API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 24th, 2019
1,352
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 26.15 KB | None | 0 0
raw download clone embed print report
  1. "HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\AlternateShell" "" "" "" "5/21/2018 4:53 PM" ""
  2. + "cmd.exe" "Windows Command Processor" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "1/8/1971 2:44 AM" ""
  3. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "12/18/2018 4:28 PM" ""
  4. + "IAStorIcon" "Delayed launcher" "(Not Verified) Intel Corporation" "c:\program files\intel\intel(r) rapid storage technology\iastoriconlaunch.exe" "5/2/2017 11:02 AM" ""
  5. + "RTHDVCPL" "Realtek HD Audio Manager" "(Verified) Realtek Semiconductor Corp." "c:\program files\realtek\audio\hda\ravcpl64.exe" "6/25/2018 2:15 AM" ""
  6. + "tvncontrol" "TightVNC Server" "(Verified) GlavSoft LLC" "c:\program files\tightvnc\tvnserver.exe" "3/13/2017 10:46 PM" ""
  7. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "1/24/2019 10:37 AM" ""
  8. + "AP" "ActivePaper" "(Not Verified) Motorola Solutions, Inc." "c:\program files (x86)\activepaper\ap.exe" "9/12/2011 11:01 AM" ""
  9. + "IMSS" "PIcon startup utility" "(Verified) Intel(R) Embedded Subsystems and IP Blocks Group" "c:\program files (x86)\intel\intel(r) management engine components\imss\piconstartup.exe" "9/25/2017 4:27 AM" ""
  10. + "Sophos AutoUpdate Monitor" "Sophos Endpoint Security and Control" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\autoupdate\almon.exe" "7/16/2018 9:54 AM" ""
  11. + "SunJavaUpdateSched" "Java Update Scheduler" "(Verified) Oracle America, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe" "10/6/2018 11:15 AM" ""
  12. "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "1/14/2019 11:07 AM" ""
  13. + "OneDrive" "Microsoft OneDrive" "(Verified) Microsoft Corporation" "c:\users\kmarc\appdata\local\microsoft\onedrive\onedrive.exe" "1/8/2019 3:57 PM" ""
  14. "HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce" "" "" "" "1/23/2019 1:15 PM" ""
  15. + "Delete Cached Standalone Update Binary" "Windows Command Processor" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "1/8/1971 2:44 AM" ""
  16. + "Delete Cached Update Binary" "Windows Command Processor" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "1/8/1971 2:44 AM" ""
  17. + "Uninstall 18.222.1104.0007" "Windows Command Processor" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "1/8/1971 2:44 AM" ""
  18. + "Uninstall 18.222.1104.0007\amd64" "Windows Command Processor" "(Verified) Microsoft Windows" "c:\windows\system32\cmd.exe" "1/8/1971 2:44 AM" ""
  19. "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" "" "5/21/2018 7:53 PM" ""
  20. + "Tracker Tool.lnk" "Tracker Tool" "(Not Verified) 3SI Security Systems Inc." "c:\program files (x86)\3si security systems inc\tracker tool 3.1\tracker tool.exe" "12/31/1969 6:00 PM" ""
  21. "HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "5/21/2018 4:59 PM" ""
  22. + "Google Chrome" "Google Chrome Installer" "(Verified) Google Inc" "c:\program files (x86)\google\chrome\application\71.0.3578.98\installer\chrmstp.exe" "12/10/2018 11:00 PM" ""
  23. + "n/a" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  24. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "5/21/2018 4:53 PM" ""
  25. + "n/a" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\syswow64\rundll32.exe" "1/30/1986 5:42 AM" ""
  26. "HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" "" "5/21/2018 4:53 PM" ""
  27. + "text/xml" "Microsoft Office XML MIME Filter" "(Verified) Microsoft Corporation" "c:\program files\common files\microsoft shared\office16\msoxmlmf.dll" "7/30/2015 6:21 AM" ""
  28. "HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "12/18/2018 4:30 PM" ""
  29. + "SavShellExt" "Components for extending windows shell with SAV scan" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\savshellextx64.dll" "8/30/2018 4:49 AM" ""
  30. "HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "12/18/2018 4:30 PM" ""
  31. + "SavShellExt" "Components for extending windows shell with SAV scan" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\savshellextx64.dll" "8/30/2018 4:49 AM" ""
  32. "HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "1/14/2019 1:57 PM" ""
  33. + "MBAMShlExt" "Malwarebytes" "(Verified) Malwarebytes Corporation" "c:\program files\malwarebytes\anti-malware\mbshlext.dll" "3/30/2018 1:37 PM" ""
  34. "HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "12/18/2018 4:30 PM" ""
  35. + "SavShellExt" "Components for extending windows shell with SAV scan" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\savshellextx64.dll" "8/30/2018 4:49 AM" ""
  36. "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "1/14/2019 1:38 PM" ""
  37. + "00nView" "NVIDIA Desktop Explorer, Version 149.34 " "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nview\nvshell.dll" "7/4/2018 6:32 AM" ""
  38. + "NvCplDesktopContext" "NVIDIA Display Shell Extension" "(Verified) NVIDIA Corporation" "c:\windows\system32\nvshext.dll" "11/8/2018 5:50 PM" ""
  39. "HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "1/14/2019 1:57 PM" ""
  40. + "MBAMShlExt" "Malwarebytes" "(Verified) Malwarebytes Corporation" "c:\program files\malwarebytes\anti-malware\mbshlext.dll" "3/30/2018 1:37 PM" ""
  41. + "SavShellExt" "Components for extending windows shell with SAV scan" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\savshellextx64.dll" "8/30/2018 4:49 AM" ""
  42. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "5/21/2018 4:53 PM" ""
  43. + " SkyDrivePro1 (ErrorConflict)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "7/30/2015 6:23 AM" ""
  44. + " SkyDrivePro2 (SyncInProgress)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "7/30/2015 6:23 AM" ""
  45. + " SkyDrivePro3 (InSync)" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "7/30/2015 6:23 AM" ""
  46. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "5/21/2018 4:53 PM" ""
  47. + "Microsoft OneDrive for Business Browser Helper" "Microsoft OneDrive for Business Extensions" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\grooveex.dll" "7/30/2015 6:23 AM" ""
  48. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "11/14/2018 7:08 AM" ""
  49. + "Java(tm) Plug-In 2 SSV Helper" "Java(TM) Platform SE binary" "(Verified) Oracle America, Inc." "c:\program files (x86)\java\jre1.8.0_191\bin\jp2ssv.dll" "10/6/2018 10:36 AM" ""
  50. + "Java(tm) Plug-In SSV Helper" "Java(TM) Platform SE binary" "(Verified) Oracle America, Inc." "c:\program files (x86)\java\jre1.8.0_191\bin\ssv.dll" "10/6/2018 10:36 AM" ""
  51. "Task Scheduler" "" "" "" "" ""
  52. + "\Microsoft\Office\Office 15 Subscription Heartbeat" "" "" "File not found: C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe" "" ""
  53. + "\Microsoft\Office\OfficeTelemetryAgentFallBack2016" "Office Telemetry Agent" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\msoia.exe" "7/30/2015 6:19 AM" ""
  54. + "\Microsoft\Office\OfficeTelemetryAgentLogOn2016" "Office Telemetry Agent" "(Verified) Microsoft Corporation" "c:\program files\microsoft office\office16\msoia.exe" "7/30/2015 6:19 AM" ""
  55. + "\Microsoft\Windows\Application Experience\StartupAppTask" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  56. + "\Microsoft\Windows\ApplicationData\CleanupTemporaryState" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  57. X "\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  58. + "\Microsoft\Windows\Autochk\Proxy" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  59. X "\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  60. X "\Microsoft\Windows\SharedPC\Account Cleanup" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  61. + "\Microsoft\Windows\Sysmain\WsSwapAssessmentTask" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  62. + "\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange" "Windows host process (Rundll32)" "(Verified) Microsoft Windows" "c:\windows\system32\rundll32.exe" "4/14/1957 5:35 AM" ""
  63. + "\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" "NVIDIA nView Wizard, Version 149.34 " "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\nview\nwiz.exe" "7/4/2018 6:30 AM" ""
  64. + "\OneDrive Standalone Update Task-S-1-5-21-1606409850-2385960761-3207780766-2733" "Standalone Updater" "(Verified) Microsoft Corporation" "c:\users\kmarc\appdata\local\microsoft\onedrive\onedrivestandaloneupdater.exe" "1/8/2019 3:57 PM" ""
  65. "HKLM\System\CurrentControlSet\Services" "" "" "" "1/24/2019 9:34 AM" ""
  66. + "APSystemService" "ActivePaper System Services: " "" "c:\program files (x86)\activepaper\apsystemservice.exe" "" ""
  67. + "aspnet_state" "ASP.NET State Service: Provides support for out-of-process session states for ASP.NET. If this service is stopped, out-of-process requests will not be processed. If this service is disabled, any services that explicitly depend on it will fail to start." "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework64\v4.0.30319\aspnet_state.exe" "2/21/2018 11:51 PM" ""
  68. + "FontCache3.0.0.0" "Windows Presentation Foundation Font Cache 3.0.0.0: Optimizes performance of Windows Presentation Foundation (WPF) applications by caching commonly used font data. WPF applications will start this service if it is not already running. It can be disabled, though doing so will degrade the performance of WPF applications." "(Verified) Microsoft Corporation" "c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe" "2/8/2018 11:03 PM" ""
  69. + "GoogleChromeElevationService" "Google Chrome Elevation Service: Google Chrome" "(Verified) Google Inc" "c:\program files (x86)\google\chrome\application\71.0.3578.98\elevation_service.exe" "12/10/2018 11:00 PM" ""
  70. + "gupdate" "Google Update Service (gupdate): Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "(Verified) Google Inc" "c:\program files (x86)\google\update\googleupdate.exe" "7/13/2017 8:07 PM" ""
  71. + "gupdatem" "Google Update Service (gupdatem): Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "(Verified) Google Inc" "c:\program files (x86)\google\update\googleupdate.exe" "7/13/2017 8:07 PM" ""
  72. + "hpqcaslwmiex" "HP CASL Framework Service: HP CASL Framework Service" "(Verified) HP Inc." "c:\program files (x86)\hp\shared\hpqwmiex.exe" "9/28/2016 11:35 AM" ""
  73. + "iaStorAfsService" "Intel(R) Optane(TM) Memory Service: Enables amazing system performance and responsiveness by accelerating frequently used files" "(Verified) Intel Corporation - pGFX" "c:\windows\iastorafsservice\iastorafsservice.exe" "4/24/2017 2:44 PM" ""
  74. + "IAStorDataMgrSvc" "Intel(R) Rapid Storage Technology: Provides storage event notification and manages communication between the storage driver and user space applications." "(Verified) Intel(R) Rapid Storage Technology" "c:\program files\intel\intel(r) rapid storage technology\iastordatamgrsvc.exe" "4/24/2017 2:44 PM" ""
  75. + "ibtsiva" "Intel Bluetooth Service: Intel(R) Wireless Bluetooth(R) iBtSiva Service" "(Verified) Intel(R) Wireless Connectivity Solutions" "c:\windows\system32\ibtsiva.exe" "7/5/2018 1:38 PM" ""
  76. + "Intel(R) Capability Licensing Service TCP IP Interface" "Intel(R) Capability Licensing Service TCP IP Interface: Version: 1.47.715.0" "(Verified) Intel(R) Trust Services" "c:\program files\intel\icls client\socketheciserver.exe" "9/20/2017 4:17 PM" ""
  77. + "Intel(R) PROSet Monitoring Service" "Intel(R) PROSet Monitoring Service: The Intel(R) PROSet Monitoring Service actively monitors changes to the system and updates affected network devices to keep them running in optimal condition. Stopping this service may negatively affect the performance of the network devices on the system." "(Verified) Intel(R) Network Platform Group" "c:\windows\system32\iprosetmonitor.exe" "8/18/2016 12:58 PM" ""
  78. + "Intel(R) TPM Provisioning Service" "Intel(R) TPM Provisioning Service: Version: 1.47.715.0" "(Verified) Intel(R) Trust Services" "c:\program files\intel\icls client\tpmprovisioningservice.exe" "9/20/2017 4:18 PM" ""
  79. + "jhi_service" "Intel(R) Dynamic Application Loader Host Interface Service: Intel(R) Dynamic Application Loader Host Interface Service - Allows applications to access the local Intel (R) DAL" "(Verified) Intel(R) Embedded Subsystems and IP Blocks Group" "c:\program files (x86)\intel\intel(r) management engine components\dal\jhi_service.exe" "9/25/2017 4:26 AM" ""
  80. + "LMS" "Intel(R) Management and Security Application Local Management Service: Intel(R) Management and Security Application Local Management Service - Provides OS-related Intel(R) ME functionality." "(Verified) Intel(R) Embedded Subsystems and IP Blocks Group" "c:\program files (x86)\intel\intel(r) management engine components\lms\lms.exe" "9/25/2017 4:27 AM" ""
  81. + "MBAMService" "Malwarebytes Service: Malwarebytes Service" "(Verified) Malwarebytes Corporation" "c:\program files\malwarebytes\anti-malware\mbamservice.exe" "9/13/2018 2:58 PM" ""
  82. + "Net Driver HPZ12" "Net Driver HPZ12: Dot4Net Module" "(Not Verified) Hewlett-Packard" "c:\windows\system32\hpzinw12.dll" "11/16/2014 11:13 PM" ""
  83. + "NVDisplay.ContainerLocalSystem" "NVIDIA Display Container LS: Container service for NVIDIA root features" "(Verified) NVIDIA Corporation" "c:\program files\nvidia corporation\display.nvcontainer\nvdisplay.container.exe" "7/12/2018 10:54 PM" ""
  84. + "NVWMI" "NVIDIA WMI Provider: Provides WMI objects for managing NVIDIA components of the system" "(Verified) NVIDIA Corporation" "c:\windows\system32\nvwmi64.exe" "11/8/2018 5:52 PM" ""
  85. + "ose" "Office Source Engine: Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "(Verified) Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe" "7/30/2015 6:12 AM" ""
  86. + "Pml Driver HPZ12" "Pml Driver HPZ12: PmlDrv Module" "(Not Verified) Hewlett-Packard" "c:\windows\system32\hpzipm12.dll" "11/16/2014 11:13 PM" ""
  87. + "RtkAudioService" "Realtek Audio Service: For cooperation with Realtek audio driver." "(Verified) Realtek Semiconductor Corp." "c:\program files\realtek\audio\hda\rtkaudioservice64.exe" "5/29/2018 11:06 PM" ""
  88. + "SAVAdminService" "Sophos Anti-Virus status reporter: Provides information to Windows Security Center on whether Sophos Anti-Virus is up to date and whether on-access scanning is enabled." "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\savadminservice.exe" "8/30/2018 3:55 AM" ""
  89. + "SAVService" "Sophos Anti-Virus: Performs threat scanning and cleanup functions." "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\savservice.exe" "8/30/2018 3:40 AM" ""
  90. + "SntpService" "Sophos Network Threat Protection: Detects network-based threats." "(Verified) Sophos Limited" "c:\program files\sophos\sophos network threat protection\bin\sntpservice.exe" "12/1/2015 6:32 AM" ""
  91. + "Sophos Agent" "Sophos Agent: Management Agent for Sophos applications" "" "File not found: C:\Program Files (x86)\Sophos\Remote Management System\ManagementAgentNT.exe -service -name Agent -ORBListenEndpoints iiop://127.0.0.1" "" ""
  92. + "Sophos AutoUpdate Service" "Sophos AutoUpdate Service: Part of the updating system for Sophos components" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\autoupdate\alsvc.exe" "7/16/2018 9:54 AM" ""
  93. + "Sophos Message Router" "Sophos Message Router: Message router for Sophos applications" "" "File not found: C:\Program Files (x86)\Sophos\Remote Management System\RouterNT.exe -service -name Router -ORBListenEndpoints iiop://:8193/ssl_port=8194" "" ""
  94. + "Sophos Web Control Service" "Sophos Web Control Service: Manages Web Control policy." "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\web control\swc_service.exe" "6/14/2018 5:42 AM" ""
  95. + "sophossps" "Sophos System Protection Service: Sophos System Protection Service" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos system protection\ssp.exe" "8/30/2016 9:58 AM" ""
  96. + "swi_filter" "Sophos Web Filter: Ensures web usage is safe and consistent with policy." "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\web intelligence\swi_filter.exe" "6/14/2018 6:20 AM" ""
  97. + "swi_service" "Sophos Web Intelligence Service: Protects against threats from malicious websites." "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\web intelligence\swi_service.exe" "6/14/2018 6:16 AM" ""
  98. + "tvnserver" "TightVNC Server: TightVNC Server" "(Verified) GlavSoft LLC" "c:\program files\tightvnc\tvnserver.exe" "3/13/2017 10:46 PM" ""
  99. + "WdNisSvc" "Windows Defender Antivirus Network Inspection Service: Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "(Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1807.18075-0\nissrv.exe" "11/26/2022 11:06 PM" ""
  100. + "WinDefend" "Windows Defender Antivirus Service: Helps protect users from malware and other potentially unwanted software" "(Verified) Microsoft Corporation" "c:\programdata\microsoft\windows defender\platform\4.18.1807.18075-0\msmpeng.exe" "1/28/1955 5:14 AM" ""
  101. "HKLM\System\CurrentControlSet\Services" "" "" "" "1/24/2019 9:34 AM" ""
  102. + "e1dexpress" "Intel(R) PRO/1000 PCI Express Network Connection Driver D: Intel(R) Gigabit Adapter NDIS 6.x driver" "(Verified) Intel(R) INTELNPG1" "c:\windows\system32\drivers\e1d65x64.sys" "7/26/2016 10:48 AM" ""
  103. + "ESProtectionDriver" "Malwarebytes Anti-Exploit: Malwarebytes Anti-Exploit" "(Verified) Malwarebytes Corporation" "c:\windows\system32\drivers\mbae64.sys" "5/30/2018 5:20 AM" ""
  104. + "iaLPSSi_GPIO" "Intel(R) Serial IO GPIO Controller Driver: Intel(R) Serial IO GPIO Controller Driver" "(Verified) Intel Corporation - Client Components Group" "c:\windows\system32\drivers\ialpssi_gpio.sys" "2/2/2015 3:00 AM" ""
  105. + "iaStorA" "Intel Chipset SATA RAID Controller: Intel(R) Rapid Storage Technology driver - x64" "(Verified) Intel(R) Rapid Storage Technology" "c:\windows\system32\drivers\iastora.sys" "4/24/2017 2:43 PM" ""
  106. + "iaStorAfs" "iaStorAfs: Identifies frequently used files for acceleration with Intel(R) Optane(TM) memory" "(Verified) Intel(R) Rapid Storage Technology" "c:\windows\system32\drivers\iastorafs.sys" "4/24/2017 2:43 PM" ""
  107. + "ibtusb" "Intel(R) Wireless Bluetooth(R): Intel(R) Wireless Bluetooth(R) Filter Driver" "(Verified) Intel(R) Wireless Connectivity Solutions" "c:\windows\system32\drivers\ibtusb.sys" "12/5/2017 10:53 PM" ""
  108. + "IntcAzAudAddService" "Service for Realtek HD Audio (WDM): Realtek(r) High Definition Audio Function Driver" "(Verified) Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys" "9/25/2018 6:24 AM" ""
  109. + "MBAMChameleon" "MBAMChameleon: Malwarebytes Anti-Malware Chameleon" "(Verified) Malwarebytes Corporation" "c:\windows\system32\drivers\mbamchameleon.sys" "9/12/2018 10:20 AM" ""
  110. + "MBAMFarflt" "MBAMFarflt: Malwarebytes Anti-Ransomware" "(Verified) Malwarebytes Corporation" "c:\windows\system32\drivers\farflt.sys" "9/4/2018 7:45 AM" ""
  111. + "MBAMProtection" "MBAMProtection: Malwarebytes Anti-Malware Real-Time Protection" "(Verified) Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys" "9/6/2018 3:08 PM" ""
  112. + "MBAMSwissArmy" "MBAMSwissArmy: Malwarebytes Anti-Malware Swiss Army" "(Verified) Malwarebytes Corporation" "c:\windows\system32\drivers\mbamswissarmy.sys" "8/24/2018 8:44 AM" ""
  113. + "MBAMWebProtection" "MBAMWebProtection: Malwarebytes Web Protection" "(Verified) Malwarebytes Corporation" "c:\windows\system32\drivers\mwac.sys" "9/12/2018 3:28 PM" ""
  114. + "MEIx64" "Intel(R) Management Engine Interface : Intel(R) Management Engine Interface" "(Verified) Intel(R) Embedded Subsystems and IP Blocks Group" "c:\windows\system32\drivers\teedriverw8x64.sys" "7/18/2017 8:15 AM" ""
  115. + "NAL" "Nal Service : Intel(R) Network Adapter Diagnostic Driver" "(Verified) Intel(R) INTELNPG1" "c:\windows\system32\drivers\iqvw64e.sys" "8/23/2016 7:52 PM" ""
  116. + "Netwtw06" "Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit: IntelĀ® Wireless WiFi Link Driver" "(Verified) Intel(R) Wireless Connectivity Solutions" "c:\windows\system32\drivers\netwtw06.sys" "4/1/2018 3:46 PM" ""
  117. + "NVHDA" "Service for NVIDIA High Definition Audio Driver: NVIDIA HDMI Audio Driver" "(Verified) NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys" "6/26/2018 2:22 AM" ""
  118. + "nvlddmkm" "nvlddmkm: NVIDIA Windows Kernel Mode Driver, Version 411.95 " "(Verified) NVIDIA Corporation" "c:\windows\system32\driverstore\filerepository\nvwu.inf_amd64_e71a2c423889f787\nvlddmkm.sys" "11/8/2018 6:19 PM" ""
  119. + "SAVOnAccess" "SAVOnAccess: SAV on-access mini-filter driver" "(Verified) Sophos Limited" "c:\windows\system32\drivers\savonaccess.sys" "9/26/2017 6:59 AM" ""
  120. + "sdcfilter" "sdcfilter: Sophos CD-Rom Class filter driver" "(Verified) Sophos Limited" "c:\windows\system32\drivers\sdcfilter.sys" "6/10/2013 2:51 AM" ""
  121. + "sntp" "sntp: Sophos Network Threat Protection Driver" "(Verified) Sophos Limited" "c:\windows\system32\drivers\sntp.sys" "12/1/2015 6:30 AM" ""
  122. + "Sophos Endpoint Defense" "Sophos Endpoint Defense: Sophos Endpoint Defense Mini-Filter Driver" "(Verified) Sophos Limited" "c:\windows\system32\drivers\sophosed.sys" "5/24/2018 4:35 PM" ""
  123. + "swi_callout" "swi_callout: swi_callout driver" "(Verified) Sophos Limited" "c:\windows\system32\drivers\swi_callout.sys" "5/20/2016 3:18 AM" ""
  124. + "Uim_DEVIM" "UIM Direct Device Image Plugin: Universal Image Mounter" "(Verified) Paragon Software GmbH" "c:\windows\system32\drivers\uimdevim.sys" "2/15/2017 1:29 AM" ""
  125. + "UimBus" "UIM Bus Controller: Universal Image Mounter" "(Verified) Paragon Software GmbH" "c:\windows\system32\drivers\uimbus.sys" "2/15/2017 1:29 AM" ""
  126. "HKLM\SOFTWARE\Classes\Htmlfile\Shell\Open\Command\(Default)" "" "" "" "5/21/2018 4:58 PM" ""
  127. + "C:\Program Files\Internet Explorer\IEXPLORE.EXE" "Internet Explorer" "(Verified) Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe" "11/22/1940 12:25 PM" ""
  128. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" "" "9/10/2018 5:28 AM" ""
  129. + "C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~2.DLL" "Sophos Buffer Overrun Protection" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\sophos_detoured_x64.dll" "3/5/2018 9:23 AM" ""
  130. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls" "" "" "" "1/14/2019 2:00 PM" ""
  131. + " C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL" "Sophos Buffer Overrun Protection" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\sophos_detoured.dll" "3/5/2018 9:23 AM" ""
  132. + "C:\PROGRA~2\Sophos\SOPHOS~1\\SOPHOS~1.DLL" "Sophos Buffer Overrun Protection" "(Verified) Sophos Limited" "c:\program files (x86)\sophos\sophos anti-virus\sophos_detoured.dll" "3/5/2018 9:23 AM" ""
  133. "HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls" "" "" "" "4/11/2018 5:38 PM" ""
  134. + "_wow64" "" "" "c:\windows\syswow64\wow64.dll" "" ""
  135. + "_wow64cpu" "" "" "c:\windows\syswow64\wow64cpu.dll" "" ""
  136. + "_wow64win" "" "" "c:\windows\syswow64\wow64win.dll" "" ""
  137. + "_wowarmhw" "" "" "c:\windows\system32\wowarmhw.dll" "" ""
  138. + "_wowarmhw" "" "" "c:\windows\syswow64\wowarmhw.dll" "" ""
  139. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GpExtensions" "" "" "" "6/13/2018 2:34 PM" ""
  140. + "{1E6D31BF-2B79-4801-A7F1-54F7AA22F4FE}" "" "" "File not found: \\addison1\voashare\k1000\K1AgentDeployCSE_x86.DLL" "" ""
  141. "HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "8/27/2018 5:25 AM" ""
  142. + "HP Universal Print Monitor" "hpmpw081.dll" "(Verified) Hewlett-Packard Company" "c:\windows\system32\hpmpw081.dll" "11/20/2014 9:03 AM" ""
  143. + "HPMLM135" "language monitor new name" "(Verified) Hewlett-Packard Company" "c:\windows\system32\hpmlm135.dll" "8/23/2012 12:32 AM" ""
  144. "HKLM\Software\Wow6432Node\Microsoft\Office\Outlook\Addins" "" "" "" "5/21/2018 4:53 PM" ""
  145. + "Connect Class" "Outlook Social Connector 2013" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\socialconnector.dll" "7/30/2015 6:09 AM" ""
  146. + "FormRegionAddin Class" "" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\addins\umoutlookaddin.dll" "7/30/2015 6:07 AM" ""
  147. + "Microsoft VBA for Outlook Addin" "Outlook VBA Integration Add-In" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\addins\outlvba.dll" "7/30/2015 6:20 AM" ""
  148. "HKLM\Software\Wow6432Node\Microsoft\Office\Excel\Addins" "" "" "" "5/21/2018 4:53 PM" ""
  149. + "NativeShim.InquireConnector Class" "Microsoft Office 2016 component" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\dcf\nativeshim.dll" "7/30/2015 6:15 AM" ""
  150. + "PowerMapConnect Class" "Microsoft Office 2016 component" "(Verified) Microsoft Corporation" "c:\program files (x86)\microsoft office\office16\addins\power map excel add-in\excelpluginshell.dll" "7/30/2015 6:14 AM" ""
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!