• Hi there and welcome to PC Help Forum (PCHF), a more effective way to get the Tech Support you need!
    We have Experts in all areas of Tech, including Malware Removal, Crash Fixing and BSOD's , Microsoft Windows, Computer DIY and PC Hardware, Networking, Gaming, Tablets and iPads, General and Specific Software Support and so much more.

    Why not Click Here To Sign Up and start enjoying great FREE Tech Support.

    This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Solved How to remove malware

Status
Not open for further replies.
Please download the FRST 32 bit or FRST 64bit version to suit your operating system. It is important FRST is downloaded to your desktop.

If you are unsure if your operating system is 32 or 64 Bit please go HERE.
Once downloaded right click the FRST desktop icon and select "Run as administrator" from the menu"
icon2.jpg
If you receive any security warnings, or the User Account Control warning opens at any time whilst using FRST you can safely allow FRST to proceed.
FRST will open with two dialogue boxes, accept the disclaimer.
frst disclaimer.jpg

  1. Accept the default whitelist options,
  2. If the additions.txt options box is not checked please select it.
  3. Then select Scan
frst.jpg
Frst will take a few minutes to scan your computer, and when finished will produce two log files on your desktop, FRST.txt, and Addition.txt. They will display immediately on the desktop, but can be reopened later as a notepad file.
2016-08-12_152002.jpg

Please Copy and Paste the contents of these logs in your next post for review by our Security Team
 
Adware Cleaner

  • Download AdwCleaner and save it to your Desktop
  • Right-click on AdwCleaner.exeand select, Run as Administrator
  • Accept the EULA (I accept), then click on Scan Now
  • Let the scan complete
  • Once the scan completes, make sure that every item listed in the different tabs is checked and click on the Clean & Repair button
  • Subsequently you may be asked to Run Basic Repair. This is optional. I would suggest holding off on this for now.
  • Once the cleaning process is complete, AdwCleaner will ask you to restart your computer
  • Close all other open windows and allow it to restart
  • After the restart, Notepad will open with the AdwCleaner cleaning log
  • Please Attach the contents of that log into your next reply to me

ZHP Diag Scan Click here to download.
Save to your desktop.
Right Click Run as Admin.
Click the Options button.
Click on Check All
Then click close.
Click the Scanner button.
When complete please push the report button.
A notepad will open... attach the report in your next reply.
 
Open Elevated command prompt.

Copy the content of the code box below, paste into command window hit enter.

Do not copy the word code!!

A copy of the FRST log should be on the desktop.

Code:
move %userprofile%\Downloads\FRST.txt "%userprofile%\desktop"

Then copy and paste this into command window as well.

Code:
move %userprofile%\Downloads\addition.txt "%userprofile%\desktop"
 
Last edited:
If this does not work, then please explain in detail what happens when you run the programs, do they run and not produce a log, or do they not run at all?
 
Also, this will be a true test, since this is not a portable program, if this tool does not run then that will tell me what I need to know to further this thread.

Download Malwarebytes v.4 . Install and run.
  • Once the MBAM dashboard opens, click on Settings (gear icon).
  • Click on Security tab and make sure that all four Scan options are enabled.
  • Close Settings and click on the Scan button on the dashboard.
  • Once the scan is completed make sure you have it quarantine any detections it finds.
  • If no detections were found click on the Save results drop-down, then the Export to TXT button and save the file as a Text file to your desktop.
  • If there were detections then once the quarantine has completed click on the View report button, then click the Export drop-down, then the Export to TXT button, and save the file as a Text file to your desktop or other location you can find and attach that log on your next reply.
  • If the computer restarted to quarantine you can access the logs from the Detection History, then the History tab. Highlight the most recent scan and double-click to open it. Then click the Export drop-down, then the Export to TXT button, and save the file as a Text file to your desktop or other location you can find and include that log on your next reply.
 
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2017 01 (ATTENTION: ====> FRSTversion is 2040 days old and could be outdated)
Ran by Adam1 (administrator) on DESKTOP-NPUVASQ (17-11-2022 14:03:30)
Running from C:\Users\Adam1\OneDrive\Desktop
Loaded Profiles: Adam1 (Available Profiles: Adam1)
Platform: Windows 10 Home Version 2009 (X64) Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: "C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe" --single-argument %1)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> Registry
(NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_bd530e4cbd42e0a3\Display.NvContainer\NVDisplay.Container.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
() C:\Windows\System32\AggregatorHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation) C:\Windows\System32\SgrmBroker.exe
(AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1207.2\AVGBrowserCrashHandler.exe
(AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1207.2\AVGBrowserCrashHandler64.exe
(NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_bd530e4cbd42e0a3\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_321.14700.0.9_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
() C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5d66730f577c60c7\RtkAudUService64.exe
() C:\Program Files\BakkesMod\BakkesMod.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Farbar) C:\Users\Adam1\OneDrive\Desktop\FRST64 (2).exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\WINDOWS\system32\SecurityHealthSystray.exe [266240 2021-11-04] (Microsoft Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5d66730f577c60c7\RtkAudUService64.exe [3495840 2022-06-09] (Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [249080 2022-11-01] (AVG Technologies CZ, s.r.o.)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [544768 2022-11-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [544768 2022-11-12] (Microsoft Corporation)
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234088 2022-10-19] (Valve Corporation)
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [Discord] => C:\Users\Adam1\AppData\Local\Discord\Update.exe --processStart Discord.exe
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [BakkesMod] => C:\Program Files\BakkesMod\BakkesMod.exe [16066560 2021-05-04] ()
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [BAStartup] => C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell -ExecutionPolicy bypass -c "$env:COMPLUS_version='v4.0.30319';$w="$env:APPDATA"+'\Browser Assistant\';cd $w;&powershell{& ./edge/x86/node.exe ./ed (the data entry has 15 more characters).
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [BAUpdater] => C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell -ExecutionPolicy bypass -c "$env:COMPLUS_version='v4.0.30319';$w="$env:APPDATA"+'\Browser Assistant\';cd $w;&powershell{& ./edge/x86/node.exe ./ed (the data entry has 27 more characters).
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1090168 2022-10-26] (Blizzard Entertainment)
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802584 2022-09-22] (Overwolf Ltd.)
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32696784 2022-11-02] (Epic Games, Inc.)
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [MicrosoftEdgeAutoLaunch_FA9CE6900424A5D5D583850899662B82] => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [3892128 2022-11-10] (Microsoft Corporation)
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\MountPoints2: {26cd57a7-1992-11ed-b96f-d8bbc154bf5e} - "E:\setup.exe"
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2022-11-01] (AVG Technologies CZ, s.r.o.)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\x86\ashShell.dll [2022-11-01] (AVG Technologies CZ, s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\nlansp_c.dll [83456 2022-08-11] (Microsoft Corporation) ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 07 C:\Windows\system32\nlansp_c.dll [126976 2022-08-11] (Microsoft Corporation) ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1dbeff1b-6ee4-4349-a5f8-b307f2b530d3}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{70e14be0-5498-45d1-993d-3108a8cbda25}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{adc72c8c-fc47-4641-95d0-679f25354a54}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{e48148d5-1afc-4fc5-82e7-a76d0c90b441}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.42\BHO\ie_to_edge_bho_64.dll [2022-11-10] (Microsoft Corporation)
BHO: IEBrowserAssistant -> {2421CBA2-89B7-4734-8438-49E0D7EB8A75} -> C:\Users\Adam1\AppData\Roaming\IEBrowserAssistant\adxloader64.dll [2018-11-13] (Default Company)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.42\BHO\ie_to_edge_bho.dll [2022-11-10] (Microsoft Corporation)
BHO-x32: IEBrowserAssistant -> {2421CBA2-89B7-4734-8438-49E0D7EB8A75} -> C:\Users\Adam1\AppData\Roaming\IEBrowserAssistant\adxloader.dll [2018-11-13] (Default Company)

FireFox:
========
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1207.2\npAvgBrowserUpdate3.dll [2022-10-11] (AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1207.2\npAvgBrowserUpdate3.dll [2022-10-11] (AVG Technologies)

Chrome:
=======
CHR Profile: C:\Users\Adam1\AppData\Local\Google\Chrome\User Data\Default [2022-10-29]
CHR Extension: (Google Docs Offline) - C:\Users\Adam1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Adam1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-16]
StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AarSvc; C:\WINDOWS\System32\AarSvc.dll [704512 2022-08-11] (Microsoft Corporation)
S3 AarSvc; C:\WINDOWS\SysWOW64\AarSvc.dll [528896 2022-08-11] (Microsoft Corporation)
R3 AarSvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
R3 AarSvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S3 autotimesvc; C:\WINDOWS\System32\autotimesvc.dll [143360 2022-08-11] (Microsoft Corporation)
S4 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [198040 2022-10-11] (AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [628984 2022-11-01] (AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [628984 2022-11-01] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8575536 2022-11-01] (AVG Technologies CZ, s.r.o.)
S4 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [198040 2022-10-11] (AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\107.0.19254.108\elevation_service.exe [2321368 2022-11-11] (AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2022-10-11] (AVG Technologies CZ, s.r.o.)
S3 BcastDVRUserService; C:\WINDOWS\System32\BcastDVRUserService.dll [1527808 2022-08-11] (Microsoft Corporation)
S3 BcastDVRUserService_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 BcastDVRUserService_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-11-22] ()
S3 BluetoothUserService; C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll [512000 2022-08-11] (Microsoft Corporation)
S3 BluetoothUserService_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 BluetoothUserService_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
R2 BrokerInfrastructure; C:\WINDOWS\System32\psmsrv.dll [290816 2021-06-05] (Microsoft Corporation)
S3 BTAGService; C:\WINDOWS\System32\BTAGService.dll [1089536 2022-11-12] (Microsoft Corporation)
S3 BTAGService; C:\WINDOWS\SysWOW64\BTAGService.dll [817664 2022-11-12] (Microsoft Corporation)
R3 BthAvctpSvc; C:\WINDOWS\System32\BthAvctpSvc.dll [397312 2022-08-11] (Microsoft Corporation)
R3 camsvc; C:\WINDOWS\system32\CapabilityAccessManager.dll [761856 2022-08-11] (Microsoft Corporation)
S3 CaptureService; C:\WINDOWS\System32\CaptureService.dll [188416 2022-08-11] (Microsoft Corporation)
S3 CaptureService_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 CaptureService_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S2 cbdhsvc; C:\WINDOWS\System32\cbdhsvc.dll [1093632 2022-08-11] (Microsoft Corporation)
R2 cbdhsvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
R2 cbdhsvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S4 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [602376 2021-07-28] (cFos Software GmbH)
S3 ConsentUxUserSvc; C:\WINDOWS\System32\ConsentUxClient.dll [212992 2022-08-11] (Microsoft Corporation)
S3 ConsentUxUserSvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 ConsentUxUserSvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [455936 2022-08-11] (Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc_5645b8; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [455936 2022-08-11] (Microsoft Corporation)
S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [831488 2022-11-12] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\System32\deviceaccess.dll [274104 2022-08-11] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\SysWOW64\deviceaccess.dll [199392 2022-08-11] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S3 DevicePickerUserSvc; C:\WINDOWS\System32\Windows.Devices.Picker.dll [532480 2022-08-11] (Microsoft Corporation)
S3 DevicePickerUserSvc; C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll [367616 2022-08-11] (Microsoft Corporation)
S3 DevicePickerUserSvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 DevicePickerUserSvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [679936 2022-08-11] (Microsoft Corporation)
S3 DevicesFlowUserSvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 DevicesFlowUserSvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S3 diagsvc; C:\WINDOWS\system32\DiagSvc.dll [241664 2022-08-11] (Microsoft Corporation)
R2 DispBrokerDesktopSvc; C:\WINDOWS\System32\DispBroker.Desktop.dll [434176 2022-08-11] (Microsoft Corporation)
S3 DisplayEnhancementService; C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1294336 2022-08-11] (Microsoft Corporation)
R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [430080 2022-08-11] (Microsoft Corporation)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1134624 2022-06-07] (Epic Games, Inc)
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [214952 2021-04-01] (Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [214952 2021-04-01] (Microsoft Corporation)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-05] (Epic Games, Inc.)
S3 FrameServerMonitor; C:\WINDOWS\system32\FrameServerMonitor.dll [319488 2022-08-11] (Microsoft Corporation)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [401960 2022-11-08] (NVIDIA)
S4 GoogleChromeElevationService; C:\Program Files\Google\Chrome\Application\107.0.5304.88\elevation_service.exe [1730328 2022-10-27] (Google LLC)
S3 GraphicsPerfSvc; C:\WINDOWS\System32\GraphicsPerfSvc.dll [278528 2022-08-11] (Microsoft Corporation)
R3 InstallService; C:\WINDOWS\system32\InstallService.dll [2752512 2022-11-12] (Microsoft Corporation)
R3 InstallService; C:\WINDOWS\SysWOW64\InstallService.dll [1995776 2022-11-12] (Microsoft Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe [785240 2021-09-15] (Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe [729944 2021-09-15] (Intel(R) Corporation)
S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [81920 2022-08-11] (Microsoft Corporation)
S4 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe [628616 2021-10-05] (Intel Corporation)
S4 LightKeeperService; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe [86776 2020-12-23] (Micro-Star INT'L CO., LTD.)
S4 LMS; C:\WINDOWS\System32\DriverStore\FileRepository\lms.inf_amd64_f629911085770af0\LMS.exe [4064368 2021-10-05] (Intel Corporation)
S3 LxpSvc; C:\WINDOWS\System32\LanguageOverlayServer.dll [536576 2022-11-12] (Microsoft Corporation)
S3 McpManagementService; C:\WINDOWS\System32\McpManagementService.dll [323584 2022-11-12] (Microsoft Corporation)
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.42\elevation_service.exe [1755032 2022-11-10] (Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [165616 2021-06-05] (Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [119776 2021-06-05] (Microsoft Corporation)
S4 MSI_Case_Service; C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe [67232 2022-07-04] (Micro-Star INT'L CO., LTD.)
S4 MSI_Central_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [148720 2022-05-18] (Micro-Star Int'l Co., Ltd.)
S4 MSI_Super_Charger_Service; C:\Program Files (x86)\MSI\MSI Center\Super Charger\MSI_Super_Charger_Service.exe [37104 2022-05-13] (MSI)
S4 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe [34032 2022-05-12] (Micro-Star INT'L CO., LTD.)
S4 Mystic_Light_Service; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe [37616 2022-04-28] (Micro-Star Int'l Co., Ltd.)
S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [466944 2022-08-11] (Microsoft Corporation)
S3 NPSMSvc; C:\WINDOWS\System32\npsm.dll [233472 2022-08-11] (Microsoft Corporation)
S3 NPSMSvc; C:\WINDOWS\SysWOW64\npsm.dll [163328 2022-08-11] (Microsoft Corporation)
R3 NPSMSvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
R3 NPSMSvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-11-08] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_bd530e4cbd42e0a3\Display.NvContainer\NVDisplay.Container.exe [1014808 2022-11-09] (NVIDIA Corporation)
S4 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-09-22] (Overwolf LTD)
S3 P9RdrService; C:\WINDOWS\system32\p9rdrservice.dll [122880 2022-08-11] (Microsoft Corporation)
S3 P9RdrService_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 P9RdrService_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S3 PenService; C:\WINDOWS\System32\PenService.dll [323584 2022-11-12] (Microsoft Corporation)
S3 PenService_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 PenService_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S3 perceptionsimulation; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [237568 2021-06-05] (Microsoft Corporation)
S3 PrintWorkflowUserSvc; C:\WINDOWS\System32\PrintWorkflowService.dll [454656 2022-11-12] (Microsoft Corporation)
S3 PrintWorkflowUserSvc; C:\WINDOWS\SysWOW64\PrintWorkflowService.dll [355840 2022-11-12] (Microsoft Corporation)
S3 PrintWorkflowUserSvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
S3 PrintWorkflowUserSvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S3 PushToInstall; C:\WINDOWS\system32\PushToInstall.dll [385024 2022-08-11] (Microsoft Corporation)
S4 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2017072 2022-01-10] (Rockstar Games)
S4 RtkAudioUniversalService; C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5d66730f577c60c7\RtkAudUService64.exe [3495840 2022-06-09] (Realtek Semiconductor)
S3 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [141920 2022-11-12] (Microsoft Corporation)
S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1306624 2021-06-05] (Microsoft Corporation)
R2 SgrmBroker; C:\WINDOWS\system32\SgrmBroker.exe [409456 2021-06-05] (Microsoft Corporation)
S3 SharedRealitySvc; C:\WINDOWS\System32\SharedRealitySvc.dll [331776 2021-06-05] (Microsoft Corporation)
S3 spectrum; C:\WINDOWS\system32\spectrum.exe [757760 2021-11-04] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [382976 2021-06-04] ()
S4 SU10Guard; C:\Windows\G3L2XW5\SU10Guard.exe [72776 2020-05-31] (Greatis Software, LLC)
R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1785856 2022-08-11] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [1353728 2022-08-11] (Microsoft Corporation)
S3 TroubleshootingSvc; C:\WINDOWS\system32\MitigationClient.dll [569344 2022-08-11] (Microsoft Corporation)
S3 tzautoupdate; C:\WINDOWS\SysWOW64\tzautoupdate.dll [115200 2022-08-11] (Microsoft Corporation)
S3 UdkUserSvc; C:\WINDOWS\System32\windowsudkservices.shellcommon.dll [118784 2022-11-12] (Microsoft Corporation)
R3 UdkUserSvc_5645b8; C:\WINDOWS\system32\svchost.exe [79944 2022-08-11] (Microsoft Corporation)
R3 UdkUserSvc_5645b8; C:\WINDOWS\SysWOW64\svchost.exe [48568 2022-08-11] (Microsoft Corporation)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [378216 2022-03-23] (Microsoft Corporation)
R2 UsoSvc; C:\WINDOWS\system32\usosvc.dll [94208 2022-11-12] (Microsoft Corporation)
S3 VacSvc; C:\WINDOWS\System32\vac.dll [414616 2022-08-11] (Microsoft Corporation)
S3 vmicvss; C:\WINDOWS\System32\icsvcvss.dll [349544 2022-08-11] (Microsoft Corporation)
S4 WaaSMedicSvc; C:\WINDOWS\System32\WaaSMedicSvc.dll [462848 2022-11-12] (Microsoft Corporation)
S3 WarpJITSvc; C:\WINDOWS\System32\Windows.WARP.JITService.dll [86016 2021-06-05] (Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-04] (Microsoft Corporation)
S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [704512 2022-08-11] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-04] (Microsoft Corporation)
S3 wisvc; C:\WINDOWS\SysWOW64\flightsettings.dll [821712 2022-11-12] (Microsoft Corporation)
S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1224704 2022-08-11] (Microsoft Corporation)
S3 WManSvc; C:\WINDOWS\system32\Windows.Management.Service.dll [1351680 2022-11-12] (Microsoft Corporation)
S4 WMIRegistrationService; C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe [538736 2021-10-05] (Intel Corporation)
S3 WpcMonSvc; C:\WINDOWS\System32\WpcDesktopMonSvc.dll [1929216 2022-11-12] (Microsoft Corporation)
S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [131072 2022-08-11] (Microsoft Corporation)
S4 XTU3SERVICE; C:\WINDOWS\SysWOW64\XtuService.exe [81472 2021-02-24] (Intel(R) Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Acx01000; C:\WINDOWS\System32\drivers\Acx01000.sys [700416 2021-06-05] (Microsoft Corporation)
R1 afunix; C:\WINDOWS\system32\drivers\afunix.sys [81920 2022-08-11] (Microsoft Corporation)
R1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [31744 2022-08-11] (Microsoft Corporation)
S3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [18432 2021-06-05] (Advanced Micro Devices, Inc)
S3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [45568 2021-06-05] (Advanced Micro Devices, Inc)
S0 AppleSSD; C:\WINDOWS\System32\drivers\AppleSSD.sys [112440 2021-06-05] (Apple Inc.)
S3 atvi-randgrid_sr; C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\randgrid.sys [2513192 2022-10-22] (Activision Blizzard, Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [42416 2022-11-01] (AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [238288 2022-11-01] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [390168 2022-11-01] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [306200 2022-11-01] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [106520 2022-11-01] (AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2022-10-13] (AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [48648 2022-11-01] (AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [276632 2022-11-01] (AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [564416 2022-11-01] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [114632 2022-11-01] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [90120 2022-11-01] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [863104 2022-11-01] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [672440 2022-11-01] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [222120 2022-11-01] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [328040 2022-11-01] (AVG Technologies CZ, s.r.o.)
R1 bam; C:\WINDOWS\System32\drivers\bam.sys [106808 2021-06-05] (Microsoft Corporation)
R1 BasicDisplay; C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_a3f9d7c24b3377b3\BasicDisplay.sys [86016 2021-06-05] (Microsoft Corporation)
R1 BasicRender; C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_125ef86610247b72\BasicRender.sys [69632 2022-11-12] (Microsoft Corporation)
R2 bindflt; C:\WINDOWS\system32\drivers\bindflt.sys [177536 2022-11-12] (Microsoft Corporation)
S3 BthLEEnum; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [135168 2022-08-11] (Microsoft Corporation)
S3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [81920 2022-11-12] (Microsoft Corporation)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [File not signed]
S0 bttflt; C:\WINDOWS\System32\drivers\bttflt.sys [75096 2022-08-11] (Microsoft Corporation)
S3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [95568 2022-08-11] (Microsoft Corporation)
R1 CimFS; C:\Windows\System32\Drivers\CimFS.sys [161120 2022-11-12] (Microsoft Corporation)
R2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [540672 2022-11-12] (Microsoft Corporation)
R3 e2fexpress; C:\WINDOWS\System32\drivers\e2f68.sys [523120 2021-03-11] (Intel Corporation)
S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3440440 2021-06-05] (Marvell Semiconductor Inc.)
S0 ebdrv0; C:\WINDOWS\System32\drivers\evbd0a.sys [3423032 2021-06-05] (QLogic Corporation)
R2 EneTechIo; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\EneIo64.sys [32504 2022-07-10] ()
S3 ExecutionContext; C:\WINDOWS\System32\Drivers\ExecutionContext.sys [61440 2021-06-05] (Microsoft Corporation)
S3 genericusbfn; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_dc3260bbd08046c4\genericusbfn.sys [57344 2021-06-05] (Microsoft Corporation)
S3 hidspi; C:\WINDOWS\System32\drivers\hidspi.sys [131072 2022-08-11] (Microsoft Corporation)
S3 HidSpiCx; C:\WINDOWS\System32\drivers\HidSpiCx.sys [118784 2022-08-11] (Microsoft Corporation)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [111968 2022-11-12] (Microsoft Corporation)
S4 hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [69960 2021-06-05] (Microsoft Corporation)
S3 HwNClx0101; C:\WINDOWS\System32\Drivers\mshwnclx.sys [57344 2021-06-05] (Microsoft Corporation)
S3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184 2021-06-05] (Intel Corporation)
S3 iaLPSS2i_GPIO2_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2021-06-05] (Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2021-06-05] (Intel Corporation)
S3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104 2021-06-05] (Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152 2021-06-05] (Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2021-06-05] (Intel Corporation)
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-07-19] (Intel Corporation)
S0 iaStorAVC; C:\WINDOWS\System32\drivers\iaStorAVC.sys [884552 2021-06-05] (Intel Corporation)
S3 intelpmax; C:\WINDOWS\System32\drivers\intelpmax.sys [61440 2022-08-11] (Microsoft Corporation)
R0 IntelPMT; C:\WINDOWS\System32\drivers\IntelPMT.sys [75272 2022-08-11] (Microsoft Corporation)
S3 IPT; C:\WINDOWS\System32\drivers\ipt.sys [94520 2021-06-05] (Microsoft Corporation)
S0 ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [176952 2021-06-05] (Avago Technologies)
S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [561480 2021-06-05] (Microsoft Corporation)
S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [90440 2021-06-05] (Microsoft Corporation)
S3 MbbCx; C:\WINDOWS\System32\drivers\MbbCx.sys [425984 2021-06-05] (Microsoft Corporation)
S0 megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [100176 2021-06-05] (Broadcom Inc)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_c22251d5ea82b3c3\x64\TeeDriverW10x64.sys [309384 2021-08-19] (Intel Corporation)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [94208 2022-08-11] (Microsoft Corporation)
S0 mpi3drvi; C:\WINDOWS\System32\drivers\mpi3drvi.sys [87352 2021-06-05] (Broadcom Limited)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (MICSYS Technology Co., LTd)
R3 MsQuic; C:\WINDOWS\System32\drivers\msquic.sys [377712 2022-08-11] (Microsoft Corporation)
S3 NAL; C:\Windows\system32\Drivers\iqvsw64e.sys [57696 2020-10-30] (Intel Corporation )
S3 NDKPerf; C:\WINDOWS\System32\drivers\NDKPerf.sys [79192 2022-08-11] ()
S3 NDKPing; C:\WINDOWS\System32\drivers\NDKPing.sys [103776 2022-08-11] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [352256 2022-08-11] (Microsoft Corporation)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\MSI Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MSI)
S3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [28480 2022-04-27] (MSI)
S3 NTIOLib_CC_CPU; C:\Program Files (x86)\MSI\MSI Center\Super Charger\NTIOLib_X64.sys [14288 2017-07-10] (MSI)
S3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MSI)
S0 nvdimm; C:\WINDOWS\System32\drivers\nvdimm.sys [202088 2022-08-11] (Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_bd530e4cbd42e0a3\nvlddmkm.sys [57864200 2022-11-09] (NVIDIA Corporation)
S0 nvmedisk; C:\WINDOWS\System32\drivers\nvmedisk.sys [83296 2022-08-11] (Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59368 2022-07-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [60112 2022-07-13] (NVIDIA Corporation)
S3 P9Rdr; C:\WINDOWS\System32\drivers\p9rdr.sys [136560 2022-08-11] (Microsoft Corporation)
S3 PktMon; C:\WINDOWS\System32\drivers\PktMon.sys [169304 2022-11-12] (Microsoft Corporation)
S0 pmem; C:\WINDOWS\System32\drivers\pmem.sys [181584 2022-11-12] (Microsoft Corporation)
S3 portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [57344 2022-08-11] (Microsoft Corporation)
R0 PRM; C:\WINDOWS\System32\DriverStore\FileRepository\prm.inf_amd64_7fc9bb8ba2b73803\PRM.sys [61752 2021-06-05] (Microsoft Corporation)
S0 Ramdisk; C:\WINDOWS\System32\DRIVERS\ramdisk.sys [71016 2022-08-11] (Microsoft Corporation)
S3 rhproxy; C:\WINDOWS\System32\drivers\rhproxy.sys [143360 2022-08-11] (Microsoft Corporation)
R3 RTWlanE01; C:\WINDOWS\System32\drivers\rtwlane01.sys [8169472 2021-06-01] (Realtek Semiconductor Corporation                           )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [65856 2021-06-05] (Microsoft Corporation)
R0 SgrmAgent; C:\WINDOWS\System32\drivers\SgrmAgent.sys [119112 2021-06-05] (Microsoft Corporation)
S0 SmartSAMD; C:\WINDOWS\System32\drivers\SmartSAMD.sys [209736 2021-06-05] (Microsemi Corportation)
S3 spaceparser; C:\WINDOWS\System32\drivers\spaceparser.sys [77824 2022-08-11] (Microsoft Corporation)
S3 SpatialGraphFilter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [127304 2021-06-05] (Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys [65536 2021-06-05] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\WINDOWS\System32\Drivers\UcmUcsiCx.sys [139264 2021-06-05] (Microsoft Corporation)
R3 UEFI; C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_6693f32a658a859a\UEFI.sys [75104 2022-08-11] (Microsoft Corporation)
S3 UfxChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_a517b810ee0e44a2\UfxChipidea.sys [135496 2021-06-05] (Microsoft Corporation)
R3 umbus; C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_0a89aff902a5c3a9\umbus.sys [90112 2021-06-05] (Microsoft Corporation)
S3 UrsChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_4bd4df2779fd9e16\urschipidea.sys [61752 2021-06-05] (Microsoft Corporation)
S3 UrsSynopsys; C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_28522251903b4825\urssynopsys.sys [61752 2021-06-05] (Microsoft Corporation)
S3 Usb4DeviceRouter; C:\WINDOWS\System32\DriverStore\FileRepository\usb4devicerouter.inf_amd64_d8f35ef90c83032f\Usb4DeviceRouter.sys [877912 2022-11-12] (Microsoft Corporation)
S3 Usb4HostRouter; C:\WINDOWS\System32\DriverStore\FileRepository\usb4hostrouter.inf_amd64_ea264d21e6b3e5db\Usb4HostRouter.sys [595280 2022-11-12] (Microsoft Corporation)
S3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [380928 2022-08-11] (Microsoft Corporation)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Nefarius Software Solutions e.U.)
S3 VirtualRender; C:\WINDOWS\System32\DriverStore\FileRepository\vrd.inf_amd64_346f3764318c1681\vrd.sys [45056 2021-06-05] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-07-04] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-07-04] (Microsoft Corporation)
S3 WdmCompanionFilter; C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [54624 2022-08-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-04] (Microsoft Corporation)
S3 WifiCx; C:\WINDOWS\System32\drivers\WifiCx.sys [806912 2022-08-11] (Microsoft Corporation)
S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [307176 2022-08-11] (Microsoft Corporation)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [47784 2021-02-24] (Intel Corporation)
U1 avgbdisk; no ImagePath
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation)
NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation)
NETSVC: WManSvc -> C:\Windows\system32\Windows.Management.Service.dll (Microsoft Corporation)
NETSVC: InstallService -> C:\Windows\system32\InstallService.dll (Microsoft Corporation)
NETSVC: LxpSvc -> C:\Windows\System32\LanguageOverlayServer.dll (Microsoft Corporation)
NETSVC: TroubleshootingSvc -> C:\Windows\system32\MitigationClient.dll (Microsoft Corporation)
NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation)
NETSVC: PushToInstall -> C:\Windows\system32\PushToInstall.dll (Microsoft Corporation)
NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)
NETSVCx32: TokenBroker -> C:\Windows\SysWOW64\TokenBroker.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-11-17 14:03 - 2022-11-17 14:03 - 00000000 ____D C:\FRST
2022-11-17 14:02 - 2022-11-17 14:02 - 02424832 _____ (Farbar) C:\Users\Adam1\Downloads\FRST64 (2).exe
2022-11-17 14:01 - 2022-11-17 14:01 - 02375168 _____ (Farbar) C:\Users\Adam1\Downloads\Unconfirmed 833354.crdownload
2022-11-16 21:18 - 2022-11-16 23:34 - 00002530 _____ C:\WINDOWS\System32\Tasks\Remove AdwCleaner Application
2022-11-16 21:18 - 2022-11-16 23:34 - 00002512 _____ C:\WINDOWS\System32\Tasks\Uninstall AdwCleaner Application
2022-11-16 21:18 - 2022-11-16 21:19 - 00000000 ____D C:\AdwCleaner
2022-11-16 21:14 - 2022-11-16 21:14 - 08791352 _____ (Malwarebytes) C:\Users\Adam1\Downloads\adwcleaner.exe
2022-11-16 18:30 - 2022-11-16 18:32 - 02988860 _____ C:\WINDOWS\Minidump\111622-33125-01.dmp
2022-11-15 16:47 - 2022-11-15 16:48 - 02375168 _____ (Farbar) C:\Users\Adam1\Downloads\FRST64.exe
2022-11-12 00:52 - 2022-11-12 00:52 - 05435392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 04464640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSRESM.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00865624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2022-11-12 00:52 - 2022-11-12 00:52 - 00839168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00438272 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00129480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2022-11-12 00:52 - 2022-11-12 00:52 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOM.dll
2022-11-12 00:52 - 2022-11-12 00:52 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2022-11-12 00:52 - 2022-11-12 00:52 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinFax.dll
2022-11-12 00:51 - 2022-11-12 00:51 - 11060576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntkrla57.exe
2022-11-12 00:51 - 2022-11-12 00:51 - 01021272 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernella57.exe
2022-11-12 00:51 - 2022-11-12 00:51 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\quickassist.exe
2022-11-12 00:51 - 2022-11-12 00:51 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quickassist.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 32904568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 31691392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 27197440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 23633920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 20370432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 18883584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 09064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 08306728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 08142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 07917568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 07530496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 06647808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 06048256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 05734160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 05304320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9Legacy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 05107712 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 04235264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 04143616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9Legacy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 04059024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 03964928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 03683840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 03616488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 03518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 02802176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 02764800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2022-11-12 00:50 - 2022-11-12 00:50 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2022-11-12 00:50 - 2022-11-12 00:50 - 02637616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 02489048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 02349032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 02273280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 02088048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 02032992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01794048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 01787264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01774944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 01749848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2022-11-12 00:50 - 2022-11-12 00:50 - 01594712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01586528 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 01563280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01431072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01392976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 01324840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01261328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01162496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 01112920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 01075736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 01074512 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 01069056 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PayloadRestrictions.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00952408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00941056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2022-11-12 00:50 - 2022-11-12 00:50 - 00902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00867328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00856904 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00854808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00851456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlsrv32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2022-11-12 00:50 - 2022-11-12 00:50 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00729088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabletPC.cpl
2022-11-12 00:50 - 2022-11-12 00:50 - 00714752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PayloadRestrictions.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00697680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlsrv32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00655360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00643072 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00637440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2022-11-12 00:50 - 2022-11-12 00:50 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00568664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\localsec.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\localsec.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00472440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2022-11-12 00:50 - 2022-11-12 00:50 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00460120 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00451776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00449360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2022-11-12 00:50 - 2022-11-12 00:50 - 00439416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\provplatformdesktop.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00415072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgrx.sys
2022-11-12 00:50 - 2022-11-12 00:50 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFIPP.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00340224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PenService.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\McpManagementService.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00319488 _____ C:\WINDOWS\system32\EsclScan.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00311288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00303024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbroker.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provplatformdesktop.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2022-11-12 00:50 - 2022-11-12 00:50 - 00263504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFESCL.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslapi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSHExtensions.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00200704 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2022-11-12 00:50 - 2022-11-12 00:50 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvc.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\EsclWiaDriver.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpcsp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsl.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00169304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PktMon.sys
2022-11-12 00:50 - 2022-11-12 00:50 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvfw32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbsapi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00161112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2022-11-12 00:50 - 2022-11-12 00:50 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00152920 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScanPlugin.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSAppXHelper.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtrefreshcredprov.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\avifil32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\provmigrate.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciavi32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2022-11-12 00:50 - 2022-11-12 00:50 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvfw32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslg.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rshx32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAMRNBSource.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\logman.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\UPPrinterInstallsCSP.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\remotepg.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\klist.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\avicap32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\avifil32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxproxy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcredentialprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcommandscsp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00090112 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsigd.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provmigrate.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciavi32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\capiprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logman.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remotepg.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\provlaunch.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapiprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\typeperf.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\relog.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\avicap32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icsigd.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMonApi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsmproxy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provisioningcommandscsp.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2022-11-12 00:50 - 2022-11-12 00:50 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00058704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvidc32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capiprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provlaunch.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpapiprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\typeperf.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\relog.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskperf.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dimsroam.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredprovider.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrle32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxproxy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvidc32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lsmproxy.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskperf.exe
2022-11-12 00:50 - 2022-11-12 00:50 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00015461 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-11-12 00:50 - 2022-11-12 00:50 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrle32.dll
2022-11-12 00:50 - 2022-11-12 00:50 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragres.dll
2022-11-12 00:49 - 2022-11-12 00:50 - 06370504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 15022080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 09027432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 08145592 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 06980544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 06164992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 06090584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 05682560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 05261424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 04763728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 04720136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 04654080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 04454808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 04087624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 03559424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 03110400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02996736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02844216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02756608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02679584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02665472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02580480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02532896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02522624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsudk.shellcommon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02358784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02310144 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02284560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02247680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02225488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ServicingUAPI.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01986560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01815376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01777664 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01774056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01757608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01726256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01725184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01661952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01572864 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01543848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01495808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01488720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01449784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01406976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01384448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01347584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01347584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01286144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01254736 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01183232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01152288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01150128 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01070944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01031944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 01016320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00959624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00947624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00944640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00939008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00931760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00928152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00902272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00893544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00886304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00878040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00827936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00826392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00821712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00782336 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00777216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00772168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ServicingCommon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00724152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00710200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2022-11-12 00:49 - 2022-11-12 00:49 - 00707992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00679040 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00662520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00657512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00650112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsRasterService.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00575928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00575856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00563712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintRenderAPIHost.DLL
2022-11-12 00:49 - 2022-11-12 00:49 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00558880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00541368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00540216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clbcatq.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsRasterService.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00502024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00493392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00492216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.FileExplorer.Common.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00477272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11on12.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webauthn.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00457216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2022-11-12 00:49 - 2022-11-12 00:49 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00452448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFSv1.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingDiagSpp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00420464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00396288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrv.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.PrintSupport.Source.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00385664 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadauthhelper.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmontr.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingDiagSpp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00365640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.FileExplorer.Common.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00336112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00335704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00334152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00313680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwave.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00298024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmontr.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.PrintSupport.Source.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsAuth.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\PkgMgr.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnfldr.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00257760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00246104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00243072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00236568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qwave.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PkgMgr.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00220400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00215384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LanguageOverlayUtil.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00212480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\netjoin.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00208728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00198288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00196768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFCompanionHost.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00190592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngckeyenum.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00177504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\joinutil.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00167336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netjoin.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovslegacy.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00154304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00149816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\joinutil.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPolEng.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\rekeywiz.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00142568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\efslsaext.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsToPwgrConverter.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\slwga.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\efssvc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipfltdrv.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rekeywiz.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00108368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcfgutils.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmxmlhelputils.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00092320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00092288 _____ (Microsoft Corporation) C:\WINDOWS\system32\whhelper.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amsi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unenrollhook.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00085328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00082280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Integrity.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsToPwgrConverter.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00075096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00074896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TempSignedLicenseExchangeTask.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\colbact.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypttpmeksvc.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sfc.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00062800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00062496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\whhelper.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys
2022-11-12 00:49 - 2022-11-12 00:49 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00056800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DmApiSetExtImplDesktop.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00052176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00038576 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmlocalmanagement.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2022-11-12 00:49 - 2022-11-12 00:49 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmpushproxy.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00015000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shimeng.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netmsg.dll
2022-11-12 00:49 - 2022-11-12 00:49 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAppsRes.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 11756888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 10504984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 08868736 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 08562928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 08511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 06777872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 06135808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 05906432 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 04646224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 04411392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 04173824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03919872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03829760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 03678904 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03666512 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03604480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03563520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03510272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03432448 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03405320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskbar.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03315712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03256320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 03216768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 03192144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 03036496 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02895872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02859008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02752512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02621232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02338816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02319672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2022-11-12 00:48 - 2022-11-12 00:48 - 02295136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 02250064 _____ (Microsoft Corporation) C:\WINDOWS\system32\clipwinrt.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02207880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02143576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 02129400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01862544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2022-11-12 00:48 - 2022-11-12 00:48 - 01794048 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 01778192 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01728568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01725784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01693016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 01634256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01564672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01544192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01511424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2022-11-12 00:48 - 2022-11-12 00:48 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01484776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01447632 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01414568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01351680 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01282320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01278176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01265784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01265664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01244752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01216208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01179008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01145968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01137688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellAppRuntime.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 01130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01126400 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 01111384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 01090920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthCore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01082720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Facilitator.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01070416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 01052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 01028096 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00978944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvcimpl.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00964160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ServicingCommon.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00964144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00962560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00958464 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00955880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00935296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2022-11-12 00:48 - 2022-11-12 00:48 - 00910440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00869720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcsvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00790624 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00782336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntfsres.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00745144 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00741016 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00673120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00670816 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00650112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00640336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellAPI.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00636240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00621216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoNotificationUx.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00608816 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\webauthn.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFSv1.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00595288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00591200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00583024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00558464 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00558440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploy.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00542032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00537936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2022-11-12 00:48 - 2022-11-12 00:48 - 00528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2022-11-12 00:48 - 2022-11-12 00:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrv.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00513744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00489008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00488792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00476512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00460040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00451792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhdrv.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00447832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00435248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00427360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00410464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00377400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00372736 _____ C:\WINDOWS\system32\hwreqchk.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00320864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00312680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00296320 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00282376 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00275792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00274112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00265864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00265832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00251232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthUdk.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00247104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00238976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00234848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00224528 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindfltapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcProCsp.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00216264 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00214368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00210304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00208024 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00206176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsaadt.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00203888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00202112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPolEng.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00177536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00177496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\cimfs.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00173376 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\cxcredprov.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00166696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cimfs.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00157024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00152920 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dtdump.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00144744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00144720 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmxmlhelputils.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmwappushsvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00141920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00140648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcfgutils.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00132472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00121224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00120160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Integrity.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudkservices.shellcommon.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00116072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00112992 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00112952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00112952 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\colbact.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sfc.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\prauthproviders.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dynamoapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00092304 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00091480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00084056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msasn1.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00084056 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00083280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdstub.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00077824 _____ C:\WINDOWS\system32\runexehelper.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmpostprocessevaluator.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00075080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00071000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpata.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmlocalmanagement.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00058720 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcapi.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00058704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dmpusbstor.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmOmaCpMo.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmpushproxy.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2022-11-12 00:48 - 2022-11-12 00:48 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00042752 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2022-11-12 00:48 - 2022-11-12 00:48 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\declaredconfiguration.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00030032 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\netmsg.dll
2022-11-12 00:48 - 2022-11-12 00:48 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAppsRes.dll
2022-11-12 00:47 - 2022-11-12 00:48 - 03440640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 18898944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 07335696 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 06071344 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 05087928 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 03727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 03342336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 03014656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 02641760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 02531328 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 02030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 02015232 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01929216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01921024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 01778160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01574224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01564672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01500504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01451520 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01360832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01351680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01303032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01282304 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01277952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01253432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 01242448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01146880 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01137688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01126400 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01089536 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 01001336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00931168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00873264 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00857448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00836960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00720400 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00656720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2022-11-12 00:47 - 2022-11-12 00:47 - 00641864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2022-11-12 00:47 - 2022-11-12 00:47 - 00600528 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11on12.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00542032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00517888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadauthhelper.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00501080 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00472424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00451968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00439680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00365912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_OneCore_BatterySaver.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsAuth.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00345424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00337240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00329048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00290632 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayUtil.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00284000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00263512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00255328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00255320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00243040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.System.UserProfile.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00234840 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00230728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00222552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00206176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipRenew.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00202096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00181584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pmem.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingCSP.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-11-12 00:47 - 2022-11-12 00:47 - 00169280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2022-11-12 00:47 - 2022-11-12 00:47 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguagePackManagementCSP.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00144744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.ModernDeployment.ConfigProviders.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsi.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\GPCSEWrapperCsp.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00120152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrinterCleanupTask.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2022-11-12 00:47 - 2022-11-12 00:47 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00117088 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypttpmeksvc.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Hsp.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00111960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uaspstor.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateChangeHandler.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00099672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2022-11-12 00:47 - 2022-11-12 00:47 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00075752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSDScan.sys
2022-11-12 00:47 - 2022-11-12 00:47 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\localui.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsiproxy.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00021888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hspfw.dll
2022-11-12 00:47 - 2022-11-12 00:47 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2022-11-12 00:40 - 2022-11-12 00:40 - 00000000 ___HD C:\$WinREAgent
2022-11-12 00:40 - 2022-08-25 02:53 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2022-11-12 00:40 - 2022-08-25 02:27 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2022-11-12 00:13 - 2022-11-12 00:13 - 00000000 ____D C:\Program Files\Reference Assemblies
2022-11-12 00:13 - 2022-11-12 00:13 - 00000000 ____D C:\Program Files\MSBuild
2022-11-12 00:13 - 2022-11-12 00:13 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-11-12 00:13 - 2022-11-12 00:13 - 00000000 ____D C:\Program Files (x86)\MSBuild
2022-11-12 00:12 - 2022-11-12 00:12 - 01168760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2022-11-12 00:12 - 2022-11-12 00:12 - 00781200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2022-11-12 00:12 - 2022-11-12 00:12 - 00126840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2022-11-12 00:12 - 2022-11-12 00:12 - 00105360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2022-11-12 00:12 - 2022-11-12 00:12 - 00037864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2022-11-12 00:12 - 2022-11-12 00:12 - 00037864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2022-11-12 00:05 - 2022-08-03 21:57 - 01644432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfshim.dll
2022-11-12 00:05 - 2022-08-03 21:57 - 01207712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfshim.dll
2022-11-11 05:20 - 2022-11-11 05:25 - 03560708 _____ C:\WINDOWS\Minidump\111122-31500-01.dmp
2022-11-11 05:07 - 2022-11-08 22:40 - 00041984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-11-11 05:06 - 2022-11-09 10:03 - 02236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-11-11 05:06 - 2022-11-09 10:03 - 02236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-11-11 05:06 - 2022-11-09 10:03 - 01642592 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-11-11 05:06 - 2022-11-09 10:03 - 01642592 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-11-11 05:06 - 2022-11-09 10:03 - 01487912 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-11-11 05:06 - 2022-11-09 10:03 - 01444416 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-11-11 05:06 - 2022-11-09 10:03 - 01444416 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-11-11 05:06 - 2022-11-09 10:03 - 01227304 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-11-11 05:06 - 2022-11-09 10:03 - 01168960 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-11-11 05:06 - 2022-11-09 10:03 - 01168960 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-11-11 05:06 - 2022-11-09 09:59 - 00865272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-11-11 05:06 - 2022-11-09 09:59 - 00672232 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-11-11 05:06 - 2022-11-09 09:59 - 00507432 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-11-11 05:06 - 2022-11-09 09:58 - 02162176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-11-11 05:06 - 2022-11-09 09:58 - 01618408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-11-11 05:06 - 2022-11-09 09:58 - 01531400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-11-11 05:06 - 2022-11-09 09:58 - 01190392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-11-11 05:06 - 2022-11-09 09:58 - 00950280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-11-11 05:06 - 2022-11-09 09:58 - 00746536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-11-11 05:06 - 2022-11-09 09:58 - 00734184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-11-11 05:06 - 2022-11-09 09:57 - 12452360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-11-11 05:06 - 2022-11-09 09:57 - 10218488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-11-11 05:06 - 2022-11-09 09:57 - 05891072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-11-11 05:06 - 2022-11-09 09:57 - 05856744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2022-11-11 05:06 - 2022-11-09 09:57 - 03334136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-11-11 05:06 - 2022-11-09 09:57 - 00457752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-11-11 05:06 - 2022-11-09 09:56 - 05816312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-11-11 05:06 - 2022-11-09 09:56 - 00853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-11-11 05:06 - 2022-11-08 22:40 - 00100589 _____ C:\WINDOWS\system32\nvinfo.pb
2022-11-11 04:58 - 2022-07-13 23:32 - 00060112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2022-11-11 04:55 - 2022-11-11 04:57 - 851669800 _____ (NVIDIA Corporation) C:\Users\Adam1\Downloads\526.86-desktop-win10-win11-64bit-international-dch-whql.exe
2022-11-08 09:06 - 2022-11-08 09:11 - 02900812 _____ C:\WINDOWS\Minidump\110822-26640-01.dmp
2022-11-08 08:26 - 2022-11-01 19:24 - 00270584 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2022-11-08 07:06 - 2022-11-08 07:06 - 02170988 _____ C:\WINDOWS\Minidump\110822-32656-01.dmp
2022-11-08 06:20 - 2022-11-08 06:29 - 03620580 _____ C:\WINDOWS\Minidump\110822-33968-01.dmp
2022-11-06 16:48 - 2022-11-06 20:59 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2022-11-06 15:28 - 2022-11-16 18:33 - 00000000 ____D C:\WINDOWS\Minidump
2022-11-03 23:14 - 2022-11-03 23:14 - 00014944 _____ C:\Users\Adam1\Downloads\th.jfif
2022-11-03 23:08 - 2022-11-03 23:08 - 00011534 _____ C:\Users\Adam1\Downloads\blue bulb.jfif
2022-11-03 23:07 - 2022-11-03 23:07 - 00004343 _____ C:\Users\Adam1\Downloads\bublb.jfif
2022-11-01 19:24 - 2022-11-01 19:24 - 00222120 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2022-10-30 21:00 - 2022-10-30 21:00 - 00000000 ___HD C:\$AV_AVG

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-11-17 14:00 - 2021-06-05 12:09 - 00000000 ____D C:\WINDOWS\INF
2022-11-17 13:59 - 2021-09-25 12:40 - 00000000 ____D C:\Users\Adam1\AppData\Local\D3DSCache
2022-11-17 13:49 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\AppReadiness
2022-11-17 13:48 - 2021-09-26 21:29 - 00000000 ____D C:\ProgramData\NVIDIA
2022-11-16 23:34 - 2022-10-12 14:42 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2022-11-16 23:34 - 2021-06-05 12:10 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-16 21:29 - 2022-08-11 18:29 - 00848788 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-11-16 21:22 - 2022-10-11 16:30 - 00000000 ____D C:\ProgramData\AVG
2022-11-16 21:22 - 2022-08-11 18:27 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-11-16 21:22 - 2021-09-25 09:58 - 00012288 ___SH C:\DumpStack.log.tmp
2022-11-16 21:21 - 2022-08-11 18:05 - 00000000 ____D C:\Users\Adam1
2022-11-16 21:21 - 2021-06-05 12:01 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2022-11-16 21:15 - 2022-01-18 01:21 - 00000000 ____D C:\ProgramData\BSD
2022-11-16 19:30 - 2022-08-11 18:16 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2022-11-16 18:41 - 2022-10-11 16:43 - 00002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2022-11-16 18:41 - 2022-10-11 16:43 - 00002340 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk
2022-11-16 18:33 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\SystemTemp
2022-11-16 18:30 - 2022-08-05 03:07 - 1227337058 _____ C:\WINDOWS\MEMORY.DMP
2022-11-15 20:07 - 2022-09-08 17:36 - 00000000 ____D C:\Users\Adam1\AppData\Roaming\DS4Windows
2022-11-13 23:51 - 2021-09-25 12:57 - 00000000 ____D C:\Program Files (x86)\Steam
2022-11-13 18:59 - 2021-06-05 12:10 - 00000000 ___HD C:\Program Files\WindowsApps
2022-11-12 23:43 - 2021-09-26 11:47 - 00000000 ____D C:\Users\Adam1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-11-12 07:55 - 2021-09-25 10:00 - 00002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-12 07:55 - 2021-09-25 10:00 - 00002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-11-12 01:07 - 2022-08-11 18:16 - 00292696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-11-12 01:05 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-11-12 01:03 - 2021-06-05 17:08 - 00000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\SystemResources
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\setup
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\oobe
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\en-GB
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\Dism
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\DDFs
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\appraiser
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\ShellExperiences
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\ShellComponents
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\Provisioning
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\BrowserCore
2022-11-12 01:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\bcastdvr
2022-11-12 00:59 - 2021-06-05 12:01 - 00000000 ____D C:\WINDOWS\CbsTemp
2022-11-12 00:55 - 2021-06-05 12:08 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-11-12 00:55 - 2021-06-05 12:08 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-11-12 00:47 - 2022-08-11 18:27 - 03107840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-11-12 00:22 - 2021-09-26 10:16 - 00000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-11-12 00:09 - 2021-09-26 10:13 - 00000000 ____D C:\WINDOWS\system32\MRT
2022-11-12 00:06 - 2021-09-26 10:13 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-11-12 00:03 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-11-11 23:59 - 2021-09-28 15:49 - 00000000 ____D C:\Users\Adam1\AppData\Local\ElevatedDiagnostics
2022-11-11 05:57 - 2022-10-11 16:34 - 00003310 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2022-11-11 05:57 - 2022-08-11 18:27 - 00003524 _____ C:\WINDOWS\System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-11-11 05:57 - 2022-08-11 18:27 - 00003458 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00003300 _____ C:\WINDOWS\System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-11-11 05:57 - 2022-08-11 18:27 - 00003212 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00003044 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00003008 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00003008 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00003008 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00003008 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00002974 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00002804 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-11-11 05:57 - 2022-08-11 18:27 - 00002326 _____ C:\WINDOWS\System32\Tasks\MSI Task Host - LEDKeeper2_Host
2022-11-11 05:57 - 2022-08-11 18:27 - 00002322 _____ C:\WINDOWS\System32\Tasks\MSI Task Host - TraceFPS.exe
2022-11-11 05:57 - 2022-08-11 18:27 - 00002274 _____ C:\WINDOWS\System32\Tasks\MSI Task Host - MSI_GamebarTool.exe
2022-11-11 05:55 - 2021-11-05 19:40 - 00000000 ____D C:\Users\Adam1\AppData\Local\CrashDumps
2022-11-11 05:12 - 2021-11-05 19:40 - 00001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-11-11 05:12 - 2021-11-05 19:40 - 00000000 ____D C:\Users\Adam1\AppData\Local\NVIDIA
2022-11-11 05:12 - 2021-09-25 11:54 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2022-11-11 05:11 - 2021-11-05 19:35 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-11-11 05:11 - 2021-09-25 11:54 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2022-11-09 09:55 - 2022-01-18 01:29 - 07642816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-11-09 09:55 - 2022-01-18 01:29 - 06512336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-11-08 22:40 - 2022-01-18 01:30 - 00129000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2022-11-08 22:40 - 2021-11-05 19:39 - 02890296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2022-11-08 22:40 - 2021-11-05 19:39 - 02224696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2022-11-08 22:40 - 2021-11-05 19:39 - 01297464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2022-11-08 22:40 - 2021-11-05 19:39 - 00086568 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2022-11-08 22:40 - 2021-11-05 19:39 - 00075304 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2022-11-08 22:40 - 2021-11-05 19:38 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2022-11-08 22:40 - 2021-11-05 19:35 - 00169512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2022-11-08 22:40 - 2021-11-05 19:35 - 00148520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2022-11-08 09:06 - 2022-10-11 16:40 - 00001999 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus FREE.lnk
2022-11-08 09:06 - 2022-10-11 16:40 - 00001987 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2022-11-08 08:26 - 2021-06-05 12:10 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2022-11-08 07:09 - 2022-06-27 17:49 - 00000000 ____D C:\Users\Adam1\AppData\Local\Overwolf
2022-11-08 06:32 - 2021-11-16 17:13 - 00000000 ____D C:\Program Files (x86)\Google
2022-11-08 06:24 - 2021-09-25 12:56 - 00000000 ___RD C:\Users\Adam1\OneDrive
2022-11-08 06:20 - 2021-12-14 18:01 - 00000000 ____D C:\WINDOWS\G3L2XW5
2022-11-08 06:18 - 2022-08-11 18:27 - 00003690 _____ C:\WINDOWS\System32\Tasks\D Edge C Scheduler
2022-11-08 06:18 - 2022-08-11 18:27 - 00003408 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2022-11-08 06:18 - 2022-08-11 18:27 - 00003330 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2022-11-08 06:18 - 2022-08-11 18:27 - 00003184 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2022-11-08 06:18 - 2022-08-11 18:27 - 00003122 _____ C:\WINDOWS\System32\Tasks\OneDrive Reporting Task-S-1-5-21-4164995525-931560966-1168492100-1001
2022-11-08 06:18 - 2022-08-11 18:27 - 00002918 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4164995525-931560966-1168492100-1001
2022-11-07 18:58 - 2021-09-25 12:38 - 00002379 _____ C:\Users\Adam1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-06 21:23 - 2022-08-11 16:22 - 00000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2022-11-06 20:59 - 2022-08-11 16:22 - 00000000 ____D C:\ProgramData\NortonInstaller
2022-11-06 20:59 - 2021-06-05 12:01 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2022-11-06 20:37 - 2021-06-05 12:10 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2022-11-06 15:37 - 2021-09-25 12:40 - 00000000 ____D C:\Users\Adam1\AppData\Local\Packages
2022-11-06 15:37 - 2021-09-25 11:55 - 00000000 ____D C:\ProgramData\Packages
2022-11-03 00:59 - 2021-09-25 13:20 - 00000000 ____D C:\Users\Adam1\AppData\Roaming\discord
2022-11-03 00:43 - 2021-09-25 13:20 - 00000000 ____D C:\Users\Adam1\AppData\Local\Discord
2022-11-01 21:39 - 2021-11-16 17:14 - 00002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-01 21:39 - 2021-11-16 17:14 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-11-01 19:24 - 2022-10-11 16:33 - 00863104 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00672440 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00564416 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00390168 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00328040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00306200 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00276632 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00238288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00114632 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00106520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00090120 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00048648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2022-11-01 19:24 - 2022-10-11 16:33 - 00042416 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2022-10-30 20:56 - 2021-10-05 17:47 - 00000000 ____D C:\Users\Adam1\AppData\Roaming\Browser Assistant
2022-10-26 12:43 - 2021-10-05 17:59 - 00000000 ____D C:\Users\Adam1\AppData\Local\Battle.net
2022-10-26 12:04 - 2021-10-05 17:58 - 00000000 ____D C:\Program Files (x86)\Battle.net
2022-10-22 22:32 - 2022-09-23 00:16 - 00000000 ____D C:\Users\Adam1\OneDrive\Documents\Call of Duty
2022-10-22 01:52 - 2021-11-05 19:23 - 00000000 ____D C:\Users\Adam1\AppData\Local\Activision

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
C:\WINDOWS\system32\codeintegrity\Bootcat.cache IS MISSING <==== ATTENTION

==================== End of FRST.txt ============================
 
Last edited by a moderator:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-04-2017 01
Ran by Adam1 (17-11-2022 14:06:06)
Running from C:\Users\Adam1\OneDrive\Desktop
Windows 10 Home Version 2009 (X64) (2022-08-11 18:40:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Adam1 (S-1-5-21-4164995525-931560966-1168492100-1001 - Administrator - Enabled) => C:\Users\Adam1
Administrator (S-1-5-21-4164995525-931560966-1168492100-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4164995525-931560966-1168492100-503 - Limited - Disabled)
Guest (S-1-5-21-4164995525-931560966-1168492100-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-4164995525-931560966-1168492100-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 21.06 (x64) (HKLM\...\7-Zip) (Version: 21.06 - Igor Pavlov)
AVG AntiVirus FREE (HKLM\...\AVG Antivirus) (Version: 22.10.3258 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 107.0.19254.108 - AVG Technologies)
AVG Update Helper (x32 Version: 1.8.1207.2 - AVG Technologies) Hidden
BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Browser Assistant (HKLM-x32\...\{EF511737-E6B5-4675-90FA-5B3DA3D0301A}) (Version: 1.40.3232.31760 - Realistic Media Inc.)
Call of Duty Vanguard (HKLM-x32\...\Call of Duty Vanguard) (Version:  - Blizzard Entertainment)
Call of Duty®: Modern Warfare® II (HKLM\...\Steam App 1938090) (Version:  - Infinity Ward)
cFosSpeed 12.01 (HKLM\...\cFosSpeed) (Version: 12.01 - cFos Software GmbH, Bonn)
Dead by Daylight (HKLM\...\Steam App 381210) (Version:  - Behaviour Interactive Inc.)
Direct Game UNI Installer (HKLM-x32\...\{FA23F40B-F46A-4906-BBCC-8CAE00A5F1E3}) (Version: 1.0.603 - GamesLOL)
Discord (HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Dynamic Application Loader Host Interface Service (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE_EHD_M2_HAL (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (x32 Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden
ENE_External_Device_HAL (Version: 1.0.10.4 - ENE Tech) Hidden
ENE_External_Device_HAL (x32 Version: 1.0.10.4 - ENE Tech) Hidden
ENE_MousePad_HAL (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (x32 Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{7733DDD0-3513-4A99-BFFE-A6D73BE49B50}) (Version: 1.2.35.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Fallout 4 (HKLM\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.88 - Google LLC)
IEBrowserAssistant (HKLM-x32\...\{BC63C727-3079-49AA-876A-8E459D35CB72}) (Version: 1.0.0 - Realistic Media Inc.)
Intel(R) Chipset Device Software (HKLM-x32\...\{9b79ab4c-1596-44ee-84e2-a2001f7af089}) (Version: 10.1.18836.8283 - Intel(R) Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{96d90b75-794d-49b2-9c6a-fb35a86c32a1}) (Version: 7.3.0.33 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2141.15.0.2511 - Intel Corporation)
Intel(R) Network Connections 26.2.0.1 (HKLM\...\PROSetDX) (Version: 26.2.0.1 - Intel)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2129.8 - Intel Corporation)
Just Cause 3 (HKLM\...\Steam App 225540) (Version:  - Avalanche Studios)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LEGO® Batman™ 2: DC Super Heroes (HKLM\...\Steam App 213330) (Version:  - TT Games)
LEGO® Batman™ 3: Beyond Gotham (HKLM\...\Steam App 313690) (Version:  - TT Games Ltd)
LEGO® Batman™: The Videogame (HKLM\...\Steam App 21000) (Version:  - Traveller's Tales)
LEGO® The Lord of the Rings™ (HKLM\...\Steam App 214510) (Version:  - Traveller's Tales)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.42 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.171.37 - )
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.42 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\OneDriveSetup.exe) (Version: 22.217.1016.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM-x32\...\{ca35acb3-b442-44fb-924c-4448120bf689}) (Version: 6.0.8.31518 - Microsoft Corporation)
MSI Center SDK (HKLM-x32\...\{15289038-41BE-48F8-B8B9-0B1021D3089E}}_is1) (Version: 3.2022.0713.01 - MSI)
Nefarius Virtual Gamepad Emulation Bus Driver (HKLM\...\{93D91F60-7C94-4A79-863F-EA713D2EB3F3}) (Version: 1.17.333.0 - Nefarius Software Solutions e.U.)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.154 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.154 - NVIDIA Corporation)
NVIDIA Graphics Driver 526.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 526.86 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Outlast (HKLM\...\Steam App 238320) (Version:  - Red Barrels)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.204.2.2 - Overwolf Ltd.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9363.1 - Realtek Semiconductor Corp.)
Rocket League Tracker (HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Overwolf_nonfnefnlcikmjkkdclbhpojenalpkcoipjjognm) (Version: 2.6.1 - Overwolf app)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.53.576 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games)
searcharchiver (HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\searcharchiver) (Version: 1.0 - searcharchiver)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 1.4.0 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 1.4.0 - General Workings, Inc.)
WD P40 Game Drive (Version: 1.0.2.18 - Western Digital Corporation) Hidden
WD P40 Game Drive (x32 Version: 1.0.2.18 - Western Digital Corporation) Hidden
WD_BLACK AN1500 (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (x32 Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (x32 Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
Windows 11 Installation Assistant (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1703 - Microsoft Corporation)
Windows PC Health Check (HKLM\...\{B1E7D0FD-7CFE-4E0C-A5DA-0F676499DB91}) (Version: 3.2.2110.14001 - Microsoft Corporation)
WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
ZipRarArchiver (HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\ZipRarArchiver) (Version: 1.0 - ZipRarArchiver)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4164995525-931560966-1168492100-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\Adam1\AppData\Local\Microsoft\OneDrive\22.217.1016.0002\FileCoAuthLib64.dll (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0052E782-41F6-4E69-89E8-E2E11860DBC0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2022-11-08] (NVIDIA Corporation)
Task: {03F5E2CA-B58C-42A6-89FD-6718DEA6E7C3} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange
Task: {05B2CEA7-7A63-46CE-9D8D-46A3B9366E2C} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => Sc.exe start pushtoinstall registration
Task: {06DFA6D2-09FF-4BB6-AC59-41C1B58B3D99} - System32\Tasks\Microsoft\Windows\Kernel\La57Cleanup => C:\WINDOWS\system32\la57setup.exe [2021-11-04] (Microsoft Corporation)
Task: {0F31C967-98D1-4540-952F-0FF655B328D9} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications
Task: {0F5CA314-FD39-4E3A-B004-2B2DCADA3744} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => Rundll32.exe %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks
Task: {1252A84C-8F10-40E8-A3DB-1C30B0D37B16} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask
Task: {12DF3F8A-9612-48CA-AE38-2818FA70CA73} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2022-08-11] ()
Task: {13B6F164-0249-456F-8C91-5B69DA531DFB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2022-11-08] (NVIDIA Corporation)
Task: {19D1FB8E-1185-4DD4-9C66-1F68C2077549} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\WINDOWS\system32\directxdatabaseupdater.exe [2022-08-11] (Microsoft Corporation)
Task: {1A405E2D-3328-4724-816D-D9A613A5DDC0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2021-11-16] (Google LLC)
Task: {1B813A65-BA7C-4140-890E-1F3562622E32} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged
Task: {1E1B1E3C-DDF6-4634-8B5B-50A80FA1377A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2022-11-08] (NVIDIA Corporation)
Task: {1FB8D107-6CE7-4739-B4A4-8C32E3746FCB} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync
Task: {224B0F87-E335-4A5B-A9BB-0D3CA766C78B} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\WINDOWS\system32\bcdboot.exe [2021-11-04] (Microsoft Corporation)
Task: {22C4F513-09E4-4F40-938B-DB521205F111} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [2022-10-11] (AVG Technologies) <==== ATTENTION
Task: {22EA0086-ADE0-4A29-A2CF-D7843BA9A5F1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [2022-11-08] (NVIDIA Corporation)
Task: {2690F332-B849-4BEC-8C6A-EC72EC2A7125} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataFlushing
Task: {2BBE3086-5C9B-40B2-97B1-877700AB7629} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-04-01] (Microsoft Corporation) <==== ATTENTION
Task: {2DAF43B0-84C5-4EC6-BB68-AFA39B7DF7A5} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources
Task: {33C0EFEE-6070-4088-836A-7D58DAF6B7D8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [2022-11-08] (NVIDIA Corporation)
Task: {3958A004-6D64-4995-9D84-740FF9DCD440} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2021-01-19] (Intel Corporation)
Task: {3EA4D200-E808-4E41-A95E-9F810403231D} - \Microsoft\Windows\Google\GoogleUpdateTaskMachineSP -> No File <==== ATTENTION
Task: {42699CDD-EEB5-4928-A088-C5BC8FD66339} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2022-11-08] (NVIDIA Corporation)
Task: {468C3927-66F4-4590-A9CE-A26F06D62A30} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates
Task: {4704D2EC-5FAF-43A0-B776-7F54E1B7F00B} - System32\Tasks\Microsoft\Windows\Application Experience\PcaPatchDbTask => Rundll32.exe %windir%\system32\PcaSvc.dll,PcaPatchSdbTask
Task: {488D3EA5-E71C-44AB-81A6-43EA91FD9FAE} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {53A23356-30AD-4C51-9C6A-990D74B23B69} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2022-10-11] (AVG Technologies)
Task: {5A76A764-94C3-4528-B125-23BE2A0F1B4F} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2022-11-11] (AVG Technologies)
Task: {5C6333B9-3570-4A09-B065-A7BA96FCD1C4} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\WINDOWS\system32\eduprintprov.exe [2022-08-11] (Microsoft Corporation)
Task: {5C8C1D8F-1EEE-4355-846B-8CBD2C2289D9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2022-11-08] (NVIDIA Corporation)
Task: {5E081107-E3EC-4A48-A986-4EE06259BD9E} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\WINDOWS\system32\dxgiadaptercache.exe [2022-08-11] (Microsoft Corporation)
Task: {60D22550-46B3-402F-82CB-DA89C60FBD94} - System32\Tasks\Microsoft\Windows\Input\LocalUserSyncDataAvailable
Task: {68988F54-FFFF-4A21-83CC-0C58B8E76834} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2022-11-11] (AVG Technologies)
Task: {71A87334-33FB-4DFE-9EF6-BD2F14EE0845} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation
Task: {774B31A1-AAFA-4A36-9935-7C3D49A7B563} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => Sc.exe start pushtoinstall login
Task: {7868A75D-3111-4D70-8882-CF0799C5C8E4} - System32\Tasks\Microsoft\Windows\Shell\UpdateUserPictureTask
Task: {7B779970-3921-46C2-9939-157EC22E89C1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [2022-11-08] (NVIDIA Corporation)
Task: {7BA01BB7-1979-46B6-85B0-B32C968F09B2} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task
Task: {7C815596-2A20-4B6C-BF4C-8B871FAFDB4A} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser
Task: {7D65898F-478F-4125-81BB-289CD5A83D3A} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates
Task: {7E2E6BD6-5E59-447D-897F-007E0CDCB6E5} - System32\Tasks\Microsoft\Windows\Input\TouchpadSyncDataAvailable
Task: {7F8EF199-E3CE-4BE3-A6D4-D7200EEA786D} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner
Task: {88961E42-58BF-40B0-9C49-E46F67C1824F} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [2022-11-12] (Microsoft Corporation)
Task: {8CA4753A-1356-467C-8DE9-3958E2B7746B} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataReporting
Task: {91AA7070-1B86-4EDA-BE8C-40744A25FC7A} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [2022-11-12] ()
Task: {91E5DF7A-AB5C-4A4D-8F15-E74663BC5AF5} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup
Task: {95008E04-89B6-40C0-AD11-AFAEB4F97BA6} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [2022-11-01] (AVG Technologies CZ, s.r.o.)
Task: {97AE2D41-7E43-4259-9BE1-97C17EC3AA2F} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask
Task: {9C870BF6-CEA3-4313-8313-268CF154B128} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [2022-10-11] (AVG Technologies) <==== ATTENTION
Task: {A113AD26-AA99-4C14-9101-6C53FDBA2241} - System32\Tasks\Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup => C:\WINDOWS\system32\MdmDiagnosticsTool.exe [2022-11-12] (Microsoft Corporation)
Task: {A6F436AC-A3CF-43E4-8DC5-988458E74A98} - System32\Tasks\Microsoft\Windows\Input\PenSyncDataAvailable
Task: {A79BA140-4629-44DD-88F3-26A23688E8F2} - System32\Tasks\microsoft\windows\capabilityaccessmanager\maintenancetasks => Rundll32.exe %windir%\system32\CapabilityAccessManager.dll,CapabilityAccessManagerDoStoreMaintenance
Task: {ADC25C39-0DA2-4BB4-A37A-9B02CF286A6D} - System32\Tasks\D Edge C Scheduler => powershell.exe -WindowStyle Hidden -ExecutionPolicy bypass -c "$p='HKCU:\Software\Microsoft\Windows\CurrentVersion\Run';$k=Get-Item $p;foreach ($i in $k.Property){if($i -like '*MicrosoftEdgeAutoLaunch*'){$v=Get-ItemPropertyValue $p -Name $i;$v=$v.Replace('.exe','1.exe');Set-ItemProperty -Path $p -Name $i -Value $v (the data entry has 177 more characters).
Task: {AE39850E-7A19-4EE2-9BC6-77E93095DD3A} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Check And Scan
Task: {AF89D765-D07A-4199-A6B5-FEC708683E95} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [2022-11-12] (Microsoft Corporation)
Task: {B0E236E9-9082-4376-844C-90E21732B230} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [2022-11-08] (NVIDIA Corporation)
Task: {B7585596-F4B3-4941-93A0-7DD9032C47FC} - System32\Tasks\Microsoft\Windows\SMB\UninstallSMB1ClientTask => powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "&amp; %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
Task: {BABF018E-90C6-4499-802F-C443A779E044} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2021-11-16] (Google LLC)
Task: {BC65E567-DBE1-48F3-9B65-3B049E52B99B} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh
Task: {BD3E9AAB-03E2-4522-B4CA-529C41D7FE5D} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe [2022-07-14] (Micro-Star Int'l Co., Ltd.)
Task: {BD3F57D1-AE70-49FA-8052-7794D705534C} - System32\Tasks\Microsoft\Windows\WwanSvc\OobeDiscovery
Task: {BE6151DC-3ABF-4033-8488-C3863A930638} - System32\Tasks\MSI Task Host - TraceFPS.exe => C:\Program Files (x86)\MSI\MSI Center\GameBar\TraceFPS.exe [2022-05-31] (Copyright ?2020 Micro-Star INT'L CO., LTD.)
Task: {C206951E-6651-4D9F-98A2-2A238CB3F331} - System32\Tasks\Microsoft\Windows\International\Synchronize Language Settings
Task: {C8D18A88-160A-493A-9BCE-5DE92EE4624E} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-04-01] (Microsoft Corporation) <==== ATTENTION
Task: {CA0CB31A-8BF6-4982-B41E-B191D36B2B5B} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe
Task: {CF0D8384-B265-4D0E-9849-1257832F2589} - System32\Tasks\Microsoft\Windows\Input\MouseSyncDataAvailable
Task: {CF80E77C-984D-4DCA-B542-8E591AF9A466} - System32\Tasks\Agent Activation Runtime\S-1-5-21-4164995525-931560966-1168492100-1001 => C:\Windows\System32\AgentActivationRuntimeStarter.exe [2022-08-11] ()
Task: {D028B052-EEB4-45A2-8D01-FC87E3AFCB47} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry
Task: {D2AC6E4C-297B-4A69-BF58-9DA241A700D1} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh
Task: {DA33F439-15EC-4B21-A46B-A2CBBDAE7A50} - System32\Tasks\MSI Task Host - MSI_GamebarTool.exe => C:\Program Files (x86)\MSI\MSI Center\GameBar\MSI_GamebarTool.exe [2022-05-16] ()
Task: {DF9A4185-EB3C-48FE-A92F-022F91AC89FE} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {E1C0D8FC-17BD-46F0-965D-1B68D09C32F2} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {E20E5D54-679A-447E-93BA-99501B67DF65} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {E34C101B-E99B-4D05-A42A-B0C57673C2F8} - System32\Tasks\Microsoft\Windows\SMB\UninstallSMB1ServerTask => powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "&amp; %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
Task: {E806D072-D975-4B67-8472-2387B1460993} - System32\Tasks\Uninstall AdwCleaner Application => C:\Users\Adam1\OneDrive\Desktop\adwcleaner.exe [2022-11-16] (Malwarebytes)
Task: {EC4FAD3C-51F3-4A24-8AEE-1EE390B6DF41} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task
Task: {EEC49C91-BCB0-4E42-BEA6-CB620E01EB5F} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\WINDOWS\System32\UNP\UpdateNotificationMgr.exe [2022-08-11] (Microsoft Corporation)
Task: {F21E75C8-2470-408B-90B9-0C16A9649589} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload
Task: {F30264DD-C57A-4427-BFE9-36C07D54C2F6} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange
Task: {F36DAFC0-2C75-4FB2-A752-8CC38C268615} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {F39D8D12-1297-4E04-AC19-C7118E84802D} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2022-09-22] (Overwolf LTD)
Task: {F950E5FD-E547-4F2C-BED1-BF15DD1B5AB4} - System32\Tasks\Remove AdwCleaner Application => CMD.EXE /C DEL /F /Q "C:\Users\Adam1\OneDrive\Desktop\adwcleaner.exe"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Adam1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) ==============

2021-11-04 14:21 - 2021-11-04 14:21 - 00036864 _____ () c:\windows\system32\umpodev.dll
2022-08-11 17:42 - 2022-08-11 17:42 - 00040960 _____ () C:\WINDOWS\system32\prxyqry.DLL
2022-08-11 17:40 - 2022-08-11 17:40 - 00040960 _____ () C:\Windows\System32\WSDPROVIDERUTIL.dll
2021-11-04 14:21 - 2021-11-04 14:21 - 00727576 _____ () c:\windows\system32\TextShaping.dll
2022-08-11 17:40 - 2022-08-11 17:40 - 00040960 _____ () C:\WINDOWS\system32\WSDPROVIDERUTIL.dll
2022-08-11 17:42 - 2022-08-11 17:42 - 00040960 _____ () C:\WINDOWS\SYSTEM32\prxyqry.DLL
2021-11-05 19:35 - 2022-11-08 22:40 - 01244200 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2022-08-11 17:42 - 2022-08-11 17:42 - 00040960 _____ () c:\windows\system32\prxyqry.DLL
2022-08-11 17:42 - 2022-08-11 17:42 - 00098304 _____ () c:\windows\system32\sstpcfg.DLL
2021-11-04 14:21 - 2021-11-04 14:21 - 00286720 _____ () C:\WINDOWS\System32\AggregatorHost.exe
2021-06-05 12:05 - 2021-06-05 12:05 - 00114688 _____ () C:\WINDOWS\SYSTEM32\UpdateHeartbeatScan.dll
2021-06-05 12:05 - 2021-06-05 12:05 - 00122880 _____ () C:\WINDOWS\SYSTEM32\UpdatePolicyScenarioReliabilityAggregator.dll
2021-06-05 12:05 - 2021-06-05 12:05 - 00647168 _____ () C:\WINDOWS\system32\SearchIndexerCore.dll
2022-08-11 17:41 - 2022-08-11 17:41 - 00042752 _____ () C:\WINDOWS\System32\wow64base.dll
2021-11-04 14:21 - 2021-11-04 14:21 - 00099560 _____ () C:\WINDOWS\System32\wow64con.dll
2021-06-05 12:05 - 2021-06-05 12:05 - 00053248 _____ () C:\Windows\System32\usocoreps.dll
2021-06-05 12:05 - 2021-06-05 12:05 - 02029168 _____ () C:\Windows\System32\windowmanagementapi.dll
2021-11-04 14:21 - 2021-11-04 14:21 - 00727576 _____ () C:\WINDOWS\System32\TextShaping.dll
2021-11-04 14:21 - 2021-11-04 14:21 - 00727576 _____ () C:\WINDOWS\SYSTEM32\TextShaping.dll
2022-08-11 17:41 - 2022-08-11 17:41 - 00356352 _____ () C:\Windows\System32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-11-04 14:21 - 2021-11-04 14:21 - 00487424 _____ () C:\Windows\ShellExperiences\TileControl.dll
2022-08-11 17:41 - 2022-08-11 17:41 - 02368000 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2021-06-05 12:05 - 2021-06-05 12:05 - 00174080 _____ () C:\Windows\ShellComponents\WindowsInternal.ShellUI.dll
2021-06-05 12:05 - 2021-06-05 12:05 - 02029168 _____ () C:\Windows\System32\WindowManagementAPI.dll
2022-08-11 17:42 - 2022-08-11 17:42 - 00040960 _____ () C:\Windows\System32\prxyqry.DLL
2022-08-11 17:40 - 2022-08-11 17:40 - 01001320 _____ () C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
2021-06-05 12:05 - 2021-06-05 12:05 - 02029168 _____ () C:\WINDOWS\SYSTEM32\WindowManagementAPI.dll
2021-06-05 12:05 - 2021-06-05 12:05 - 00647168 _____ () C:\WINDOWS\SYSTEM32\SearchIndexerCore.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 07180800 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.WinRT.dll
2021-09-30 13:48 - 2021-09-30 13:48 - 01000960 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 05522432 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.ScreenMirroring.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 00578560 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Background.CX.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 00685568 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhoneControls.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 01522176 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Connectivity.YPP.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 01739264 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Messaging.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 01522176 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Notifications.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 00116736 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Flyouts.WinRT.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 01082880 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.ScreenMirroring.WinRT.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 02152960 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Calling.CX.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 01422336 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Calling.WinRT.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 00534016 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Contacts.WinRT.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 00739328 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Devices.WinRT.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 01628672 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Photos.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 03771904 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Messaging.WinRT.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 00175104 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Notifications.WinRT.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 00797184 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.SharedContent.WinRT.dll
2021-12-10 02:15 - 2021-12-10 02:15 - 01291264 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21111.123.0_x64__8wekyb3d8bbwe\YourPhone.Contacts.dll
2022-08-11 17:40 - 2022-08-11 17:40 - 00614400 _____ () C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-25 13:38 - 2021-05-04 23:45 - 16066560 _____ () C:\Program Files\BakkesMod\BakkesMod.exe
2022-10-11 16:39 - 2022-10-11 16:39 - 153676016 _____ () C:\Program Files\AVG\Antivirus\libcef.dll
2022-10-11 16:39 - 2022-10-11 16:39 - 02742000 _____ () C:\Program Files\AVG\Antivirus\swiftshader\libglesv2.dll
2022-10-11 16:39 - 2022-10-11 16:39 - 00428272 _____ () C:\Program Files\AVG\Antivirus\swiftshader\libegl.dll
2022-08-11 17:41 - 2022-08-11 17:41 - 00086016 _____ () C:\WINDOWS\SYSTEM32\CredProvCommonCore.DLL
2021-11-04 14:21 - 2021-11-04 14:21 - 00727576 _____ () C:\WINDOWS\system32\TextShaping.dll
2021-11-04 18:51 - 2021-11-04 18:53 - 00756224 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2021-11-04 18:51 - 2021-11-04 18:52 - 82327552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2021-09-26 10:26 - 2021-09-26 10:27 - 02523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2021-09-26 10:25 - 2021-09-26 10:25 - 00036864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\OneSettingsClientForwarder.dll
2021-09-26 10:26 - 2021-09-26 10:27 - 03707904 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2021-09-26 10:26 - 2021-09-26 10:27 - 00011264 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2021-11-04 18:51 - 2021-11-04 18:52 - 00104960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\AppSettingsCppCX.dll
2021-11-04 18:51 - 2021-11-04 18:52 - 01857536 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2021-11-04 18:51 - 2021-11-04 18:52 - 00686592 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\AppCoreFramework.Windows.dll
2021-11-04 18:51 - 2021-11-04 18:52 - 06408704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\Lightbox.dll
2021-11-04 18:51 - 2021-11-04 18:52 - 00509440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\ImageLib.dll
2021-09-26 10:26 - 2021-09-26 10:27 - 01400320 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2021-09-26 10:17 - 2021-09-26 10:17 - 00969728 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\OnlineMediaComponent.dll
2021-11-04 18:51 - 2021-11-04 18:53 - 10525184 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2021-09-26 10:26 - 2021-09-26 10:27 - 01014784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10008.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2022-11-11 04:44 - 2022-11-10 04:39 - 05954936 _____ () C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.42\libglesv2.dll
2022-11-11 04:44 - 2022-11-10 04:39 - 00501096 _____ () C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.42\libegl.dll
2022-11-11 04:45 - 2022-11-10 04:38 - 04259232 _____ () C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.42\vk_swiftshader.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Adam1\Downloads\516.94-desktop-win10-win11-64bit-international-dch-whql.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\adwcleaner.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\avg_antivirus_free_setup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\CallOfDutyWarzone_com.game.codwarzone_flow5mkt.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\com.game.codwarzone_installer_34273239.msi:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\FRST64 (2).exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\FRST64.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\gfwlivesetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\MediaCreationToolW11.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\Unconfirmed 833354.crdownload:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\Windows11InstallationAssistant (1).exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\Windows11InstallationAssistant.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\windowsdesktop-runtime-6.0.8-win-x64.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\XboxInstaller.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Adam1\Downloads\ziprar.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [3432]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\nvdimm.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{53966cb1-4d46-4166-bf23-c522403cd495} => ""="ScmDisk"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CBDHSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MsQuic => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetSetupSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NgcCtnrSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NgcSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nvdimm.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SerCx2.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{53966cb1-4d46-4166-bf23-c522403cd495} => ""="ScmDisk"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 09:14 - 2019-12-07 09:12 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4164995525-931560966-1168492100-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: avg => 2
MSCONFIG\Services: AVG Tools => 2
MSCONFIG\Services: avgm => 3
MSCONFIG\Services: AVGSecureBrowserElevationService => 3
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: cFosSpeedS => 2
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: EpicOnlineServices => 3
MSCONFIG\Services: FvSvc => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Intel(R) PROSet Monitoring Service => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LightKeeperService => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: MSI_Case_Service => 2
MSCONFIG\Services: MSI_Central_Service => 2
MSCONFIG\Services: MSI_Super_Charger_Service => 2
MSCONFIG\Services: MSI_VoiceControl_Service => 2
MSCONFIG\Services: Mystic_Light_Service => 2
MSCONFIG\Services: NvContainerLocalSystem => 2
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: OverwolfUpdater => 3
MSCONFIG\Services: Rockstar Service => 3
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SU10Guard => 2
MSCONFIG\Services: WMIRegistrationService => 2
MSCONFIG\Services: XTU3SERVICE => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "Battle.net"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "BAStartup"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "BAUpdater"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_FA9CE6900424A5D5D583850899662B82"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-deviceenroller-TCP-Out] => (Allow) %SystemRoot%\system32\deviceenroller.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [UDP Query User{3D5A0F2E-85CF-4EE8-9B79-45E5B17FB0B7}C:\users\adam1\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\adam1\appdata\local\discord\app-1.0.9005\discord.exe
FirewallRules: [TCP Query User{740825D9-1140-4557-965E-FE5BD97A92E0}C:\users\adam1\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\adam1\appdata\local\discord\app-1.0.9005\discord.exe
FirewallRules: [UDP Query User{1A6E9292-D9BD-4C2B-9574-F5D01F9F9D11}C:\users\adam1\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\adam1\appdata\local\discord\app-1.0.9004\discord.exe
FirewallRules: [TCP Query User{C5D16DEF-39E3-451E-8315-8726EF195369}C:\users\adam1\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\adam1\appdata\local\discord\app-1.0.9004\discord.exe
FirewallRules: [UDP Query User{68EAC9ED-7192-468E-A0F2-8A987F4D5A67}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe
FirewallRules: [TCP Query User{05CF7470-3434-4CFF-8D25-8B92DDE9402C}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe
FirewallRules: [{3BCFA150-41A5-4F22-826A-DF106747AB20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{8FD51BF2-CF92-4E63-A875-E28F6E3041D0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{07C9C947-51AD-4F0E-B0C4-58B697A4B192}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{C4C66CB5-BFD8-479C-A92B-08F1B874B3C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{F0FCBFA6-6C76-431D-A783-9A56B92AFB35}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{CF063C8F-36AA-4306-AA64-F62C1FA861AD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{F6FF400A-4DC7-4418-ADD0-B981ADB25CCA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{40F18F23-5DEF-41EB-A031-EC6BF0C7148C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{FBEEA72C-4BAE-4C25-883F-FF212E0D3060}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{B8AF1977-B48B-431D-8F1D-BD8960EE2CA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [UDP Query User{DAF44E42-685D-45A0-8F24-A9B55FABD69F}C:\program files (x86)\call of duty vanguard\vanguard.exe] => (Allow) C:\program files (x86)\call of duty vanguard\vanguard.exe
FirewallRules: [TCP Query User{B6F4A232-6E38-4511-85CA-CE25141E76BF}C:\program files (x86)\call of duty vanguard\vanguard.exe] => (Allow) C:\program files (x86)\call of duty vanguard\vanguard.exe
FirewallRules: [{D578B001-49A5-425D-8979-D7059D465247}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{14F2491F-1D88-4DF0-8A4E-2C6F4519195D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C852A00E-CAA6-40B8-BAB4-132FEBCC3A6D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
FirewallRules: [{1EEC48B7-70F4-4A30-8720-E1813AA0BF42}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
FirewallRules: [{4A2892F2-8453-4F20-A256-DDC071187BB3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
FirewallRules: [{E2912F0B-554C-4F96-9B56-180E21675C28}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe
FirewallRules: [UDP Query User{2F89B82D-EED8-435C-BB16-9B5C53C22F14}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{23685C2E-8EAF-420E-86D5-DCDB74533A7A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{F2D6D3DB-F893-4042-98A7-0353EEF770A3}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe
FirewallRules: [TCP Query User{F34E29C3-5CD9-41CF-98A1-2A8041E8BF74}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe
FirewallRules: [UDP Query User{3C52C0F2-F2F2-4B54-BCD6-6061079BE358}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe
FirewallRules: [TCP Query User{D2402AE2-4389-4164-834A-911AC7C95A5C}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe
FirewallRules: [UDP Query User{34447BC3-EFD1-4213-B4DF-BBB1A10A4E77}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{D681CC28-A796-4E7C-9CEB-3C1ACCC06082}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{4FF52C5E-9CC4-4507-986D-517B123299EF}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe
FirewallRules: [TCP Query User{27762935-08EB-4A1C-B1C9-26BADEB457D4}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe
FirewallRules: [{5E564FC6-3B72-43AB-B5F6-733371AD54D8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{10BE6A0C-2D06-4B4B-A02E-544F519D98BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{D89F731B-3062-436D-9DCF-B892489EE92C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F168B423-CE1B-425E-8F25-ED885A79AAF5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8E177A10-6672-4BCC-9E63-3E9F95EB4B9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{ECDB35F9-94E4-496D-9FD0-8A1F650A5424}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{401F23FC-B977-4A08-8AF5-1D2F4B27CC41}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe
FirewallRules: [{FFA3B8FF-4320-4A2F-85C4-147AEB257974}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe
FirewallRules: [{6DDD2EB8-E2B3-4C96-BCDA-4808FED5626B}] => (Block) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe
FirewallRules: [{A0273C1D-B590-4B35-AAA2-5FDA5386ADAB}] => (Block) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe
FirewallRules: [{4FACE680-3143-4193-BBCC-FBE431115DFF}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.2.2\OverwolfBrowser.exe
FirewallRules: [{EBB39B4C-C3B8-4FD1-AC86-3DB50A7E82C0}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.2.2\OverwolfBrowser.exe
FirewallRules: [{74D25038-FDBD-4462-A7AE-A81BCDCCC7EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe
FirewallRules: [{5FEE6CE8-0CF9-4011-BF87-29CB8ABCC4C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe
FirewallRules: [{A02560B8-4EC1-416D-A059-AE6BED9D247A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lego Batman\LEGOBatman.exe
FirewallRules: [{ED4B90CC-E7B2-4F79-81D4-F074379BB339}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lego Batman\LEGOBatman.exe
FirewallRules: [{E50D1C0C-5411-4286-9DAA-CF0E9A5F501D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LEGO Batman 2\LEGOBatman2.exe
FirewallRules: [{9434F4AE-39FB-456C-9B94-CBE84C3392AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LEGO Batman 2\LEGOBatman2.exe
FirewallRules: [{89CEA283-839E-4D94-AF85-6757CD61DC07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LEGO Batman 3 Beyond Gotham\LEGOBatman3.exe
FirewallRules: [{D9CD4075-6391-43A1-91D9-3ABA28A49064}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LEGO Batman 3 Beyond Gotham\LEGOBatman3.exe
FirewallRules: [{E427688E-9AE4-4E85-9CD3-9E8592BDA632}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe
FirewallRules: [{3F126814-06E1-43E2-A75D-07F7E441D239}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe
FirewallRules: [{8A6E38F8-D4FA-4217-BC47-D2558E47C461}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{E03C96A9-9636-4F49-A305-543F359C3C5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{142023CB-B462-47AE-8D3E-C81F85EBADAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\bootstrapper.exe
FirewallRules: [{5063B2F3-7A9D-4C90-8BBE-F780FAF7E231}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\bootstrapper.exe
FirewallRules: [{740A5F36-89DB-45A9-BF84-406C14DE4BDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\cod.exe
FirewallRules: [{FD8EE27B-472C-473E-AA2B-A607025F6ACF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty HQ\cod.exe
FirewallRules: [{92C619FE-6DB9-4C2B-9906-C679A6889820}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{04604670-727D-4EED-864B-BE8D79C55D27}] => (Allow) LPort=32682
FirewallRules: [{BA3FA3D7-0526-4F15-947A-E6863F98E4B8}] => (Allow) LPort=26822
FirewallRules: [{FD41914B-CFBC-47F2-9B0C-CCB71AEDCBCA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.42\msedgewebview2.exe
FirewallRules: [{3AF9EC3B-841F-4AA1-98F6-B55884DA1ADD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{16C10CAB-C3D1-4094-B695-AED36B688C49}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A2187A51-ED1A-4920-ADD2-C65421FC2A43}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AF401BD0-4CC1-4D44-A419-3BF9861AF581}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{73FF28FF-E0E0-4587-BA3E-D2E9F1F94389}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
FirewallRules: [{75F6EC75-2AFC-4E3A-B6BE-C6B2D9EC6509}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{AA53EDA2-3F2E-4B4C-B163-C3765613C9ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{5742959C-9703-47FE-8B09-5D26D1D1A953}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe

==================== Restore Points =========================

31-10-2022 21:29:11 Scheduled Checkpoint
09-11-2022 21:20:23 Scheduled Checkpoint
12-11-2022 00:01:00 Windows Modules Installer

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/11/2022 05:55:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DS4Windows.exe, version: 3.1.9.0, time stamp: 0x6331eb0e
Faulting module name: KERNELBASE.dll, version: 10.0.22000.832, time stamp: 0x7efab3dc
Exception code: 0xe0434352
Fault offset: 0x000000000004474c
Faulting process id: 0x3634
Faulting application start time: 0x01d8f5923292b573
Faulting application path: C:\Users\Adam1\AppData\Local\Temp\Rar$EXa13728.28183\DS4Windows\DS4Windows.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 471df0a4-1200-45ee-ae2e-c849a5915c9f
Faulting package full name:
Faulting package-relative application ID:

Error: (11/11/2022 05:55:43 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: DS4Windows.exe
CoreCLR Version: 6.0.822.36306
.NET Version: 6.0.8
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentOutOfRangeException: Index was out of range. Must be non-negative and less than the size of the collection. (Parameter 'index')
   at System.Collections.Generic.List`1.get_Item(Int32 index)
   at DS4WinWPF.DS4Forms.MainWindow.ProfEditSBtn_Click(Object sender, RoutedEventArgs e)
   at System.Windows.EventRoute.InvokeHandlersImpl(Object source, RoutedEventArgs args, Boolean reRaised)
   at System.Windows.UIElement.RaiseEventImpl(DependencyObject sender, RoutedEventArgs args)
   at Xceed.Wpf.Toolkit.DropDownButton.RaiseRoutedEvent(RoutedEvent routedEvent)
   at Xceed.Wpf.Toolkit.DropDownButton.OnClick()
   at Xceed.Wpf.Toolkit.DropDownButton.DropDownButton_Click(Object sender, RoutedEventArgs e)
   at System.Windows.EventRoute.InvokeHandlersImpl(Object source, RoutedEventArgs args, Boolean reRaised)
   at System.Windows.UIElement.RaiseEventImpl(DependencyObject sender, RoutedEventArgs args)
   at System.Windows.Controls.Primitives.ButtonBase.OnClick()
   at System.Windows.Controls.Button.OnClick()
   at System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(MouseButtonEventArgs e)
   at System.Windows.UIElement.OnMouseLeftButtonUpThunk(Object sender, MouseButtonEventArgs e)
   at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(Delegate genericHandler, Object genericTarget)
   at System.Windows.RoutedEventArgs.InvokeHandler(Delegate handler, Object target)
   at System.Windows.EventRoute.InvokeHandlersImpl(Object source, RoutedEventArgs args, Boolean reRaised)
   at System.Windows.UIElement.ReRaiseEventAs(DependencyObject sender, RoutedEventArgs args, RoutedEvent newEvent)
   at System.Windows.UIElement.OnMouseUpThunk(Object sender, MouseButtonEventArgs e)
   at System.Windows.Input.MouseButtonEventArgs.InvokeEventHandler(Delegate genericHandler, Object genericTarget)
   at System.Windows.RoutedEventArgs.InvokeHandler(Delegate handler, Object target)
   at System.Windows.EventRoute.InvokeHandlersImpl(Object source, RoutedEventArgs args, Boolean reRaised)
   at System.Windows.UIElement.RaiseEventImpl(DependencyObject sender, RoutedEventArgs args)
   at System.Windows.UIElement.RaiseTrustedEvent(RoutedEventArgs args)
   at System.Windows.Input.InputManager.ProcessStagingArea()
   at System.Windows.Input.InputProviderSite.ReportInput(InputReport inputReport)
   at System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr hwnd, InputMode mode, Int32 timestamp, RawMouseActions actions, Int32 x, Int32 y, Int32 wheel)
   at System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr hwnd, WindowMessage msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(DispatcherPriority priority, TimeSpan timeout, Delegate method, Object args, Int32 numArgs)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(MSG& msg)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(DispatcherFrame frame)
   at System.Windows.Threading.Dispatcher.PushFrame(DispatcherFrame frame)
   at System.Windows.Threading.Dispatcher.Run()
   at System.Windows.Application.RunDispatcher(Object ignore)
   at System.Windows.Application.RunInternal(Window window)
   at System.Windows.Application.Run()
   at DS4WinWPF.App.Main()

Error: (11/10/2022 05:36:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchHost.exe version 421.22500.4025.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 468

Start Time: 01d8f52aabbe4a88

Termination Time: 4294967295

Application Path: C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe

Report Id: 4f098267-4b88-4be4-bed7-7fb088a98c09

Faulting package full name: MicrosoftWindows.Client.CBS_1000.22000.856.0_x64__cw5n1h2txyewy

Faulting package-relative application ID: CortanaUI

Hang type: Quiesce

Error: (11/09/2022 07:06:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RocketLeague.exe, version: 1.0.10897.0, time stamp: 0x63575383
Faulting module name: EOSSDK-Win64-Shipping.dll, version: 1.13.0.0, time stamp: 0x632212ba
Exception code: 0xc0000005
Fault offset: 0x000000000024cb76
Faulting process id: 0x24cc
Faulting application start time: 0x01d8f468ed623327
Faulting application path: C:\Program Files\Epic Games\rocketleague\Binaries\Win64\RocketLeague.exe
Faulting module path: C:\Program Files\Epic Games\rocketleague\Binaries\Win64\EOSSDK-Win64-Shipping.dll
Report Id: 114b1fe8-67b5-47ef-85c9-805c60ac4cb8
Faulting package full name:
Faulting package-relative application ID:

Error: (11/08/2022 07:55:31 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RocketLeague.exe, version: 1.0.10897.0, time stamp: 0x63575383
Faulting module name: bakkesmod.dll, version: 0.0.0.0, time stamp: 0x6361a8d8
Exception code: 0xc0000005
Fault offset: 0x00000000000cc9fa
Faulting process id: 0x28a8
Faulting application start time: 0x01d8f3477448c87a
Faulting application path: C:\Program Files\Epic Games\rocketleague\Binaries\Win64\RocketLeague.exe
Faulting module path: C:\Users\Adam1\AppData\Roaming\bakkesmod\bakkesmod\dll\bakkesmod.dll
Report Id: 5aebe254-88b5-4962-90fc-28f54183e3bb
Faulting package full name:
Faulting package-relative application ID:

Error: (11/08/2022 07:18:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RocketLeague.exe, version: 1.0.10897.0, time stamp: 0x63575383
Faulting module name: bakkesmod.dll, version: 0.0.0.0, time stamp: 0x6361a8d8
Exception code: 0xc0000005
Fault offset: 0x00000000000cc9fa
Faulting process id: 0x2858
Faulting application start time: 0x01d8f34250254dea
Faulting application path: C:\Program Files\Epic Games\rocketleague\Binaries\Win64\RocketLeague.exe
Faulting module path: C:\Users\Adam1\AppData\Roaming\bakkesmod\bakkesmod\dll\bakkesmod.dll
Report Id: 968b2094-4839-439a-a940-6b162c027d84
Faulting package full name:
Faulting package-relative application ID:

Error: (11/08/2022 07:14:04 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program steam.exe version 7.59.54.17 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1564

Start Time: 01d8f340ea23722c

Termination Time: 17

Application Path: C:\Program Files (x86)\Steam\steam.exe

Report Id: 4b3cd020-4382-4187-9512-08773d7ec778

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (11/07/2022 10:34:51 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-NPUVASQ)
Description: Windows cannot load the extensible counter DLL "C:\WINDOWS\system32\sysmain.dll" (Win32 error code 126).

Error: (11/06/2022 09:33:31 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVG\Antivirus\avgToolsSvc.exe, PID: 4468, ProfSvc PID: 1816.

Error: (11/06/2022 08:33:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GameBar.exe, version: 5.721.12013.0, time stamp: 0x61a7f69b
Faulting module name: combase.dll, version: 10.0.22000.778, time stamp: 0x61943c4d
Exception code: 0xc0000005
Fault offset: 0x00000000000a9e5e
Faulting process id: 0x2a0c
Faulting application start time: 0x01d8f1fe687d451c
Faulting application path: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe
Faulting module path: C:\WINDOWS\System32\combase.dll
Report Id: c9a229f0-3187-436d-9ef8-73a682b032e3
Faulting package full name: Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: App


System errors:
=============
Error: (11/17/2022 01:48:37 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{70E14BE0-5498-45D1-993D-3108A8CBDA25} because another computer on the network has the same name.  The server could not start.

Error: (11/16/2022 09:19:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA LocalSystem Container service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (11/16/2022 09:19:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (11/16/2022 09:17:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA LocalSystem Container service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (11/16/2022 09:17:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (11/16/2022 09:17:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA LocalSystem Container service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (11/16/2022 09:17:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (11/16/2022 09:15:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA LocalSystem Container service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (11/16/2022 09:15:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (11/16/2022 07:30:35 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 19:20:38 on ‎16/‎11/‎2022 was unexpected.


CodeIntegrity:
===================================
䕶敮瑛そഊ†䱯朠乡浥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礯佰敲慴楯湡氍ਠ⁓潵牣攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹ഊ†䑡瑥㨠㈰㈲ⴱㄭㄷ吱㌺㔰㨴㐮㈶㘰〰ずഊ†䕶敮琠䥄㨠㌰㌳ഊ†呡獫㨠丯䄍ਠ⁌敶敬㨠䕲牯爍ਠ⁏灣潤攺⁎⽁ഊ†䭥祷潲携⁎⽁ഊ†啳敲㨠匭ㄭ㔭㈰ഊ†啳敲⁎慭攺⁎吠䅕呈佒䥔奜久呗佒䬠卅剖䥃䔍ਠ⁃潭灵瑥爺⁄䕓䭔佐ⵎ偕噁卑ഊ†䑥獣物灴楯渺‍੃潤攠䥮瑥杲楴礠摥瑥牭楮敤⁴桡琠愠灲潣敳猠⡜䑥癩捥屈慲摤楳歖潬畭攳屗楮摯睳屓祳瑥洳㉜獶捨潳琮數攩⁡瑴敭灴敤⁴漠汯慤⁜䑥癩捥屈慲摤楳歖潬畭攳屐牯杲慭⁆楬敳屁噇屁湴楶楲畳屡獷䅍卉⹤汬⁴桡琠摩搠湯琠浥整⁴桥⁗楮摯睳⁳楧湩湧敶敬⁲敱畩牥浥湴献ഊഊ䕶敮瑛ㅝഊ†䱯朠乡浥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礯佰敲慴楯湡氍ਠ⁓潵牣攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹ഊ†䑡瑥㨠㈰㈲ⴱㄭㄷ吱㌺㔰㨴㐮㈵㠰〰ずഊ†䕶敮琠䥄㨠㌰㌳ഊ†呡獫㨠丯䄍ਠ⁌敶敬㨠䕲牯爀ഊ†佰捯摥㨠丯䄍ਠ⁋敹睯牤㨠丯䄍ਠ⁕獥爺⁓ⴱⴵⴲ」ਠ⁕獥爠乡浥㨠乔⁁啔䡏剉呙屎䕔坏剋⁓䕒噉䍅ഊ†䍯浰畴敲㨠䑅卋呏倭乐啖䅓儍ਠ⁄敳捲楰瑩潮㨠ഊ䍯摥⁉湴敧物瑹⁤整敲浩湥搠瑨慴⁡⁰牯捥獳
屄敶楣敜䡡牤摩獫噯汵浥㍜坩湤潷獜卹獴敭㌲屳癣桯獴⹥硥⤠慴瑥浰瑥搠瑯潡搠屄敶楣敜䡡牤摩獫噯汵浥㍜偲潧牡洠䙩汥獜䅖䝜䅮瑩癩牵獜慳睁䵓䤮摬氠瑨慴⁤楤潴敥琠瑨攠坩湤潷猠獩杮楮朠汥癥氠牥煵楲敭敮瑳⸍਍੅癥湴嬲崍ਠ⁌潧⁎慭攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹⽏灥牡瑩潮慬ഊ†卯畲捥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礍ਠ⁄慴攺′〲㈭ㄱⴱ㝔ㄳ㨵〺㐴⸱㤰〰〰娍ਠ⁅癥湴⁉䐺″〳㌍ਠ⁔慳欺⁎⽁ഊ†䱥癥氺⁅牲潲
ਠ⁏灣潤攺⁎⽁ഊ†䭥祷潲携⁎⽁ഊ†啳敲㨠匭ㄭ㔭㈰ഊ†啳敲⁎慭攺⁎吠䅕呈佒䥔奜久呗佒䬠卅剖䥃䔍ਠ⁃潭灵瑥爺⁄䕓䭔佐ⵎ偕噁卑ഊ†䑥獣物灴楯渺‍੃潤攠䥮瑥杲楴礠摥瑥牭楮敤⁴桡琠愠灲潣敳猠⡜䑥癩捥屈慲摤楳歖潬畭攳屗楮摯睳屓祳瑥洳㉜獶捨潳琮數攩⁡瑴敭灴敤⁴漠汯慤⁜䑥癩捥屈慲摤楳歖潬畭攳屐牯杲慭⁆楬敳屁噇屁湴楶楲畳屡獷䅍卉⹤汬⁴桡琠摩搠湯琠浥整⁴桥⁗楮摯睳⁳楧湩湧敶敬⁲敱畩牥浥湴献ഊഊ䕶敮瑛㍝ഊ†䱯朠乡浥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礯佰敲慴楯湡氍ਠ⁓潵牣攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹ഊ†䑡瑥㨠㈰㈲ⴱㄭㄷ吱㌺㔰㨱ㄮ㐴㈰〰ずഊ†䕶敮琠䥄㨠㌰㌳ഊ†呡獫㨠丯䄍ਠ⁌敶敬㨠䕲牯爀ഊ†佰捯摥㨠丯䄍ਠ⁋敹睯牤㨠丯䄍ਠ⁕獥爺⁓ⴱⴵⴱ㤍ਠ⁕獥爠乡浥㨠乔⁁啔䡏剉呙屌佃䅌⁓䕒噉䍅ഊ†䍯浰畴敲㨠䑅卋呏倭乐啖䅓儍ਠ⁄敳捲楰瑩潮㨠ഊ䍯摥⁉湴敧物瑹⁤整敲浩湥搠瑨慴⁡⁰牯捥獳
屄敶楣敜䡡牤摩獫噯汵浥㍜坩湤潷獜卹獴敭㌲屳癣桯獴⹥硥⤠慴瑥浰瑥搠瑯潡搠屄敶楣敜䡡牤摩獫噯汵浥㍜偲潧牡洠䙩汥獜䅖䝜䅮瑩癩牵獜慳睁䵓䤮摬氠瑨慴⁤楤潴敥琠瑨攠坩湤潷猠獩杮楮朠汥癥氠牥煵楲敭敮瑳⸍਍੅癥湴嬴崍ਠ⁌潧⁎慭攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹⽏灥牡瑩潮慬ഊ†卯畲捥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礍ਠ⁄慴攺′〲㈭ㄱⴱ㝔ㄳ㨵〺ㄱ⸳㘵〰〰娍ਠ⁅癥湴⁉䐺″〳㌍ਠ⁔慳欺⁎⽁ഊ†䱥癥氺⁅牲潲
ਠ⁏灣潤攺⁎⽁ഊ†䭥祷潲携⁎⽁ഊ†啳敲㨠匭ㄭ㔭ㄹഊ†啳敲⁎慭攺⁎吠䅕呈佒䥔奜䱏䍁䰠卅剖䥃䔍ਠ⁃潭灵瑥爺⁄䕓䭔佐ⵎ偕噁卑ഊ†䑥獣物灴楯渺‍੃潤攠䥮瑥杲楴礠摥瑥牭楮敤⁴桡琠愠灲潣敳猠⡜䑥癩捥屈慲摤楳歖潬畭攳屗楮摯睳屓祳瑥洳㉜獶捨潳琮數攩⁡瑴敭灴敤⁴漠汯慤⁜䑥癩捥屈慲摤楳歖潬畭攳屐牯杲慭⁆楬敳屁噇屁湴楶楲畳屡獷䅍卉⹤汬⁴桡琠摩搠湯琠浥整⁴桥⁗楮摯睳⁳楧湩湧敶敬⁲敱畩牥浥湴献ഊഊ䕶敮瑛㕝ഊ†䱯朠乡浥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礯佰敲慴楯湡氍ਠ⁓潵牣攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹ഊ†䑡瑥㨠㈰㈲ⴱㄭㄶ吲ㄺ㈵㨱㠮㐱㘰〰ずഊ†䕶敮琠䥄㨠㌰㌳ഊ†呡獫㨠丯䄍ਠ⁌敶敬㨠䕲牯爀ഊ†佰捯摥㨠丯䄍ਠ⁋敹睯牤㨠丯䄍ਠ⁕獥爺⁓ⴱⴵⴲ」ਠ⁕獥爠乡浥㨠乔⁁啔䡏剉呙屎䕔坏剋⁓䕒噉䍅ഊ†䍯浰畴敲㨠䑅卋呏倭乐啖䅓儍ਠ⁄敳捲楰瑩潮㨠ഊ䍯摥⁉湴敧物瑹⁤整敲浩湥搠瑨慴⁡⁰牯捥獳
屄敶楣敜䡡牤摩獫噯汵浥㍜坩湤潷獜卹獴敭㌲屳癣桯獴⹥硥⤠慴瑥浰瑥搠瑯潡搠屄敶楣敜䡡牤摩獫噯汵浥㍜偲潧牡洠䙩汥獜䅖䝜䅮瑩癩牵獜慳睁䵓䤮摬氠瑨慴⁤楤潴敥琠瑨攠坩湤潷猠獩杮楮朠汥癥氠牥煵楲敭敮瑳⸍਍੅癥湴嬶崍ਠ⁌潧⁎慭攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹⽏灥牡瑩潮慬ഊ†卯畲捥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礍ਠ⁄慴攺′〲㈭ㄱⴱ㙔㈱㨲㔺ㄸ⸴ㄱ〰〰娍ਠ⁅癥湴⁉䐺″〳㌍ਠ⁔慳欺⁎⽁ഊ†䱥癥氺⁅牲潲
ਠ⁏灣潤攺⁎⽁ഊ†䭥祷潲携⁎⽁ഊ†啳敲㨠匭ㄭ㔭㈰ഊ†啳敲⁎慭攺⁎吠䅕呈佒䥔奜久呗佒䬠卅剖䥃䔍ਠ⁃潭灵瑥爺⁄䕓䭔佐ⵎ偕噁卑ഊ†䑥獣物灴楯渺‍੃潤攠䥮瑥杲楴礠摥瑥牭楮敤⁴桡琠愠灲潣敳猠⡜䑥癩捥屈慲摤楳歖潬畭攳屗楮摯睳屓祳瑥洳㉜獶捨潳琮數攩⁡瑴敭灴敤⁴漠汯慤⁜䑥癩捥屈慲摤楳歖潬畭攳屐牯杲慭⁆楬敳屁噇屁湴楶楲畳屡獷䅍卉⹤汬⁴桡琠摩搠湯琠浥整⁴桥⁗楮摯睳⁳楧湩湧敶敬⁲敱畩牥浥湴献ഊഊ䕶敮瑛㝝ഊ†䱯朠乡浥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礯佰敲慴楯湡氍ਠ⁓潵牣攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹ഊ†䑡瑥㨠㈰㈲ⴱㄭㄶ吲ㄺ㈵㨱㠮㐰〰〰ずഊ†䕶敮琠䥄㨠㌰㌳ഊ†呡獫㨠丯䄍ਠ⁌敶敬㨠䕲牯爀ഊ†佰捯摥㨠丯䄍ਠ⁋敹睯牤㨠丯䄍ਠ⁕獥爺⁓ⴱⴵⴲ」ਠ⁕獥爠乡浥㨠乔⁁啔䡏剉呙屎䕔坏剋⁓䕒噉䍅ഊ†䍯浰畴敲㨠䑅卋呏倭乐啖䅓儍ਠ⁄敳捲楰瑩潮㨠ഊ䍯摥⁉湴敧物瑹⁤整敲浩湥搠瑨慴⁡⁰牯捥獳
屄敶楣敜䡡牤摩獫噯汵浥㍜坩湤潷獜卹獴敭㌲屳癣桯獴⹥硥⤠慴瑥浰瑥搠瑯潡搠屄敶楣敜䡡牤摩獫噯汵浥㍜偲潧牡洠䙩汥獜䅖䝜䅮瑩癩牵獜慳睁䵓䤮摬氠瑨慴⁤楤潴敥琠瑨攠坩湤潷猠獩杮楮朠汥癥氠牥煵楲敭敮瑳⸍਍੅癥湴嬸崍ਠ⁌潧⁎慭攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹⽏灥牡瑩潮慬ഊ†卯畲捥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礍ਠ⁄慴攺′〲㈭ㄱⴱ㙔㈱㨲㌺㐸⸱〶〰〰娍ਠ⁅癥湴⁉䐺″〳㌍ਠ⁔慳欺⁎⽁ഊ†䱥癥氺⁅牲潲
ਠ⁏灣潤攺⁎⽁ഊ†䭥祷潲携⁎⽁ഊ†啳敲㨠匭ㄭ㔭ㄹഊ†啳敲⁎慭攺⁎吠䅕呈佒䥔奜䱏䍁䰠卅剖䥃䔍ਠ⁃潭灵瑥爺⁄䕓䭔佐ⵎ偕噁卑ഊ†䑥獣物灴楯渺‍੃潤攠䥮瑥杲楴礠摥瑥牭楮敤⁴桡琠愠灲潣敳猠⡜䑥癩捥屈慲摤楳歖潬畭攳屐牯杲慭⁆楬敳屗楮摯睳⁄敦敮摥牜䵰䍭摒畮⹥硥⤠慴瑥浰瑥搠瑯潡搠屄敶楣敜䡡牤摩獫噯汵浥㍜偲潧牡洠䙩汥獜䅖䝜䅮瑩癩牵獜慳睁䵓䤮摬氠瑨慴⁤楤潴敥琠瑨攠䵩捲潳潦琠獩杮楮朠汥癥氠牥煵楲敭敮瑳⸍਍੅癥湴嬹崍ਠ⁌潧⁎慭攺⁍楣牯獯晴ⵗ楮摯睳ⵃ潤敉湴敧物瑹⽏灥牡瑩潮慬ഊ†卯畲捥㨠䵩捲潳潦琭坩湤潷猭䍯摥䥮瑥杲楴礍ਠ⁄慴攺′〲㈭ㄱⴱ㙔㈱㨲㌺㐸⸰㤸〰〰娍ਠ⁅癥湴⁉䐺″〳㌍ਠ⁔慳欺⁎⽁ഊ†䱥癥氺⁅牲潲
ਠ⁏灣潤攺⁎⽁ഊ†䭥祷潲携⁎⽁ഊ†啳敲㨠匭ㄭ㔭ㄹഊ†啳敲⁎慭攺⁎吠䅕呈佒䥔奜䱏䍁䰠卅剖䥃䔍ਠ⁃潭灵瑥爺⁄䕓䭔佐ⵎ偕噁卑ഊ†䑥獣物灴楯渺‍੃潤攠䥮瑥杲楴礠摥瑥牭楮敤⁴桡琠愠灲潣敳猠⡜䑥癩捥屈慲摤楳歖潬畭攳屐牯杲慭⁆楬敳屗楮摯睳⁄敦敮摥牜䵰䍭摒畮⹥硥⤠慴瑥浰瑥搠瑯潡搠屄敶楣敜䡡牤摩獫噯汵浥㍜偲潧牡洠䙩汥獜䅖䝜䅮瑩癩牵獜慳睁䵓䤮摬氠瑨慴⁤楤潴敥琠瑨攠䵩捲潳潦琠獩杮楮朠汥癥氠牥煵楲敭敮瑳⸍਍
==================== Memory info ===========================

Processor: 11th Gen Intel(R) Core(TM) i7-11700K @ 3.60GHz
Percentage of memory in use: 23%
Total physical RAM: 16265.62 MB
Available physical RAM: 12383.41 MB
Total Virtual: 19209.62 MB
Available Virtual: 14046.72 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.75 GB) (Free:403.46 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 60BDDD0A)

Partition: GPT.
 Could not read MBR for disk 1.

==================== End of Addition.txt ============================
 
Last edited by a moderator:
That is everything from FRST64, now i do see some things in there that are personal such as photos and such and i dont know what you could be doing with all this knowledge i just want my pc fixed.
 
Not sure how you got such an outdated version of FRST. Let’s do this please.

With this being so long outdated, the logs are basically useless, and as far as your photos or any personal data that’s not what I am seeking, those can not be viewed by me anyway, I can only see file paths in these logs.

Download Malwarebytes Support Tool


Once the file is downloaded, open your Downloads folder/location of the downloaded file
Double-click mb-support-1.4.0.615.exe to run the report
You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent.
Place a checkmark next to Accept License Agreement and click Next
You will be presented with a page stating, "Get Started!"
Do NOT use the button “Start repair” !
Click the Advanced tab on the left column
Click the Gather Logs button
A progress bar will appear and the program will proceed with getting logs from your computer
Upon completion, click a file named mbst-grab-results.zip will be saved to your Desktop. Click OK
Please attach the ZIP file in your next reply.
 
Ok. Since you have an older version of FRST we first need to remove that, and one certain way to do so is.....

I should clarify that the last tool you used got me newer logs, I just do not want any confusion on which version of FRST you have being run for the fix below.



Download KpRM
Save to Desktop
Check Delete Tools'
Create Restore point.
Then click run.

Download the latest vesion I have uploaded it for you click here to download it.
Unzip it to your desktop!!!


Now uninstall All AVG related products from your machine, it is simply trash software and may hender our efforts in this thread.

I suggest you remove them all with GeekUninstaller.

Then run the AVG removal tool.

Make sure and remove the other software listed below, with geek tool.

AVG AntiVirus FREE (HKLM\...\AVG Antivirus) (Version: 22.10.3258 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 107.0.19254.108 - AVG Technologies)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1207.2 - AVG Technologies) Hidden
Browser Assistant (HKLM-x32\...\{EF511737-E6B5-4675-90FA-5B3DA3D0301A}) (Version: 1.40.3232.31760 - Realistic Media Inc.) <==== ATTENTION
IEBrowserAssistant (HKLM-x32\...\{BC63C727-3079-49AA-876A-8E459D35CB72}) (Version: 1.0.0 - Realistic Media Inc.) <==== ATTENTION



FRST Fix.
Download attached fixlist.txt file and save it to the Desktop. NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work. NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system Run FRST/FRST64 and press the Fix button just once and wait. If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run. When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.
 

Attachments

  • FRST64.zip
    1.7 MB · Views: 1
  • fixlist.txt
    11.2 KB · Views: 4
Last edited:
You should know that your machine is infected, and you should run the fix I provided.

HKU\S-1-5-21-4164995525-931560966-1168492100-1001\...\Run: [BAStartup] => C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell -ExecutionPolicy bypass -c "$env:COMPLUS_version='v4.0.30319';$w="$env:APPDATA"+'\Browser Assistant\';cd $w;&powershell{& ./edge/x86/node.exe ./ed (the data entry has 15 more characters). (No File) <==== ATTENTION
FirewallRules: [{04604670-727D-4EED-864B-BE8D79C55D27}] => (Allow) LPort=32682
FirewallRules: [{BA3FA3D7-0526-4F15-947A-E6863F98E4B8}] => (Allow) LPort=26822

Here are a couple of items that pertain to the malware on your machine, which if you run the fix provided will be eliminated. And just know that removing AVG is only going to help your situation....

Your choice, update the thread when you get a chance.

@areilly18
 
Thanks for letting me know. Have a great night.

These open ports thru your firewall represent a back door onto your machine, hopefully your method cured that.

FirewallRules: [{04604670-727D-4EED-864B-BE8D79C55D27}] => (Allow) LPort=32682
FirewallRules: [{BA3FA3D7-0526-4F15-947A-E6863F98E4B8}] => (Allow) LPort=26822


I highly suggest you follow the steps laid out for you.



:)
 
Last edited:
  • Like
Reactions: jmarket
Status
Not open for further replies.