Am I infected? Getting BSOD

This topic is closed.

Loosie

PCHF Member

Join Date: Feb 2017

Posts: 97
Share

Tweet
#1

Am I infected? Getting BSOD

04-09-2020, 03:27 AM

Hi wonderful people!

Had BSOD come up a few times over the last couple of weeks. Last time was when I tried to do the ASWMB prework for this thread. BSOD said ‘Driver IRQL not less or equal’ something to do with the ASWMB. So below is the FRST log…

FRST LOG

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. → Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. → Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 103.86.99.99 103.86.96.96 103.86.96.100 103.86.99.100
Tcpip..\Interfaces{1da63879-7698-4f40-aa43-ba400588442c}: [DhcpNameServer] 103.86.99.99 103.86.96.96 103.86.96.100 103.86.99.100
Tcpip..\Interfaces{6f369847-95e9-41b5-afec-d2fa3156c9f8}: [DhcpNameServer] 10.0.0.138
Tcpip..\Interfaces{823b4ed1-a671-4a42-aed3-26ec0201a547}: [DhcpNameServer] 192.168.42.129
Tcpip..\Interfaces{bb8b7f51-f137-4dc2-aac4-968cb3bab00a}: [DhcpNameServer] 192.168.42.129
Tcpip..\Interfaces{ecd4b84e-cdca-4aa6-a5cd-cfa6f17b45df}: [DhcpNameServer] 192.168.42.129
[HEADING=1]Internet Explorer:[/HEADING]
BHO: No Name → {13D67BB7-DB5F-48AA-884D-7A5D94168509} → No File
BHO-x32: No Name → {13D67BB7-DB5F-48AA-884D-7A5D94168509} → No File
Toolbar: HKLM-x32 - FreshDownload Bar - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} - C:\PROGRA~2\FRESHD~1\FRESHD~1\fdiebar.dll No File
[HEADING=1]Edge:[/HEADING]
Edge Profile: C:\Users\Anya\AppData\Local\Microsoft\Edge\User Data\Default [2020-03-15]
[HEADING=1]FireFox:[/HEADING]
FF DefaultProfile: ji7iaqgm.default
FF ProfilePath: C:\Users\Anya\AppData\Roaming\Mozilla\Firefox\Prof iles\ji7iaqgm.default [2019-10-22]
FF Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Anya\AppData\Roaming\Mozilla\Firefox\Prof iles\ji7iaqgm.default\Extensionssp@avast.com.xpi [2019-10-22]
FF Extension: (Avast Online Security) - C:\Users\Anya\AppData\Roaming\Mozilla\Firefox\Prof iles\ji7iaqgm.default\Extensionswrc@avast.com.xpi [2019-10-22]
FF ProfilePath: C:\Users\Anya\AppData\Roaming\Mozilla\Firefox\Prof iles\9x3bfrd0.default-release-1585388769691 [2020-04-09]
FF Homepage: Mozilla\Firefox\Profiles\9x3bfrd0.default-release-1585388769691 → hxxps://mail.yahoo.com/d/folders/1?guce_referrer=aHR0cHM6Ly9sb2dpbi55YWhvby5jb20v&g uce_referrer_sig=AQAAAGUamKIRfswLum4BcS3XJJ8SUOypd 9yjQFDHISEh9a4Qs8sKw50UcLj8mNd0d6xrktTf5QxLqfvHULI e82Opn6t9ZBGjYgGq-aVQlCEjM07_i6eEQZ0ZU9-EuS4qCpENQQpCGsdsy0VE1RqWj0z0E05zJ2C7rzPhZpgCAbt-rBhB
FF Session Restore: Mozilla\Firefox\Profiles\9x3bfrd0.default-release-1585388769691 → is enabled.
FF Extension: (SaveFrom.net helper) - C:\Users\Anya\AppData\Roaming\Mozilla\Firefox\Prof iles\9x3bfrd0.default-release-1585388769691\Extensionshelper@savefrom.net.xpi [2020-04-02]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\Anya\AppData\Roaming\Mozilla\Firefox\Prof iles\9x3bfrd0.default-release-1585388769691\Extensions{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-04-02]
FF Plugin-x32: Adobe Reader → C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-02-05] (Adobe Inc. → Adobe Systems Inc.)
[HEADING=1]Chrome:[/HEADING]
CHR Profile: C:\Users\Anya\AppData\Local\Google\Chrome\User Data\Default [2020-01-13]
CHR Extension: (Free Download Manager) - C:\Users\Anya\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgo ilbfdp [2020-01-13]
CHR Extension: (Tampermonkey) - C:\Users\Anya\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmp obfkfo [2020-01-13]
CHR Extension: (Adobe Acrobat) - C:\Users\Anya\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefi ndmkaj [2019-11-11]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Anya\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihc jkigck [2020-01-13]
CHR Extension: (Avast Online Security) - C:\Users\Anya\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegiea cbdmki [2020-01-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Anya\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccm gmieda [2019-11-11]
CHR Extension: (Chrome Media Router) - C:\Users\Anya\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcj beemfm [2020-01-13]
CHR HKU\S-1-5-21-440688634-2831198262-268214595-1002\SOFTWARE\Google\Chrome\Extensions...\Chrome\E xtension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKLM-x32...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [96120 2015-06-25] (Alps Electric Co., LTD. → Alps Electric Co., Ltd.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [428560 2020-03-19] (Avast Software s.r.o. → AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57536 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [10287216 2019-07-24] (AVAST Software s.r.o. → AVAST Software)
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223120 2020-03-14] (Microsoft Corporation → Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223120 2020-03-14] (Microsoft Corporation → Microsoft Corporation)
R2 EZCastService; C:\Program Files (x86)\EZCast\EZCastService.exe [286016 2019-10-08] (Actions Microelectronics Co.,Ltd. → )
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\80.0.361.111\elev ation_service.exe [1093512 2020-04-07] (Microsoft Corporation → Microsoft Corporation)
R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [236576 2020-03-31] (TEFINCOM S.A. → )
R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-05-24] (HP Inc. → )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2019-10-24] (Samsung Electronics CO., LTD. → )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5929920 2020-03-11] (Microsoft Windows Publisher → Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-27] (Microsoft Windows Publisher → Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-27] (Microsoft Windows Publisher → Microsoft Corporation)
S4 WsDrvInst; C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\Transfer\DriverInstall.exe [107800 2019-09-26] (Shenzhen Yi Xing Investment Co., Ltd. → Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AndDiag; C:\WINDOWS\System32\drivers\lganddiag64.sys [27648 2019-01-14] (Microsoft Windows Hardware Compatibility Publisher → LG Electronics Inc.)
S3 AndnetBus; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [30208 2019-01-14] (Microsoft Windows Hardware Compatibility Publisher → LG Electronics Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 → Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 → Apple Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205576 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [271120 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206608 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [64272 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-02-26] (Microsoft Windows Early Launch Anti-malware Publisher → AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42976 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175400 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [552576 2020-03-19] (Avast Software s.r.o. → AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110560 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84056 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848672 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [458584 2020-03-11] (Avast Software s.r.o. → AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [235184 2020-02-26] (Avast Software s.r.o. → AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316256 2020-02-26] (Avast Software s.r.o. → AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-11] (Microsoft Corporation) [File not signed]
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [29160 2018-07-27] (Dell Inc → OSR Open Systems Resources, Inc.)
R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [53816 2009-10-12] (Samsung Electronics CO., LTD. → Samsung Electronics Co., Ltd.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [110488 2014-12-03] (Samsung Electronics CO., LTD. → DEVGURU Co., LTD.(www.devguru.co.kr))
R3 e1cexpress; C:\WINDOWS\system32\DRIVERS\e1c65x64.sys [488736 2015-08-03] (Intel(R) Intel Network Drivers → Intel Corporation)
S3 FlashUSB; C:\WINDOWS\System32\drivers\FlashUSB.sys [19968 2014-12-03] (Microsoft Windows Hardware Compatibility Publisher → Intel Mobile Communications)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3343872 2019-03-19] (Microsoft Windows → Intel Corporation)
S3 shspusb; C:\WINDOWS\System32\drivers\HSPUSB.sys [24064 2014-12-03] (Microsoft Windows Hardware Compatibility Publisher → MobileTop)
S3 sscdserd; C:\WINDOWS\System32\drivers\sscdserd.sys [158024 2014-12-03] (MCCI Corporation → MCCI Corporation)
S3 ssceserd; C:\WINDOWS\System32\drivers\ssceserd.sys [158024 2014-12-03] (MCCI Corporation → MCCI Corporation)
S3 ssdudfu; C:\WINDOWS\System32\drivers\ssdudfu.sys [101960 2014-12-03] (MCCI Corporation → MCCI)
S3 ssm_bus; C:\WINDOWS\System32\drivers\ssm_bus.sys [136192 2014-12-03] (MCCI Corporation → MCCI Corporation)
S3 ssm_mdm; C:\WINDOWS\System32\drivers\ssm_mdm.sys [172032 2014-12-03] (MCCI Corporation → MCCI Corporation)
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206104 2014-12-03] (Samsung Electronics CO., LTD. → DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [206104 2014-12-03] (Samsung Electronics CO., LTD. → DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206104 2014-12-03] (Samsung Electronics CO., LTD. → DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [48920 2014-12-03] (Samsung Electronics CO., LTD. → QUALCOMM Incorporated)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206104 2014-12-03] (Samsung Electronics CO., LTD. → DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_bserd; C:\WINDOWS\System32\drivers\ss_bserd.sys [128000 2014-12-03] (MCCI Corporation → MCCI Corporation)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26392 2014-12-03] (Samsung Electronics CO., LTD. → DEVGURU Co., LTD.)
R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [30352 2016-10-07] (STMICROELECTRONICS S.R.L. → ST Microelectronics)
R3 ST_Accel; C:\WINDOWS\System32\drivers\ST_Accel.sys [154280 2016-10-12] (STMICROELECTRONICS S.R.L. → STMicroelectronics)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. → The OpenVPN Project)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-11] (Microsoft Windows → Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-27] (Microsoft Windows Early Launch Anti-malware Publisher → Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-27] (Microsoft Windows → Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-27] (Microsoft Windows → Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-09 09:22 - 2020-04-09 09:27 - 000000000 ____D C:\Users\Anya\Desktop\PC prework
2020-04-09 09:12 - 2020-04-09 09:12 - 000000000 ____D C:\Users\Anya\AppData\Roaming\Microsoft\Windows\St art Menu\Programs\TouchPad
2020-04-09 09:09 - 2020-04-09 09:24 - 001223964 _____ C:\WINDOWS\Minidump\040920-60734-01.dmp
2020-04-09 09:09 - 2020-04-09 09:09 - 999824320 _____ C:\WINDOWS\MEMORY.DMP
2020-04-09 09:09 - 2020-04-09 09:09 - 000322368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-04-08 11:29 - 2020-04-08 11:29 - 000001142 _____ C:\Users\Public\Desktop\paint.net.lnk
2020-04-08 11:29 - 2020-04-08 11:29 - 000001142 _____ C:\ProgramData\Desktop\paint.net.lnk
2020-04-08 07:16 - 2020-04-08 07:16 - 000005372 _____ C:\Users\Anya\AppData\Local\recently-used.xbel
2020-04-08 07:14 - 2020-04-08 07:14 - 000000790 _____ C:\Users\Anya\Downloads\TransactionHistory(2).qif
2020-04-07 20:06 - 2020-04-07 21:12 - 000030132 _____ C:\Users\Anya\Documents\LOW CARB RECIPES.odt
2020-04-07 20:06 - 2020-04-07 21:12 - 000000106 ____H C:\Users\Anya\Documents.~lock.LOW CARB RECIPES.odt#
2020-04-07 17:57 - 2020-04-07 17:57 - 000125213 _____ C:\Users\Anya\Downloads\Lavender.23HazfordStreet.S tatementofAccount.02.04.20.pdf
2020-04-07 12:45 - 2020-04-07 17:18 - 000003637 _____ C:\Users\Anya\Documents\Trans to 7-4-20.csv
2020-04-07 12:38 - 2020-04-07 12:38 - 000002413 _____ C:\Users\Anya\Downloads\TransactionHistory(1).qif
2020-04-07 12:37 - 2020-04-07 12:37 - 000000257 _____ C:\Users\Anya\Downloads\AccountBalance.csv
2020-04-06 21:06 - 2020-04-06 21:06 - 006409806 _____ C:\Users\Anya\Downloads\LEDV29G72HD_User_Manual.pd f
2020-04-05 19:00 - 2020-04-05 19:01 - 007200968 _____ C:\Users\Anya\Downloads\Coronavirus Rhapsody by Queen _ COVID-19 Karaoke.mp4
2020-04-05 13:38 - 2020-04-05 13:38 - 000036630 _____ C:\Users\Anya\Downloads\Loan_Statement(7).pdf
2020-04-05 13:14 - 2020-04-05 13:14 - 000015392 _____ C:\Users\Anya\Documents\Harissa Hot Sauce.odt
2020-04-05 12:31 - 2020-04-05 12:32 - 000000397 _____ C:\Users\Anya\Downloads\trans050420.qif
2020-04-04 13:02 - 2020-04-04 13:35 - 000020344 _____ C:\Users\Anya\Documents\coolstore.sh3d
2020-04-04 12:39 - 2020-04-04 12:39 - 000156988 _____ C:\Users\Anya\Downloads\607660280.3gp
2020-04-02 18:10 - 2020-04-04 12:55 - 000998215 _____ C:\Users\Anya\Documents\Shedhouse.sh3d
2020-04-02 17:34 - 2020-04-02 17:34 - 000000000 ____D C:\Users\Anya\AppData\Roaming\eTeks
2020-04-02 17:33 - 2020-04-02 17:33 - 000000000 ____D C:\ProgramData\Oracle
2020-04-02 17:32 - 2020-04-02 17:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2020-04-02 17:32 - 2020-04-02 17:32 - 000000000 ____D C:\Program Files (x86)\Sweet Home 3D
2020-04-02 17:30 - 2020-04-02 17:30 - 000054560 _____ C:\Users\Anya\Downloads\MyVirtualHomeSetup.exe
2020-04-02 12:45 - 2020-04-02 12:48 - 004777872 _____ C:\Users\Anya\Downloads\Facebook.mp4
2020-04-02 12:23 - 2020-04-02 12:23 - 000001679 _____ C:\Users\Anya\Downloads\TransactionHistory.qif
2020-04-02 11:45 - 2020-04-02 11:45 - 000002089 _____ C:\Users\Public\Desktop\NordVPN.lnk
2020-04-02 11:45 - 2020-04-02 11:45 - 000002089 _____ C:\ProgramData\Desktop\NordVPN.lnk
2020-04-02 11:45 - 2020-04-02 11:45 - 000000000 ____D C:\Program Files (x86)\NordVPN
2020-04-01 19:14 - 2020-04-01 19:14 - 001671715 _____ C:\Users\Anya\Downloads\Downloads.7z
2020-04-01 18:54 - 2020-04-01 19:08 - 000000000 ____D C:\Users\Anya\AppData\Roaming\PeaZip
2020-04-01 18:53 - 2020-04-01 18:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeaZip
2020-04-01 18:53 - 2020-04-01 18:53 - 000000000 __D C:\Program Files (x86)\PeaZip
2020-04-01 18:43 - 2020-04-01 18:51 - 008330833 _____ (Giorgio Tani ) C:\Users\Anya\Downloads\peazip-7.1.1.WINDOWS.exe
2020-04-01 16:35 - 2020-04-01 16:35 - 001185968 _____ (Igor Pavlov) C:\Users\Anya\Downloads\7z1900.exe
2020-03-31 11:45 - 2020-03-31 11:46 - 000017317 _____ C:\Users\Anya\Documents\Quick & easy NO KNEAD BREAD.odt
2020-03-31 10:11 - 2020-03-31 10:11 - 000001799 _____ C:\Users\Anya\Downloads\anya letter.rtfd.zip
2020-03-30 18:26 - 2020-03-30 18:26 - 000366308 _____ C:\Users\Anya\Downloads\63056069885_20180329_20200 329_20200330192632_AUSNETSERVICES_NEM12DETAILED.cs v
2020-03-29 18:00 - 2020-03-29 18:00 - 001532990 _____ C:\Users\Anya\Downloads\10097497178_20190612(1).pd f
2020-03-28 07:49 - 2020-03-28 07:49 - 000012663 _____ C:\Users\Anya\Documents\flat bread gozleme roti etc.odt
2020-03-26 10:39 - 2020-03-26 10:40 - 000019002 _____ C:\Users\Anya\Downloads\solar batteries options.ods
2020-03-26 09:59 - 2020-03-26 09:59 - 000563392 _____ C:\Users\Anya\Downloads\Growatt-GBLI6531-Lithium-battery.cdr.pdf
2020-03-26 09:19 - 2020-03-26 09:19 - 001384754 _____ C:\Users\Anya\Downloads\10097497178.pdf
2020-03-26 09:18 - 2020-03-26 09:18 - 001532990 _____ C:\Users\Anya\Downloads\10097497178_20190612.pdf
2020-03-26 08:10 - 2020-03-26 08:11 - 000000000 _____ C:\WINDOWS\system32\last.dump
2020-03-25 20:13 - 2020-03-25 20:13 - 000418841 _____ C:\Users\Anya\Downloads\10097497178_20190906.pdf
2020-03-25 20:11 - 2020-03-25 20:11 - 000757082 _____ C:\Users\Anya\Downloads\Lavender.23HazfordStreet.S ettlementLetter.25.03.20.pdf
2020-03-25 11:51 - 2020-03-25 11:51 - 004534599 _____ C:\Users\Anya\Downloads\1499-Homegrown_Power_Plan-Full_Report.pdf
2020-03-25 11:51 - 2020-03-25 11:51 - 003146419 _____ C:\Users\Anya\Downloads\1503-Homegrown_Power_Plan_Summary.pdf
2020-03-24 10:14 - 2020-03-24 10:14 - 000033048 _____ C:\Users\Anya\Downloads\solar battery comparison.ods
2020-03-24 10:13 - 2020-03-24 08:41 - 000049894 _____ C:\Users\Anya\Documents\Phil_Corona.pptx_0.odp
2020-03-22 12:07 - 2020-03-22 12:07 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk
2020-03-20 11:04 - 2020-03-20 11:04 - 000157761 _____ C:\Users\Anya\Downloads\Lavender.statement-6046591_TRANSFEROR_MrsANYAKRISTINAPLOWMANLAVENDER. pdf
2020-03-20 11:04 - 2020-03-20 11:04 - 000157756 _____ C:\Users\Anya\Downloads\Lavender.statement-6046591_TRANSFEROR_MrANDREWCHARLESLAVENDER.pdf
2020-03-20 10:51 - 2020-03-20 10:51 - 000143981 _____ C:\Users\Anya\Downloads\statement-6046591_TRANSFEROR(1).pdf
2020-03-20 10:50 - 2020-03-20 10:50 - 000143978 _____ C:\Users\Anya\Downloads\statement-6046591_TRANSFEROR.pdf
2020-03-19 19:27 - 2020-03-19 19:26 - 000552576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2020-03-19 19:27 - 2020-02-26 16:53 - 000368056 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-03-19 19:26 - 2020-03-19 19:26 - 000000000 ____D C:\Users\Anya\AppData\Local\EZCast
2020-03-19 19:16 - 2020-03-19 19:16 - 000000000 ____D C:\ProgramData\Apple
2020-03-19 19:16 - 2020-03-19 19:16 - 000000000 ____D C:\Program Files\Bonjour
2020-03-19 19:16 - 2020-03-19 19:16 - 000000000 ____D C:\Program Files (x86)\Bonjour
2020-03-19 19:15 - 2020-04-04 14:52 - 000002246 _____ C:\WINDOWS\system32\Tasks\EZCastServiceSchedule
2020-03-19 19:15 - 2020-03-19 19:16 - 000000000 ____D C:\Program Files (x86)\EZCast
2020-03-19 17:25 - 2020-03-19 17:25 - 000418000 _____ C:\Users\Anya\Downloads\sine-tables-0-to-90.pdf
2020-03-18 20:41 - 2020-03-18 20:41 - 007776439 _____ C:\Users\Anya\Downloads\7Secrets_EBook2020.pdf
2020-03-16 13:32 - 2020-03-16 13:33 - 002886691 _____ C:\Users\Anya\Downloads\NL_3.pdf
2020-03-16 13:32 - 2020-03-16 13:32 - 004062427 _____ C:\Users\Anya\Downloads\Year_10_Handbook_290220.pd f
2020-03-16 13:32 - 2020-03-16 13:32 - 004033948 _____ C:\Users\Anya\Downloads\2020_Year_10_Handbook_v3(1 ).pdf
2020-03-16 13:32 - 2020-03-16 13:32 - 001517588 _____ C:\Users\Anya\Downloads\VCE_VCAL_VET_Handbook_v3_2 90220(1).pdf
2020-03-15 13:06 - 2020-03-15 13:06 - 000201535 _____ C:\Users\Anya\Downloads\Doc1.pdf
2020-03-15 08:36 - 2020-03-15 08:36 - 002082382 _____ C:\Users\Anya\Downloads\Facebook(1).mp4
2020-03-15 07:55 - 2020-04-05 12:12 - 000000000 ____D C:\Users\Anya\AppData\Local\D3DSCache
2020-03-14 22:39 - 2020-04-08 07:11 - 000002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-03-14 22:39 - 2020-04-04 14:52 - 000003408 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskM achineUA
2020-03-14 22:39 - 2020-04-04 14:52 - 000003184 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskM achineCore
2020-03-13 21:08 - 2020-03-13 21:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-03-13 21:08 - 2020-03-13 21:08 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-03-13 21:08 - 2020-03-13 21:08 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayR eady.dll
2020-03-13 21:08 - 2020-03-13 21:08 - 006520776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayR eady.dll
2020-03-13 21:08 - 2020-03-13 21:08 - 004563416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-03-13 21:08 - 2020-03-13 21:08 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-03-13 21:08 - 2020-03-13 21:08 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-03-13 21:08 - 2020-03-13 21:08 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-03-13 21:08 - 2020-03-13 21:08 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-03-13 21:08 - 2020-03-13 21:08 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-03-13 21:08 - 2020-03-13 21:08 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-03-13 17:10 - 2020-03-13 17:10 - 000019854 _____ C:\Users\Anya\Downloads\gabopia.odt
2020-03-13 09:13 - 2020-03-13 09:13 - 000013693 _____ C:\Users\Anya\Documents\Impossible pie.odt
2020-03-11 21:35 - 2020-03-11 21:35 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 018027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 011607552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 004825600 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 004129648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 003819520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 003488768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 003243296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 002956688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-03-11 21:35 - 2020-03-11 21:35 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 002315680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 002072664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001867816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001770552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001490640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001108040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000757632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2020-03-11 21:35 - 2020-03-11 21:35 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-03-11 21:35 - 2020-03-11 21:35 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacEncoder.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacEncoder.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DirectML.Debug.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000145208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-03-11 21:35 - 2020-03-11 21:35 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-03-11 21:35 - 2020-03-11 21:35 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-03-11 21:35 - 2020-03-11 21:35 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2020-03-11 21:35 - 2020-03-11 21:35 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-03-11 21:35 - 2020-03-11 21:35 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 006084344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 005112832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 004855808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 004580352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 003971808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 002875904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-03-11 21:34 - 2020-03-11 21:34 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-03-11 21:34 - 2020-03-11 21:34 - 002740736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 002259872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 002021888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001985104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001684992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001665416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001484600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-03-11 21:34 - 2020-03-11 21:34 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001218632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 001190912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.Dis playEnhancementService.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001054376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001031680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 001007672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000935040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercont rol.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000776488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000769552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authenticatio n.OnlineId.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000668296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dl l
2020-03-11 21:34 - 2020-03-11 21:34 - 000627216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000478792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-03-11 21:34 - 2020-03-11 21:34 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-03-11 21:34 - 2020-03-11 21:34 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.d ll
2020-03-11 21:34 - 2020-03-11 21:34 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000213984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-03-11 21:34 - 2020-03-11 21:34 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider. dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000133944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000120560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-03-11 21:34 - 2020-03-11 21:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000102760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dl l
2020-03-11 21:34 - 2020-03-11 21:34 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000042336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-03-11 21:34 - 2020-03-11 21:34 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-03-11 21:34 - 2020-03-11 21:34 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2020-03-11 21:34 - 2020-03-11 21:34 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-03-11 21:34 - 2020-03-11 21:34 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-03-11 21:33 - 2020-03-11 21:33 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 006436352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 003799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 003552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 003371720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 002773568 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 002768440 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 002698040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 002087376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001999952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001972536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-03-11 21:33 - 2020-03-11 21:33 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 001396152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-03-11 21:33 - 2020-03-11 21:33 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercont rol.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000983896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000929144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dl l
2020-03-11 21:33 - 2020-03-11 21:33 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000877232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000734720 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-03-11 21:33 - 2020-03-11 21:33 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dl l
2020-03-11 21:33 - 2020-03-11 21:33 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000165504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient. dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000098104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2020-03-11 21:33 - 2020-03-11 21:33 - 000089616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-03-11 21:33 - 2020-03-11 21:33 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2020-03-11 21:33 - 2020-03-11 21:33 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 007905784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 004622280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 004471296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFl owUI.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 004048896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 003977216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 003728896 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 003587896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 003260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 003143168 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 002715648 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 002522112 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 002474496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.oneco re.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001823232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.deskt op.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001657120 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000945384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authenticatio n.OnlineId.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000908504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000833616 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000642216 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-03-11 21:32 - 2020-03-11 21:32 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000522384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dl l
2020-03-11 21:32 - 2020-03-11 21:32 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.d ll
2020-03-11 21:32 - 2020-03-11 21:32 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Acx01000.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider. dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000180232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentS tatusTracking.ConfigProvider.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt. ProxyStub.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlug in.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000066336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler. dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler. dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisionin g.ProxyStub.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys
2020-03-11 21:32 - 2020-03-11 21:32 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2020-03-11 21:32 - 2020-03-11 21:32 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-03-11 21:32 - 2020-03-11 21:32 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUserRes.dl l
2020-03-11 21:31 - 2020-03-11 21:31 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-03-11 21:31 - 2020-03-11 21:31 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000306696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000250896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000224056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000222520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-03-11 21:31 - 2020-03-11 21:31 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000056632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-03-11 21:31 - 2020-03-11 21:31 - 000030008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-03-11 21:31 - 2020-03-11 21:31 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-03-11 21:31 - 2020-03-11 21:31 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-03-11 21:04 - 2020-02-11 14:48 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-03-11 21:04 - 2020-02-11 14:37 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-03-11 15:36 - 2020-03-11 15:36 - 000185986 _____ C:\Users\Anya\Downloads\paySlip(1).pdf
2020-03-11 15:36 - 2020-03-11 15:36 - 000185966 _____ C:\Users\Anya\Downloads\paySlip(2).pdf
2020-03-11 15:35 - 2020-03-11 15:35 - 000185944 _____ C:\Users\Anya\Downloads\paySlip.pdf
2020-03-10 15:50 - 2020-03-10 15:51 - 022869912 _____ C:\Users\Anya\Downloads\proceedings-11proceedings-407.PDF

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-09 09:28 - 2019-09-02 09:46 - 000000000 ____D C:\FRST
2020-04-09 09:19 - 2019-10-23 09:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-09 09:16 - 2019-10-23 09:08 - 000000000 ____D C:\WINDOWS\INF
2020-04-09 09:16 - 2019-10-22 15:06 - 000840852 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-04-09 09:13 - 2018-11-16 22:32 - 000000000 ____D C:\Users\Anya\AppData\LocalLow\Mozilla
2020-04-09 09:11 - 2019-10-22 14:50 - 000000000 ____D C:\Users\Anya
2020-04-09 09:09 - 2020-02-13 11:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-04-09 09:09 - 2019-11-08 10:48 - 000000000 ____D C:\WINDOWS\Minidump
2020-04-09 09:09 - 2019-10-22 16:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-09 09:09 - 2019-10-22 15:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-04-09 09:09 - 2019-10-22 14:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-04-09 00:17 - 2019-10-23 09:10 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-09 00:17 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-04-08 11:29 - 2019-10-22 16:57 - 000001154 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2020-04-08 11:29 - 2019-10-22 16:57 - 000000000 ____D C:\Program Files\paint.net
2020-04-08 07:12 - 2019-10-25 17:08 - 000000000 ____D C:\Users\Anya\AppData\Local\homebank
2020-04-08 07:08 - 2019-10-22 16:40 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-04-07 17:50 - 2018-11-10 13:13 - 000000000 ____D C:\Users\Anya\Documents\finance
2020-04-07 17:02 - 2019-10-22 17:04 - 000000000 ____D C:\Users\Anya\AppData\Local\CrashDumps
2020-04-04 18:20 - 2019-10-22 16:31 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-04-04 14:57 - 2019-10-22 14:50 - 000000000 ____D C:\Users\Administrator
2020-04-04 14:56 - 2019-10-22 16:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-04-04 14:52 - 2019-10-22 16:32 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineU A
2020-04-04 14:52 - 2019-10-22 16:32 - 000003124 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineC ore
2020-04-04 12:52 - 2019-10-23 09:00 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-04-02 14:49 - 2019-10-22 16:35 - 000000000 ____D C:\ProgramData\AVAST Software
2020-04-02 11:45 - 2019-10-22 16:46 - 000000000 ____D C:\Users\Anya\AppData\Local\NordVPN
2020-04-02 11:45 - 2019-10-08 09:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordVPN
2020-04-01 18:46 - 2019-11-15 09:49 - 000000000 ____D C:\ProgramData\WinZip
2020-04-01 09:02 - 2019-10-23 08:53 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-04-01 08:50 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-04-01 08:44 - 2020-02-18 15:17 - 000004286 _____ C:\WINDOWS\system32\Tasks\Avast Cleanup Update
2020-03-31 09:22 - 2020-02-27 14:07 - 000000374 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-03-30 10:34 - 2018-11-10 13:13 - 000000000 ____D C:\Users\Anya\Documents\computer
2020-03-29 15:44 - 2020-02-14 11:07 - 000000000 ____D C:\Users\Anya\Documents\Anya
2020-03-25 16:14 - 2019-10-22 16:35 - 000000000 ____D C:\Users\Anya\AppData\Local\Comms
2020-03-19 19:27 - 2019-10-23 09:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-03-19 19:16 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\ServiceState
2020-03-19 19:15 - 2018-11-11 05:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZCast
2020-03-16 20:59 - 2019-10-31 13:36 - 000000000 ____D C:\Users\Anya\AppData\Local\ElevatedDiagnostics
2020-03-13 23:25 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-03-13 23:25 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-03-11 23:03 - 2019-10-22 16:39 - 000458584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-03-11 22:57 - 2018-11-16 21:53 - 000000000 ___RD C:\Users\Anya\3D Objects
2020-03-11 22:57 - 2018-10-28 10:56 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\SystemResources
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\system32\setup
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-03-11 22:49 - 2019-10-23 09:10 - 000000000 ____D C:\Program Files\Windows Defender
2020-03-11 22:49 - 2019-10-23 08:53 - 000000000 ____D C:\WINDOWS\servicing
2020-03-11 21:53 - 2019-10-22 18:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-11 21:46 - 2019-10-22 18:45 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2020-04-08 07:16 - 2020-04-08 07:16 - 000005372 _____ () C:\Users\Anya\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

FRST ADDITIONS LOG
[HEADING=1]Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-04-2020
Ran by Anya (09-04-2020 09:30:06)
Running from C:\Users\Anya\Desktop\PC prework
Windows 10 Pro Version 1903 18362.720 (X64) (2019-10-22 06:15:16)
Boot Mode: Normal[/HEADING]
==================== Accounts: =============================

Administrator (S-1-5-21-440688634-2831198262-268214595-500 - Administrator - Enabled) => C:\Users\Administrator
Anya (S-1-5-21-440688634-2831198262-268214595-1002 - Administrator - Enabled) => C:\Users\Anya
DefaultAccount (S-1-5-21-440688634-2831198262-268214595-503 - Limited - Disabled)
Guest (S-1-5-21-440688634-2831198262-268214595-501 - Limited - Enabled)
USER (S-1-5-21-440688634-2831198262-268214595-1001 - Administrator - Enabled) => C:\Users\USER
WDAGUtilityAccount (S-1-5-21-440688634-2831198262-268214595-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32...{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 20.006.20034 - Adobe Systems Incorporated)
Avast Cleanup Premium (HKLM-x32...{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 19.1.7734 - AVAST Software)
Avast Premium Security (HKLM-x32...\Avast Antivirus) (Version: 20.1.2397 - AVAST Software)
Bonjour (HKLM...{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Dell Touchpad (HKLM...{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.1207.101.103 - ALPS ELECTRIC CO., LTD.)
EZCast (HKLM-x32...{74CECDD9-4B8E-4AE3-9571-8070A17F3C34}) (Version: 2.8.0.145 - Actions-Micro)
Free Download Manager (HKLM...{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG)
Google Earth Pro (HKLM...{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32...{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HomeBank 5.2.8 (HKLM-x32...{770D94F9-211A-4BC7-9921-FC946ABD82C8}_is1) (Version: 5.2.8 - Maxime DOYEN)
Image Composite Editor (HKLM...{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation)
iSkysoft Video Converter Ultimate(Build 11.5.0.24) (HKLM-x32...\iSkysoft Video Converter Ultimate_is1) (Version: 11.5.0.24 - iSkysoft Software)
Microsoft Edge (HKLM-x32...\Microsoft Edge) (Version: 80.0.361.111 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32...\Microsoft Edge Update) (Version: 1.3.121.21 - )
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM...{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32...{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32...{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32...{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MiniTool Power Data Recovery 8.7 (HKLM...{E1BCD081-4BF4-4E2F-832A-911EC42EF3C5}_is1) (Version: 8.7 - MiniTool Software Limited)
Mozilla Firefox 74.0.1 (x64 en-US) (HKLM...\Mozilla Firefox 74.0.1 (x64 en-US)) (Version: 74.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM...\MozillaMaintenanceService) (Version: 69.0.3 - Mozilla)
MP4 to MP3 Converter 6.2.1 (HKLM-x32...\D9B8B18C-60D0-4FA8-8596-C11AAD76CC02_is1) (Version: - Accmeware Corporation)
NordVPN (HKLM-x32...{98BC7573-7131-4113-B97D-A60A23CEEF94}) (Version: 6.28.9 - NordVPN) Hidden
NordVPN (HKLM-x32...\NordVPN 6.28.9) (Version: 6.28.9 - NordVPN)
NordVPN network TAP (HKLM-x32...{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
OpenOffice 4.1.4 (HKLM-x32...{BDB210E1-06C5-451F-BDAC-C18DDC7C2F14}) (Version: 4.14.9788 - Apache Software Foundation)
paint.net (HKLM...{15BCA3AB-444B-4AC5-A04F-F2AD0F7AD3EC}) (Version: 4.2.10 - dotPDN LLC)
PDFill FREE PDF Editor Basic (HKLM...{D1399216-81B2-457C-A0F7-73B9A2EF6902}) (Version: 14.0 - PlotSoft LLC)
PeaZip 7.1.1 (HKLM-x32...{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: 7.1.1 - Giorgio Tani)
Phone Nokia USB Driver (HKLM-x32...{7F1C627F-7F07-4B51-B50F-FF8C64881D6E}) (Version: 1.1.0 - Mobile)
Samsung Printer Center (HKLM-x32...\Samsung Printer Center) (Version: 1.0.0.28 - Samsung Electronics Co., Ltd.)
Samsung Printer Diagnostics (HKLM-x32...\Samsung Printer Diagnostics) (Version: 1.0.4.28 - HP Printing Korea Co., Ltd.)
Samsung SCX-4x21 Series (HKLM-x32...\Samsung SCX-4x21 Series) (Version: - Samsung Electronics CO.,LTD)
Samsung Universal Print Driver 2 (HKLM-x32...\Samsung Universal Print Driver 2) (Version: 2.50.06.00 - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32...\Samsung Universal Scan Driver) (Version: 3.31.79:03 - Samsung Electronics Co., Ltd.)
SD Card Formatter (HKLM-x32...{A61131DC-B92D-4AD8-A925-E2D6D5FE217C}) (Version: 5.0.1 - SD Association)
Shrink Pic (remove) (HKLM-x32...\Shrink Pic) (Version: - )
Sweet Home 3D version 6.2 (HKLM...\Sweet Home 3D_is1) (Version: 6.2 - eTeks)
Uninstall Samsung Printer Software (HKLM-x32...\TotalUninstaller) (Version: 4.0.0.8 - Samsung Electronics CO., LTD.)
Wave Editor 3.7.0.0 (HKLM-x32...\Wave Editor_is1) (Version: 3.7.0.0 - AbyssMedia.com)
[HEADING=1]Packages:[/HEADING]
Microsoft Advertising SDK for XAML → C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.18 11.1.0_x64__8wekyb3d8bbwe [2019-10-23] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML → C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.18 11.1.0_x86__8wekyb3d8bbwe [2019-10-23] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection → C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireColl ection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-02-28] (Microsoft Studios) [MS Ad]
PDF Reader - View, Edit, Share → C:\Program Files\WindowsApps\0D9A1B2D.PDFReaderUWP_1.9.3060.0 _x64__jhretta7p24aw [2020-03-07] (Kdan Mobile Software Ltd.) [MS Ad]
Photos Add-on → C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Mai n_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-03-01] (Microsoft Corporation)
Photos Media Engine Add-on → C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_ 1.0.0.0_x64__8wekyb3d8bbwe [2020-03-01] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-440688634-2831198262-268214595-1002_Classes\CLSID{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 → C:\Users\Anya\AppData\Local\Microsoft\OneDrive\19. 174.0902.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-440688634-2831198262-268214595-1002_Classes\CLSID{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 → C:\Users\Anya\AppData\Local\Microsoft\OneDrive\19. 174.0902.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-440688634-2831198262-268214595-1002_Classes\CLSID{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 → C:\Users\Anya\AppData\Local\Microsoft\OneDrive\19. 174.0902.0013\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [00asw] → {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-26] (Avast Software s.r.o. → AVAST Software)
ContextMenuHandlers1: [avast] → {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-26] (Avast Software s.r.o. → AVAST Software)
ContextMenuHandlers3: [00asw] → {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-26] (Avast Software s.r.o. → AVAST Software)
ContextMenuHandlers5: [igfxcui] → {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher → Intel Corporation)
ContextMenuHandlers6: [avast] → {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-26] (Avast Software s.r.o. → AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Anya\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk → C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) → --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2020-02-18 15:18 - 2020-02-18 15:18 - 048936448 _____ () [File not signed] C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2020-04-08 11:31 - 2020-04-08 11:31 - 004323328 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Pai ntDotNetc8826574#\649db097ceb86ec1f84dbf14da823710 \PaintDotNet.SystemLayer.Native.x64.ni.dll
2019-10-24 11:31 - 2016-08-10 21:07 - 002847744 ____N () [File not signed] C:\WINDOWS\system32\DlgSearchEngine.dll
2015-02-05 15:09 - 2015-02-05 15:09 - 000087552 _____ () [File not signed] C:\WINDOWS\system32\SSDEVM64.DLL
2020-04-08 11:31 - 2020-04-08 11:31 - 008347648 _____ (dotPDN LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Pai ntDotNet.Base\f11424f8f210a7f10dc2976188d7b2cd\Pai ntDotNet.Base.ni.dll
2020-04-08 11:31 - 2020-04-08 11:31 - 007951360 _____ (dotPDN LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Pai ntDotNet.Core\011a3eea5d09c5793745197a69215c51\Pai ntDotNet.Core.ni.dll
2020-04-08 11:31 - 2020-04-08 11:31 - 000768000 _____ (dotPDN LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Pai ntDotNet.Data\98a00c85a94993f9b362dd59d346c0a8\Pai ntDotNet.Data.ni.dll
2020-04-08 11:31 - 2020-04-08 11:31 - 001422848 _____ (dotPDN LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Pai ntDotNet.Effects\52cb1073b623cab91a25e240c9ce7b86\ PaintDotNet.Effects.ni.dll
2020-04-08 11:31 - 2020-04-08 11:31 - 001109504 _____ (dotPDN LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Pai ntDotNet26779e70#\851dd81917ee3a11b40385503fcfde20 \PaintDotNet.Resources.ni.dll
2020-04-08 11:31 - 2020-04-08 11:31 - 002486272 _____ (dotPDN LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Pai ntDotNet500b2e4f#\caa219990f602b00e15619f71b918d84 \PaintDotNet.SystemLayer.ni.dll
2020-04-08 11:31 - 2020-04-08 11:31 - 003106304 _____ (dotPDN LLC) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Pai ntDotNet7afaaa15#\9b2cb68e5c16cd380654172b9eb845bc \PaintDotNet.Framework.ni.dll
2015-02-24 13:49 - 2015-02-24 13:49 - 000236544 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Microsoft Research\Image Composite Editor\ShellExtension.dll
2020-04-08 11:31 - 2020-04-08 11:31 - 000174592 _____ (Milosz Krajewski) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\K4o s.Compression.LZ4\600aba0fc15fe07ec0e2caa91a950d1c \K4os.Compression.LZ4.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-10-23 09:10 - 2019-10-22 16:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2020-02-27 14:07 - 2020-03-31 09:22 - 000000374 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-440688634-2831198262-268214595-1002\Control Panel\Desktop\Wallpaper → C:\Users\Anya\AppData\Local\Microsoft\Windows\Them es\RoamedThemeFiles\DesktopBackground\desktop background.bmp
DNS Servers: 103.86.99.99 - 103.86.96.96
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Pol icies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Exp lorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM...\StartupApproved\Run: => “WinZip UN”
HKLM...\StartupApproved\Run32: => “iSkysoft Helper Compact.exe”
HKU\S-1-5-21-440688634-2831198262-268214595-1002...\StartupApproved\StartupFolder: => “Shrink Pic.lnk”
HKU\S-1-5-21-440688634-2831198262-268214595-1002...\StartupApproved\Run: => “Free Download Manager”

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{49C9D5AB-1CA6-4C7D-9FF1-047CEECA4BD9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation → Mozilla Corporation)
FirewallRules: [{3A9E91A3-BAA3-41E9-8FF3-56EF2A288818}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation → Mozilla Corporation)
FirewallRules: [{1B85583B-CE4B-4934-8ED7-E4144EBD4DDE}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. → Samsung Electronics Co., Ltd.)
FirewallRules: [{3278C4FF-4C26-457C-9183-F4EDED150B38}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. → )
FirewallRules: [{6155FB03-0B0B-46D3-8AAB-39FD74F5C93B}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe (Samsung Electronics CO., LTD. → Samsung Electronics Co., Ltd.)
FirewallRules: [{BEBBAB4D-37A3-4AE6-B31E-3BA9FFCC76B5}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe (FreeDownloadManager.org) [File not signed]
FirewallRules: [{85FFCA70-A351-41AA-A4FD-796A12CC213A}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe (FreeDownloadManager.org) [File not signed]
FirewallRules: [{9ED91FA9-0F9E-407C-91D5-7FD03A46704B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. → Apple Inc.)
FirewallRules: [{A8B5A513-C7E7-4CB1-98A5-4FE9CA0979C0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. → Apple Inc.)
FirewallRules: [{219CCC77-5261-482F-A8D9-700B2B202A0C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. → Apple Inc.)
FirewallRules: [{38D0BE31-7B50-461F-A887-3379E2320950}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. → Apple Inc.)
FirewallRules: [{445EBA15-D662-4B77-BCF1-FA6EFB631944}] => (Allow) C:\Program Files (x86)\EZCast\EZCast.exe (Actions Microelectronics Co.,Ltd. → )
FirewallRules: [{9C4B6BD7-BDA7-4632-AB00-AB9B75D4E4A5}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{2B96CE60-1BDE-479F-9214-16265E3B1734}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{2CFCD37B-A001-4F70-B077-B746B2708843}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation → Microsoft Corporation)

==================== Restore Points =========================

22-03-2020 12:44:01 Scheduled Checkpoint
01-04-2020 17:49:44 Removed OpenOffice 4.1.4
09-04-2020 00:12:37 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================
[HEADING=1]Application errors:[/HEADING]
Error: (04/09/2020 09:11:45 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe, PID: 3808, ProfSvc PID: 1556.

Error: (04/09/2020 09:11:45 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVAST Software\Avast\AvastSvc.exe, PID: 2752, ProfSvc PID: 1556.

Error: (04/09/2020 03:19:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10801344

Error: (04/09/2020 03:19:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10801344

Error: (04/09/2020 03:19:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/08/2020 07:36:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1843

Error: (04/08/2020 07:36:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1843

Error: (04/08/2020 07:36:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
[HEADING=1]System errors:[/HEADING]
Error: (04/09/2020 09:24:34 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: The computer has rebooted from a bugcheck. The bugcheck was: 0x0000007e (0xffffffffc0000005, 0xfffff8023351e502, 0xffffa70c870222e8, 0xffffa70c87021b30). A dump was saved in: C:\WINDOWS\MEMORY.DMP. Report Id: 45814bf3-f9c5-4cd3-ab75-714eccb5d809.

Error: (04/09/2020 09:20:43 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Windows Image Acquisition (WIA) service hung on starting.

Error: (04/09/2020 09:16:57 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The File History Service service hung on starting.

Error: (04/09/2020 09:14:24 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Delivery Optimization service hung on starting.

Error: (04/09/2020 09:09:17 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 6:17:47 PM on ‎8/‎04/‎2020 was unexpected.

Error: (04/09/2020 12:15:00 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (04/08/2020 12:12:56 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9WZDNCRFJBH4-Microsoft.Windows.Photos.

Error: (04/08/2020 12:09:08 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9NMPJ99VJBWV-Microsoft.YourPhone.
[HEADING=1]CodeIntegrity:[/HEADING]
Date: 2020-04-09 09:23:17.698
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-09 09:23:17.693
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-09 09:23:09.699
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-09 09:23:09.696
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-09 09:18:17.027
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-09 09:18:17.024
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-09 09:18:06.674
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-09 09:18:06.670
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost. exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: Dell Inc. A20 02/21/2018
Motherboard: Dell Inc. 0HDT4R
Processor: Intel(R) Core™ i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 54%
Total physical RAM: 8095.64 MB
Available physical RAM: 3692.98 MB
Total Virtual: 9375.64 MB
Available Virtual: 5285.11 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.49 GB) (Free:167.62 GB) NTFS

\?\Volume{56919b75-0b11-4b34-9c96-1b5cfd738cd2}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\?\Volume{57236301-2ead-435d-ade8-cb8ec331b1bf}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

================================================== ========
Disk: 0 (Size: 298.1 GB) (Disk ID: C95369C7)

Partition: GPT.

==================== End of Addition.txt =======================
Tags: None
jmarket

PCHF Owner

Join Date: Jan 2015

Posts: 7633
Share

Tweet
#2

04-14-2020, 01:12 AM

Thread closed see duplicate here

Forums - PC Help Forum

https://pchelpforum.net/t/win-10-bsod.52193/#post-95380

PCHF Forums
Comment

Previous template Next

Am I infected? Getting BSOD

Am I infected? Getting BSOD

Comment