4008.  
4009. Folder: \Microsoft\Windows\Chkdsk
4010. HostName: DESKTOP-GU6TEMK
4011. TaskName: \Microsoft\Windows\Chkdsk\ProactiveScan
4012. Next Run Time: N/A
4013. Status: Ready
4014. Logon Mode: Interactive/Background
4015.  
4016. Folder: \Microsoft\Windows\Clip
4017. HostName: DESKTOP-GU6TEMK
4018. TaskName: \Microsoft\Windows\Clip\License Validation
4019. Next Run Time: N/A
4020. Status: Disabled
4021. Logon Mode: Interactive/Background
4022.  
4023. Folder: \Microsoft\Windows\CloudExperienceHost
4024. HostName: DESKTOP-GU6TEMK
4025. TaskName: \Microsoft\Windows\CloudExperienceHost\CreateObjectTask
4026. Next Run Time: N/A
4027. Status: Ready
4028. Logon Mode: Interactive/Background
4029.  
4030. Folder: \Microsoft\Windows\Customer Experience Improvement Program
4031. HostName: DESKTOP-GU6TEMK
4032. TaskName: \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
4033. Next Run Time: 29/05/2017 18:00:00
4034. Status: Ready
4035. Logon Mode: Interactive/Background
4036.  
4037. HostName: DESKTOP-GU6TEMK
4038. TaskName: \Microsoft\Windows\Customer Experience Improvement Program\KernelCeipTask
4039. Next Run Time: N/A
4040. Status: Ready
4041. Logon Mode: Interactive/Background
4042.  
4043. HostName: DESKTOP-GU6TEMK
4044. TaskName: \Microsoft\Windows\Customer Experience Improvement Program\UsbCeip
4045. Next Run Time: N/A
4046. Status: Ready
4047. Logon Mode: Interactive/Background
4048.  
4049. Folder: \Microsoft\Windows\Data Integrity Scan
4050. HostName: DESKTOP-GU6TEMK
4051. TaskName: \Microsoft\Windows\Data Integrity Scan\Data Integrity Scan
4052. Next Run Time: 17/06/2017 12:31:51
4053. Status: Ready
4054. Logon Mode: Interactive/Background
4055.  
4056. HostName: DESKTOP-GU6TEMK
4057. TaskName: \Microsoft\Windows\Data Integrity Scan\Data Integrity Scan
4058. Next Run Time: 16/06/2017 08:23:46
4059. Status: Ready
4060. Logon Mode: Interactive/Background
4061.  
4062. HostName: DESKTOP-GU6TEMK
4063. TaskName: \Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery
4064. Next Run Time: N/A
4065. Status: Ready
4066. Logon Mode: Interactive/Background
4067.  
4068. Folder: \Microsoft\Windows\Defrag
4069. HostName: DESKTOP-GU6TEMK
4070. TaskName: \Microsoft\Windows\Defrag\ScheduledDefrag
4071. Next Run Time: N/A
4072. Status: Disabled
4073. Logon Mode: Interactive/Background
4074.  
4075. Folder: \Microsoft\Windows\Device Information
4076. HostName: DESKTOP-GU6TEMK
4077. TaskName: \Microsoft\Windows\Device Information\Device
4078. Next Run Time: 30/05/2017 03:40:03
4079. Status: Ready
4080. Logon Mode: Interactive/Background
4081.  
4082. HostName: DESKTOP-GU6TEMK
4083. TaskName: \Microsoft\Windows\Device Information\Device
4084. Next Run Time: 30/05/2017 04:48:57
4085. Status: Ready
4086. Logon Mode: Interactive/Background
4087.  
4088. Folder: \Microsoft\Windows\Device Setup
4089. HostName: DESKTOP-GU6TEMK
4090. TaskName: \Microsoft\Windows\Device Setup\Metadata Refresh
4091. Next Run Time: N/A
4092. Status: Ready
4093. Logon Mode: Interactive/Background
4094.  
4095. Folder: \Microsoft\Windows\DeviceDirectoryClient
4096. HostName: DESKTOP-GU6TEMK
4097. TaskName: \Microsoft\Windows\DeviceDirectoryClient\HandleCommand
4098. Next Run Time: N/A
4099. Status: Ready
4100. Logon Mode: Interactive/Background
4101.  
4102. HostName: DESKTOP-GU6TEMK
4103. TaskName: \Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand
4104. Next Run Time: N/A
4105. Status: Ready
4106. Logon Mode: Interactive/Background
4107.  
4108. HostName: DESKTOP-GU6TEMK
4109. TaskName: \Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck
4110. Next Run Time: 02/06/2017 12:15:46
4111. Status: Ready
4112. Logon Mode: Interactive/Background
4113.  
4114. HostName: DESKTOP-GU6TEMK
4115. TaskName: \Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession
4116. Next Run Time: N/A
4117. Status: Ready
4118. Logon Mode: Interactive/Background
4119.  
4120. HostName: DESKTOP-GU6TEMK
4121. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange
4122. Next Run Time: N/A
4123. Status: Ready
4124. Logon Mode: Interactive/Background
4125.  
4126. HostName: DESKTOP-GU6TEMK
4127. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange
4128. Next Run Time: N/A
4129. Status: Ready
4130. Logon Mode: Interactive/Background
4131.  
4132. HostName: DESKTOP-GU6TEMK
4133. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange
4134. Next Run Time: N/A
4135. Status: Disabled
4136. Logon Mode: Interactive/Background
4137.  
4138. HostName: DESKTOP-GU6TEMK
4139. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24
4140. Next Run Time: N/A
4141. Status: Disabled
4142. Logon Mode: Interactive/Background
4143.  
4144. HostName: DESKTOP-GU6TEMK
4145. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange
4146. Next Run Time: N/A
4147. Status: Ready
4148. Logon Mode: Interactive/Background
4149.  
4150. HostName: DESKTOP-GU6TEMK
4151. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange
4152. Next Run Time: N/A
4153. Status: Ready
4154. Logon Mode: Interactive/Background
4155.  
4156. HostName: DESKTOP-GU6TEMK
4157. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged
4158. Next Run Time: N/A
4159. Status: Ready
4160. Logon Mode: Interactive/Background
4161.  
4162. HostName: DESKTOP-GU6TEMK
4163. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange
4164. Next Run Time: N/A
4165. Status: Ready
4166. Logon Mode: Interactive/Background
4167.  
4168. HostName: DESKTOP-GU6TEMK
4169. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange
4170. Next Run Time: N/A
4171. Status: Ready
4172. Logon Mode: Interactive/Background
4173.  
4174. HostName: DESKTOP-GU6TEMK
4175. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice
4176. Next Run Time: N/A
4177. Status: Ready
4178. Logon Mode: Interactive/Background
4179.  
4180. HostName: DESKTOP-GU6TEMK
4181. TaskName: \Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice
4182. Next Run Time: N/A
4183. Status: Ready
4184. Logon Mode: Interactive/Background
4185.  
4186. Folder: \Microsoft\Windows\Diagnosis
4187. HostName: DESKTOP-GU6TEMK
4188. TaskName: \Microsoft\Windows\Diagnosis\Scheduled
4189. Next Run Time: N/A
4190. Status: Ready
4191. Logon Mode: Interactive/Background
4192.  
4193. Folder: \Microsoft\Windows\DiskCleanup
4194. HostName: DESKTOP-GU6TEMK
4195. TaskName: \Microsoft\Windows\DiskCleanup\SilentCleanup
4196. Next Run Time: N/A
4197. Status: Ready
4198. Logon Mode: Interactive/Background
4199.  
4200. Folder: \Microsoft\Windows\DiskDiagnostic
4201. HostName: DESKTOP-GU6TEMK
4202. TaskName: \Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector
4203. Next Run Time: N/A
4204. Status: Ready
4205. Logon Mode: Interactive/Background
4206.  
4207. HostName: DESKTOP-GU6TEMK
4208. TaskName: \Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver
4209. Next Run Time: N/A
4210. Status: Disabled
4211. Logon Mode: Interactive/Background
4212.  
4213. Folder: \Microsoft\Windows\DiskFootprint
4214. HostName: DESKTOP-GU6TEMK
4215. TaskName: \Microsoft\Windows\DiskFootprint\Diagnostics
4216. Next Run Time: N/A
4217. Status: Ready
4218. Logon Mode: Interactive/Background
4219.  
4220. HostName: DESKTOP-GU6TEMK
4221. TaskName: \Microsoft\Windows\DiskFootprint\StorageSense
4222. Next Run Time: N/A
4223. Status: Ready
4224. Logon Mode: Interactive/Background
4225.  
4226. Folder: \Microsoft\Windows\DUSM
4227. HostName: DESKTOP-GU6TEMK
4228. TaskName: \Microsoft\Windows\DUSM\dusmtask
4229. Next Run Time: N/A
4230. Status: Ready
4231. Logon Mode: Interactive/Background
4232.  
4233. Folder: \Microsoft\Windows\EDP
4234. HostName: DESKTOP-GU6TEMK
4235. TaskName: \Microsoft\Windows\EDP\EDP App Launch Task
4236. Next Run Time: N/A
4237. Status: Ready
4238. Logon Mode: Interactive/Background
4239.  
4240. HostName: DESKTOP-GU6TEMK
4241. TaskName: \Microsoft\Windows\EDP\EDP Auth Task
4242. Next Run Time: N/A
4243. Status: Ready
4244. Logon Mode: Interactive/Background
4245.  
4246. HostName: DESKTOP-GU6TEMK
4247. TaskName: \Microsoft\Windows\EDP\EDP Inaccessible Credentials Task
4248. Next Run Time: N/A
4249. Status: Ready
4250. Logon Mode: Interactive/Background
4251.  
4252. HostName: DESKTOP-GU6TEMK
4253. TaskName: \Microsoft\Windows\EDP\StorageCardEncryption Task
4254. Next Run Time: N/A
4255. Status: Ready
4256. Logon Mode: Interactive/Background
4257.  
4258. Folder: \Microsoft\Windows\Feedback
4259. INFO: There are no scheduled tasks presently available at your access level.
4260.  
4261. Folder: \Microsoft\Windows\Feedback\Siuf
4262. HostName: DESKTOP-GU6TEMK
4263. TaskName: \Microsoft\Windows\Feedback\Siuf\DmClient
4264. Next Run Time: N/A
4265. Status: Ready
4266. Logon Mode: Interactive/Background
4267.  
4268. HostName: DESKTOP-GU6TEMK
4269. TaskName: \Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload
4270. Next Run Time: N/A
4271. Status: Ready
4272. Logon Mode: Interactive/Background
4273.  
4274. Folder: \Microsoft\Windows\FileHistory
4275. HostName: DESKTOP-GU6TEMK
4276. TaskName: \Microsoft\Windows\FileHistory\File History (maintenance mode)
4277. Next Run Time: N/A
4278. Status: Ready
4279. Logon Mode: Interactive/Background
4280.  
4281. Folder: \Microsoft\Windows\LanguageComponentsInstaller
4282. HostName: DESKTOP-GU6TEMK
4283. TaskName: \Microsoft\Windows\LanguageComponentsInstaller\Installation
4284. Next Run Time: N/A
4285. Status: Ready
4286. Logon Mode: Interactive/Background
4287.  
4288. HostName: DESKTOP-GU6TEMK
4289. TaskName: \Microsoft\Windows\LanguageComponentsInstaller\Installation
4290. Next Run Time: N/A
4291. Status: Ready
4292. Logon Mode: Interactive/Background
4293.  
4294. HostName: DESKTOP-GU6TEMK
4295. TaskName: \Microsoft\Windows\LanguageComponentsInstaller\Uninstallation
4296. Next Run Time: N/A
4297. Status: Ready
4298. Logon Mode: Interactive/Background
4299.  
4300. Folder: \Microsoft\Windows\License Manager
4301. HostName: DESKTOP-GU6TEMK
4302. TaskName: \Microsoft\Windows\License Manager\TempSignedLicenseExchange
4303. Next Run Time: N/A
4304. Status: Ready
4305. Logon Mode: Interactive/Background
4306.  
4307. Folder: \Microsoft\Windows\Live
4308. INFO: There are no scheduled tasks presently available at your access level.
4309.  
4310. Folder: \Microsoft\Windows\Location
4311. HostName: DESKTOP-GU6TEMK
4312. TaskName: \Microsoft\Windows\Location\Notifications
4313. Next Run Time: N/A
4314. Status: Ready
4315. Logon Mode: Interactive/Background
4316.  
4317. HostName: DESKTOP-GU6TEMK
4318. TaskName: \Microsoft\Windows\Location\WindowsActionDialog
4319. Next Run Time: N/A
4320. Status: Ready
4321. Logon Mode: Interactive/Background
4322.  
4323. Folder: \Microsoft\Windows\Maintenance
4324. HostName: DESKTOP-GU6TEMK
4325. TaskName: \Microsoft\Windows\Maintenance\WinSAT
4326. Next Run Time: N/A
4327. Status: Ready
4328. Logon Mode: Interactive/Background
4329.  
4330. Folder: \Microsoft\Windows\Management
4331. INFO: There are no scheduled tasks presently available at your access level.
4332.  
4333. Folder: \Microsoft\Windows\Management\Provisioning
4334. HostName: DESKTOP-GU6TEMK
4335. TaskName: \Microsoft\Windows\Management\Provisioning\Cellular
4336. Next Run Time: N/A
4337. Status: Ready
4338. Logon Mode: Interactive/Background
4339.  
4340. HostName: DESKTOP-GU6TEMK
4341. TaskName: \Microsoft\Windows\Management\Provisioning\Logon
4342. Next Run Time: N/A
4343. Status: Ready
4344. Logon Mode: Interactive/Background
4345.  
4346. Folder: \Microsoft\Windows\Maps
4347. HostName: DESKTOP-GU6TEMK
4348. TaskName: \Microsoft\Windows\Maps\MapsToastTask
4349. Next Run Time: N/A
4350. Status: Ready
4351. Logon Mode: Interactive/Background
4352.  
4353. HostName: DESKTOP-GU6TEMK
4354. TaskName: \Microsoft\Windows\Maps\MapsUpdateTask
4355. Next Run Time: N/A
4356. Status: Disabled
4357. Logon Mode: Interactive/Background
4358.  
4359. Folder: \Microsoft\Windows\MemoryDiagnostic
4360. HostName: DESKTOP-GU6TEMK
4361. TaskName: \Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
4362. Next Run Time: N/A
4363. Status: Ready
4364. Logon Mode: Interactive/Background
4365.  
4366. HostName: DESKTOP-GU6TEMK
4367. TaskName: \Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
4368. Next Run Time: N/A
4369. Status: Ready
4370. Logon Mode: Interactive/Background
4371.  
4372. HostName: DESKTOP-GU6TEMK
4373. TaskName: \Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
4374. Next Run Time: N/A
4375. Status: Ready
4376. Logon Mode: Interactive/Background
4377.  
4378. HostName: DESKTOP-GU6TEMK
4379. TaskName: \Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
4380. Next Run Time: N/A
4381. Status: Ready
4382. Logon Mode: Interactive/Background
4383.  
4384. HostName: DESKTOP-GU6TEMK
4385. TaskName: \Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic
4386. Next Run Time: N/A
4387. Status: Ready
4388. Logon Mode: Interactive/Background
4389.  
4390. Folder: \Microsoft\Windows\Mobile Broadband Accounts
4391. HostName: DESKTOP-GU6TEMK
4392. TaskName: \Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser
4393. Next Run Time: N/A
4394. Status: Ready
4395. Logon Mode: Interactive/Background
4396.  
4397. Folder: \Microsoft\Windows\MUI
4398. HostName: DESKTOP-GU6TEMK
4399. TaskName: \Microsoft\Windows\MUI\LPRemove
4400. Next Run Time: N/A
4401. Status: Ready
4402. Logon Mode: Interactive/Background
4403.  
4404. Folder: \Microsoft\Windows\Multimedia
4405. HostName: DESKTOP-GU6TEMK
4406. TaskName: \Microsoft\Windows\Multimedia\SystemSoundsService
4407. Next Run Time: N/A
4408. Status: Running
4409. Logon Mode: Interactive/Background
4410.  
4411. Folder: \Microsoft\Windows\NetTrace
4412. HostName: DESKTOP-GU6TEMK
4413. TaskName: \Microsoft\Windows\NetTrace\GatherNetworkInfo
4414. Next Run Time: N/A
4415. Status: Ready
4416. Logon Mode: Interactive/Background
4417.  
4418. Folder: \Microsoft\Windows\NlaSvc
4419. HostName: DESKTOP-GU6TEMK
4420. TaskName: \Microsoft\Windows\NlaSvc\WiFiTask
4421. Next Run Time: N/A
4422. Status: Ready
4423. Logon Mode: Interactive/Background
4424.  
4425. Folder: \Microsoft\Windows\PI
4426. HostName: DESKTOP-GU6TEMK
4427. TaskName: \Microsoft\Windows\PI\Secure-Boot-Update
4428. Next Run Time: N/A
4429. Status: Ready
4430. Logon Mode: Interactive/Background
4431.  
4432. HostName: DESKTOP-GU6TEMK
4433. TaskName: \Microsoft\Windows\PI\Sqm-Tasks
4434. Next Run Time: N/A
4435. Status: Ready
4436. Logon Mode: Interactive/Background
4437.  
4438. Folder: \Microsoft\Windows\PLA
4439. INFO: There are no scheduled tasks presently available at your access level.
4440.  
4441. Folder: \Microsoft\Windows\Plug and Play
4442. HostName: DESKTOP-GU6TEMK
4443. TaskName: \Microsoft\Windows\Plug and Play\Device Install Group Policy
4444. Next Run Time: N/A
4445. Status: Ready
4446. Logon Mode: Interactive/Background
4447.  
4448. HostName: DESKTOP-GU6TEMK
4449. TaskName: \Microsoft\Windows\Plug and Play\Device Install Reboot Required
4450. Next Run Time: N/A
4451. Status: Ready
4452. Logon Mode: Interactive/Background
4453.  
4454. HostName: DESKTOP-GU6TEMK
4455. TaskName: \Microsoft\Windows\Plug and Play\Device Install Reboot Required
4456. Next Run Time: N/A
4457. Status: Ready
4458. Logon Mode: Interactive/Background
4459.  
4460. HostName: DESKTOP-GU6TEMK
4461. TaskName: \Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers
4462. Next Run Time: N/A
4463. Status: Ready
4464. Logon Mode: Interactive/Background
4465.  
4466. Folder: \Microsoft\Windows\Power Efficiency Diagnostics
4467. HostName: DESKTOP-GU6TEMK
4468. TaskName: \Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
4469. Next Run Time: N/A
4470. Status: Ready
4471. Logon Mode: Interactive/Background
4472.  
4473. Folder: \Microsoft\Windows\Ras
4474. HostName: DESKTOP-GU6TEMK
4475. TaskName: \Microsoft\Windows\Ras\MobilityManager
4476. Next Run Time: N/A
4477. Status: Ready
4478. Logon Mode: Interactive/Background
4479.  
4480. Folder: \Microsoft\Windows\RecoveryEnvironment
4481. HostName: DESKTOP-GU6TEMK
4482. TaskName: \Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
4483. Next Run Time: N/A
4484. Status: Ready
4485. Logon Mode: Interactive/Background
4486.  
4487. Folder: \Microsoft\Windows\Registry
4488. HostName: DESKTOP-GU6TEMK
4489. TaskName: \Microsoft\Windows\Registry\RegIdleBackup
4490. Next Run Time: N/A
4491. Status: Ready
4492. Logon Mode: Interactive/Background
4493.  
4494. Folder: \Microsoft\Windows\RemoteAssistance
4495. HostName: DESKTOP-GU6TEMK
4496. TaskName: \Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask
4497. Next Run Time: N/A
4498. Status: Ready
4499. Logon Mode: Interactive/Background
4500.  
4501. HostName: DESKTOP-GU6TEMK
4502. TaskName: \Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask
4503. Next Run Time: N/A
4504. Status: Ready
4505. Logon Mode: Interactive/Background
4506.  
4507. Folder: \Microsoft\Windows\RetailDemo
4508. HostName: DESKTOP-GU6TEMK
4509. TaskName: \Microsoft\Windows\RetailDemo\CleanupOfflineContent
4510. Next Run Time: 03/06/2017 19:31:11
4511. Status: Ready
4512. Logon Mode: Interactive/Background
4513.  
4514. Folder: \Microsoft\Windows\Servicing
4515. HostName: DESKTOP-GU6TEMK
4516. TaskName: \Microsoft\Windows\Servicing\StartComponentCleanup
4517. Next Run Time: N/A
4518. Status: Ready
4519. Logon Mode: Interactive/Background
4520.  
4521. Folder: \Microsoft\Windows\SettingSync
4522. HostName: DESKTOP-GU6TEMK
4523. TaskName: \Microsoft\Windows\SettingSync\BackgroundUploadTask
4524. Next Run Time: N/A
4525. Status: Ready
4526. Logon Mode: Interactive/Background
4527.  
4528. HostName: DESKTOP-GU6TEMK
4529. TaskName: \Microsoft\Windows\SettingSync\BackupTask
4530. Next Run Time: N/A
4531. Status: Ready
4532. Logon Mode: Interactive/Background
4533.  
4534. HostName: DESKTOP-GU6TEMK
4535. TaskName: \Microsoft\Windows\SettingSync\NetworkStateChangeTask
4536. Next Run Time: N/A
4537. Status: Ready
4538. Logon Mode: Interactive/Background
4539.  
4540. HostName: DESKTOP-GU6TEMK
4541. TaskName: \Microsoft\Windows\SettingSync\NetworkStateChangeTask
4542. Next Run Time: N/A
4543. Status: Ready
4544. Logon Mode: Interactive/Background
4545.  
4546. Folder: \Microsoft\Windows\Setup
4547. HostName: DESKTOP-GU6TEMK
4548. TaskName: \Microsoft\Windows\Setup\SetupCleanupTask
4549. Next Run Time: 02/06/2017 06:00:00
4550. Status: Ready
4551. Logon Mode: Interactive/Background
4552.  
4553. Folder: \Microsoft\Windows\SharedPC
4554. HostName: DESKTOP-GU6TEMK
4555. TaskName: \Microsoft\Windows\SharedPC\Account Cleanup
4556. Next Run Time: N/A
4557. Status: Disabled
4558. Logon Mode: Interactive/Background
4559.  
4560. Folder: \Microsoft\Windows\Shell
4561. HostName: DESKTOP-GU6TEMK
4562. TaskName: \Microsoft\Windows\Shell\CreateObjectTask
4563. Next Run Time: N/A
4564. Status: Ready
4565. Logon Mode: Interactive/Background
4566.  
4567. HostName: DESKTOP-GU6TEMK
4568. TaskName: \Microsoft\Windows\Shell\FamilySafetyMonitor
4569. Next Run Time: N/A
4570. Status: Ready
4571. Logon Mode: Interactive/Background
4572.  
4573. HostName: DESKTOP-GU6TEMK
4574. TaskName: \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask
4575. Next Run Time: N/A
4576. Status: Disabled
4577. Logon Mode: Interactive/Background
4578.  
4579. HostName: DESKTOP-GU6TEMK
4580. TaskName: \Microsoft\Windows\Shell\FamilySafetyRefreshTask
4581. Next Run Time: N/A
4582. Status: Ready
4583. Logon Mode: Interactive/Background
4584.  
4585. HostName: DESKTOP-GU6TEMK
4586. TaskName: \Microsoft\Windows\Shell\IndexerAutomaticMaintenance
4587. Next Run Time: N/A
4588. Status: Ready
4589. Logon Mode: Interactive/Background
4590.  
4591. Folder: \Microsoft\Windows\SoftwareProtectionPlatform
4592. HostName: DESKTOP-GU6TEMK
4593. TaskName: \Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask
4594. Next Run Time: 28/06/2017 14:45:39
4595. Status: Ready
4596. Logon Mode: Interactive/Background
4597.  
4598. HostName: DESKTOP-GU6TEMK
4599. TaskName: \Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon
4600. Next Run Time: N/A
4601. Status: Disabled
4602. Logon Mode: Interactive/Background
4603.  
4604. HostName: DESKTOP-GU6TEMK
4605. TaskName: \Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork
4606. Next Run Time: N/A
4607. Status: Disabled
4608. Logon Mode: Interactive/Background
4609.  
4610. Folder: \Microsoft\Windows\SpacePort
4611. HostName: DESKTOP-GU6TEMK
4612. TaskName: \Microsoft\Windows\SpacePort\SpaceAgentTask
4613. Next Run Time: N/A
4614. Status: Ready
4615. Logon Mode: Interactive/Background
4616.  
4617. HostName: DESKTOP-GU6TEMK
4618. TaskName: \Microsoft\Windows\SpacePort\SpaceAgentTask
4619. Next Run Time: N/A
4620. Status: Ready
4621. Logon Mode: Interactive/Background
4622.  
4623. HostName: DESKTOP-GU6TEMK
4624. TaskName: \Microsoft\Windows\SpacePort\SpaceManagerTask
4625. Next Run Time: N/A
4626. Status: Ready
4627. Logon Mode: Interactive/Background
4628.  
4629. HostName: DESKTOP-GU6TEMK
4630. TaskName: \Microsoft\Windows\SpacePort\SpaceManagerTask
4631. Next Run Time: N/A
4632. Status: Ready
4633. Logon Mode: Interactive/Background
4634.  
4635. Folder: \Microsoft\Windows\Speech
4636. HostName: DESKTOP-GU6TEMK
4637. TaskName: \Microsoft\Windows\Speech\SpeechModelDownloadTask
4638. Next Run Time: 30/05/2017 00:00:00
4639. Status: Ready
4640. Logon Mode: Interactive/Background
4641.  
4642. Folder: \Microsoft\Windows\Storage Tiers Management
4643. HostName: DESKTOP-GU6TEMK
4644. TaskName: \Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization
4645. Next Run Time: N/A
4646. Status: Ready
4647. Logon Mode: Interactive/Background
4648.  
4649. HostName: DESKTOP-GU6TEMK
4650. TaskName: \Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization
4651. Next Run Time: N/A
4652. Status: Disabled
4653. Logon Mode: Interactive/Background
4654.  
4655. Folder: \Microsoft\Windows\Subscription
4656. HostName: DESKTOP-GU6TEMK
4657. TaskName: \Microsoft\Windows\Subscription\EnableLicenseAcquisition
4658. Next Run Time: N/A
4659. Status: Ready
4660. Logon Mode: Interactive/Background
4661.  
4662. HostName: DESKTOP-GU6TEMK
4663. TaskName: \Microsoft\Windows\Subscription\EnableLicenseAcquisition
4664. Next Run Time: N/A
4665. Status: Ready
4666. Logon Mode: Interactive/Background
4667.  
4668. HostName: DESKTOP-GU6TEMK
4669. TaskName: \Microsoft\Windows\Subscription\EnableLicenseAcquisition
4670. Next Run Time: N/A
4671. Status: Ready
4672. Logon Mode: Interactive/Background
4673.  
4674. HostName: DESKTOP-GU6TEMK
4675. TaskName: \Microsoft\Windows\Subscription\LicenseAcquisition
4676. Next Run Time: N/A
4677. Status: Disabled
4678. Logon Mode: Interactive/Background
4679.  
4680. HostName: DESKTOP-GU6TEMK
4681. TaskName: \Microsoft\Windows\Subscription\LicenseAcquisition
4682. Next Run Time: N/A
4683. Status: Disabled
4684. Logon Mode: Interactive/Background
4685.  
4686. HostName: DESKTOP-GU6TEMK
4687. TaskName: \Microsoft\Windows\Subscription\LicenseAcquisition
4688. Next Run Time: N/A
4689. Status: Disabled
4690. Logon Mode: Interactive/Background
4691.  
4692. Folder: \Microsoft\Windows\Sysmain
4693. HostName: DESKTOP-GU6TEMK
4694. TaskName: \Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
4695. Next Run Time: N/A
4696. Status: Disabled
4697. Logon Mode: Interactive/Background
4698.  
4699. HostName: DESKTOP-GU6TEMK
4700. TaskName: \Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
4701. Next Run Time: N/A
4702. Status: Disabled
4703. Logon Mode: Interactive/Background
4704.  
4705. HostName: DESKTOP-GU6TEMK
4706. TaskName: \Microsoft\Windows\Sysmain\ResPriStaticDbSync
4707. Next Run Time: N/A
4708. Status: Ready
4709. Logon Mode: Interactive/Background
4710.  
4711. HostName: DESKTOP-GU6TEMK
4712. TaskName: \Microsoft\Windows\Sysmain\WsSwapAssessmentTask
4713. Next Run Time: N/A
4714. Status: Ready
4715. Logon Mode: Interactive/Background
4716.  
4717. Folder: \Microsoft\Windows\SystemRestore
4718. HostName: DESKTOP-GU6TEMK
4719. TaskName: \Microsoft\Windows\SystemRestore\SR
4720. Next Run Time: N/A
4721. Status: Ready
4722. Logon Mode: Interactive/Background
4723.  
4724. Folder: \Microsoft\Windows\Task Manager
4725. HostName: DESKTOP-GU6TEMK
4726. TaskName: \Microsoft\Windows\Task Manager\Interactive
4727. Next Run Time: N/A
4728. Status: Ready
4729. Logon Mode: Interactive/Background
4730.  
4731. Folder: \Microsoft\Windows\TextServicesFramework
4732. HostName: DESKTOP-GU6TEMK
4733. TaskName: \Microsoft\Windows\TextServicesFramework\MsCtfMonitor
4734. Next Run Time: N/A
4735. Status: Running
4736. Logon Mode: Interactive/Background
4737.  
4738. Folder: \Microsoft\Windows\Time Synchronization
4739. HostName: DESKTOP-GU6TEMK
4740. TaskName: \Microsoft\Windows\Time Synchronization\ForceSynchronizeTime
4741. Next Run Time: N/A
4742. Status: Ready
4743. Logon Mode: Interactive/Background
4744.  
4745. HostName: DESKTOP-GU6TEMK
4746. TaskName: \Microsoft\Windows\Time Synchronization\SynchronizeTime
4747. Next Run Time: N/A
4748. Status: Ready
4749. Logon Mode: Interactive/Background
4750.  
4751. Folder: \Microsoft\Windows\Time Zone
4752. HostName: DESKTOP-GU6TEMK
4753. TaskName: \Microsoft\Windows\Time Zone\SynchronizeTimeZone
4754. Next Run Time: N/A
4755. Status: Ready
4756. Logon Mode: Interactive/Background
4757.  
4758. Folder: \Microsoft\Windows\TPM
4759. HostName: DESKTOP-GU6TEMK
4760. TaskName: \Microsoft\Windows\TPM\Tpm-HASCertRetr
4761. Next Run Time: N/A
4762. Status: Ready
4763. Logon Mode: Interactive/Background
4764.  
4765. HostName: DESKTOP-GU6TEMK
4766. TaskName: \Microsoft\Windows\TPM\Tpm-Maintenance
4767. Next Run Time: N/A
4768. Status: Ready
4769. Logon Mode: Interactive/Background
4770.  
4771. HostName: DESKTOP-GU6TEMK
4772. TaskName: \Microsoft\Windows\TPM\Tpm-Maintenance
4773. Next Run Time: N/A
4774. Status: Ready
4775. Logon Mode: Interactive/Background
4776.  
4777. HostName: DESKTOP-GU6TEMK
4778. TaskName: \Microsoft\Windows\TPM\Tpm-Maintenance
4779. Next Run Time: N/A
4780. Status: Ready
4781. Logon Mode: Interactive/Background
4782.  
4783. Folder: \Microsoft\Windows\UpdateOrchestrator
4784. HostName: DESKTOP-GU6TEMK
4785. TaskName: \Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install
4786. Next Run Time: N/A
4787. Status: Disabled
4788. Logon Mode: Interactive/Background
4789.  
4790. HostName: DESKTOP-GU6TEMK
4791. TaskName: \Microsoft\Windows\UpdateOrchestrator\Maintenance Install
4792. Next Run Time: N/A
4793. Status: Ready
4794. Logon Mode: Interactive/Background
4795.  
4796. HostName: DESKTOP-GU6TEMK
4797. TaskName: \Microsoft\Windows\UpdateOrchestrator\Policy Install
4798. Next Run Time: N/A
4799. Status: Disabled
4800. Logon Mode: Interactive/Background
4801.  
4802. HostName: DESKTOP-GU6TEMK
4803. TaskName: \Microsoft\Windows\UpdateOrchestrator\Reboot
4804. Next Run Time: N/A
4805. Status: Disabled
4806. Logon Mode: Interactive/Background
4807.  
4808. HostName: DESKTOP-GU6TEMK
4809. TaskName: \Microsoft\Windows\UpdateOrchestrator\Refresh Settings
4810. Next Run Time: 30/05/2017 03:23:34
4811. Status: Ready
4812. Logon Mode: Interactive/Background
4813.  
4814. HostName: DESKTOP-GU6TEMK
4815. TaskName: \Microsoft\Windows\UpdateOrchestrator\Resume On Boot
4816. Next Run Time: N/A
4817. Status: Disabled
4818. Logon Mode: Interactive/Background
4819.  
4820. HostName: DESKTOP-GU6TEMK
4821. TaskName: \Microsoft\Windows\UpdateOrchestrator\Schedule Scan
4822. Next Run Time: 29/05/2017 17:17:47
4823. Status: Ready
4824. Logon Mode: Interactive/Background
4825.  
4826. HostName: DESKTOP-GU6TEMK
4827. TaskName: \Microsoft\Windows\UpdateOrchestrator\Schedule Scan
4828. Next Run Time: 29/05/2017 19:05:30
4829. Status: Ready
4830. Logon Mode: Interactive/Background
4831.  
4832. HostName: DESKTOP-GU6TEMK
4833. TaskName: \Microsoft\Windows\UpdateOrchestrator\Schedule Scan
4834. Next Run Time: 29/05/2017 19:40:00
4835. Status: Ready
4836. Logon Mode: Interactive/Background
4837.  
4838. HostName: DESKTOP-GU6TEMK
4839. TaskName: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display
4840. Next Run Time: N/A
4841. Status: Ready
4842. Logon Mode: Interactive/Background
4843.  
4844. HostName: DESKTOP-GU6TEMK
4845. TaskName: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot
4846. Next Run Time: N/A
4847. Status: Ready
4848. Logon Mode: Interactive/Background
4849.  
4850. Folder: \Microsoft\Windows\UPnP
4851. HostName: DESKTOP-GU6TEMK
4852. TaskName: \Microsoft\Windows\UPnP\UPnPHostConfig
4853. Next Run Time: N/A
4854. Status: Ready
4855. Logon Mode: Interactive/Background
4856.  
4857. Folder: \Microsoft\Windows\User Profile Service
4858. HostName: DESKTOP-GU6TEMK
4859. TaskName: \Microsoft\Windows\User Profile Service\HiveUploadTask
4860. Next Run Time: N/A
4861. Status: Disabled
4862. Logon Mode: Interactive/Background
4863.  
4864. Folder: \Microsoft\Windows\WCM
4865. HostName: DESKTOP-GU6TEMK
4866. TaskName: \Microsoft\Windows\WCM\WiFiTask
4867. Next Run Time: N/A
4868. Status: Ready
4869. Logon Mode: Interactive/Background
4870.  
4871. Folder: \Microsoft\Windows\WDI
4872. HostName: DESKTOP-GU6TEMK
4873. TaskName: \Microsoft\Windows\WDI\ResolutionHost
4874. Next Run Time: N/A
4875. Status: Ready
4876. Logon Mode: Interactive/Background
4877.  
4878. Folder: \Microsoft\Windows\Windows Defender
4879. HostName: DESKTOP-GU6TEMK
4880. TaskName: \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance
4881. Next Run Time: N/A
4882. Status: Ready
4883. Logon Mode: Interactive/Background
4884.  
4885. HostName: DESKTOP-GU6TEMK
4886. TaskName: \Microsoft\Windows\Windows Defender\Windows Defender Cleanup
4887. Next Run Time: N/A
4888. Status: Ready
4889. Logon Mode: Interactive/Background
4890.  
4891. HostName: DESKTOP-GU6TEMK
4892. TaskName: \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan
4893. Next Run Time: N/A
4894. Status: Ready
4895. Logon Mode: Interactive/Background
4896.  
4897. HostName: DESKTOP-GU6TEMK
4898. TaskName: \Microsoft\Windows\Windows Defender\Windows Defender Verification
4899. Next Run Time: N/A
4900. Status: Ready
4901. Logon Mode: Interactive/Background
4902.  
4903. Folder: \Microsoft\Windows\Windows Error Reporting
4904. HostName: DESKTOP-GU6TEMK
4905. TaskName: \Microsoft\Windows\Windows Error Reporting\QueueReporting
4906. Next Run Time: 29/05/2017 18:31:26
4907. Status: Ready
4908. Logon Mode: Interactive/Background
4909.  
4910. HostName: DESKTOP-GU6TEMK
4911. TaskName: \Microsoft\Windows\Windows Error Reporting\QueueReporting
4912. Next Run Time: 29/05/2017 20:57:18
4913. Status: Ready
4914. Logon Mode: Interactive/Background
4915.  
4916. HostName: DESKTOP-GU6TEMK
4917. TaskName: \Microsoft\Windows\Windows Error Reporting\QueueReporting
4918. Next Run Time: 29/05/2017 20:35:44
4919. Status: Ready
4920. Logon Mode: Interactive/Background
4921.  
4922. Folder: \Microsoft\Windows\Windows Filtering Platform
4923. HostName: DESKTOP-GU6TEMK
4924. TaskName: \Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange
4925. Next Run Time: N/A
4926. Status: Ready
4927. Logon Mode: Interactive/Background
4928.  
4929. Folder: \Microsoft\Windows\Windows Media Sharing
4930. HostName: DESKTOP-GU6TEMK
4931. TaskName: \Microsoft\Windows\Windows Media Sharing\UpdateLibrary
4932. Next Run Time: N/A
4933. Status: Ready
4934. Logon Mode: Interactive/Background
4935.  
4936. Folder: \Microsoft\Windows\WindowsColorSystem
4937. HostName: DESKTOP-GU6TEMK
4938. TaskName: \Microsoft\Windows\WindowsColorSystem\Calibration Loader
4939. Next Run Time: N/A
4940. Status: Disabled
4941. Logon Mode: Interactive/Background
4942.  
4943. HostName: DESKTOP-GU6TEMK
4944. TaskName: \Microsoft\Windows\WindowsColorSystem\Calibration Loader
4945. Next Run Time: N/A
4946. Status: Disabled
4947. Logon Mode: Interactive/Background
4948.  
4949. Folder: \Microsoft\Windows\WindowsUpdate
4950. HostName: DESKTOP-GU6TEMK
4951. TaskName: \Microsoft\Windows\WindowsUpdate\Automatic App Update
4952. Next Run Time: 29/05/2017 18:56:32
4953. Status: Ready
4954. Logon Mode: Interactive/Background
4955.  
4956. HostName: DESKTOP-GU6TEMK
4957. TaskName: \Microsoft\Windows\WindowsUpdate\Automatic App Update
4958. Next Run Time: 29/05/2017 18:53:16
4959. Status: Ready
4960. Logon Mode: Interactive/Background
4961.  
4962. HostName: DESKTOP-GU6TEMK
4963. TaskName: \Microsoft\Windows\WindowsUpdate\Scheduled Start
4964. Next Run Time: 29/05/2017 19:31:50
4965. Status: Ready
4966. Logon Mode: Interactive/Background
4967.  
4968. HostName: DESKTOP-GU6TEMK
4969. TaskName: \Microsoft\Windows\WindowsUpdate\Scheduled Start
4970. Next Run Time: 29/05/2017 19:31:43
4971. Status: Ready
4972. Logon Mode: Interactive/Background
4973.  
4974. HostName: DESKTOP-GU6TEMK
4975. TaskName: \Microsoft\Windows\WindowsUpdate\Scheduled Start
4976. Next Run Time: 29/05/2017 19:31:25
4977. Status: Ready
4978. Logon Mode: Interactive/Background
4979.  
4980. HostName: DESKTOP-GU6TEMK
4981. TaskName: \Microsoft\Windows\WindowsUpdate\Scheduled Start
4982. Next Run Time: 29/05/2017 19:31:37
4983. Status: Ready
4984. Logon Mode: Interactive/Background
4985.  
4986. HostName: DESKTOP-GU6TEMK
4987. TaskName: \Microsoft\Windows\WindowsUpdate\sih
4988. Next Run Time: 30/05/2017 02:14:54
4989. Status: Ready
4990. Logon Mode: Interactive/Background
4991.  
4992. HostName: DESKTOP-GU6TEMK
4993. TaskName: \Microsoft\Windows\WindowsUpdate\sihboot
4994. Next Run Time: N/A
4995. Status: Ready
4996. Logon Mode: Interactive/Background
4997.  
4998. Folder: \Microsoft\Windows\Wininet
4999. HostName: DESKTOP-GU6TEMK
5000. TaskName: \Microsoft\Windows\Wininet\CacheTask
5001. Next Run Time: N/A
5002. Status: Running
5003. Logon Mode: Interactive/Background
5004.  
5005. Folder: \Microsoft\Windows\WOF
5006. HostName: DESKTOP-GU6TEMK
5007. TaskName: \Microsoft\Windows\WOF\WIM-Hash-Management
5008. Next Run Time: N/A
5009. Status: Ready
5010. Logon Mode: Interactive/Background
5011.  
5012. HostName: DESKTOP-GU6TEMK
5013. TaskName: \Microsoft\Windows\WOF\WIM-Hash-Management
5014. Next Run Time: N/A
5015. Status: Ready
5016. Logon Mode: Interactive/Background
5017.  
5018. HostName: DESKTOP-GU6TEMK
5019. TaskName: \Microsoft\Windows\WOF\WIM-Hash-Validation
5020. Next Run Time: N/A
5021. Status: Ready
5022. Logon Mode: Interactive/Background
5023.  
5024. Folder: \Microsoft\Windows\Work Folders
5025. HostName: DESKTOP-GU6TEMK
5026. TaskName: \Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
5027. Next Run Time: N/A
5028. Status: Ready
5029. Logon Mode: Interactive/Background
5030.  
5031. HostName: DESKTOP-GU6TEMK
5032. TaskName: \Microsoft\Windows\Work Folders\Work Folders Maintenance Work
5033. Next Run Time: N/A
5034. Status: Ready
5035. Logon Mode: Interactive/Background
5036.  
5037. Folder: \Microsoft\Windows\Workplace Join
5038. HostName: DESKTOP-GU6TEMK
5039. TaskName: \Microsoft\Windows\Workplace Join\Automatic-Device-Join
5040. Next Run Time: N/A
5041. Status: Disabled
5042. Logon Mode: Interactive/Background
5043.  
5044. HostName: DESKTOP-GU6TEMK
5045. TaskName: \Microsoft\Windows\Workplace Join\Automatic-Device-Join
5046. Next Run Time: N/A
5047. Status: Disabled
5048. Logon Mode: Interactive/Background
5049.  
5050. Folder: \Microsoft\Windows\WwanSvc
5051. HostName: DESKTOP-GU6TEMK
5052. TaskName: \Microsoft\Windows\WwanSvc\NotificationTask
5053. Next Run Time: N/A
5054. Status: Ready
5055. Logon Mode: Interactive/Background
5056.  
5057. Folder: \Microsoft\XblGameSave
5058. HostName: DESKTOP-GU6TEMK
5059. TaskName: \Microsoft\XblGameSave\XblGameSaveTask
5060. Next Run Time: N/A
5061. Status: Ready
5062. Logon Mode: Interactive/Background
5063.  
5064. ******************************************************************************
5065. Contents of the Hosts file
5066. ******************************************************************************
5067. # Copyright (c) 1993-2009 Microsoft Corp.
5068. #
5069. # This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
5070. #
5071. # This file contains the mappings of IP addresses to host names. Each
5072. # entry should be kept on an individual line. The IP address should
5073. # be placed in the first column followed by the corresponding host name.
5074. # The IP address and the host name should be separated by at least one
5075. # space.
5076. #
5077. # Additionally, comments (such as these) may be inserted on individual
5078. # lines or following the machine name denoted by a '#' symbol.
5079. #
5080. # For example:
5081. #
5082. # 102.54.94.97 rhino.acme.com # source server
5083. # 38.25.63.10 x.acme.com # x client host
5084.  
5085. # localhost name resolution is handled within DNS itself.
5086. # 127.0.0.1 localhost
5087. # ::1 localhost
5088.  
5089. ******************************************************************************
5090. NetWork Connections
5091. ******************************************************************************
5092.  
5093. Active Connections
5094.  
5095. Proto Local Address Foreign Address State
5096. TCP 0.0.0.0:135 DESKTOP-GU6TEMK:0 LISTENING
5097. TCP 0.0.0.0:445 DESKTOP-GU6TEMK:0 LISTENING
5098. TCP 0.0.0.0:8732 DESKTOP-GU6TEMK:0 LISTENING
5099. TCP 0.0.0.0:27036 DESKTOP-GU6TEMK:0 LISTENING
5100. TCP 0.0.0.0:49664 DESKTOP-GU6TEMK:0 LISTENING
5101. TCP 0.0.0.0:49665 DESKTOP-GU6TEMK:0 LISTENING
5102. TCP 0.0.0.0:49666 DESKTOP-GU6TEMK:0 LISTENING
5103. TCP 0.0.0.0:49667 DESKTOP-GU6TEMK:0 LISTENING
5104. TCP 0.0.0.0:49668 DESKTOP-GU6TEMK:0 LISTENING
5105. TCP 0.0.0.0:49670 DESKTOP-GU6TEMK:0 LISTENING
5106. TCP 0.0.0.0:49805 DESKTOP-GU6TEMK:0 LISTENING
5107. TCP 127.0.0.1:9990 DESKTOP-GU6TEMK:0 LISTENING
5108. TCP 127.0.0.1:23401 DESKTOP-GU6TEMK:0 LISTENING
5109. TCP 192.168.1.62:139 DESKTOP-GU6TEMK:0 LISTENING
5110. TCP 192.168.1.62:49978 104.20.209.21:https TIME_WAIT
5111. TCP 192.168.1.62:49979 185.33.223.198:https CLOSE_WAIT
5112. TCP 192.168.1.62:49980 185.33.223.198:https CLOSE_WAIT
5113. TCP 192.168.1.62:49986 13.107.21.200:https ESTABLISHED
5114. TCP [::]:135 DESKTOP-GU6TEMK:0 LISTENING
5115. TCP [::]:445 DESKTOP-GU6TEMK:0 LISTENING
5116. TCP [::]:8732 DESKTOP-GU6TEMK:0 LISTENING
5117. TCP [::]:49664 DESKTOP-GU6TEMK:0 LISTENING
5118. TCP [::]:49665 DESKTOP-GU6TEMK:0 LISTENING
5119. TCP [::]:49666 DESKTOP-GU6TEMK:0 LISTENING
5120. TCP [::]:49667 DESKTOP-GU6TEMK:0 LISTENING
5121. TCP [::]:49668 DESKTOP-GU6TEMK:0 LISTENING
5122. TCP [::]:49670 DESKTOP-GU6TEMK:0 LISTENING
5123. TCP [::]:49805 DESKTOP-GU6TEMK:0 LISTENING
5124. UDP 0.0.0.0:500 *:*
5125. UDP 0.0.0.0:4500 *:*
5126. UDP 0.0.0.0:5050 *:*
5127. UDP 0.0.0.0:5353 *:*
5128. UDP 0.0.0.0:5355 *:*
5129. UDP 0.0.0.0:27036 *:*
5130. UDP 0.0.0.0:56662 *:*
5131. UDP 127.0.0.1:1900 *:*
5132. UDP 127.0.0.1:48200 *:*
5133. UDP 127.0.0.1:54634 *:*
5134. UDP 192.168.1.62:137 *:*
5135. UDP 192.168.1.62:138 *:*
5136. UDP 192.168.1.62:1900 *:*
5137. UDP 192.168.1.62:54633 *:*
5138. UDP [::]:500 *:*
5139. UDP [::]:4500 *:*
5140. UDP [::]:5353 *:*
5141. UDP [::]:5355 *:*
5142. UDP [::1]:1900 *:*
5143. UDP [::1]:54632 *:*
5144. UDP [fe80::e8eb:65c6:13c9:ccb4%17]:1900 *:*
5145. UDP [fe80::e8eb:65c6:13c9:ccb4%17]:54631 *:*
5146.  
5147. ******************************************************************************
5148. DNS Cache
5149. ******************************************************************************
5150.  
5151. Windows IP Configuration
5152.  
5153. fw.adsafeprotected.com
5154. ----------------------------------------
5155. Record Name . . . . . : fw.adsafeprotected.com
5156. Record Type . . . . . : 5
5157. Time To Live . . . . : 710
5158. Data Length . . . . . : 8
5159. Section . . . . . . . : Answer
5160. CNAME Record . . . . : anycast.fw.adsafeprotected.com
5161.  
5162.  
5163. Record Name . . . . . : anycast.fw.adsafeprotected.com
5164. Record Type . . . . . : 1
5165. Time To Live . . . . : 710
5166. Data Length . . . . . : 4
5167. Section . . . . . . . : Answer
5168. A (Host) Record . . . : 69.172.216.56
5169.  
5170.  
5171. Record Name . . . . . : dns1.p05.nsone.net
5172. Record Type . . . . . : 1
5173. Time To Live . . . . : 710
5174. Data Length . . . . . : 4
5175. Section . . . . . . . : Additional
5176. A (Host) Record . . . : 198.51.44.5
5177.  
5178.  
5179. Record Name . . . . . : dns2.p05.nsone.net
5180. Record Type . . . . . : 1
5181. Time To Live . . . . : 710
5182. Data Length . . . . . : 4
5183. Section . . . . . . . : Additional
5184. A (Host) Record . . . : 198.51.45.5
5185.  
5186.  
5187. Record Name . . . . . : dns3.p05.nsone.net
5188. Record Type . . . . . : 1
5189. Time To Live . . . . : 710
5190. Data Length . . . . . : 4
5191. Section . . . . . . . : Additional
5192. A (Host) Record . . . : 198.51.44.69
5193.  
5194.  
5195. Record Name . . . . . : dns4.p05.nsone.net
5196. Record Type . . . . . : 1
5197. Time To Live . . . . : 710
5198. Data Length . . . . . : 4
5199. Section . . . . . . . : Additional
5200. A (Host) Record . . . : 198.51.45.69
5201.  
5202.  
5203. gds2.steampowered.com
5204. ----------------------------------------
5205. Record Name . . . . . : gds2.steampowered.com
5206. Record Type . . . . . : 1
5207. Time To Live . . . . : 616
5208. Data Length . . . . . : 4
5209. Section . . . . . . . : Answer
5210. A (Host) Record . . . : 208.64.201.136
5211.  
5212.  
5213. Record Name . . . . . : a8-66.akam.net
5214. Record Type . . . . . : 1
5215. Time To Live . . . . : 616
5216. Data Length . . . . . : 4
5217. Section . . . . . . . : Additional
5218. A (Host) Record . . . : 2.16.40.66
5219.  
5220.  
5221. Record Name . . . . . : a9-67.akam.net
5222. Record Type . . . . . : 1
5223. Time To Live . . . . : 616
5224. Data Length . . . . . : 4
5225. Section . . . . . . . : Additional
5226. A (Host) Record . . . : 184.85.248.67
5227.  
5228.  
5229. Record Name . . . . . : a9-67.akam.net
5230. Record Type . . . . . : 28
5231. Time To Live . . . . : 616
5232. Data Length . . . . . : 16
5233. Section . . . . . . . : Additional
5234. AAAA Record . . . . . : 2a02:26f0:117::43
5235.  
5236.  
5237. Record Name . . . . . : a1-164.akam.net
5238. Record Type . . . . . : 1
5239. Time To Live . . . . : 616
5240. Data Length . . . . . : 4
5241. Section . . . . . . . : Additional
5242. A (Host) Record . . . : 193.108.91.164
5243.  
5244.  
5245. Record Name . . . . . : a1-164.akam.net
5246. Record Type . . . . . : 28
5247. Time To Live . . . . : 616
5248. Data Length . . . . . : 16
5249. Section . . . . . . . : Additional
5250. AAAA Record . . . . . : 2600:1401:2::a4
5251.  
5252.  
5253. Record Name . . . . . : a11-67.akam.net
5254. Record Type . . . . . : 1
5255. Time To Live . . . . : 616
5256. Data Length . . . . . : 4
5257. Section . . . . . . . : Additional
5258. A (Host) Record . . . : 84.53.139.67
5259.  
5260.  
5261. Record Name . . . . . : a11-67.akam.net
5262. Record Type . . . . . : 28
5263. Time To Live . . . . : 616
5264. Data Length . . . . . : 16
5265. Section . . . . . . . : Additional
5266. AAAA Record . . . . . : 2600:1480:1::43
5267.  
5268.  
5269. Record Name . . . . . : a24-64.akam.net
5270. Record Type . . . . . : 1
5271. Time To Live . . . . : 616
5272. Data Length . . . . . : 4
5273. Section . . . . . . . : Additional
5274. A (Host) Record . . . : 2.16.130.64
5275.  
5276.  
5277. Record Name . . . . . : a26-65.akam.net
5278. Record Type . . . . . : 1
5279. Time To Live . . . . : 616
5280. Data Length . . . . . : 4
5281. Section . . . . . . . : Additional
5282. A (Host) Record . . . : 23.74.25.65
5283.  
5284.  
5285. pastebin.com
5286. ----------------------------------------
5287. Record Name . . . . . : pastebin.com
5288. Record Type . . . . . : 1
5289. Time To Live . . . . : 71
5290. Data Length . . . . . : 4
5291. Section . . . . . . . : Answer
5292. A (Host) Record . . . : 104.20.209.21
5293.  
5294.  
5295. Record Name . . . . . : pastebin.com
5296. Record Type . . . . . : 1
5297. Time To Live . . . . : 71
5298. Data Length . . . . . : 4
5299. Section . . . . . . . : Answer
5300. A (Host) Record . . . : 104.20.208.21
5301.  
5302.  
5303. Record Name . . . . . : sue.ns.cloudflare.com
5304. Record Type . . . . . : 1
5305. Time To Live . . . . : 71
5306. Data Length . . . . . : 4
5307. Section . . . . . . . : Additional
5308. A (Host) Record . . . : 173.245.58.145
5309.  
5310.  
5311. Record Name . . . . . : sue.ns.cloudflare.com
5312. Record Type . . . . . : 28
5313. Time To Live . . . . : 71
5314. Data Length . . . . . : 16
5315. Section . . . . . . . : Additional
5316. AAAA Record . . . . . : 2400:cb00:2049:1::adf5:3a91
5317.  
5318.  
5319. Record Name . . . . . : todd.ns.cloudflare.com
5320. Record Type . . . . . : 1
5321. Time To Live . . . . : 71
5322. Data Length . . . . . : 4
5323. Section . . . . . . . : Additional
5324. A (Host) Record . . . : 173.245.59.146
5325.  
5326.  
5327. Record Name . . . . . : todd.ns.cloudflare.com
5328. Record Type . . . . . : 28
5329. Time To Live . . . . : 71
5330. Data Length . . . . . : 16
5331. Section . . . . . . . : Additional
5332. AAAA Record . . . . . : 2400:cb00:2049:1::adf5:3b92
5333.  
5334.  
5335. gds4.steampowered.com
5336. ----------------------------------------
5337. Record Name . . . . . : gds4.steampowered.com
5338. Record Type . . . . . : 1
5339. Time To Live . . . . : 2698
5340. Data Length . . . . . : 4
5341. Section . . . . . . . : Answer
5342. A (Host) Record . . . : 208.64.201.136
5343.  
5344.  
5345. Record Name . . . . . : a8-66.akam.net
5346. Record Type . . . . . : 1
5347. Time To Live . . . . : 2698
5348. Data Length . . . . . : 4
5349. Section . . . . . . . : Additional
5350. A (Host) Record . . . : 2.16.40.66
5351.  
5352.  
5353. Record Name . . . . . : a8-66.akam.net
5354. Record Type . . . . . : 28
5355. Time To Live . . . . : 2698
5356. Data Length . . . . . : 16
5357. Section . . . . . . . : Additional
5358. AAAA Record . . . . . : 2600:1403:a::42
5359.  
5360.  
5361. Record Name . . . . . : a9-67.akam.net
5362. Record Type . . . . . : 1
5363. Time To Live . . . . : 2698
5364. Data Length . . . . . : 4
5365. Section . . . . . . . : Additional
5366. A (Host) Record . . . : 184.85.248.67
5367.  
5368.  
5369. Record Name . . . . . : a1-164.akam.net
5370. Record Type . . . . . : 1
5371. Time To Live . . . . : 2698
5372. Data Length . . . . . : 4
5373. Section . . . . . . . : Additional
5374. A (Host) Record . . . : 193.108.91.164
5375.  
5376.  
5377. Record Name . . . . . : a1-164.akam.net
5378. Record Type . . . . . : 28
5379. Time To Live . . . . : 2698
5380. Data Length . . . . . : 16
5381. Section . . . . . . . : Additional
5382. AAAA Record . . . . . : 2600:1401:2::a4
5383.  
5384.  
5385. Record Name . . . . . : a11-67.akam.net
5386. Record Type . . . . . : 1
5387. Time To Live . . . . : 2698
5388. Data Length . . . . . : 4
5389. Section . . . . . . . : Additional
5390. A (Host) Record . . . : 84.53.139.67
5391.  
5392.  
5393. Record Name . . . . . : a24-64.akam.net
5394. Record Type . . . . . : 1
5395. Time To Live . . . . : 2698
5396. Data Length . . . . . : 4
5397. Section . . . . . . . : Additional
5398. A (Host) Record . . . : 2.16.130.64
5399.  
5400.  
5401. Record Name . . . . . : a26-65.akam.net
5402. Record Type . . . . . : 1
5403. Time To Live . . . . : 2698
5404. Data Length . . . . . : 4
5405. Section . . . . . . . : Additional
5406. A (Host) Record . . . : 23.74.25.65
5407.  
5408.  
5409. dt.adsafeprotected.com
5410. ----------------------------------------
5411. Record Name . . . . . : dt.adsafeprotected.com
5412. Record Type . . . . . : 5
5413. Time To Live . . . . : 4669
5414. Data Length . . . . . : 8
5415. Section . . . . . . . : Answer
5416. CNAME Record . . . . : anycast.dt.adsafeprotected.com
5417.  
5418.  
5419. Record Name . . . . . : anycast.dt.adsafeprotected.com
5420. Record Type . . . . . : 1
5421. Time To Live . . . . : 4669
5422. Data Length . . . . . : 4
5423. Section . . . . . . . : Answer
5424. A (Host) Record . . . : 69.172.216.111
5425.  
5426.  
5427. Record Name . . . . . : dns1.p05.nsone.net
5428. Record Type . . . . . : 1
5429. Time To Live . . . . : 4669
5430. Data Length . . . . . : 4
5431. Section . . . . . . . : Additional
5432. A (Host) Record . . . : 198.51.44.5
5433.  
5434.  
5435. Record Name . . . . . : dns2.p05.nsone.net
5436. Record Type . . . . . : 1
5437. Time To Live . . . . : 4669
5438. Data Length . . . . . : 4
5439. Section . . . . . . . : Additional
5440. A (Host) Record . . . : 198.51.45.5
5441.  
5442.  
5443. Record Name . . . . . : dns3.p05.nsone.net
5444. Record Type . . . . . : 1
5445. Time To Live . . . . : 4669
5446. Data Length . . . . . : 4
5447. Section . . . . . . . : Additional
5448. A (Host) Record . . . : 198.51.44.69
5449.  
5450.  
5451. Record Name . . . . . : dns4.p05.nsone.net
5452. Record Type . . . . . : 1
5453. Time To Live . . . . : 4669
5454. Data Length . . . . . : 4
5455. Section . . . . . . . : Additional
5456. A (Host) Record . . . : 198.51.45.69
5457.  
5458.  
5459. s1.wp.com
5460. ----------------------------------------
5461. Record Name . . . . . : s1.wp.com
5462. Record Type . . . . . : 1
5463. Time To Live . . . . : 6823
5464. Data Length . . . . . : 4
5465. Section . . . . . . . : Answer
5466. A (Host) Record . . . : 192.0.77.32
5467.  
5468.  
5469. Record Name . . . . . : ns1.automattic.com
5470. Record Type . . . . . : 1
5471. Time To Live . . . . : 6823
5472. Data Length . . . . . : 4
5473. Section . . . . . . . : Additional
5474. A (Host) Record . . . : 198.181.116.5
5475.  
5476.  
5477. Record Name . . . . . : ns1.automattic.com
5478. Record Type . . . . . : 28
5479. Time To Live . . . . : 6823
5480. Data Length . . . . . : 16
5481. Section . . . . . . . : Additional
5482. AAAA Record . . . . . : 2a04:fa87:ffff::c6b5:7405
5483.  
5484.  
5485. Record Name . . . . . : ns2.automattic.com
5486. Record Type . . . . . : 1
5487. Time To Live . . . . : 6823
5488. Data Length . . . . . : 4
5489. Section . . . . . . . : Additional
5490. A (Host) Record . . . : 198.181.117.5
5491.  
5492.  
5493. Record Name . . . . . : ns2.automattic.com
5494. Record Type . . . . . : 28
5495. Time To Live . . . . : 6823
5496. Data Length . . . . . : 16
5497. Section . . . . . . . : Additional
5498. AAAA Record . . . . . : 2a04:fa87:ffff::c6b5:7505
5499.  
5500.  
5501. Record Name . . . . . : ns3.automattic.com
5502. Record Type . . . . . : 1
5503. Time To Live . . . . : 6823
5504. Data Length . . . . . : 4
5505. Section . . . . . . . : Additional
5506. A (Host) Record . . . : 192.0.74.5
5507.  
5508.  
5509. Record Name . . . . . : ns3.automattic.com
5510. Record Type . . . . . : 28
5511. Time To Live . . . . : 6823
5512. Data Length . . . . . : 16
5513. Section . . . . . . . : Additional
5514. AAAA Record . . . . . : 2620:115:c00f::c000:4a05
5515.  
5516.  
5517. s2.wp.com
5518. ----------------------------------------
5519. Record Name . . . . . : s2.wp.com
5520. Record Type . . . . . : 1
5521. Time To Live . . . . : 155
5522. Data Length . . . . . : 4
5523. Section . . . . . . . : Answer
5524. A (Host) Record . . . : 192.0.77.32
5525.  
5526.  
5527. Record Name . . . . . : ns1.automattic.com
5528. Record Type . . . . . : 1
5529. Time To Live . . . . : 155
5530. Data Length . . . . . : 4
5531. Section . . . . . . . : Additional
5532. A (Host) Record . . . : 198.181.116.5
5533.  
5534.  
5535. Record Name . . . . . : ns1.automattic.com
5536. Record Type . . . . . : 28
5537. Time To Live . . . . : 155
5538. Data Length . . . . . : 16
5539. Section . . . . . . . : Additional
5540. AAAA Record . . . . . : 2a04:fa87:ffff::c6b5:7405
5541.  
5542.  
5543. Record Name . . . . . : ns2.automattic.com
5544. Record Type . . . . . : 1
5545. Time To Live . . . . : 155
5546. Data Length . . . . . : 4
5547. Section . . . . . . . : Additional
5548. A (Host) Record . . . : 198.181.117.5
5549.  
5550.  
5551. Record Name . . . . . : ns2.automattic.com
5552. Record Type . . . . . : 28
5553. Time To Live . . . . : 155
5554. Data Length . . . . . : 16
5555. Section . . . . . . . : Additional
5556. AAAA Record . . . . . : 2a04:fa87:ffff::c6b5:7505
5557.  
5558.  
5559. Record Name . . . . . : ns3.automattic.com
5560. Record Type . . . . . : 1
5561. Time To Live . . . . : 155
5562. Data Length . . . . . : 4
5563. Section . . . . . . . : Additional
5564. A (Host) Record . . . : 192.0.74.5
5565.  
5566.  
5567. Record Name . . . . . : ns3.automattic.com
5568. Record Type . . . . . : 28
5569. Time To Live . . . . : 155
5570. Data Length . . . . . : 16
5571. Section . . . . . . . : Additional
5572. AAAA Record . . . . . : 2620:115:c00f::c000:4a05
5573.  
5574.  
5575. valve418.steampipe.steamcontent.com
5576. ----------------------------------------
5577. Record Name . . . . . : valve418.steampipe.steamcontent.com
5578. Record Type . . . . . : 5
5579. Time To Live . . . . : 6007
5580. Data Length . . . . . : 8
5581. Section . . . . . . . : Answer
5582. CNAME Record . . . . : valve418.steamcontent.com
5583.  
5584.  
5585. Record Name . . . . . : valve418.steamcontent.com
5586. Record Type . . . . . : 1
5587. Time To Live . . . . : 6007
5588. Data Length . . . . . : 4
5589. Section . . . . . . . : Answer
5590. A (Host) Record . . . : 162.254.196.28
5591.  
5592.  
5593. Record Name . . . . . : a8-66.akam.net
5594. Record Type . . . . . : 1
5595. Time To Live . . . . : 6007
5596. Data Length . . . . . : 4
5597. Section . . . . . . . : Additional
5598. A (Host) Record . . . : 2.16.40.66
5599.  
5600.  
5601. Record Name . . . . . : a9-67.akam.net
5602. Record Type . . . . . : 1
5603. Time To Live . . . . : 6007
5604. Data Length . . . . . : 4
5605. Section . . . . . . . : Additional
5606. A (Host) Record . . . : 184.85.248.67
5607.  
5608.  
5609. Record Name . . . . . : a9-67.akam.net
5610. Record Type . . . . . : 28
5611. Time To Live . . . . : 6007
5612. Data Length . . . . . : 16
5613. Section . . . . . . . : Additional
5614. AAAA Record . . . . . : 2a02:26f0:117::43
5615.  
5616.  
5617. Record Name . . . . . : a1-164.akam.net
5618. Record Type . . . . . : 1
5619. Time To Live . . . . : 6007
5620. Data Length . . . . . : 4
5621. Section . . . . . . . : Additional
5622. A (Host) Record . . . : 193.108.91.164
5623.  
5624.  
5625. Record Name . . . . . : a1-164.akam.net
5626. Record Type . . . . . : 28
5627. Time To Live . . . . : 6007
5628. Data Length . . . . . : 16
5629. Section . . . . . . . : Additional
5630. AAAA Record . . . . . : 2600:1401:2::a4
5631.  
5632.  
5633. Record Name . . . . . : a11-67.akam.net
5634. Record Type . . . . . : 1
5635. Time To Live . . . . : 6007
5636. Data Length . . . . . : 4
5637. Section . . . . . . . : Additional
5638. A (Host) Record . . . : 84.53.139.67
5639.  
5640.  
5641. Record Name . . . . . : a11-67.akam.net
5642. Record Type . . . . . : 28
5643. Time To Live . . . . : 6007
5644. Data Length . . . . . : 16
5645. Section . . . . . . . : Additional
5646. AAAA Record . . . . . : 2600:1480:1::43
5647.  
5648.  
5649. Record Name . . . . . : a24-64.akam.net
5650. Record Type . . . . . : 1
5651. Time To Live . . . . : 6007
5652. Data Length . . . . . : 4
5653. Section . . . . . . . : Additional
5654. A (Host) Record . . . : 2.16.130.64
5655.  
5656.  
5657. Record Name . . . . . : a26-65.akam.net
5658. Record Type . . . . . : 1
5659. Time To Live . . . . : 6007
5660. Data Length . . . . . : 4
5661. Section . . . . . . . : Additional
5662. A (Host) Record . . . : 23.74.25.65
5663.  
5664.  
5665. cat.fr.eu.criteo.com
5666. ----------------------------------------
5667. Record Name . . . . . : cat.fr.eu.criteo.com
5668. Record Type . . . . . : 1
5669. Time To Live . . . . : 696
5670. Data Length . . . . . : 4
5671. Section . . . . . . . : Answer
5672. A (Host) Record . . . : 178.250.0.66
5673.  
5674.  
5675. Record Name . . . . . : ns1.criteo.com
5676. Record Type . . . . . : 1
5677. Time To Live . . . . : 696
5678. Data Length . . . . . : 4
5679. Section . . . . . . . : Additional
5680. A (Host) Record . . . : 178.250.0.4
5681.  
5682.  
5683. Record Name . . . . . : ns4.criteo.com
5684. Record Type . . . . . : 1
5685. Time To Live . . . . : 696
5686. Data Length . . . . . : 4
5687. Section . . . . . . . : Additional
5688. A (Host) Record . . . : 74.119.118.4
5689.  
5690.  
5691. Record Name . . . . . : ns6.criteo.com
5692. Record Type . . . . . : 1
5693. Time To Live . . . . : 696
5694. Data Length . . . . . : 4
5695. Section . . . . . . . : Additional
5696. A (Host) Record . . . : 182.161.73.4
5697.  
5698.  
5699. Record Name . . . . . : ns13.criteo.com
5700. Record Type . . . . . : 1
5701. Time To Live . . . . : 696
5702. Data Length . . . . . : 4
5703. Section . . . . . . . : Additional
5704. A (Host) Record . . . : 74.119.117.5
5705.  
5706.  
5707. Record Name . . . . . : ns17.criteo.com
5708. Record Type . . . . . : 1
5709. Time To Live . . . . : 696
5710. Data Length . . . . . : 4
5711. Section . . . . . . . : Additional
5712. A (Host) Record . . . : 178.250.6.6
5713.  
5714.  
5715. valve423.steampipe.steamcontent.com
5716. ----------------------------------------
5717. Record Name . . . . . : valve423.steampipe.steamcontent.com
5718. Record Type . . . . . : 5
5719. Time To Live . . . . : 5277
5720. Data Length . . . . . : 8
5721. Section . . . . . . . : Answer
5722. CNAME Record . . . . : valve423.steamcontent.com
5723.  
5724.  
5725. Record Name . . . . . : valve423.steamcontent.com
5726. Record Type . . . . . : 1
5727. Time To Live . . . . : 5277
5728. Data Length . . . . . : 4
5729. Section . . . . . . . : Answer
5730. A (Host) Record . . . : 162.254.196.33
5731.  
5732.  
5733. Record Name . . . . . : a8-66.akam.net
5734. Record Type . . . . . : 1
5735. Time To Live . . . . : 5277
5736. Data Length . . . . . : 4
5737. Section . . . . . . . : Additional
5738. A (Host) Record . . . : 2.16.40.66
5739.  
5740.  
5741. Record Name . . . . . : a8-66.akam.net
5742. Record Type . . . . . : 28
5743. Time To Live . . . . : 5277
5744. Data Length . . . . . : 16
5745. Section . . . . . . . : Additional
5746. AAAA Record . . . . . : 2600:1403:a::42
5747.  
5748.  
5749. Record Name . . . . . : a9-67.akam.net
5750. Record Type . . . . . : 1
5751. Time To Live . . . . : 5277
5752. Data Length . . . . . : 4
5753. Section . . . . . . . : Additional
5754. A (Host) Record . . . : 184.85.248.67
5755.  
5756.  
5757. Record Name . . . . . : a1-164.akam.net
5758. Record Type . . . . . : 1
5759. Time To Live . . . . : 5277
5760. Data Length . . . . . : 4
5761. Section . . . . . . . : Additional
5762. A (Host) Record . . . : 193.108.91.164
5763.  
5764.  
5765. Record Name . . . . . : a1-164.akam.net
5766. Record Type . . . . . : 28
5767. Time To Live . . . . : 5277
5768. Data Length . . . . . : 16
5769. Section . . . . . . . : Additional
5770. AAAA Record . . . . . : 2600:1401:2::a4
5771.  
5772.  
5773. Record Name . . . . . : a11-67.akam.net
5774. Record Type . . . . . : 1
5775. Time To Live . . . . : 5277
5776. Data Length . . . . . : 4
5777. Section . . . . . . . : Additional
5778. A (Host) Record . . . : 84.53.139.67
5779.  
5780.  
5781. Record Name . . . . . : a24-64.akam.net
5782. Record Type . . . . . : 1
5783. Time To Live . . . . : 5277
5784. Data Length . . . . . : 4
5785. Section . . . . . . . : Additional
5786. A (Host) Record . . . : 2.16.130.64
5787.  
5788.  
5789. Record Name . . . . . : a26-65.akam.net
5790. Record Type . . . . . : 1
5791. Time To Live . . . . : 5277
5792. Data Length . . . . . : 4
5793. Section . . . . . . . : Additional
5794. A (Host) Record . . . : 23.74.25.65
5795.  
5796.  
5797. aka-cdn.adtechus.com
5798. ----------------------------------------
5799. Record Name . . . . . : aka-cdn.adtechus.com
5800. Record Type . . . . . : 5
5801. Time To Live . . . . : 2791
5802. Data Length . . . . . : 8
5803. Section . . . . . . . : Answer
5804. CNAME Record . . . . : cs696.wac.thetacdn.net
5805.  
5806.  
5807. Record Name . . . . . : cs696.wac.thetacdn.net
5808. Record Type . . . . . : 1
5809. Time To Live . . . . : 2791
5810. Data Length . . . . . : 4
5811. Section . . . . . . . : Answer
5812. A (Host) Record . . . : 192.229.233.248
5813.  
5814.  
5815. Record Name . . . . . : a.gtld-servers.net
5816. Record Type . . . . . : 1
5817. Time To Live . . . . : 2791
5818. Data Length . . . . . : 4
5819. Section . . . . . . . : Additional
5820. A (Host) Record . . . : 192.5.6.30
5821.  
5822.  
5823. Record Name . . . . . : a.gtld-servers.net
5824. Record Type . . . . . : 28
5825. Time To Live . . . . : 2791
5826. Data Length . . . . . : 16
5827. Section . . . . . . . : Additional
5828. AAAA Record . . . . . : 2001:503:a83e::2:30
5829.  
5830.  
5831. Record Name . . . . . : b.gtld-servers.net
5832. Record Type . . . . . : 1
5833. Time To Live . . . . : 2791
5834. Data Length . . . . . : 4
5835. Section . . . . . . . : Additional
5836. A (Host) Record . . . : 192.33.14.30
5837.  
5838.  
5839. Record Name . . . . . : b.gtld-servers.net
5840. Record Type . . . . . : 28
5841. Time To Live . . . . : 2791
5842. Data Length . . . . . : 16
5843. Section . . . . . . . : Additional
5844. AAAA Record . . . . . : 2001:503:231d::2:30
5845.  
5846.  
5847. Record Name . . . . . : c.gtld-servers.net
5848. Record Type . . . . . : 1
5849. Time To Live . . . . : 2791
5850. Data Length . . . . . : 4
5851. Section . . . . . . . : Additional
5852. A (Host) Record . . . : 192.26.92.30
5853.  
5854.  
5855. Record Name . . . . . : d.gtld-servers.net
5856. Record Type . . . . . : 1
5857. Time To Live . . . . : 2791
5858. Data Length . . . . . : 4
5859. Section . . . . . . . : Additional
5860. A (Host) Record . . . : 192.31.80.30
5861.  
5862.  
5863. Record Name . . . . . : e.gtld-servers.net
5864. Record Type . . . . . : 1
5865. Time To Live . . . . : 2791
5866. Data Length . . . . . : 4
5867. Section . . . . . . . : Additional
5868. A (Host) Record . . . : 192.12.94.30
5869.  
5870.  
5871. Record Name . . . . . : f.gtld-servers.net
5872. Record Type . . . . . : 1
5873. Time To Live . . . . : 2791
5874. Data Length . . . . . : 4
5875. Section . . . . . . . : Additional
5876. A (Host) Record . . . : 192.35.51.30
5877.  
5878.  
5879. Record Name . . . . . : g.gtld-servers.net
5880. Record Type . . . . . : 1
5881. Time To Live . . . . : 2791
5882. Data Length . . . . . : 4
5883. Section . . . . . . . : Additional
5884. A (Host) Record . . . : 192.42.93.30
5885.  
5886.  
5887. Record Name . . . . . : h.gtld-servers.net
5888. Record Type . . . . . : 1
5889. Time To Live . . . . : 2791
5890. Data Length . . . . . : 4
5891. Section . . . . . . . : Additional
5892. A (Host) Record . . . : 192.54.112.30
5893.  
5894.  
5895. Record Name . . . . . : i.gtld-servers.net
5896. Record Type . . . . . : 1
5897. Time To Live . . . . : 2791
5898. Data Length . . . . . : 4
5899. Section . . . . . . . : Additional
5900. A (Host) Record . . . : 192.43.172.30
5901.  
5902.  
5903. r5---sn-cu-auoe.googlevideo.com
5904. ----------------------------------------
5905. Record Name . . . . . : r5---sn-cu-auoe.googlevideo.com
5906. Record Type . . . . . : 5
5907. Time To Live . . . . : 305
5908. Data Length . . . . . : 8
5909. Section . . . . . . . : Answer
5910. CNAME Record . . . . : r5.sn-cu-auoe.googlevideo.com
5911.  
5912.  
5913. Record Name . . . . . : r5.sn-cu-auoe.googlevideo.com
5914. Record Type . . . . . : 1
5915. Time To Live . . . . : 305
5916. Data Length . . . . . : 4
5917. Section . . . . . . . : Answer
5918. A (Host) Record . . . : 109.144.0.20
5919.  
5920.  
5921. Record Name . . . . . : ns1.google.com
5922. Record Type . . . . . : 1
5923. Time To Live . . . . : 305
5924. Data Length . . . . . : 4
5925. Section . . . . . . . : Additional
5926. A (Host) Record . . . : 216.239.32.10
5927.  
5928.  
5929. Record Name . . . . . : ns2.google.com
5930. Record Type . . . . . : 1
5931. Time To Live . . . . : 305
5932. Data Length . . . . . : 4
5933. Section . . . . . . . : Additional
5934. A (Host) Record . . . : 216.239.34.10
5935.  
5936.  
5937. Record Name . . . . . : ns3.google.com
5938. Record Type . . . . . : 1
5939. Time To Live . . . . : 305
5940. Data Length . . . . . : 4
5941. Section . . . . . . . : Additional
5942. A (Host) Record . . . : 216.239.36.10
5943.  
5944.  
5945. Record Name . . . . . : ns4.google.com
5946. Record Type . . . . . : 1
5947. Time To Live . . . . : 305
5948. Data Length . . . . . : 4
5949. Section . . . . . . . : Additional
5950. A (Host) Record . . . : 216.239.38.10
5951.  
5952.  
5953. ocsp.digicert.com
5954. ----------------------------------------
5955. Record Name . . . . . : ocsp.digicert.com
5956. Record Type . . . . . : 5
5957. Time To Live . . . . : 540
5958. Data Length . . . . . : 8
5959. Section . . . . . . . : Answer
5960. CNAME Record . . . . : cs9.wac.phicdn.net
5961.  
5962.  
5963. Record Name . . . . . : cs9.wac.phicdn.net
5964. Record Type . . . . . : 1
5965. Time To Live . . . . : 540
5966. Data Length . . . . . : 4
5967. Section . . . . . . . : Answer
5968. A (Host) Record . . . : 93.184.220.29
5969.  
5970.  
5971. Record Name . . . . . : ns1.phicdn.net
5972. Record Type . . . . . : 1
5973. Time To Live . . . . : 540
5974. Data Length . . . . . : 4
5975. Section . . . . . . . : Additional
5976. A (Host) Record . . . : 72.21.80.5
5977.  
5978.  
5979. Record Name . . . . . : ns1.phicdn.net
5980. Record Type . . . . . : 28
5981. Time To Live . . . . : 540
5982. Data Length . . . . . : 16
5983. Section . . . . . . . : Additional
5984. AAAA Record . . . . . : 2606:2800:1::5
5985.  
5986.  
5987. Record Name . . . . . : ns2.phicdn.net
5988. Record Type . . . . . : 1
5989. Time To Live . . . . : 540
5990. Data Length . . . . . : 4
5991. Section . . . . . . . : Additional
5992. A (Host) Record . . . : 72.21.80.6
5993.  
5994.  
5995. Record Name . . . . . : ns2.phicdn.net
5996. Record Type . . . . . : 28
5997. Time To Live . . . . : 540
5998. Data Length . . . . . : 16
5999. Section . . . . . . . : Additional
6000. AAAA Record . . . . . : 2606:2800:1::6
6001.  
6002.  
6003. stats.wp.com
6004. ----------------------------------------
6005. Record Name . . . . . : stats.wp.com
6006. Record Type . . . . . : 1
6007. Time To Live . . . . : 11578
6008. Data Length . . . . . : 4
6009. Section . . . . . . . : Answer
6010. A (Host) Record . . . : 192.0.76.3
6011.  
6012.  
6013. Record Name . . . . . : ns1.automattic.com
6014. Record Type . . . . . : 1
6015. Time To Live . . . . : 11578
6016. Data Length . . . . . : 4
6017. Section . . . . . . . : Additional
6018. A (Host) Record . . . : 198.181.116.5
6019.  
6020.  
6021. Record Name . . . . . : ns1.automattic.com
6022. Record Type . . . . . : 28
6023. Time To Live . . . . : 11578
6024. Data Length . . . . . : 16
6025. Section . . . . . . . : Additional
6026. AAAA Record . . . . . : 2a04:fa87:ffff::c6b5:7405
6027.  
6028.  
6029. Record Name . . . . . : ns2.automattic.com
6030. Record Type . . . . . : 1
6031. Time To Live . . . . : 11578
6032. Data Length . . . . . : 4
6033. Section . . . . . . . : Additional
6034. A (Host) Record . . . : 198.181.117.5
6035.  
6036.  
6037. Record Name . . . . . : ns2.automattic.com
6038. Record Type . . . . . : 28
6039. Time To Live . . . . : 11578
6040. Data Length . . . . . : 16
6041. Section . . . . . . . : Additional
6042. AAAA Record . . . . . : 2a04:fa87:ffff::c6b5:7505
6043.  
6044.  
6045. Record Name . . . . . : ns3.automattic.com
6046. Record Type . . . . . : 1
6047. Time To Live . . . . : 11578
6048. Data Length . . . . . : 4
6049. Section . . . . . . . : Additional
6050. A (Host) Record . . . : 192.0.74.5
6051.  
6052.  
6053. Record Name . . . . . : ns3.automattic.com
6054. Record Type . . . . . : 28
6055. Time To Live . . . . : 11578
6056. Data Length . . . . . : 16
6057. Section . . . . . . . : Additional
6058. AAAA Record . . . . . : 2620:115:c00f::c000:4a05
6059.  
6060.  
6061. client-download.steampowered.com
6062. ----------------------------------------
6063. Record Name . . . . . : client-download.steampowered.com
6064. Record Type . . . . . : 1
6065. Time To Live . . . . : 515
6066. Data Length . . . . . : 4
6067. Section . . . . . . . : Answer
6068. A (Host) Record . . . : 162.254.192.19
6069.  
6070.  
6071. Record Name . . . . . : client-download.steampowered.com
6072. Record Type . . . . . : 1
6073. Time To Live . . . . : 515
6074. Data Length . . . . . : 4
6075. Section . . . . . . . : Answer
6076. A (Host) Record . . . : 162.254.193.37
6077.  
6078.  
6079. Record Name . . . . . : client-download.steampowered.com
6080. Record Type . . . . . : 1
6081. Time To Live . . . . : 515
6082. Data Length . . . . . : 4
6083. Section . . . . . . . : Answer
6084. A (Host) Record . . . : 162.254.195.13
6085.  
6086.  
6087. Record Name . . . . . : client-download.steampowered.com
6088. Record Type . . . . . : 1
6089. Time To Live . . . . : 515
6090. Data Length . . . . . : 4
6091. Section . . . . . . . : Answer
6092. A (Host) Record . . . : 162.254.192.16
6093.  
6094.  
6095. Record Name . . . . . : client-download.steampowered.com
6096. Record Type . . . . . : 1
6097. Time To Live . . . . : 515
6098. Data Length . . . . . : 4
6099. Section . . . . . . . : Answer
6100. A (Host) Record . . . : 162.254.192.22
6101.  
6102.  
6103. Record Name . . . . . : client-download.steampowered.com
6104. Record Type . . . . . : 1
6105. Time To Live . . . . : 515
6106. Data Length . . . . . : 4
6107. Section . . . . . . . : Answer
6108. A (Host) Record . . . : 162.254.195.14
6109.  
6110.  
6111. Record Name . . . . . : client-download.steampowered.com
6112. Record Type . . . . . : 1
6113. Time To Live . . . . : 515
6114. Data Length . . . . . : 4
6115. Section . . . . . . . : Answer
6116. A (Host) Record . . . : 162.254.195.19
6117.  
6118.  
6119. Record Name . . . . . : client-download.steampowered.com
6120. Record Type . . . . . : 1
6121. Time To Live . . . . : 515
6122. Data Length . . . . . : 4
6123. Section . . . . . . . : Answer
6124. A (Host) Record . . . : 162.254.193.38
6125.  
6126.  
6127. Record Name . . . . . : client-download.steampowered.com
6128. Record Type . . . . . : 1
6129. Time To Live . . . . : 515
6130. Data Length . . . . . : 4
6131. Section . . . . . . . : Answer
6132. A (Host) Record . . . : 162.254.192.21
6133.  
6134.  
6135. Record Name . . . . . : client-download.steampowered.com
6136. Record Type . . . . . : 1
6137. Time To Live . . . . : 515
6138. Data Length . . . . . : 4
6139. Section . . . . . . . : Answer
6140. A (Host) Record . . . : 205.196.6.132
6141.  
6142.  
6143. Record Name . . . . . : client-download.steampowered.com
6144. Record Type . . . . . : 1
6145. Time To Live . . . . : 515
6146. Data Length . . . . . : 4
6147. Section . . . . . . . : Answer
6148. A (Host) Record . . . : 205.196.6.150
6149.  
6150.  
6151. Record Name . . . . . : client-download.steampowered.com
6152. Record Type . . . . . : 1
6153. Time To Live . . . . : 515
6154. Data Length . . . . . : 4
6155. Section . . . . . . . : Answer
6156. A (Host) Record . . . : 205.196.6.151
6157.  
6158.  
6159. Record Name . . . . . : client-download.steampowered.com
6160. Record Type . . . . . : 1
6161. Time To Live . . . . : 515
6162. Data Length . . . . . : 4
6163. Section . . . . . . . : Answer
6164. A (Host) Record . . . : 205.196.6.152
6165.  
6166.  
6167. Record Name . . . . . : client-download.steampowered.com
6168. Record Type . . . . . : 1
6169. Time To Live . . . . : 515
6170. Data Length . . . . . : 4
6171. Section . . . . . . . : Answer
6172. A (Host) Record . . . : 162.254.192.20
6173.  
6174.  
6175. Record Name . . . . . : client-download.steampowered.com
6176. Record Type . . . . . : 1
6177. Time To Live . . . . : 515
6178. Data Length . . . . . : 4
6179. Section . . . . . . . : Answer
6180. A (Host) Record . . . : 162.254.195.18
6181.  
6182.  
6183. Record Name . . . . . : client-download.steampowered.com
6184. Record Type . . . . . : 1
6185. Time To Live . . . . : 515
6186. Data Length . . . . . : 4
6187. Section . . . . . . . : Answer
6188. A (Host) Record . . . : 162.254.193.39
6189.  
6190.  
6191. Record Name . . . . . : client-download.steampowered.com
6192. Record Type . . . . . : 1
6193. Time To Live . . . . : 515
6194. Data Length . . . . . : 4
6195. Section . . . . . . . : Answer
6196. A (Host) Record . . . : 162.254.193.40
6197.  
6198.  
6199. Record Name . . . . . : client-download.steampowered.com
6200. Record Type . . . . . : 1
6201. Time To Live . . . . : 515
6202. Data Length . . . . . : 4
6203. Section . . . . . . . : Answer
6204. A (Host) Record . . . : 162.254.192.17
6205.  
6206.  
6207. Record Name . . . . . : a8-66.akam.net
6208. Record Type . . . . . : 1
6209. Time To Live . . . . : 515
6210. Data Length . . . . . : 4
6211. Section . . . . . . . : Additional
6212. A (Host) Record . . . : 2.16.40.66
6213.  
6214.  
6215. Record Name . . . . . : a9-67.akam.net
6216. Record Type . . . . . : 1
6217. Time To Live . . . . : 515
6218. Data Length . . . . . : 4
6219. Section . . . . . . . : Additional
6220. A (Host) Record . . . : 184.85.248.67
6221.  
6222.  
6223. www.sosvirus.net
6224. ----------------------------------------
6225. Record Name . . . . . : www.sosvirus.net
6226. Record Type . . . . . : 1
6227. Time To Live . . . . : 2942
6228. Data Length . . . . . : 4
6229. Section . . . . . . . : Answer
6230. A (Host) Record . . . : 151.80.21.61
6231.  
6232.  
6233. Record Name . . . . . : ns200.anycast.me
6234. Record Type . . . . . : 1
6235. Time To Live . . . . : 2942
6236. Data Length . . . . . : 4
6237. Section . . . . . . . : Additional
6238. A (Host) Record . . . : 46.105.207.200
6239.  
6240.  
6241. Record Name . . . . . : dns200.anycast.me
6242. Record Type . . . . . : 1
6243. Time To Live . . . . : 2942
6244. Data Length . . . . . : 4
6245. Section . . . . . . . : Additional
6246. A (Host) Record . . . : 46.105.206.200
6247.  
6248.  
6249. s4.histats.com
6250. ----------------------------------------
6251. Record Name . . . . . : s4.histats.com
6252. Record Type . . . . . : 1
6253. Time To Live . . . . : 993
6254. Data Length . . . . . : 4
6255. Section . . . . . . . : Answer
6256. A (Host) Record . . . : 208.43.241.178
6257.  
6258.  
6259. Record Name . . . . . : s4.histats.com
6260. Record Type . . . . . : 1
6261. Time To Live . . . . : 993
6262. Data Length . . . . . : 4
6263. Section . . . . . . . : Answer
6264. A (Host) Record . . . : 208.43.241.179
6265.  
6266.  
6267. Record Name . . . . . : s4.histats.com
6268. Record Type . . . . . : 1
6269. Time To Live . . . . : 993
6270. Data Length . . . . . : 4
6271. Section . . . . . . . : Answer
6272. A (Host) Record . . . : 208.43.241.181
6273.  
6274.  
6275. Record Name . . . . . : s4.histats.com
6276. Record Type . . . . . : 1
6277. Time To Live . . . . : 993
6278. Data Length . . . . . : 4
6279. Section . . . . . . . : Answer
6280. A (Host) Record . . . : 184.173.167.98
6281.  
6282.  
6283. Record Name . . . . . : ns1.softlayer.com
6284. Record Type . . . . . : 1
6285. Time To Live . . . . : 993
6286. Data Length . . . . . : 4
6287. Section . . . . . . . : Additional
6288. A (Host) Record . . . : 67.228.254.4
6289.  
6290.  
6291. Record Name . . . . . : ns1.softlayer.com
6292. Record Type . . . . . : 28
6293. Time To Live . . . . : 993
6294. Data Length . . . . . : 16
6295. Section . . . . . . . : Additional
6296. AAAA Record . . . . . : 2607:f0d0:0:f:1::1
6297.  
6298.  
6299. Record Name . . . . . : ns2.softlayer.com
6300. Record Type . . . . . : 1
6301. Time To Live . . . . : 993
6302. Data Length . . . . . : 4
6303. Section . . . . . . . : Additional
6304. A (Host) Record . . . : 67.228.255.5
6305.  
6306.  
6307. Record Name . . . . . : ns2.softlayer.com
6308. Record Type . . . . . : 28
6309. Time To Live . . . . : 993
6310. Data Length . . . . . : 16
6311. Section . . . . . . . : Additional
6312. AAAA Record . . . . . : 2607:f0d0:0:f:2::1
6313.  
6314.  
6315. gds1.steampowered.com
6316. ----------------------------------------
6317. Record Name . . . . . : gds1.steampowered.com
6318. Record Type . . . . . : 1
6319. Time To Live . . . . : 6196
6320. Data Length . . . . . : 4
6321. Section . . . . . . . : Answer
6322. A (Host) Record . . . : 208.64.201.136
6323.  
6324.  
6325. Record Name . . . . . : a8-66.akam.net
6326. Record Type . . . . . : 1
6327. Time To Live . . . . : 6196
6328. Data Length . . . . . : 4
6329. Section . . . . . . . : Additional
6330. A (Host) Record . . . : 2.16.40.66
6331.  
6332.  
6333. Record Name . . . . . : a9-67.akam.net
6334. Record Type . . . . . : 1
6335. Time To Live . . . . : 6196
6336. Data Length . . . . . : 4
6337. Section . . . . . . . : Additional
6338. A (Host) Record . . . : 184.85.248.67
6339.  
6340.  
6341. Record Name . . . . . : a9-67.akam.net
6342. Record Type . . . . . : 28
6343. Time To Live . . . . : 6196
6344. Data Length . . . . . : 16
6345. Section . . . . . . . : Additional
6346. AAAA Record . . . . . : 2a02:26f0:117::43
6347.  
6348.  
6349. Record Name . . . . . : a1-164.akam.net
6350. Record Type . . . . . : 1
6351. Time To Live . . . . : 6196
6352. Data Length . . . . . : 4
6353. Section . . . . . . . : Additional
6354. A (Host) Record . . . : 193.108.91.164
6355.  
6356.  
6357. Record Name . . . . . : a1-164.akam.net
6358. Record Type . . . . . : 28
6359. Time To Live . . . . : 6196
6360. Data Length . . . . . : 16
6361. Section . . . . . . . : Additional
6362. AAAA Record . . . . . : 2600:1401:2::a4
6363.  
6364.  
6365. Record Name . . . . . : a11-67.akam.net
6366. Record Type . . . . . : 1
6367. Time To Live . . . . : 6196
6368. Data Length . . . . . : 4
6369. Section . . . . . . . : Additional
6370. A (Host) Record . . . : 84.53.139.67
6371.  
6372.  
6373. Record Name . . . . . : a11-67.akam.net
6374. Record Type . . . . . : 28
6375. Time To Live . . . . : 6196
6376. Data Length . . . . . : 16
6377. Section . . . . . . . : Additional
6378. AAAA Record . . . . . : 2600:1480:1::43
6379.  
6380.  
6381. Record Name . . . . . : a24-64.akam.net
6382. Record Type . . . . . : 1
6383. Time To Live . . . . : 6196
6384. Data Length . . . . . : 4
6385. Section . . . . . . . : Additional
6386. A (Host) Record . . . : 2.16.130.64
6387.  
6388.  
6389. Record Name . . . . . : a26-65.akam.net
6390. Record Type . . . . . : 1
6391. Time To Live . . . . : 6196
6392. Data Length . . . . . : 4
6393. Section . . . . . . . : Additional
6394. A (Host) Record . . . : 23.74.25.65
6395.  
6396.  
6397. ad.afy11.net
6398. ----------------------------------------
6399. Record Name . . . . . : ad.afy11.net
6400. Record Type . . . . . : 1
6401. Time To Live . . . . : 1488
6402. Data Length . . . . . : 4
6403. Section . . . . . . . : Answer
6404. A (Host) Record . . . : 74.117.199.102
6405.  
6406.  
6407. Record Name . . . . . : ns1.p07.dynect.net
6408. Record Type . . . . . : 1
6409. Time To Live . . . . : 1488
6410. Data Length . . . . . : 4
6411. Section . . . . . . . : Additional
6412. A (Host) Record . . . : 208.78.70.7
6413.  
6414.  
6415. Record Name . . . . . : ns2.p07.dynect.net
6416. Record Type . . . . . : 1
6417. Time To Live . . . . : 1488
6418. Data Length . . . . . : 4
6419. Section . . . . . . . : Additional
6420. A (Host) Record . . . : 204.13.250.7
6421.  
6422.  
6423. Record Name . . . . . : ns3.p07.dynect.net
6424. Record Type . . . . . : 1
6425. Time To Live . . . . : 1488
6426. Data Length . . . . . : 4
6427. Section . . . . . . . : Additional
6428. A (Host) Record . . . : 208.78.71.7
6429.  
6430.  
6431. Record Name . . . . . : ns4.p07.dynect.net
6432. Record Type . . . . . : 1
6433. Time To Live . . . . : 1488
6434. Data Length . . . . . : 4
6435. Section . . . . . . . : Additional
6436. A (Host) Record . . . : 204.13.251.7
6437.  
6438.  
6439. valve406.steampipe.steamcontent.com
6440. ----------------------------------------
6441. Record Name . . . . . : valve406.steampipe.steamcontent.com
6442. Record Type . . . . . : 5
6443. Time To Live . . . . : 10276
6444. Data Length . . . . . : 8
6445. Section . . . . . . . : Answer
6446. CNAME Record . . . . : valve406.steamcontent.com
6447.  
6448.  
6449. Record Name . . . . . : valve406.steamcontent.com
6450. Record Type . . . . . : 1
6451. Time To Live . . . . : 10276
6452. Data Length . . . . . : 4
6453. Section . . . . . . . : Answer
6454. A (Host) Record . . . : 162.254.196.16
6455.  
6456.  
6457. Record Name . . . . . : a8-66.akam.net
6458. Record Type . . . . . : 1
6459. Time To Live . . . . : 10276
6460. Data Length . . . . . : 4
6461. Section . . . . . . . : Additional
6462. A (Host) Record . . . : 2.16.40.66
6463.  
6464.  
6465. Record Name . . . . . : a8-66.akam.net
6466. Record Type . . . . . : 28
6467. Time To Live . . . . : 10276
6468. Data Length . . . . . : 16
6469. Section . . . . . . . : Additional
6470. AAAA Record . . . . . : 2600:1403:a::42
6471.  
6472.  
6473. Record Name . . . . . : a9-67.akam.net
6474. Record Type . . . . . : 1
6475. Time To Live . . . . : 10276
6476. Data Length . . . . . : 4
6477. Section . . . . . . . : Additional
6478. A (Host) Record . . . : 184.85.248.67
6479.  
6480.  
6481. Record Name . . . . . : a1-164.akam.net
6482. Record Type . . . . . : 1
6483. Time To Live . . . . : 10276
6484. Data Length . . . . . : 4
6485. Section . . . . . . . : Additional
6486. A (Host) Record . . . : 193.108.91.164
6487.  
6488.  
6489. Record Name . . . . . : a1-164.akam.net
6490. Record Type . . . . . : 28
6491. Time To Live . . . . : 10276
6492. Data Length . . . . . : 16
6493. Section . . . . . . . : Additional
6494. AAAA Record . . . . . : 2600:1401:2::a4
6495.  
6496.  
6497. Record Name . . . . . : a11-67.akam.net
6498. Record Type . . . . . : 1
6499. Time To Live . . . . : 10276
6500. Data Length . . . . . : 4
6501. Section . . . . . . . : Additional
6502. A (Host) Record . . . : 84.53.139.67
6503.  
6504.  
6505. Record Name . . . . . : a24-64.akam.net
6506. Record Type . . . . . : 1
6507. Time To Live . . . . : 10276
6508. Data Length . . . . . : 4
6509. Section . . . . . . . : Additional
6510. A (Host) Record . . . : 2.16.130.64
6511.  
6512.  
6513. Record Name . . . . . : a26-65.akam.net
6514. Record Type . . . . . : 1
6515. Time To Live . . . . : 10276
6516. Data Length . . . . . : 4
6517. Section . . . . . . . : Additional
6518. A (Host) Record . . . : 23.74.25.65
6519.  
6520.  
6521. sc.iasds01.com
6522. ----------------------------------------
6523. Record Name . . . . . : sc.iasds01.com
6524. Record Type . . . . . : 5
6525. Time To Live . . . . : 871
6526. Data Length . . . . . : 8
6527. Section . . . . . . . : Answer
6528. CNAME Record . . . . : anycast.sc.iasds01.com
6529.  
6530.  
6531. Record Name . . . . . : anycast.sc.iasds01.com
6532. Record Type . . . . . : 1
6533. Time To Live . . . . : 871
6534. Data Length . . . . . : 4
6535. Section . . . . . . . : Answer
6536. A (Host) Record . . . : 199.166.0.200
6537.  
6538.  
6539. Record Name . . . . . : dns1.p05.nsone.net
6540. Record Type . . . . . : 1
6541. Time To Live . . . . : 871
6542. Data Length . . . . . : 4
6543. Section . . . . . . . : Additional
6544. A (Host) Record . . . : 198.51.44.5
6545.  
6546.  
6547. Record Name . . . . . : dns2.p05.nsone.net
6548. Record Type . . . . . : 1
6549. Time To Live . . . . : 871
6550. Data Length . . . . . : 4
6551. Section . . . . . . . : Additional
6552. A (Host) Record . . . : 198.51.45.5
6553.  
6554.  
6555. Record Name . . . . . : dns3.p05.nsone.net
6556. Record Type . . . . . : 1
6557. Time To Live . . . . : 871
6558. Data Length . . . . . : 4
6559. Section . . . . . . . : Additional
6560. A (Host) Record . . . : 198.51.44.69
6561.  
6562.  
6563. Record Name . . . . . : dns4.p05.nsone.net
6564. Record Type . . . . . : 1
6565. Time To Live . . . . : 871
6566. Data Length . . . . . : 4
6567. Section . . . . . . . : Additional
6568. A (Host) Record . . . : 198.51.45.69
6569.  
6570.  
6571. valve422.steampipe.steamcontent.com
6572. ----------------------------------------
6573. Record Name . . . . . : valve422.steampipe.steamcontent.com
6574. Record Type . . . . . : 5
6575. Time To Live . . . . : 3157
6576. Data Length . . . . . : 8
6577. Section . . . . . . . : Answer
6578. CNAME Record . . . . : valve422.steamcontent.com
6579.  
6580.  
6581. Record Name . . . . . : valve422.steamcontent.com
6582. Record Type . . . . . : 1
6583. Time To Live . . . . : 3157
6584. Data Length . . . . . : 4
6585. Section . . . . . . . : Answer
6586. A (Host) Record . . . : 162.254.196.32
6587.  
6588.  
6589. Record Name . . . . . : a8-66.akam.net
6590. Record Type . . . . . : 1
6591. Time To Live . . . . : 3157
6592. Data Length . . . . . : 4
6593. Section . . . . . . . : Additional
6594. A (Host) Record . . . : 2.16.40.66
6595.  
6596.  
6597. Record Name . . . . . : a8-66.akam.net
6598. Record Type . . . . . : 28
6599. Time To Live . . . . : 3157
6600. Data Length . . . . . : 16
6601. Section . . . . . . . : Additional
6602. AAAA Record . . . . . : 2600:1403:a::42
6603.  
6604.  
6605. Record Name . . . . . : a9-67.akam.net
6606. Record Type . . . . . : 1
6607. Time To Live . . . . : 3157
6608. Data Length . . . . . : 4
6609. Section . . . . . . . : Additional
6610. A (Host) Record . . . : 184.85.248.67
6611.  
6612.  
6613. Record Name . . . . . : a1-164.akam.net
6614. Record Type . . . . . : 1
6615. Time To Live . . . . : 3157
6616. Data Length . . . . . : 4
6617. Section . . . . . . . : Additional
6618. A (Host) Record . . . : 193.108.91.164
6619.  
6620.  
6621. Record Name . . . . . : a1-164.akam.net
6622. Record Type . . . . . : 28
6623. Time To Live . . . . : 3157
6624. Data Length . . . . . : 16
6625. Section . . . . . . . : Additional
6626. AAAA Record . . . . . : 2600:1401:2::a4
6627.  
6628.  
6629. Record Name . . . . . : a11-67.akam.net
6630. Record Type . . . . . : 1
6631. Time To Live . . . . : 3157
6632. Data Length . . . . . : 4
6633. Section . . . . . . . : Additional
6634. A (Host) Record . . . : 84.53.139.67
6635.  
6636.  
6637. Record Name . . . . . : a24-64.akam.net
6638. Record Type . . . . . : 1
6639. Time To Live . . . . : 3157
6640. Data Length . . . . . : 4
6641. Section . . . . . . . : Additional
6642. A (Host) Record . . . : 2.16.130.64
6643.  
6644.  
6645. Record Name . . . . . : a26-65.akam.net
6646. Record Type . . . . . : 1
6647. Time To Live . . . . : 3157
6648. Data Length . . . . . : 4
6649. Section . . . . . . . : Additional
6650. A (Host) Record . . . : 23.74.25.65
6651.  
6652.  
6653. rp.gwallet.com
6654. ----------------------------------------
6655. Record Name . . . . . : rp.gwallet.com
6656. Record Type . . . . . : 1
6657. Time To Live . . . . : 119
6658. Data Length . . . . . : 4
6659. Section . . . . . . . : Answer
6660. A (Host) Record . . . : 208.146.36.220
6661.  
6662.  
6663. Record Name . . . . . : pdns1.ultradns.net
6664. Record Type . . . . . : 1
6665. Time To Live . . . . : 119
6666. Data Length . . . . . : 4
6667. Section . . . . . . . : Additional
6668. A (Host) Record . . . : 204.74.108.1
6669.  
6670.  
6671. Record Name . . . . . : pdns2.ultradns.net
6672. Record Type . . . . . : 1
6673. Time To Live . . . . : 119
6674. Data Length . . . . . : 4
6675. Section . . . . . . . : Additional
6676. A (Host) Record . . . : 204.74.109.1
6677.  
6678.  
6679. Record Name . . . . . : pdns2.ultradns.net
6680. Record Type . . . . . : 28
6681. Time To Live . . . . : 119
6682. Data Length . . . . . : 16
6683. Section . . . . . . . : Additional
6684. AAAA Record . . . . . : 2610:a1:1014::1
6685.  
6686.  
6687. Record Name . . . . . : pdns3.ultradns.org
6688. Record Type . . . . . : 1
6689. Time To Live . . . . : 119
6690. Data Length . . . . . : 4
6691. Section . . . . . . . : Additional
6692. A (Host) Record . . . : 199.7.68.1
6693.  
6694.  
6695. Record Name . . . . . : pdns3.ultradns.org
6696. Record Type . . . . . : 28
6697. Time To Live . . . . : 119
6698. Data Length . . . . . : 16
6699. Section . . . . . . . : Additional
6700. AAAA Record . . . . . : 2610:a1:1015::1
6701.  
6702.  
6703. Record Name . . . . . : pdns4.ultradns.org
6704. Record Type . . . . . : 1
6705. Time To Live . . . . : 119
6706. Data Length . . . . . : 4
6707. Section . . . . . . . : Additional
6708. A (Host) Record . . . : 199.7.69.1
6709.  
6710.  
6711. Record Name . . . . . : pdns4.ultradns.org
6712. Record Type . . . . . : 28
6713. Time To Live . . . . : 119
6714. Data Length . . . . . : 16
6715. Section . . . . . . . : Additional
6716. AAAA Record . . . . . : 2001:502:4612::1
6717.  
6718.  
6719. Record Name . . . . . : pdns5.ultradns.info
6720. Record Type . . . . . : 1
6721. Time To Live . . . . : 119
6722. Data Length . . . . . : 4
6723. Section . . . . . . . : Additional
6724. A (Host) Record . . . : 204.74.114.1
6725.  
6726.  
6727. Record Name . . . . . : pdns5.ultradns.info
6728. Record Type . . . . . : 28
6729. Time To Live . . . . : 119
6730. Data Length . . . . . : 16
6731. Section . . . . . . . : Additional
6732. AAAA Record . . . . . : 2610:a1:1016::1
6733.  
6734.  
6735. Record Name . . . . . : pdns6.ultradns.co.uk
6736. Record Type . . . . . : 1
6737. Time To Live . . . . : 119
6738. Data Length . . . . . : 4
6739. Section . . . . . . . : Additional
6740. A (Host) Record . . . : 204.74.115.1
6741.  
6742.  
6743. www.kmspico2k.com
6744. ----------------------------------------
6745. Record Name . . . . . : www.kmspico2k.com
6746. Record Type . . . . . : 5
6747. Time To Live . . . . : 531
6748. Data Length . . . . . : 8
6749. Section . . . . . . . : Answer
6750. CNAME Record . . . . : kmspico2k.com
6751.  
6752.  
6753. Record Name . . . . . : kmspico2k.com
6754. Record Type . . . . . : 1
6755. Time To Live . . . . : 531
6756. Data Length . . . . . : 4
6757. Section . . . . . . . : Answer
6758. A (Host) Record . . . : 108.167.165.241
6759.  
6760.  
6761. Record Name . . . . . : cns49.hostgator.com
6762. Record Type . . . . . : 1
6763. Time To Live . . . . : 531
6764. Data Length . . . . . : 4
6765. Section . . . . . . . : Additional
6766. A (Host) Record . . . : 108.167.165.238
6767.  
6768.  
6769. Record Name . . . . . : cns50.hostgator.com
6770. Record Type . . . . . : 1
6771. Time To Live . . . . : 531
6772. Data Length . . . . . : 4
6773. Section . . . . . . . : Additional
6774. A (Host) Record . . . : 108.167.165.239
6775.  
6776.  
6777. pixel.wp.com
6778. ----------------------------------------
6779. Record Name . . . . . : pixel.wp.com
6780. Record Type . . . . . : 1
6781. Time To Live . . . . : 12916
6782. Data Length . . . . . : 4
6783. Section . . . . . . . : Answer
6784. A (Host) Record . . . : 192.0.76.3
6785.  
6786.  
6787. Record Name . . . . . : ns1.automattic.com
6788. Record Type . . . . . : 1
6789. Time To Live . . . . : 12916
6790. Data Length . . . . . : 4
6791. Section . . . . . . . : Additional
6792. A (Host) Record . . . : 198.181.116.5
6793.  
6794.  
6795. Record Name . . . . . : ns1.automattic.com
6796. Record Type . . . . . : 28
6797. Time To Live . . . . : 12916
6798. Data Length . . . . . : 16
6799. Section . . . . . . . : Additional
6800. AAAA Record . . . . . : 2a04:fa87:ffff::c6b5:7405
6801.  
6802.  
6803. Record Name . . . . . : ns2.automattic.com
6804. Record Type . . . . . : 1
6805. Time To Live . . . . : 12916
6806. Data Length . . . . . : 4
6807. Section . . . . . . . : Additional
6808. A (Host) Record . . . : 198.181.117.5
6809.  
6810.  
6811. Record Name . . . . . : ns2.automattic.com
6812. Record Type . . . . . : 28
6813. Time To Live . . . . : 12916
6814. Data Length . . . . . : 16
6815. Section . . . . . . . : Additional
6816. AAAA Record . . . . . : 2a04:fa87:ffff::c6b5:7505
6817.  
6818.  
6819. Record Name . . . . . : ns3.automattic.com
6820. Record Type . . . . . : 1
6821. Time To Live . . . . : 12916
6822. Data Length . . . . . : 4
6823. Section . . . . . . . : Additional
6824. A (Host) Record . . . : 192.0.74.5
6825.  
6826.  
6827. Record Name . . . . . : ns3.automattic.com
6828. Record Type . . . . . : 28
6829. Time To Live . . . . : 12916
6830. Data Length . . . . . : 16
6831. Section . . . . . . . : Additional
6832. AAAA Record . . . . . : 2620:115:c00f::c000:4a05
6833.  
6834.  
6835. aka-cdn-ns.adtechus.com
6836. ----------------------------------------
6837. Record Name . . . . . : aka-cdn-ns.adtechus.com
6838. Record Type . . . . . : 5
6839. Time To Live . . . . : 2791
6840. Data Length . . . . . : 8
6841. Section . . . . . . . : Answer
6842. CNAME Record . . . . : cs696.wac.thetacdn.net
6843.  
6844.  
6845. Record Name . . . . . : cs696.wac.thetacdn.net
6846. Record Type . . . . . : 1
6847. Time To Live . . . . : 2791
6848. Data Length . . . . . : 4
6849. Section . . . . . . . : Answer
6850. A (Host) Record . . . : 192.229.233.248
6851.  
6852.  
6853. Record Name . . . . . : a.gtld-servers.net
6854. Record Type . . . . . : 1
6855. Time To Live . . . . : 2791
6856. Data Length . . . . . : 4
6857. Section . . . . . . . : Additional
6858. A (Host) Record . . . : 192.5.6.30
6859.  
6860.  
6861. Record Name . . . . . : a.gtld-servers.net
6862. Record Type . . . . . : 28
6863. Time To Live . . . . : 2791
6864. Data Length . . . . . : 16
6865. Section . . . . . . . : Additional
6866. AAAA Record . . . . . : 2001:503:a83e::2:30
6867.  
6868.  
6869. Record Name . . . . . : b.gtld-servers.net
6870. Record Type . . . . . : 1
6871. Time To Live . . . . : 2791
6872. Data Length . . . . . : 4
6873. Section . . . . . . . : Additional
6874. A (Host) Record . . . : 192.33.14.30
6875.  
6876.  
6877. Record Name . . . . . : b.gtld-servers.net
6878. Record Type . . . . . : 28
6879. Time To Live . . . . : 2791
6880. Data Length . . . . . : 16
6881. Section . . . . . . . : Additional
6882. AAAA Record . . . . . : 2001:503:231d::2:30
6883.  
6884.  
6885. Record Name . . . . . : c.gtld-servers.net
6886. Record Type . . . . . : 1
6887. Time To Live . . . . : 2791
6888. Data Length . . . . . : 4
6889. Section . . . . . . . : Additional
6890. A (Host) Record . . . : 192.26.92.30
6891.  
6892.  
6893. Record Name . . . . . : d.gtld-servers.net
6894. Record Type . . . . . : 1
6895. Time To Live . . . . : 2791
6896. Data Length . . . . . : 4
6897. Section . . . . . . . : Additional
6898. A (Host) Record . . . : 192.31.80.30
6899.  
6900.  
6901. Record Name . . . . . : e.gtld-servers.net
6902. Record Type . . . . . : 1
6903. Time To Live . . . . : 2791
6904. Data Length . . . . . : 4
6905. Section . . . . . . . : Additional
6906. A (Host) Record . . . : 192.12.94.30
6907.  
6908.  
6909. Record Name . . . . . : f.gtld-servers.net
6910. Record Type . . . . . : 1
6911. Time To Live . . . . : 2791
6912. Data Length . . . . . : 4
6913. Section . . . . . . . : Additional
6914. A (Host) Record . . . : 192.35.51.30
6915.  
6916.  
6917. Record Name . . . . . : g.gtld-servers.net
6918. Record Type . . . . . : 1
6919. Time To Live . . . . : 2791
6920. Data Length . . . . . : 4
6921. Section . . . . . . . : Additional
6922. A (Host) Record . . . : 192.42.93.30
6923.  
6924.  
6925. Record Name . . . . . : h.gtld-servers.net
6926. Record Type . . . . . : 1
6927. Time To Live . . . . : 2791
6928. Data Length . . . . . : 4
6929. Section . . . . . . . : Additional
6930. A (Host) Record . . . : 192.54.112.30