wklejto.pl

Dodane przez: ~Anonim (2019-12-05 00:15) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
586.
587.
588.
589.
590.
591.
592.
593.
594.
595.
596.
597.
598.
599.
600.
601.
602.
603.
604.
605.
606.
607.
608.
609.
610.
611.
612.
613.
614.
615.
616.
617.
618.
619.
620.
621.
622.
623.
624.
625.
626.
627.
628.
629.
630.
631.
632.
633.
634.
635.
636.
637.
638.
639.
640.
641.
642.
643.
644.
645.
646.
647.
648.
649.
650.
651.
652.
653.
654.
655.
656.
657.
658.
659.
660.
661.
662.
663.
664.
665.
666.
667.
668.
669.
670.
671.
672.
673.
674.
675.
676.
677.
678.
679.
680.
681.
682.
683.
684.
685.
686.
687.
688.
689.
690.
691.
692.
693.
694.
695.
696.
697.
698.
699.
700.
701.
702.
703.
704.
705.
706.
707.
708.
709.
710.
711.
712.
713.
714.
715.
716.
717.
718.
719.
720.
721.
722.
723.
724.
725.
726.
727.
728.
729.
730.
731.
732.
733.
734.
735.
736.
737.
738.
739.
740.
741.
742.
743.
744.
745.
746.
747.
748.
749.
750.
751.
752.
753.
754.
755.
756.
757.
758.
759.
760.
761.
762.
763.
764.
765.
766.
767.
768.
769.
770.
771.
772.
773.
774.
775.
776.
777.
778.
779.
780.
781.
782.
783.
784.
785.
786.
787.
788.
789.
790.
791.
792.
793.
794.
795.
796.
797.
798.
799.
800.
801.
802.
803.
804.
805.
806.
807.
808.
809.
810.
811.
812.
813.
814.
815.
816.
817.
818.
819.
820.
821.
822.
823.
824.
825.
826.
827.
828.
829.
830.
831.
832.
833.
834.
835.
836.
837.
838.
839.
840.
841.
842.
843.
844.
845.
846.
847.
848.
849.
850.
851.
852.
853.
854.
855.
856.
857.
858.
859.
860.
861.
862.
863.
864.
865.
866.
867.
868.
869.
870.
871.
872.
873.
874.
875.
876.
877.
878.
879.
880.
881.
882.
883.
884.
885.
886.
887.
888.
889.
890.
891.
892.
893.
894.
895.
896.
897.
898.
899.
900.
901.
902.
903.
904.
905.
906.
907.
908.
909.
910.
911.
912.
913.
914.
915.
916.
917.
918.
919.
920.
921.
922.
923.
924.
925.
926.
927.
928.
929.
930.
931.
932.
933.
934.
935.
936.
937.
938.
939.
940.
941.
942.
943.
944.
945.
946.
947.
948.
949.
950.
951.
952.
953.
954.
955.
956.
957.
958.
959.
960.
961.
962.
963.
964.
965.
966.
967.
968.
969.
970.
971.
972.
973.
974.
975.
976.
977.
978.
979.
980.
981.
982.
983.
984.
985.
986.
987.
988.
989.
990.
991.
992.
993.
994.
995.
996.
997.
998.
999.
1000.
1001.
1002.
1003.
1004.
1005.
1006.
1007.
1008.
1009.
1010.
1011.
1012.
1013.
1014.
1015.
1016.
1017.
1018.
1019.
1020.
1021.
1022.
1023.
1024.
1025.
1026.
1027.
1028.
1029.
1030.
1031.
1032.
1033.
1034.
1035.
1036.
1037.
1038.
1039.
1040.
1041.
1042.
1043.
1044.
1045.
1046.
1047.
1048.
1049.
1050.
1051.
1052.
1053.
1054.
1055.
1056.
1057.
1058.
1059.
1060.
1061.
1062.
1063.
1064.
1065.
1066.
1067.
1068.
1069.
1070.
1071.
1072.
1073.
1074.
1075.
1076.
1077.
1078.
1079.
1080.
1081.
1082.
1083.
1084.
1085.
1086.
1087.
1088.
1089.
1090.
1091.
1092.
1093.
1094.
1095.
1096.
1097.
1098.
1099.
1100.
1101.
1102.
1103.
1104.
1105.
1106.
1107.
1108.
1109.
1110.
1111.
1112.
1113.
1114.
1115.
1116.
1117.
1118.
1119.
1120.
1121.
1122.
1123.
1124.
1125.
1126.
1127.
1128.
1129.
1130.
1131.
1132.
1133.
1134.
1135.
1136.
1137.
1138.
1139.
1140.
1141.
1142.
1143.
1144.
1145.
1146.
1147.
1148.
1149.
1150.
1151.
1152.
1153.
1154.
1155.
1156.
1157.
1158.
1159.
1160.
1161.
1162.
1163.
1164.
1165.
1166.
1167.
1168.
1169.
1170.
1171.
1172.
1173.
1174.
1175.
1176.
1177.
1178.
1179.
1180.
1181.
1182.
1183.
1184.
1185.
1186.
1187.
1188.
1189.
1190.
1191.
1192.
1193.
1194.
1195.
1196.
1197.
1198.
1199.
1200.
1201.
1202.
1203.
1204.
1205.
1206.
1207.
1208.
1209.
1210.
1211.
1212.
1213.
1214.
1215.
1216.
1217.
1218.
1219.
1220.
1221.
1222.
1223.
1224.
1225.
1226.
1227.
1228.
1229.
1230.
1231.
1232.
1233.
1234.
1235.
1236.
1237.
1238.
1239.
1240.
1241.
1242.
1243.
1244.
1245.
1246.
1247.
1248.
1249.
1250.
1251.
1252.
1253.
1254.
1255.
1256.
1257.
1258.
1259.
1260.
1261.
1262.
1263.
1264.
1265.
1266.
1267.
1268.
1269.
1270.
1271.
1272.
1273.
1274.
1275.
1276.
1277.
1278.
1279.
1280.
1281.
1282.
1283.
1284.
1285.
1286.
1287.
1288.
1289.
1290.
1291.
1292.
1293.
1294.
1295.
1296.
1297.
1298.
1299.
1300.
1301.
1302.
1303.
1304.
1305.
1306.
1307.
1308.
1309.
1310.
1311.
1312.
1313.
1314.
1315.
1316.
1317.
1318.
1319.
1320.
1321.
1322.
1323.
1324.
1325.
1326.
1327.
1328.
1329.
1330.
1331.
1332.
1333.
1334.
1335.
1336.
1337.
1338.
1339.
1340.
1341.
1342.
1343.
1344.
1345.
1346.
1347.
1348.
1349.
1350.
1351.
1352.
1353.
1354.
1355.
1356.
1357.
1358.
1359.
1360.
1361.
1362.
1363.
1364.
1365.
1366.
1367.
1368.
1369.
1370.
1371.
1372.
1373.
1374.
1375.
1376.
1377.
1378.
1379.
1380.
1381.
1382.
1383.
1384.
1385.
1386.
1387.
1388.
1389.
1390.
1391.
1392.
1393.
1394.
1395.
1396.
1397.
1398.
1399.
1400.
1401.
1402.
1403.
1404.
1405.
1406.
1407.
1408.
1409.
1410.
1411.
1412.
1413.
1414.
1415.
1416.
1417.
1418.
1419.
1420.
1421.
1422.
1423.
1424.
1425.
1426.
1427.
1428.
1429.
1430.
1431.
1432.
1433.
1434.
1435.
1436.
1437.
1438.
1439.
1440.
1441.
1442.
1443.
1444.
1445.
1446.
1447.
1448.
1449.
1450.
1451.
1452.
1453.
1454.
1455.
1456.
1457.
1458.
1459.
1460.
1461.
1462.
1463.
1464.
1465.
1466.
1467.
1468.
1469.
1470.
1471.
1472.
1473.
1474.
1475.
1476.
1477.
1478.
1479.
1480.
1481.
1482.
1483.
1484.
1485.
1486.
1487.
1488.
1489.
1490.
1491.
1492.
1493.
1494.
1495.
1496.
1497.
1498.
1499.
1500.
1501.
1502.
1503.
1504.
1505.
1506.
1507.
1508.
1509.
1510.
1511.
1512.
1513.
1514.
1515.
1516.
1517.
1518.
1519.
1520.
1521.
1522.
1523.
1524.
1525.
1526.
1527.
1528.
1529.
1530.
1531.
1532.
1533.
1534.
1535.
1536.
1537.
1538.
1539.
1540.
1541.
1542.
1543.
1544.
1545.
1546.
1547.
1548.
1549.
1550.
1551.
1552.
1553.
1554.
1555.
1556.
1557.
1558.
1559.
1560.
1561.
1562.
1563.
1564.
1565.
1566.
1567.
1568.
1569.
1570.
1571.
1572.
1573.
1574.
1575.
1576.
1577.
1578.
1579.
1580.
1581.
1582.
1583.
1584.
1585.
1586.
1587.
1588.
1589.
1590.
1591.
1592.
1593.
1594.
1595.
1596.
1597.
1598.
1599.
1600.
1601.
1602.
1603.
1604.
1605.
1606.
1607.
1608.
1609.
1610.
1611.
1612.
1613.
1614.
1615.
1616.
1617.
1618.
1619.
1620.
1621.
1622.
1623.
1624.
1625.
1626.
1627.
1628.
1629.
1630.
1631.
1632.
1633.
1634.
1635.
1636.
1637.
1638.
1639.
1640.
1641.
1642.
1643.
1644.
1645.
1646.
1647.
1648.
1649.
1650.
1651.
1652.
1653.
1654.
1655.
1656.
1657.
1658.
1659.
1660.
1661.
1662.
1663.
1664.
1665.
1666.
1667.
1668.
1669.
1670.
1671.
1672.
1673.
1674.
1675.
1676.
1677.
1678.
1679.
1680.
1681.
1682.
1683.
1684.
1685.
1686.
1687.
1688.
1689.
1690.
1691.
1692.
1693.
1694.
1695.
1696.
1697.
1698.
1699.
1700.
1701.
1702.
1703.
1704.
1705.
1706.
1707.
1708.
1709.
1710.
1711.
1712.
1713.
1714.
1715.
1716.
1717.
1718.
1719.
1720.
1721.
1722.
1723.
1724.
1725.
1726.
1727.
1728.
1729.
1730.
1731.
1732.
1733.
1734.
1735.
1736.
1737.
1738.
1739.
1740.
1741.
1742.
1743.
1744.
1745.
1746.
1747.
1748.
1749.
1750.
1751.
1752.
1753.
1754.
1755.
1756.
1757.
1758.
1759.
1760.
1761.
1762.
1763.
1764.
1765.
1766.
1767.
1768.
1769.
1770.
1771.
1772.
1773.
1774.
1775.
1776.
1777.
1778.
1779.
1780.
1781.
1782.
1783.
1784.
1785.
1786.
1787.
1788.
1789.
1790.
1791.
1792.
1793.
1794.
1795.
1796.
1797.
1798.
1799.
1800.
1801.
1802.
1803.
1804.
1805.
1806.
1807.
1808.
1809.
1810.
1811.
1812.
1813.
1814.
1815.
1816.
1817.
1818.
1819.
1820.
1821.
1822.
1823.
1824.
1825.
1826.
1827.
1828.
1829.
1830.
1831.
1832.
1833.
1834.
1835.
1836.
1837.
1838.
1839.
1840.
1841.
1842.
1843.
1844.
1845.
1846.
1847.
1848.
1849.
1850.
1851.
1852.
1853.
1854.
1855.
1856.
1857.
1858.
1859.
1860.
1861.
1862.
1863.
1864.
1865.
1866.
1867.
1868.
1869.
1870.
1871.
1872.
1873.
1874.
1875.
1876.
1877.
1878.
1879.
1880.
1881.
1882.
1883.
1884.
1885.
1886.
1887.
1888.
1889.
1890.
1891.
1892.
1893.
1894.
1895.
1896.
1897.
1898.
1899.
1900.
1901.
1902.
1903.
1904.
1905.
1906.
1907.
1908.
1909.
1910.
1911.
1912.
1913.
1914.
1915.
1916.
1917.
1918.
1919.
1920.
1921.
1922.
1923.
1924.
1925.
1926.
1927.
1928.
1929.
1930.
1931.
1932.
1933.
1934.
1935.
1936.
1937.
1938.
1939.
1940.
1941.
1942.
1943.
1944.
1945.
1946.
1947.
1948.
1949.
1950.
1951.
1952.
1953.
1954.
1955.
1956.
1957.
1958.
1959.
1960.
1961.
1962.
1963.
1964.
1965.
1966.
1967.
1968.
1969.
1970.
1971.
1972.
1973.
1974.
1975.
1976.
1977.
1978.
1979.
1980.
1981.
1982.
1983.
1984.
1985.
1986.
1987.
1988.
1989.
1990.
1991.
1992.
1993.
1994.
1995.
1996.
1997.
1998.
1999.
2000.
2001.
2002.
2003.
2004.
2005.
2006.
2007.
2008.
2009.
2010.
2011.
2012.
2013.
2014.
2015.
2016.
2017.
2018.
2019.
2020.
2021.
2022.
2023.
2024.
2025.
2026.
2027.
2028.
2029.
2030.
2031.
2032.
2033.
2034.
2035.
2036.
2037.
2038.
2039.
2040.
2041.
2042.
2043.
2044.
2045.
2046.
2047.
2048.
2049.
2050.
2051.
2052.
2053.
2054.
2055.
2056.
2057.
2058.
2059.
2060.
2061.
2062.
2063.
2064.
2065.
2066.
2067.
2068.
2069.
2070.
2071.
2072.
2073.
2074.
2075.
2076.
2077.
2078.
2079.
2080.
2081.
2082.
2083.
2084.
2085.
2086.
2087.
2088.
2089.
2090.
2091.
2092.
2093.
2094.
2095.
2096.
2097.
2098.
2099.
2100.
2101.
2102.
2103.
2104.
2105.
2106.
2107.
2108.
2109.
2110.
2111.
2112.
2113.
2114.
2115.
2116.
2117.
2118.
2119.
2120.
2121.
2122.
2123.
2124.
2125.
2126.
2127.
2128.
2129.
2130.
2131.
2132.
2133.
2134.
2135.
2136.
2137.
2138.
2139.
2140.
2141.
2142.
2143.
2144.
2145.
2146.
2147.
2148.
2149.
2150.
2151.
2152.
2153.
2154.
2155.
2156.
2157.
2158.
2159.
2160.
2161.
2162.
2163.
2164.
2165.
2166.
2167.
2168.
2169.
2170.
2171.
2172.
2173.
2174.
2175.
2176.
2177.
2178.
2179.
2180.
2181.
2182.
2183.
2184.
2185.
2186.
2187.
2188.
2189.
2190.
2191.
2192.
2193.
2194.
2195.
2196.
2197.
2198.
2199.
2200.
2201.
2202.
2203.
2204.
2205.
2206.
2207.
2208.
2209.
2210.
2211.
2212.
2213.
2214.
2215.
2216.
2217.
2218.
2219.
2220.
2221.
2222.
2223.
2224.
2225.
2226.
2227.
2228.
2229.
2230.
2231.
2232.
2233.
2234.
2235.
2236.
2237.
2238.
2239.
2240.
2241.
2242.
2243.
2244.
2245.
2246.
2247.
2248.
2249.
2250.
2251.
2252.
2253.
2254.
2255.
2256.
2257.
2258.
2259.
2260.
2261.
2262.
2263.
2264.
2265.
2266.
2267.
2268.
2269.
2270.
2271.
2272.
2273.
2274.
2275.
2276.
2277.
2278.
2279.
2280.
2281.
2282.
2283.
2284.
2285.
2286.
2287.
2288.
2289.
2290.
2291.
2292.
2293.
2294.
2295.
2296.
2297.
2298.
2299.
2300.
2301.
2302.
2303.
2304.
2305.
2306.
2307.
2308.
2309.
2310.
2311.
2312.
2313.
2314.
2315.
2316.
2317.
2318.
2319.
2320.
2321.
2322.
2323.
2324.
2325.
2326.
2327.
2328.
2329.
2330.
2331.
2332.
2333.
2334.
2335.
2336.
2337.
2338.
2339.
2340.
2341.
2342.
2343.
2344.
2345.
2346.
2347.
2348.
2349.
2350.
2351.
2352.
2353.
2354.
2355.
2356.
2357.
2358.
2359.
2360.
2361.
2362.
2363.
2364.
2365.
2366.
2367.
2368.
2369.
2370.
2371.
2372.
2373.
2374.
2375.
2376.
2377.
2378.
2379.
2380.
2381.
2382.
2383.
2384.
2385.
2386.
2387.
2388.
2389.
2390.
2391.
2392.
2393.
2394.
2395.
2396.
2397.
2398.
2399.
2400.
2401.
2402.
2403.
2404.
2405.
2406.
2407.
2408.
2409.
2410.
2411.
2412.
2413.
2414.
2415.
2416.
2417.
2418.
2419.
2420.
2421.
2422.
2423.
2424.
2425.
2426.
2427.
2428.
2429.
2430.
2431.
2432.
2433.
2434.
2435.
2436.
2437.
2438.
2439.
2440.
2441.
2442.
2443.
2444.
2445.
2446.
2447.
2448.
2449.
2450.
2451.
2452.
2453.
2454.
2455.
2456.
2457.
2458.
2459.
2460.
2461.
2462.
2463.
2464.
2465.
2466.
2467.
2468.
2469.
2470.
2471.
2472.
2473.
2474.
2475.
2476.
2477.
2478.
2479.
2480.
2481.
2482.
2483.
2484.
2485.
2486.
2487.
2488.
2489.
2490.
2491.
2492.
2493.
2494.
2495.
2496.
2497.
2498.
2499.
2500.
2501.
2502.
2503.
2504.
2505.
2506.
2507.
2508.
2509.
2510.
2511.
2512.
2513.
2514.
2515.
2516.
2517.
2518.
2519.
2520.
2521.
2522.
2523.
2524.
2525.
2526.
2527.
2528.
2529.
Logfile of random's system information tool 1.10 (written by random/random)
Run by daw at 2019-12-04 23:53:59
Microsoft Windows 10 Pro 
System drive C: has 50 GB (42%) free of 121 GB
Total RAM: 8132 MB (32% free)
 
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:54:01 PM, on 12/4/2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
C:\Program Files (x86)\oCam\oCamTask.exe
C:\WINDOWS\SysWOW64\muachost.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avpui.exe
C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\ismagent.exe
C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe
C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe
C:\MSI\MSIRegister\MSIRegister.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
c:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\trend micro\daw.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=190
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: (no name) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - (no file)
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [OnScreen Control] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKLM\..\Run: [MSIRegister] "C:\MSI\MSIRegister\MSIRegister.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Aimersoft Helper Compact.exe] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
O4 - HKLM\..\Run: [ExpressVPNNotificationService] "C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\daw\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [WTFast Tray] "C:\Program Files (x86)\WTFast\WTFast.exe" trayonly
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [ExpressVPN4] C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'USLUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'USLUGA SIECIOWA')
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Nowa notatka - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O8 - Extra context menu item: Wytnij obraz - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Wytnij zaznaczenie - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/select/asusTek_sys_ctrl3.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{41563be8-cf3a-4183-8952-1b1093006dea}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atiesrxx.exe
O23 - Service: Usluga Kaspersky Anti-Virus 19.0.0 (AVP19.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_69bb5 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ExpressVPN Service (ExpressVPNService) - ExpressVPN - C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
O23 - Service: MSI Gaming Hotkey Service (GamingHotkey_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: klvssbridge64_19.0.0 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\vssbridge64.exe
O23 - Service: Usluga Kaspersky Secure Connection 3.0.0 (KSDE3.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSIREGISTER_MR - Micro-Star INT'L CO., LTD. - C:\MSI\MSIRegister\MSIRegisterService.exe
O23 - Service: MSI_ActiveX_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
O23 - Service: MSI Live Update Service (MSI_LiveUpdate_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - D:\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 16000 bytes
 
======Listing Processes======
 
 
 
 
 
 
 
 
 
 
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
winlogon.exe
"fontdrvhost.exe"
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s CscService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
 
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
 
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k apphost -s AppHostSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost
 
"C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe"
"C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe"
C:\MSI\MSIRegister\MSIRegisterService.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe"
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\mqsvc.exe
"C:\Program Files (x86)\ExpressVPN\expressvpn-ui\..\expressvpnd\expressvpnd.exe" --workdir C:\ProgramData\ExpressVPN\v4\ --client-version 7.7.9 --client-build 7.7.9.2 --verbose start
dashost.exe {67c7e852-43e0-4f16-b557fc1f36b57754}
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe"
"C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe" --normal
"C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe"
"C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe"
C:\WINDOWS\Explorer.EXE
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\oCam\oCamTask.exe" /Run
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\SysWOW64\muachost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s XboxGipSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"ctfmon.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
schtasks /change /TN "AMDLinkUpdate" /TR "\"C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe\" -AMDLinkUpdate"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19111.85.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avpui.exe" -hidden
"C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\ismagent.exe" --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe"  --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" 
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\daw\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\daw\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\daw\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=78.0.3904.108 --initial-client-data=0x90,0x94,0x98,0x8c,0x9c,0x7ff9db1fed58,0x7ff9db1fed68,0x7ff9db1fed78
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=11280 --on-initialized-event-handle=72 --parent-handle=432 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --gpu-preferences=KAAAAAAAAADgAAAwAAAAAAAAYAAAAAAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --service-request-channel-token=5893475200495761578 --mojo-platform-channel-handle=1580 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --lang=pl --service-sandbox-type=network --service-request-channel-token=3037804417790159108 --mojo-platform-channel-handle=1812 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=13531593694504680201 --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2800 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=677919497200364991 --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2920 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=11009265129334275790 --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3168 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1421823306543234218 --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=9369935113464156648 --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=14515355983773454958 --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3448 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=3190366666652211766 --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3472 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=6282730343354839802 --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=52511647648593509 --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3760 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=5721620420021423710 --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=14904261177419925511 --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3968 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=7204212573665243614 --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5788 /prefetch:1
"C:\Windows\System32\SecurityHealthSystray.exe" 
 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1351083936204553426 --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7928 /prefetch:1
"C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe" 
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=11277271825895124050 --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11068 /prefetch:1
 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=18244268811861784769 --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9024 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=10292134092369677007 --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10224 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=16744717970212682951 --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10004 /prefetch:1
"C:\MSI\MSIRegister\MSIRegister.exe" 
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=670263584745881246 --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9172 /prefetch:1
"C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe" 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15859171591047526917 --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12272 /prefetch:1
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=3090128277148226131 --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12628 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --lang=pl --service-sandbox-type=audio --service-request-channel-token=15982656878847044007 --mojo-platform-channel-handle=13168 /prefetch:8
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe" 
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 16272
"c:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.9.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --extension-process --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1477780123299642372 --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12408 /prefetch:1
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe" -r
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
 
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=1769603820692131029 --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9020 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=11140335386077017938 --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2428 /prefetch:1
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe" -hidden
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=3428168615052969269 --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3464 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=14452386816344648825 --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10964 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15864522456538286269 --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12764 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=11803447943202961188 --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8164 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=3313349980063879241 --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10468 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=7742206131989130562 --renderer-client-id=71 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10552 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=9227912075407959850 --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3128 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8781061796771785114 --renderer-client-id=76 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7688 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=153766817037564507 --renderer-client-id=77 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13548 /prefetch:1
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=14131191379970208997 --renderer-client-id=98 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2820 /prefetch:1
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
taskhostw.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=15207989673454056147 --renderer-client-id=185 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=16132 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s BITS
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=6956643245853137318 --renderer-client-id=243 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9044 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=2106903287759310697 --renderer-client-id=245 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12016 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8244070000165392021 --renderer-client-id=246 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=15844 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=3872883120787178752 --renderer-client-id=271 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13824 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=9671181052537305305 --renderer-client-id=286 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10752 /prefetch:1
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=8281801224603078519 --renderer-client-id=429 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8156 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=17507271750918324418 --renderer-client-id=444 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=17740 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x520
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=4584884721446630242 --renderer-client-id=450 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9316 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=7228396848712335573 --renderer-client-id=455 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=14272 /prefetch:1
"C:\WINDOWS\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=12152484037789576436 --renderer-client-id=463 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=15060 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=7967161026579103599 --renderer-client-id=477 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=14388 /prefetch:1
C:\Windows\System32\usocoreworker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.471_none_5f12f35059003107\TiWorker.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe11_ Global\UsGthrCtrlFltPipeMssGthrPipe11 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 776 780 788 8192 784 
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1560,9443400334129710947,2293811029212223837,131072 --disable-gpu-compositing --lang=pl --enable-auto-reload --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=435106973791878614 --renderer-client-id=481 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11968 /prefetch:1
"C:\WINDOWS\notepad.exe" C:\Users\daw\Desktop\Extras.Txt
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\daw\Desktop\RSITx64.exe" 
 
======Scheduled tasks folder======
 
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  
C:\WINDOWS\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe  --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller winlogon-impersonate 
C:\WINDOWS\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job - C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe  --domain-id 4e00205a-2ab1-4423-8f77-cc25b82cde1d --caller scheduler-impersonate 
C:\WINDOWS\tasks\MSISW_Host.job - C:\WINDOWS\SysWOW64\muachost.exe  
 
======Registry dump======
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2019-07-18 228968]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-07-23 581104]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~3\Office15\GROOVEEX.DLL [2018-05-15 2353944]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-23 244208]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EC1E29BB-F56A-45D8-B023-D3EF710FA0E0}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\IEExt\ie_plugin.dll [2019-10-30 1410768]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-04-05 166360]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EC1E29BB-F56A-45D8-B023-D3EF710FA0E0}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll [2019-10-30 1180368]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{C500C267-63BF-451F-8797-4D720C9A2ED9} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\IEExt\ie_plugin.dll [2019-10-30 1410768]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{C500C267-63BF-451F-8797-4D720C9A2ED9} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll [2019-10-30 1180368]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-03-19 84992]
"jv16 PT (System Startup Check)"=C:\Program Files (x86)\jv16 PowerTools\jv16pt_PreWorker2.exe [2018-11-28 467504]
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\daw\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2019-11-25 1585000]
"WTFast Tray"=C:\Program Files (x86)\WTFast\WTFast.exe [2016-02-23 7381000]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-02-12 19646312]
"ExpressVPN4"=C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe [2019-11-29 805768]
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2019-09-10 1240656]
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe []
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2019-02-12 19646312]
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun []
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_09586DC90C8ECA7E296819A9A97EF57B]
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2019-11-16 1695728]
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe []
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime []
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe /Background []
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
C:\Users\daw\AppData\Roaming\Spotify\Spotify.exe -autostart -minimized []
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
C:\Users\daw\AppData\Roaming\Spotify\SpotifyWebHelper.exe []
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrojanScanner]
C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot []
 
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-09-12 56128]
"OnScreen Control"=C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe [2018-03-14 1786808]
"Live Update"=C:\Program Files (x86)\MSI\Live Update\Live Update.exe [2018-11-14 26041016]
"MSIRegister"=C:\MSI\MSIRegister\MSIRegister.exe [2018-10-25 1262776]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2019-07-04 644552]
"Aimersoft Helper Compact.exe"=C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2016-10-08 2138272]
"ExpressVPNNotificationService"=C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [2019-11-29 471432]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinQuic]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"SoftwareSASGeneration"=1
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun-"=0
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=253
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun-"=0
"NoDriveTypeAutoRun-"=0
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=28
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.ffds"=ff_vfw.dll
 
======File associations======
 
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
 
======List of files/folders created in the last 1 month======
 
2019-12-04 14:05:58 ----D---- C:\ProgramData\ExpressVPN
2019-12-04 14:05:57 ----D---- C:\Program Files (x86)\ExpressVPN
2019-11-29 16:24:44 ----D---- C:\Users\daw\AppData\Roaming\Allavsoft
2019-11-29 16:17:33 ----D---- C:\ProgramData\Aimersoft
2019-11-29 16:17:32 ----D---- C:\Users\daw\AppData\Roaming\iTube Studio
2019-11-29 16:17:09 ----D---- C:\ProgramData\iTube Studio
2019-11-28 19:25:47 ----D---- C:\Program Files\Cheat Engine 7.0
2019-11-28 17:40:26 ----D---- C:\Program Files (x86)\DigiFlix LLC
2019-11-28 17:39:59 ----D---- C:\Users\daw\AppData\Roaming\DigiFlix LLC
2019-11-24 12:19:23 ----D---- C:\Program Files (x86)\FreeGrabApp
2019-11-24 12:19:20 ----D---- C:\Users\daw\AppData\Roaming\FreeGrabApp
2019-11-15 17:36:55 ----ASH---- C:\pagefile.sys
2019-11-13 21:50:17 ----D---- C:\Cemu Emulator Backup
2019-11-13 16:24:00 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2019-11-13 16:24:00 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2019-11-13 16:24:00 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2019-11-13 16:23:59 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-11-13 16:23:59 ----A---- C:\WINDOWS\SYSWOW64\gnsdk_fp.dll
2019-11-13 16:23:59 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2019-11-13 16:23:59 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2019-11-13 16:23:58 ----A---- C:\WINDOWS\system32\cdp.dll
2019-11-13 16:23:57 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2019-11-13 16:23:57 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2019-11-13 16:23:57 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2019-11-13 16:23:56 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-11-13 16:23:56 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2010CustomActions.dll
2019-11-13 16:23:56 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.AppAgent.dll
2019-11-13 16:23:56 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-11-13 16:23:56 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-11-13 16:23:56 ----A---- C:\WINDOWS\system32\mf.dll
2019-11-13 16:23:56 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2019-11-13 16:23:55 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2019-11-13 16:23:55 ----A---- C:\WINDOWS\system32\uwfservicingapi.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\UevTemplateConfigItemGenerator.exe
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\UevTemplateBaselineGenerator.exe
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\UevAppMonitor.exe
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\UevAgentPolicyGenerator.exe
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernSync.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppData.WinRT.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Management.WmiAccess.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Management.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ManagedEventLogging.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.EventLogMessages.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Common.WinRT.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CmUtil.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CabUtil.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-11-13 16:23:54 ----A---- C:\WINDOWS\system32\AgentService.exe
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncController.exe
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncConditions.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SyncCommon.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.SmbSyncProvider.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.MonitorSyncProvider.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.LocalSyncProvider.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-11-13 16:23:53 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-11-13 16:23:52 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2019-11-13 16:23:52 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2019-11-13 16:23:52 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2019-11-13 16:23:52 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-11-13 16:23:52 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-11-13 16:23:52 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.Internal.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\msjet40.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\AcXtrnal.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2019-11-13 16:23:51 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-11-13 16:23:50 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2019-11-13 16:23:50 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2019-11-13 16:23:50 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-11-13 16:23:50 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2019-11-13 16:23:50 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-11-13 16:23:50 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-11-13 16:23:49 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2019-11-13 16:23:48 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\SYSWOW64\reg.exe
2019-11-13 16:23:48 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-11-13 16:23:48 ----A---- C:\WINDOWS\system32\wscinterop.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\system32\DiagSvc.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\system32\AcXtrnal.dll
2019-11-13 16:23:48 ----A---- C:\WINDOWS\system32\AcLayers.dll
2019-11-13 16:23:47 ----A---- C:\WINDOWS\system32\tsgqec.dll
2019-11-13 16:23:47 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-11-13 16:23:47 ----A---- C:\WINDOWS\system32\msimsg.dll
2019-11-13 16:23:47 ----A---- C:\WINDOWS\system32\msi.dll
2019-11-13 16:23:47 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2019-11-13 16:23:47 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-11-13 16:23:46 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-11-13 16:23:46 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-11-13 16:23:46 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2019-11-13 16:23:46 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-11-13 16:23:46 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-11-13 16:23:45 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-11-13 16:23:44 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-11-13 16:23:43 ----A---- C:\WINDOWS\system32\werui.dll
2019-11-13 16:23:43 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 16:23:43 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-11-13 16:23:43 ----A---- C:\WINDOWS\system32\StorSvc.dll
2019-11-13 16:23:43 ----A---- C:\WINDOWS\system32\jscript.dll
2019-11-13 16:23:43 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 16:23:43 ----A---- C:\WINDOWS\HelpPane.exe
2019-11-13 16:23:42 ----A---- C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-13 16:23:42 ----A---- C:\WINDOWS\system32\reg.exe
2019-11-13 16:23:41 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-11-13 16:23:41 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2019-11-13 16:23:41 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-11-13 16:23:41 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-11-13 16:23:41 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2019-11-13 16:23:41 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-11-13 16:23:41 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-11-13 16:23:41 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-11-13 16:23:40 ----A---- C:\WINDOWS\system32\upnphost.dll
2019-11-13 16:23:40 ----A---- C:\WINDOWS\system32\upnpcont.exe
2019-11-13 16:23:40 ----A---- C:\WINDOWS\system32\udhisapi.dll
2019-11-13 16:23:40 ----A---- C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.FileExplorer.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\wincredui.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\usp10.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\KBDJPN.DLL
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\kbd106.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\cryptui.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2019-11-13 16:23:39 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\Utilman.exe
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\sethc.exe
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\EaseOfAccessDialog.exe
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\cmd.exe
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\AtBroker.exe
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-11-13 16:23:38 ----A---- C:\WINDOWS\SYSWOW64\accessibilitycpl.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.AI.MachineLearning.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2019-11-13 16:23:37 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2019-11-13 16:23:36 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-11-13 16:23:36 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2019-11-13 16:23:36 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 16:23:36 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2019-11-13 16:23:36 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-11-13 16:23:36 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2019-11-13 16:23:36 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-11-13 16:23:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-11-13 16:23:35 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-11-13 16:23:35 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2019-11-13 16:23:35 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2019-11-13 16:23:35 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-11-13 16:23:35 ----A---- C:\WINDOWS\SYSWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 16:23:35 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-11-13 16:23:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2019-11-13 16:23:34 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-11-13 16:23:34 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2019-11-13 16:23:34 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\SpatialAudioLicenseSrv.exe
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\BTAGService.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\system32\RMapi.dll
2019-11-13 16:23:33 ----A---- C:\WINDOWS\system32\posetup.dll
2019-11-13 16:23:32 ----A---- C:\WINDOWS\system32\urlmon.dll
2019-11-13 16:23:32 ----A---- C:\WINDOWS\system32\msIso.dll
2019-11-13 16:23:32 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 16:23:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-11-13 16:23:32 ----A---- C:\WINDOWS\system32\edgeIso.dll
2019-11-13 16:23:32 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2019-11-13 16:23:32 ----A---- C:\WINDOWS\system32\AxInstUI.exe
2019-11-13 16:23:32 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\SYSWOW64\winnsi.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\SYSWOW64\nsi.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\wow64win.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\winlogon.exe
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\wincredui.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\usp10.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\omadmapi.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\lpk.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\dciman32.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\cryptui.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2019-11-13 16:23:30 ----A---- C:\WINDOWS\system32\atmlib.dll
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\winnsi.dll
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\nsisvc.dll
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\nsi.dll
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-11-13 16:23:29 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\Wldap32.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\WinTypes.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\winhttp.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\wincorlib.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\weretw.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\wer.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\webio.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\utcutil.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\tzres.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\profsvc.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\crypt32.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\combase.dll
2019-11-13 16:23:28 ----A---- C:\WINDOWS\system32\aepic.dll
2019-11-13 16:23:27 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 16:23:27 ----A---- C:\WINDOWS\system32\uxtheme.dll
2019-11-13 16:23:27 ----A---- C:\WINDOWS\system32\twinui.dll
2019-11-13 16:23:27 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-11-13 16:23:27 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\uDWM.dll
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\srpapi.dll
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\shell32.dll
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\drivers\applockerfltr.sys
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\devinv.dll
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\appidtel.exe
2019-11-13 16:23:26 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\Utilman.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\SRH.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\sethc.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\pcalua.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\pcaevts.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\pcadm.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\osk.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\Narrator.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\Magnify.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\invagent.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\EaseOfAccessDialog.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\AtBroker.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-11-13 16:23:25 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-11-13 16:23:24 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2019-11-13 16:23:23 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2019-11-13 16:23:21 ----A---- C:\WINDOWS\system32\vss_ps.dll
2019-11-13 16:23:21 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-13 16:23:21 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-11-13 16:23:21 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-11-13 16:23:21 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-13 16:23:21 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-13 16:23:21 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-11-13 16:23:20 ----A---- C:\WINDOWS\system32\usosvc.dll
2019-11-13 16:23:20 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\wpnprv.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\win32u.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\win32k.sys
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\wfapigp.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\user32.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\icfupgd.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\fwbase.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\cmd.exe
2019-11-13 16:23:19 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\tquery.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\mssvp.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\mssprxy.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\mssph.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\mssitlb.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-11-13 16:23:18 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\wups2.dll
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\wuauclt.exe
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-11-13 16:23:17 ----A---- C:\WINDOWS\system32\cdd.dll
2019-11-13 16:23:16 ----A---- C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-13 16:23:16 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 16:23:16 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2019-11-13 16:23:15 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-11-13 16:23:15 ----A---- C:\WINDOWS\system32\dstokenclean.exe
2019-11-13 16:23:15 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-11-13 16:23:15 ----A---- C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 16:23:15 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-11-13 16:23:14 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-13 16:23:13 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-11-13 16:23:13 ----A---- C:\WINDOWS\system32\vdsbas.dll
2019-11-13 16:23:13 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\wscsvc.dll
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\wscproxystub.dll
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\wscisvif.dll
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\wscapi.dll
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\wscadminui.exe
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\Wpc.dll
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\UtcDecoderHost.exe
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-11-13 16:23:12 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-11-13 16:23:12 ----A---- C:\WINDOWS\splwow64.exe
2019-11-13 16:23:12 ----A---- C:\WINDOWS\explorer.exe
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\audioresourceregistrar.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2019-11-13 16:23:11 ----A---- C:\WINDOWS\system32\AarSvc.dll
2019-11-13 16:23:10 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2019-11-13 16:23:10 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-11-13 16:23:10 ----A---- C:\WINDOWS\system32\tellib.dll
2019-11-13 16:23:10 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2019-11-13 16:23:10 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2019-11-13 16:23:10 ----A---- C:\WINDOWS\system32\BTAGService.dll
2019-11-13 16:23:10 ----A---- C:\WINDOWS\system32\autopilot.dll
2019-11-13 16:23:10 ----A---- C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\iscsilog.dll
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\drivers\Vid.sys
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2019-11-13 16:23:05 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2019-11-13 16:17:11 ----A---- C:\WINDOWS\system32\poqexec.exe
2019-11-13 16:17:10 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2019-11-11 12:52:13 ----HD---- C:\_acestream_cache_
2019-11-08 04:29:39 ----D---- C:\Program Files\Common Files\SpeechEngines
2019-11-08 04:29:14 ----AS---- C:\WINDOWS\bootstat.dat
2019-11-08 04:28:40 ----D---- C:\WINDOWS\system32\Microsoft
2019-11-08 04:28:40 ----D---- C:\WINDOWS\ServiceProfiles
2019-11-08 04:27:30 ----D---- C:\ProgramData\USOShared
2019-11-08 04:25:00 ----A---- C:\WINDOWS\SYSWOW64\cngkeyhelper.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\SYSWOW64\fvecerts.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\wmpps.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\iisRtl.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\fvewiz.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\fveui.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\fvecerts.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\fveapibase.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\fveapi.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\cngkeyhelper.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\bdeunlock.exe
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\BdeUISrv.exe
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\bdeui.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\bdesvc.dll
2019-11-08 04:24:59 ----A---- C:\WINDOWS\system32\ahadmin.dll
2019-11-08 04:24:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.XamlHost.dll
2019-11-08 04:24:58 ----A---- C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-11-08 04:24:58 ----A---- C:\WINDOWS\system32\RDXService.dll
2019-11-08 04:24:57 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2019-11-08 04:24:57 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2019-11-08 04:24:57 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2019-11-08 04:24:57 ----A---- C:\WINDOWS\SYSWOW64\DavSyncProvider.dll
2019-11-08 04:24:57 ----A---- C:\WINDOWS\system32\SyncController.dll
2019-11-08 04:24:57 ----A---- C:\WINDOWS\system32\DavSyncProvider.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2019-11-08 04:24:56 ----A---- C:\WINDOWS\system32\DHolographicDisplay.dll
2019-11-08 04:24:55 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2019-11-08 04:24:55 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\msvproc.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\mfsvr.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\mfps.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\mfplat.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-08 04:24:54 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-11-08 04:24:53 ----A---- C:\WINDOWS\SYSWOW64\cscobj.dll
2019-11-08 04:24:53 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2019-11-08 04:24:53 ----A---- C:\WINDOWS\system32\wamregps.dll
2019-11-08 04:24:53 ----A---- C:\WINDOWS\system32\MFPlay.dll
2019-11-08 04:24:53 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2019-11-08 04:24:53 ----A---- C:\WINDOWS\system32\iisrstap.dll
2019-11-08 04:24:53 ----A---- C:\WINDOWS\system32\iisreset.exe
2019-11-08 04:24:53 ----A---- C:\WINDOWS\system32\admwprox.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\TSErrRedir.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\srmlib.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\rdpshell.exe
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\rdpinit.exe
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\drivers\csc.sys
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\drivers\AppvVfs.sys
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\drivers\AppvVemgr.sys
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\drivers\AppVStrm.sys
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\cscui.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\cscobj.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\CscMig.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\assignedaccessmanagersvc.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\AssignedAccessManager.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\AssignedAccessCsp.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\AppVNice.exe
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\appvetwstreamingux.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\appvetwclientres.dll
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-11-08 04:24:52 ----A---- C:\WINDOWS\system32\AppVClient.exe
2019-11-08 04:24:51 ----A---- C:\WINDOWS\SYSWOW64\provplatformdesktop.dll
2019-11-08 04:24:51 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-11-08 04:24:51 ----A---- C:\WINDOWS\system32\ScriptRunner.exe
2019-11-08 04:24:51 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2019-11-08 04:24:51 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2019-11-08 04:24:51 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Mirage.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\rdvvmtransport.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\p2pnetsh.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\P2PGraph.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\P2P.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\opengl32.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\glu32.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2019-11-08 04:24:50 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2019-11-08 04:24:49 ----A---- C:\WINDOWS\SYSWOW64\msxbde40.dll
2019-11-08 04:24:49 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2019-11-08 04:24:49 ----A---- C:\WINDOWS\SYSWOW64\msrd2x40.dll
2019-11-08 04:24:49 ----A---- C:\WINDOWS\SYSWOW64\mspbde40.dll
2019-11-08 04:24:49 ----A---- C:\WINDOWS\SYSWOW64\msltus40.dll
2019-11-08 04:24:49 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2019-11-08 04:24:49 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2019-11-08 04:24:49 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2019-11-08 04:24:48 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2019-11-08 04:24:48 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2019-11-08 04:24:48 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\XInput1_4.dll
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\dxdiagn.dll
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\dxdiag.exe
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\DeviceCenter.dll
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\curl.exe
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\ComputerDefaults.exe
2019-11-08 04:24:47 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\Windows.Mirage.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\VAN.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\tsmf.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\termsrv.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\sysmain.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\Spectrum.exe
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\SessEnv.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\rdvvmtransport.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\rdbui.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\ProximityUxHost.exe
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\provplatformdesktop.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\p2psvc.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\P2PGraph.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\P2P.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\inetpp.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\Groupinghc.dll
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2019-11-08 04:24:46 ----A---- C:\WINDOWS\system32\CPFilters.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\wsp_health.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\systemreset.exe
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\srms.dat
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\reseteng.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\rdpnano.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\rdpencom.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\rdpcore.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\rdpclip.exe
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\offreg.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\nltest.exe
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\nettrace.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\FsIso.exe
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\FSClient.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\FrameServer.dll
2019-11-08 04:24:45 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2019-11-08 04:24:44 ----A---- C:\WINDOWS\system32\opengl32.dll
2019-11-08 04:24:44 ----A---- C:\WINDOWS\system32\nshwfp.dll
2019-11-08 04:24:44 ----A---- C:\WINDOWS\system32\glu32.dll
2019-11-08 04:24:43 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2019-11-08 04:24:43 ----A---- C:\WINDOWS\system32\jscript9.dll
2019-11-08 04:24:43 ----A---- C:\WINDOWS\system32\ieproxy.dll
2019-11-08 04:24:42 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2019-11-08 04:24:42 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\XInput1_4.dll
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\sud.dll
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\dxdiag.exe
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\DispBroker.Desktop.dll
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\DeviceCenter.dll
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\curl.exe
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\ComputerDefaults.exe
2019-11-08 04:24:41 ----A---- C:\WINDOWS\system32\CompMgmtLauncher.exe
2019-11-08 04:24:40 ----A---- C:\WINDOWS\system32\computestorage.dll
2019-11-08 04:24:40 ----A---- C:\WINDOWS\system32\computecore.dll
2019-11-08 04:24:40 ----A---- C:\WINDOWS\system32\ClipUp.exe
2019-11-08 04:24:40 ----A---- C:\WINDOWS\system32\CBDHSvc.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\wwanconn.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\vertdll.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\tcbloader.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\skci.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\sdclt.exe
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\resutils.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\ResourceMapper.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\ResBParser.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\NgcIsoCtnr.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\clusapi.dll
2019-11-08 04:24:39 ----A---- C:\WINDOWS\system32\BioIso.exe
2019-11-08 04:24:38 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2019-11-08 04:24:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2019-11-08 04:24:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2019-11-08 04:24:38 ----A---- C:\WINDOWS\SYSWOW64\OpenWith.exe
2019-11-08 04:24:38 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2019-11-08 04:24:38 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2019-11-08 04:24:38 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\xmllite.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\prntvpt.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\printui.exe
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\msxml3r.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\KBDKOR.DLL
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\edpnotify.exe
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\ddrawex.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\d3d8.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2019-11-08 04:24:37 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\winnlsres.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\NtlmShared.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\msimg32.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\devrtl.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\devobj.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\cryptdll.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\cfgmgr32.dll
2019-11-08 04:24:36 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\ulib.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\mmgaserver.exe
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\mmgaproxystub.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\mmgaclient.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\ifsutil.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\compact.exe
2019-11-08 04:24:35 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Services.TargetedContent.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\tzautoupdate.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\cmintegrator.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\CertEnrollCtrl.exe
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2019-11-08 04:24:34 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\webauthn.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\ttdwriter.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\ttdrecordcpu.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\TextInputMethodFormatter.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\rdpsharercom.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\InputHost.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\icu.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\GraphicsCapture.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2019-11-08 04:24:33 ----A---- C:\WINDOWS\SYSWOW64\coloradapterclient.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\XInputUap.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\GameChatTranscription.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\d3d11on12.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\AssignedAccessRuntime.dll
2019-11-08 04:24:32 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2019-11-08 04:24:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2019-11-08 04:24:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2019-11-08 04:24:31 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2019-11-08 04:24:31 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_9.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\winsta.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\WiFiDisplay.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\TpmCertResources.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\taskschd.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\secproc.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\regapi.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\oleprn.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\dot3msm.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\dot3api.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\ContentDeliveryManager.Utilities.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-11-08 04:24:30 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\uxlibres.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\uxlib.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\twext.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\spwizres.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\spwizimg.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\spwizeng.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\pku2u.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\ngctasks.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\LsaIso.exe
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\efswrt.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\comdlg32.dll
2019-11-08 04:24:29 ----A---- C:\WINDOWS\system32\comctl32.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\xpsservices.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\vpnike.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\rastls.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\rastapi.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\rascustom.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\rasapi32.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\puiobj.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\puiapi.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\printui.exe
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\mprddm.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\findnetprinters.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2019-11-08 04:24:28 ----A---- C:\WINDOWS\system32\compstui.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\VideoHandlers.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\umpoext.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\SettingsHandlers_ForceSync.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\prntvpt.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\pnppolicy.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\pnidui.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\npmproxy.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\nlasvc.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\nlaapi.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\netprofm.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\ncsi.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\msxml3r.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\msxml3.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\JpnServiceDS.dll
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\drvinst.exe
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2019-11-08 04:24:27 ----A---- C:\WINDOWS\system32\APMon.dll
2019-11-08 04:24:26 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-11-08 04:24:26 ----A---- C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2019-11-08 04:24:26 ----A---- C:\WINDOWS\system32\mspaint.exe
2019-11-08 04:24:26 ----A---- C:\WINDOWS\system32\LockController.dll
2019-11-08 04:24:26 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2019-11-08 04:24:26 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2019-11-08 04:24:26 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\wininet.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\tdh.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\t2embed.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\profsvcext.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\policymanager.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\NcaSvc.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\jsproxy.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\efsext.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\edpnotify.exe
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\dmcsps.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\ddrawex.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\ddraw.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\d3d9.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\coredpus.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\system32\actxprxy.dll
2019-11-08 04:24:25 ----A---- C:\WINDOWS\fonts\StaticCache.dat
2019-11-08 04:24:24 ----A---- C:\WINDOWS\system32\LogonController.dll
2019-11-08 04:24:22 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2019-11-08 04:24:22 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2019-11-08 04:24:22 ----A---- C:\WINDOWS\system32\SecurityHealthHost.exe
2019-11-08 04:24:22 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\xmllite.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\wuuhext.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\ws2_32.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\wow64.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\wkssvc.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\smss.exe
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\services.exe
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\sechost.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\msimg32.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\mf3216.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\imm32.dll
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\ws2ifsl.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2019-11-08 04:24:21 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\wmsgapi.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\wininit.exe
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\userenv.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\schannel.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\oleaut32.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\NtlmShared.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\ntdll.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\lsasrv.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\kdnet.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\hal.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\drivers\http.sys
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\devrtl.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\devobj.dll
2019-11-08 04:24:20 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\wldp.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\winquic.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\winnlsres.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\wdigest.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\samsrv.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\samlib.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\offlinesam.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\drivers\winquic.sys
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\dnsapi.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\cryptdll.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\ci.dll
2019-11-08 04:24:19 ----A---- C:\WINDOWS\system32\bcrypt.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\WSReset.exe
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\winsta.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\UpgradeResultsUI.exe
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\ubpm.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\twinapi.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\taskschd.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\taskhostw.exe
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\taskcomp.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\sxssrv.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\sppwinob.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\sppsvc.exe
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\sppcommdlg.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\sppcext.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\schtasks.exe
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\schedsvc.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\regapi.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\phoneactivate.exe
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\msctf.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\LicensingUI.exe
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-08 04:24:18 ----A---- C:\WINDOWS\system32\changepk.exe
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\winresume.exe
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\wimserv.exe
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\wimgapi.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\OpenWith.exe
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\ole32.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\ntshrui.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\dwmscene.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\dwmredir.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\dwmcore.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\dwmapi.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\dwm.exe
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\dcomp.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\compact.exe
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\browserexport.exe
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\browserbroker.dll
2019-11-08 04:24:17 ----A---- C:\WINDOWS\system32\browser_broker.exe
2019-11-08 04:24:16 ----A---- C:\WINDOWS\system32\winload.exe
2019-11-08 04:24:16 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2019-11-08 04:24:16 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2019-11-08 04:24:14 ----A---- C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2019-11-08 04:24:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-08 04:24:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll
2019-11-08 04:24:14 ----A---- C:\WINDOWS\system32\ConstraintIndex.Search.dll
2019-11-08 04:24:13 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2019-11-08 04:24:13 ----A---- C:\WINDOWS\system32\NotificationController.dll
2019-11-08 04:24:13 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\usocoreps.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\UsoClient.exe
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\usoapi.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\updatecsp.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\mousocoreworker.exe
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2019-11-08 04:24:12 ----A---- C:\WINDOWS\system32\AppResolver.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\WSDApi.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\wcimage.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\wci.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\wc_storage.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\UsbPmApi.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\ulib.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\mmgaserver.exe
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\mmgaproxystub.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\mmgaclient.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\ifsutil.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\drvsetup.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\drivers\UsbPmApi.sys
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\daxexec.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\containerdevicemanagement.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\container.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2019-11-08 04:24:11 ----A---- C:\WINDOWS\system32\bindflt.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\wpnservice.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\wpncore.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\wpnapps.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\wintrust.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\rmclient.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\rdpbase.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\psmsrv.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\propsys.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\profext.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\kerberos.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\BFE.DLL
2019-11-08 04:24:10 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\WaaSMedicPS.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\Unistore.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\ttdwriter.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\ttdrecordcpu.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\InstallService.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\icu.dll
2019-11-08 04:24:09 ----A---- C:\WINDOWS\system32\esent.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\webauthn.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\rdpsharercom.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\ISM.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2019-11-08 04:24:08 ----A---- C:\WINDOWS\system32\InputHost.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\TextInputMethodFormatter.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\mscms.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\InputService.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\icm32.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\GraphicsCapture.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\dxgiadaptercache.exe
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\dxgi.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\directxdatabaseupdater.exe
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\d3d11on12.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\d3d11.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2019-11-08 04:24:07 ----A---- C:\WINDOWS\system32\coloradapterclient.dll
2019-11-08 04:24:06 ----A---- C:\WINDOWS\system32\dosvc.dll
2019-11-08 04:24:06 ----A---- C:\WINDOWS\system32\domgmt.dll
2019-11-08 04:24:06 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2019-11-08 04:24:03 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2019-11-08 04:24:03 ----A---- C:\WINDOWS\system32\wups.dll
2019-11-08 04:24:03 ----A---- C:\WINDOWS\system32\wuapi.dll
2019-11-08 04:24:03 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-11-08 04:24:03 ----A---- C:\WINDOWS\system32\msxml6r.dll
2019-11-08 04:24:03 ----A---- C:\WINDOWS\system32\msxml6.dll
2019-11-08 04:24:03 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\directml.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\D3D12.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\cryptngc.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\CertEnrollCtrl.exe
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-08 04:24:02 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-08 04:24:01 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2019-11-08 04:24:01 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2019-11-08 04:24:01 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2019-11-08 04:24:01 ----A---- C:\WINDOWS\system32\tbauth.dll
2019-11-08 04:24:01 ----A---- C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-08 04:24:01 ----A---- C:\WINDOWS\system32\qmgr.dll
2019-11-08 04:24:01 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2019-11-08 04:24:01 ----A---- C:\WINDOWS\system32\appinfo.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\XInputUap.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\msftedit.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\GameInput.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\GameChatTranscription.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\cloudAP.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\appsruprov.dll
2019-11-08 04:24:00 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\vdsutil.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\vdsldr.exe
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\vds_ps.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\vds.exe
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\ReAgent.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\netplwiz.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\mapistub.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\mapi32.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\kernel32.dll
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\fixmapi.exe
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-11-08 04:23:59 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\wlansvc.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\wlansec.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\wlanapi.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\Windows.UI.Storage.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\wfdprov.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\dot3msm.dll
2019-11-08 04:23:58 ----A---- C:\WINDOWS\system32\dot3api.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\wpx.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\Windows.Internal.Signals.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\TpmCertResources.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\provops.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\provhandlers.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\provengine.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\provdatastore.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\fontext.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\dsreg.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\dot3svc.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2019-11-08 04:23:57 ----A---- C:\WINDOWS\system32\advapi32.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\WpcApi.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\Win32_DeviceGuard.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\umpo-overrides.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\provtool.exe
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\oleprn.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\localspl.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\bcdedit.exe
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-11-08 04:23:56 ----A---- C:\WINDOWS\system32\ApproveChildRequest.exe
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\XAudio2_9.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\wwansvc.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\wosc.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\umpo.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\ManageCI.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\lstelemetry.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\fcon.dll
2019-11-08 04:23:55 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2019-11-08 04:23:54 ----A---- C:\WINDOWS\system32\tssrvlic.dll
2019-11-08 04:23:54 ----A---- C:\WINDOWS\system32\mssecuser.dll
2019-11-08 04:23:54 ----A---- C:\WINDOWS\system32\LSCSHostPolicy.dll
2019-11-08 04:23:54 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2019-11-08 04:23:52 ----A---- C:\WINDOWS\system32\vmbuspipe.dll
2019-11-08 04:23:52 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys
2019-11-08 04:23:52 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2019-11-08 04:23:52 ----A---- C:\WINDOWS\system32\drivers\tsusbhub.sys
2019-11-08 04:23:52 ----A---- C:\WINDOWS\system32\drivers\storvsc.sys
2019-11-08 04:23:51 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2019-11-08 04:23:51 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2019-11-08 04:23:51 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2019-11-08 04:23:51 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2019-11-08 04:23:51 ----A---- C:\WINDOWS\system32\drivers\hidspi.sys
2019-11-08 04:23:51 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2019-11-08 04:23:51 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2019-11-08 04:23:51 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\uaspstor.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\msisadrv.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\monitor.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\intelpep.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2019-11-08 04:23:50 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2019-11-08 04:23:49 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2019-11-08 04:23:49 ----A---- C:\WINDOWS\system32\drivers\usbaudio2.sys
2019-11-08 04:23:49 ----A---- C:\WINDOWS\system32\drivers\HdAudio.sys
2019-11-08 04:23:49 ----A---- C:\WINDOWS\system32\drivers\devauthe.sys
2019-11-08 04:23:49 ----A---- C:\WINDOWS\system32\drivers\BthA2dp.sys
2019-11-08 04:20:20 ----A---- C:\WINDOWS\system32\perfi015.dat
2019-11-08 04:20:20 ----A---- C:\WINDOWS\system32\perfh015.dat
2019-11-08 04:20:20 ----A---- C:\WINDOWS\system32\perfd015.dat
2019-11-08 04:20:20 ----A---- C:\WINDOWS\system32\perfc015.dat
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\pl
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\drivers\pl-PL
2019-11-08 04:20:18 ----D---- C:\WINDOWS\system32\pl
2019-11-08 04:20:18 ----D---- C:\WINDOWS\system32\drivers\pl-PL
2019-11-08 04:20:18 ----D---- C:\WINDOWS\pl-PL
2019-11-08 04:18:50 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2019-11-08 04:18:50 ----D---- C:\WINDOWS\system32\msmq
2019-11-08 04:18:50 ----D---- C:\WINDOWS\system32\BestPractices
2019-11-08 04:18:50 ----D---- C:\inetpub
2019-11-08 04:18:31 ----A---- C:\WINDOWS\SYSWOW64\XPSSHHDR.dll
2019-11-08 04:18:31 ----A---- C:\WINDOWS\SYSWOW64\XpsFilt.dll
2019-11-08 04:18:31 ----A---- C:\WINDOWS\system32\XPSSHHDR.dll
2019-11-08 04:18:31 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2019-11-08 04:18:31 ----A---- C:\WINDOWS\system32\XpsFilt.dll
2019-11-08 04:18:27 ----A---- C:\WINDOWS\SYSWOW64\snmpsnap.dll
2019-11-08 04:18:27 ----A---- C:\WINDOWS\SYSWOW64\snmpmib.dll
2019-11-08 04:18:27 ----A---- C:\WINDOWS\SYSWOW64\snmp.exe
2019-11-08 04:18:27 ----A---- C:\WINDOWS\SYSWOW64\lmmib2.dll
2019-11-08 04:18:27 ----A---- C:\WINDOWS\SYSWOW64\hostmib.dll
2019-11-08 04:18:27 ----A---- C:\WINDOWS\SYSWOW64\evntwin.exe
2019-11-08 04:18:27 ----A---- C:\WINDOWS\SYSWOW64\evntcmd.exe
2019-11-08 04:18:27 ----A---- C:\WINDOWS\SYSWOW64\evntagnt.dll
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\wow64mib.dll
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\snmpsnap.dll
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\snmpmib.dll
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\snmp.exe
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\lmmib2.dll
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\hostmib.dll
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\evntwin.exe
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\evntcmd.exe
2019-11-08 04:18:23 ----A---- C:\WINDOWS\system32\evntagnt.dll
2019-11-08 04:18:19 ----D---- C:\Program Files\Reference Assemblies
2019-11-08 04:18:19 ----D---- C:\Program Files\MSBuild
2019-11-08 04:18:19 ----D---- C:\Program Files (x86)\Reference Assemblies
2019-11-08 04:18:19 ----D---- C:\Program Files (x86)\MSBuild
2019-11-08 04:18:07 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2019-11-08 04:18:07 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2019-11-08 04:18:07 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-11-08 04:18:05 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2019-11-08 04:18:05 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-11-08 04:18:05 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-11-08 04:17:54 ----A---- C:\WINDOWS\system32\prm0015.dll
2019-11-07 20:16:28 ----D---- C:\ProgramData\Microsoft OneDrive
2019-11-07 20:16:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-07 20:14:32 ----SHD---- C:\Recovery
2019-11-07 20:14:32 ----SHD---- C:\ProgramData\Templates
2019-11-07 20:14:32 ----SHD---- C:\ProgramData\Start Menu
2019-11-07 20:14:32 ----SHD---- C:\ProgramData\Favorites
2019-11-07 20:14:32 ----SHD---- C:\ProgramData\Documents
2019-11-07 20:14:32 ----SHD---- C:\ProgramData\Desktop
2019-11-07 20:14:32 ----SHD---- C:\ProgramData\Application Data
2019-11-07 20:09:33 ----ASH---- C:\hiberfil.sys
2019-11-07 20:08:13 ----SD---- C:\Users\daw\AppData\Roaming\Microsoft
2019-11-07 20:03:32 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2019-11-07 20:02:08 ----D---- C:\WINDOWS\system32\SleepStudy
2019-11-07 20:02:07 ----ASH---- C:\swapfile.sys
2019-11-07 20:02:07 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-07 20:02:05 ----D---- C:\WINDOWS\Prefetch
2019-11-05 23:02:06 ----DC---- C:\ProgramData\Epic
2019-11-05 23:02:06 ----D---- C:\Program Files (x86)\Epic Games
2019-11-05 22:30:59 ----DC---- C:\WINDOWS\Panther
 
======List of files/folders modified in the last 1 month======
 
2019-12-04 23:54:01 ----D---- C:\Program Files\trend micro
2019-12-04 23:49:00 ----D---- C:\WINDOWS\system32\sru
2019-12-04 23:41:57 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-12-04 23:13:09 ----D---- C:\WINDOWS\Temp
2019-12-04 23:06:04 ----DC---- C:\ProgramData\Kaspersky Lab
2019-12-04 22:45:42 ----RD---- C:\Program Files
2019-12-04 22:45:39 ----D---- C:\WINDOWS\INF
2019-12-04 21:55:29 ----D---- C:\WINDOWS\System32
2019-12-04 21:52:57 ----D---- C:\WINDOWS\debug
2019-12-04 21:49:07 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2019-12-04 21:47:07 ----D---- C:\WINDOWS\SysWOW64
2019-12-04 21:47:07 ----D---- C:\WINDOWS\system32\Tasks
2019-12-04 21:47:01 ----SHD---- C:\System Volume Information
2019-12-04 21:41:03 ----D---- C:\WINDOWS\system32\WDI
2019-12-04 21:39:33 ----D---- C:\WINDOWS\system32\catroot2
2019-12-04 21:11:38 ----DC---- C:\Users\daw\AppData\Roaming\DAEMON Tools Lite
2019-12-04 20:50:51 ----RD---- C:\WINDOWS\Microsoft.NET
2019-12-04 15:47:11 ----D---- C:\Windows
2019-12-04 15:40:14 ----D---- C:\WINDOWS\SoftwareDistribution
2019-12-04 14:14:27 ----D---- C:\WINDOWS\system32\drivers
2019-12-04 14:05:59 ----SHDC---- C:\WINDOWS\Installer
2019-12-04 14:05:59 ----SHD---- C:\Config.Msi
2019-12-04 14:05:58 ----HD---- C:\ProgramData
2019-12-04 14:05:57 ----RD---- C:\Program Files (x86)
2019-12-04 14:05:56 ----D---- C:\ProgramData\Package Cache
2019-12-04 00:11:36 ----HD---- C:\Program Files\WindowsApps
2019-12-04 00:11:36 ----D---- C:\WINDOWS\AppReadiness
2019-12-03 00:07:49 ----DC---- C:\Users\daw\AppData\Roaming\vlc
2019-12-02 15:49:13 ----D---- C:\Program Files (x86)\Rockstar Games
2019-12-02 15:49:06 ----D---- C:\Program Files\Rockstar Games
2019-11-29 16:17:22 ----D---- C:\Program Files (x86)\Common Files
2019-11-28 22:17:16 ----D---- C:\WINDOWS\system32\DriverStore
2019-11-28 19:16:22 ----DC---- C:\Users\daw\AppData\Roaming\MediaInfo
2019-11-28 19:12:29 ----D---- C:\Program Files\MediaInfo
2019-11-28 18:56:45 ----AD---- C:\Program Files\Opera
2019-11-23 00:39:00 ----D---- C:\WINDOWS\system32\config
2019-11-22 23:09:25 ----D---- C:\Program Files\Common Files\microsoft shared
2019-11-22 23:08:52 ----AD---- C:\Program Files\Microsoft Office
2019-11-22 21:40:35 ----D---- C:\WINDOWS\WinSxS
2019-11-18 19:41:18 ----DC---- C:\Users\daw\AppData\Roaming\uTorrent
2019-11-15 17:35:44 ----D---- C:\WINDOWS\SYSWOW64\wbem
2019-11-15 17:35:44 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2019-11-15 17:35:44 ----D---- C:\WINDOWS\SYSWOW64\migration
2019-11-15 17:35:44 ----D---- C:\WINDOWS\SYSWOW64\en-US
2019-11-15 17:35:42 ----D---- C:\WINDOWS\SystemResources
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\wbem
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\ru-RU
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\ro-RO
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\pt-PT
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\pl-PL
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\nl-NL
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\migration
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\en-US
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\en-GB
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\el-GR
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\drivers\en-US
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\Boot
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\ar-SA
2019-11-15 17:35:41 ----D---- C:\WINDOWS\system32\appraiser
2019-11-15 17:35:39 ----RD---- C:\WINDOWS\PrintDialog
2019-11-15 17:35:39 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2019-11-15 17:35:39 ----D---- C:\WINDOWS\ShellExperiences
2019-11-15 17:35:39 ----D---- C:\WINDOWS\ShellComponents
2019-11-15 17:35:39 ----D---- C:\WINDOWS\PolicyDefinitions
2019-11-15 17:35:39 ----D---- C:\WINDOWS\DiagTrack
2019-11-15 17:35:38 ----D---- C:\WINDOWS\bcastdvr
2019-11-15 17:35:38 ----D---- C:\WINDOWS\apppatch
2019-11-15 17:35:38 ----D---- C:\Program Files (x86)\Windows Media Player
2019-11-14 11:59:03 ----D---- C:\WINDOWS\system32\LogFiles
2019-11-13 21:25:25 ----DC---- C:\Users\daw\AppData\Roaming\USB_HELPER
2019-11-13 16:32:14 ----D---- C:\ProgramData\Microsoft Help
2019-11-13 16:29:40 ----D---- C:\WINDOWS\system32\MRT
2019-11-13 16:26:07 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-11-13 16:26:03 ----D---- C:\WINDOWS\CbsTemp
2019-11-13 16:26:00 ----D---- C:\WINDOWS\servicing
2019-11-13 16:15:00 ----D---- C:\WINDOWS\Logs
2019-11-11 12:59:14 ----RD---- C:\WINDOWS\assembly
2019-11-11 11:52:15 ----DC---- C:\Users\daw\AppData\Roaming\.ACEStream
2019-11-11 11:31:55 ----DC---- C:\ProgramData\Rockstar Games
2019-11-08 12:11:02 ----D---- C:\WINDOWS\appcompat
2019-11-08 04:57:18 ----RSD---- C:\WINDOWS\Fonts
2019-11-08 04:57:18 ----D---- C:\WINDOWS\twain_32
2019-11-08 04:57:18 ----D---- C:\WINDOWS\SYSWOW64\vbox
2019-11-08 04:57:18 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2019-11-08 04:57:18 ----D---- C:\WINDOWS\SYSWOW64\IME
2019-11-08 04:57:18 ----D---- C:\WINDOWS\SYSWOW64\GroupPolicy
2019-11-08 04:57:18 ----D---- C:\WINDOWS\SYSWOW64\drivers
2019-11-08 04:57:18 ----D---- C:\WINDOWS\SYSWOW64\Codecs
2019-11-08 04:57:18 ----D---- C:\WINDOWS\system32\zh-HK
2019-11-08 04:57:18 ----D---- C:\WINDOWS\system32\WinBioDatabase
2019-11-08 04:57:18 ----D---- C:\WINDOWS\system32\vbox
2019-11-08 04:57:18 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2019-11-08 04:57:18 ----D---- C:\WINDOWS\system32\spool
2019-11-08 04:57:18 ----D---- C:\WINDOWS\system32\drivers\etc
2019-11-08 04:57:17 ----D---- C:\WINDOWS\system32\oobe
2019-11-08 04:57:17 ----D---- C:\WINDOWS\system32\NDF
2019-11-08 04:57:17 ----D---- C:\WINDOWS\system32\Macromed
2019-11-08 04:57:17 ----D---- C:\WINDOWS\system32\IME
2019-11-08 04:57:17 ----D---- C:\WINDOWS\system32\CatRoot
2019-11-08 04:57:17 ----D---- C:\WINDOWS\system32\appmgmt
2019-11-08 04:57:17 ----D---- C:\WINDOWS\System
2019-11-08 04:57:17 ----D---- C:\WINDOWS\ShellNew
2019-11-08 04:57:17 ----D---- C:\WINDOWS\Setup
2019-11-08 04:57:17 ----D---- C:\WINDOWS\ServiceState
2019-11-08 04:57:17 ----D---- C:\WINDOWS\schemas
2019-11-08 04:57:17 ----D---- C:\WINDOWS\pl
2019-11-08 04:57:16 ----SHD---- C:\Program Files\Windows Sidebar
2019-11-08 04:57:16 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2019-11-08 04:57:16 ----SD---- C:\WINDOWS\Downloaded Program Files
2019-11-08 04:57:16 ----HD---- C:\WINDOWS\system32\GroupPolicy
2019-11-08 04:57:16 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2019-11-08 04:57:16 ----D---- C:\WINDOWS\system32\MsDtc
2019-11-08 04:57:16 ----D---- C:\WINDOWS\system32\inetsrv
2019-11-08 04:57:16 ----D---- C:\Program Files\Microsoft.NET
2019-11-08 04:57:16 ----D---- C:\Program Files\Internet Explorer
2019-11-08 04:57:16 ----D---- C:\Program Files\Intel
2019-11-08 04:57:16 ----D---- C:\Program Files\IIS
2019-11-08 04:57:16 ----D---- C:\Program Files\Common Files\System
2019-11-08 04:57:16 ----D---- C:\Program Files\Common Files
2019-11-08 04:57:16 ----D---- C:\Program Files\AMD
2019-11-08 04:57:16 ----D---- C:\Program Files (x86)\Microsoft.NET
2019-11-08 04:57:16 ----D---- C:\Program Files (x86)\Internet Explorer
2019-11-08 04:57:16 ----AD---- C:\Program Files\UNP
2019-11-08 04:30:07 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2019-11-08 04:29:46 ----D---- C:\WINDOWS\Resources
2019-11-08 04:29:43 ----D---- C:\WINDOWS\Help
2019-11-08 04:29:43 ----D---- C:\WINDOWS\ehome
2019-11-08 04:29:40 ----D---- C:\Program Files (x86)\Windows Mail
2019-11-08 04:29:39 ----D---- C:\Program Files\Windows Mail
2019-11-08 04:29:39 ----D---- C:\Program Files\Microsoft Games
2019-11-08 04:29:39 ----D---- C:\Program Files\Common Files\ATI Technologies
2019-11-08 04:27:31 ----D---- C:\WINDOWS\TextInput
2019-11-08 04:27:31 ----D---- C:\WINDOWS\SYSWOW64\oobe
2019-11-08 04:27:31 ----D---- C:\WINDOWS\SYSWOW64\Dism
2019-11-08 04:27:31 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2019-11-08 04:27:31 ----D---- C:\WINDOWS\system32\zh-TW
2019-11-08 04:27:31 ----D---- C:\WINDOWS\system32\WinMetadata
2019-11-08 04:27:31 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2019-11-08 04:27:31 ----D---- C:\WINDOWS\system32\sk-SK
2019-11-08 04:27:31 ----D---- C:\WINDOWS\system32\PerceptionSimulation
2019-11-08 04:27:31 ----D---- C:\WINDOWS\system32\migwiz
2019-11-08 04:27:30 ----SD---- C:\WINDOWS\system32\DiagSvcs
2019-11-08 04:27:30 ----SD---- C:\WINDOWS\system32\AppV
2019-11-08 04:27:30 ----D---- C:\WINDOWS\system32\Dism
2019-11-08 04:27:30 ----D---- C:\WINDOWS\Provisioning
2019-11-08 04:27:30 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2019-11-08 04:26:52 ----A---- C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-11-08 04:20:19 ----SD---- C:\WINDOWS\SYSWOW64\F12
2019-11-08 04:20:19 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\winrm
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\WCN
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\MUI
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\DriverStore
2019-11-08 04:20:19 ----D---- C:\WINDOWS\SYSWOW64\Com
2019-11-08 04:20:19 ----D---- C:\WINDOWS\system32\winrm
2019-11-08 04:20:19 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2019-11-08 04:20:19 ----D---- C:\WINDOWS\system32\WCN
2019-11-08 04:20:18 ----SD---- C:\WINDOWS\system32\F12
2019-11-08 04:20:18 ----D---- C:\WINDOWS\system32\Sysprep
2019-11-08 04:20:18 ----D---- C:\WINDOWS\system32\slmgr
2019-11-08 04:20:18 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2019-11-08 04:20:18 ----D---- C:\WINDOWS\system32\MUI
2019-11-08 04:20:18 ----D---- C:\WINDOWS\system32\Com
2019-11-08 04:20:18 ----D---- C:\WINDOWS\IME
2019-11-08 04:20:18 ----D---- C:\Program Files\Windows Photo Viewer
2019-11-08 04:20:18 ----D---- C:\Program Files\Windows Media Player
2019-11-08 04:20:18 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2019-11-08 04:20:18 ----D---- C:\Program Files (x86)\Windows Defender
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\fr-CA
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\es-MX
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2019-11-08 04:18:33 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\zh-CN
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\uk-UA
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\tr-TR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\th-TH
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\sv-SE
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\sl-SI
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\pt-BR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\nb-NO
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\lv-LV
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\lt-LT
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\ko-KR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\ja-jp
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\it-IT
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\hu-HU
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\hr-HR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\he-IL
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\fr-FR
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\fr-CA
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\fi-FI
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\et-EE
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\es-MX
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\es-ES
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\de-DE
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\da-DK
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\cs-CZ
2019-11-08 04:18:33 ----D---- C:\WINDOWS\system32\bg-BG
2019-11-08 04:17:57 ----D---- C:\WINDOWS\OCR
2019-11-07 20:15:14 ----SD---- C:\ProgramData\Microsoft
2019-11-07 20:15:08 ----D---- C:\ProgramData\USOPrivate
2019-11-07 20:14:27 ----D---- C:\WINDOWS\Tasks
2019-11-07 20:14:27 ----D---- C:\Program Files\Windows Defender
2019-11-07 20:14:18 ----D---- C:\WINDOWS\Registration
2019-11-07 20:11:10 ----RSD---- C:\WINDOWS\Media
2019-11-07 20:08:13 ----RD---- C:\Users
2019-11-07 20:03:17 ----D---- C:\WINDOWS\system32\drivers\UMDF
2019-11-07 20:02:58 ----D---- C:\WINDOWS\system32\Recovery
2019-11-07 19:05:56 ----D---- C:\Program Files (x86)\VulkanRT
2019-11-05 22:12:30 ----DC---- C:\AMD
2019-11-05 22:08:14 ----DC---- C:\ProgramData\AMD
2019-11-05 19:07:48 ----D---- C:\Program Files (x86)\Google
 
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R0 amdkmpfd;@oem42.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2019-09-23 102832]
R0 asahci64;asahci64; C:\WINDOWS\System32\drivers\asahci64.sys [2012-01-06 49760]
R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit); C:\WINDOWS\system32\DRIVERS\cm_km.sys [2018-01-27 243400]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-09-01 647736]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-03-19 56632]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [2019-04-15 75600]
R0 klupd_klif_arkmon;klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [2019-10-14 251256]
R0 klupd_klif_klbg;klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [2019-10-14 119744]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2019-11-08 252944]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2019-03-19 40960]
R1 AsrAppCharger;AsrAppCharger; C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys [2011-05-10 17192]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-03-19 70456]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-03-19 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-03-19 8704]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\WINDOWS\system32\DRIVERS\klbackupflt.sys [2019-08-07 126288]
R1 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2019-04-15 91472]
R1 klhk;@oem48.inf,%klhkDisplayName%;Kaspersky Lab service driver; C:\WINDOWS\System32\drivers\klhk.sys [2019-08-07 1093240]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2019-08-07 1168000]
R1 klim6;@oem69.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2019-04-15 58704]
R1 klpd;Kaspersky Lab format recognizer driver; C:\WINDOWS\system32\DRIVERS\klpd.sys [2019-04-15 50304]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2019-04-15 104576]
R1 Klwtp;KLwtp - WFP callout traffic inspector; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2019-04-15 184960]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2019-04-15 218240]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-11-13 457216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-03-19 53760]
R2 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2019-03-19 185344]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atikmdag.sys [2019-11-04 60670888]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atikmpag.sys [2019-11-04 598440]
R3 AtiHDAudioService;@oem52.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2019-07-24 108152]
R3 dc1-controller;@dc1-controller.inf,%dc1-controller.SvcDesc%;Xbox Peripherals Driver; C:\WINDOWS\System32\drivers\dc1-controller.sys [2019-03-19 56320]
R3 I2cHkBurn;I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [2015-07-27 41760]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2012-02-10 25536]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2012-02-10 25536]
R3 ISCT;@oem23.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD64.sys [2013-07-30 47008]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2019-08-07 236672]
R3 klids;klids; \??\C:\ProgramData\Kaspersky Lab\AVP19.0.0\Bases\klids.sys [2019-12-03 201280]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2019-04-15 60536]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2019-04-15 60784]
R3 kltap;@oem74.inf,%DeviceDescription%;Kaspersky Security Data Escort Adapter; C:\WINDOWS\System32\drivers\kltap.sys [2018-02-12 48080]
R3 klupd_klif_kimul;klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [2019-03-08 99152]
R3 klupd_klif_klark;klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [2019-10-14 306248]
R3 klupd_klif_mark;klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [2019-10-14 204520]
R3 MEIx64;@oem5.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-17 62784]
R3 mt7612US;@oem77.inf,%Generic.Service.DispName%;Xbox Wireless Adapter for Windows; C:\WINDOWS\System32\drivers\mt7612US.sys [2017-07-14 400392]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-03-19 42808]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-03-19 319528]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-03-19 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-03-19 148520]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2017-03-30 29208]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-03-19 124448]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-03-19 128528]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-03-19 75280]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-03-19 94736]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-03-19 58896]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-03-19 68624]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-03-19 41784]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-03-19 20992]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-03-19 337920]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-03-19 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-03-19 37888]
S3 amdkmafd;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2018-12-13 75584]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2019-11-13 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2019-11-08 137528]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2019-11-08 174392]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2019-11-08 153912]
S3 asmthub3;ASMedia USB3 Hub Service; C:\WINDOWS\system32\drivers\asmthub3.sys [2012-11-08 139592]
S3 asmtxhci;ASMEDIA XHCI Service; C:\WINDOWS\system32\drivers\asmtxhci.sys [2012-11-08 418632]
S3 b06diag;Broadcom NetXtreme II Diag Driver; C:\WINDOWS\system32\drivers\bxdiaga.sys [2012-03-08 88104]
S3 BFN7x64;Bigfoot Networks Killer Gaming Service; C:\WINDOWS\system32\drivers\Xeno7x64.sys [2012-02-22 157288]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-11-08 117048]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-11-08 231936]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-11-13 114688]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-03-19 97280]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2019-11-13 36864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2019-11-13 1428992]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-11-13 98304]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-03-19 43008]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-03-19 64312]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-03-19 1866768]
S3 dtlitescsibus;@oem89.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2018-01-20 30264]
S3 dtliteusbbus;@oem46.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2018-01-20 47672]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\WINDOWS\System32\Drivers\EtronHub3.sys [2012-07-24 65152]
S3 EtronSTOR;Etron Enhance USB BOT/UASP Mass Storage Driver; C:\WINDOWS\System32\Drivers\EtronSTOR.sys [2012-07-24 32512]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\WINDOWS\System32\Drivers\EtronXHCI.sys [2012-07-24 88832]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [2018-11-19 18944]
S3 expressvpnsplittunnel;expressvpnsplittunnel; \??\C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [2019-11-29 28440]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [2019-11-08 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-03-19 53560]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-11-08 64000]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-11-13 84488]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-03-19 28672]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-03-19 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-03-19 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-03-19 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-03-19 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-03-19 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-03-19 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-03-19 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-03-19 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-03-19 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-03-19 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-03-19 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2019-03-19 46592]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel Power Limit Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-03-19 28672]
S3 ioatdma1;ioatdma1; C:\WINDOWS\System32\Drivers\qd162x64.sys [2009-11-16 40144]
S3 ioatdma2;Intel(R) QuickData Technology device ver.2; C:\WINDOWS\System32\Drivers\qd262x64.sys [2009-11-16 42192]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-03-19 54584]
S3 klpnpflt;Kaspersky Lab klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [2019-04-15 46416]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-03-19 535864]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-03-19 62264]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-11-13 359424]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-03-19 64512]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-03-19 1150480]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-03-19 153616]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-03-19 63488]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2019-03-19 187904]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\WINDOWS\system32\drivers\nusb3hub.sys [2011-10-25 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\WINDOWS\system32\drivers\nusb3xhc.sys [2011-10-25 213504]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-03-19 158520]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2019-03-19 96056]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-03-19 127800]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-03-19 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-03-19 25600]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-03-19 32568]
 
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-09-10 88136]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0348309.inf_amd64_da0b285cf0c5a651\B348293\atiesrxx.exe [2019-11-04 509352]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 AVP19.0.0;Usługa Kaspersky Anti-Virus 19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe [2018-02-28 619640]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 CDPUserSvc_69bb5;CDPUserSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 ClickToRunSvc;Usługa Szybka instalacja pakietu Microsoft Office; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-11-17 11650416]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R2 ExpressVPNService;ExpressVPN Service; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [2019-11-29 438664]
R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [2017-10-26 48824]
R2 GamingHotkey_Service;MSI Gaming Hotkey Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2017-11-01 2021048]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2018-11-19 190784]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-09-01 14904]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-19 634632]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-05 129856]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-08-21 166720]
R2 KSDE3.0.0;Usługa Kaspersky Secure Connection 3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [2018-02-28 617016]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-09-11 277792]
R2 MSI_ActiveX_Service;MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [2017-12-04 83616]
R2 MSI_LiveUpdate_Service;MSI Live Update Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2018-09-25 2190520]
R2 MSIREGISTER_MR;MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [2018-09-25 1925816]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2019-03-19 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-19 136256]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-19 136256]
R2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-19 136256]
R2 OneSyncSvc_69bb5;OneSyncSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 cbdhsvc_69bb5;cbdhsvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
R3 PimIndexMaintenanceSvc_69bb5;PimIndexMaintenanceSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AarSvc_69bb5;AarSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21 257416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BcastDVRUserService_69bb5;BcastDVRUserService_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BluetoothUserService_69bb5;BluetoothUserService_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CaptureService_69bb5;CaptureService_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ConsentUxUserSvc_69bb5;ConsentUxUserSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 CredentialEnrollmentManagerUserSvc_69bb5;CredentialEnrollmentManagerUserSvc_69bb5; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2019-03-19 380120]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DeviceAssociationBrokerSvc_69bb5;DeviceAssociationBrokerSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicePickerUserSvc_69bb5;DevicePickerUserSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevicesFlowUserSvc_69bb5;DevicesFlowUserSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-11-08 97792]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-03-02 43704]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\elevation_service.exe [2019-11-16 1110512]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 klvssbridge64_19.0.0;klvssbridge64_19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\vssbridge64.exe [2019-02-11 414352]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-09-19 6347056]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 MessagingService_69bb5;MessagingService_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 264504]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2019-03-19 103424]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PrintWorkflowUserSvc_69bb5;PrintWorkflowUserSvc_69bb5; C:\WINDOWS\system32\svchost.exe [2019-03-19 53744]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2019-03-19 53744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2019-11-08 828216]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-19 54912]
 
-----------------EOF-----------------
 
Wygenerowano w 0.035s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!