Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-11-2019 Ran by NEU (administrator) on MASTER (MSI MS-7996) (23-11-2019 13:12:01) Running from C:\Users\NEU\Desktop Loaded Profiles: NEU (Available Profiles: NEU & Administrador) Platform: Windows 10 Pro Version 1903 18362.476 (X64) Language: Español (España, internacional) Default browser: Chrome Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.402\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.402\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ScreenSketch_10.1907.2471.0_x64__8wekyb3d8bbwe\ScreenSketch.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20206.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20206.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.9.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Pervasive Software Inc. -> ) C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe (philandro Software GmbH -> ) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (Plex, Inc -> ) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe (Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe (Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe (Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe (Plex, Inc -> Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2018-03-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-10-25] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [EaseUS Cleanup] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.10\bin\CleanUpUI.exe [1243328 2016-09-20] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU Yiwo Tech Development Co., Ltd.) [File not signed] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [SPUpDateServerrun] => C:\Program Files (x86)\hicloud\update_server\startUp.exe [17368 2019-07-05] (EZVIZ Inc. -> ) HKLM-x32\...\Run: [iVMS-4200.Framework.S] => C:\Program Files (x86)\Safire Control Center Site\Safire Control Center Client\Server\Safire Control Center.Framework.S.exe [472584 2019-10-18] (Aspersia S.L. -> ) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-2252380669-208864170-4196355365-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [24869352 2019-06-28] (Plex, Inc -> Plex, Inc.) HKU\S-1-5-21-2252380669-208864170-4196355365-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-10-25] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-2252380669-208864170-4196355365-1001\...\Policies\Explorer: [NoSecurityTab] 1 HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-22] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2019-04-06] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start Pervasive PSQL Workgroup Engine.lnk [2018-10-16] ShortcutTarget: Start Pervasive PSQL Workgroup Engine.lnk -> C:\Windows\Installer\{0A3238D7-AB32-4E15-B717-F3E3F18B4A8C}\WGE1.14A03FCD_EA43_4130_A5C0_F02D38895A13.exe () [File not signed] FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {05C10D2C-AB2F-495C-B667-15C775655BC0} - System32\Tasks\Opera scheduled assistant Autoupdate 1553454483 => C:\Users\NEU\AppData\Local\Programs\Opera\launcher.exe Task: {09049559-37EF-41C1-BEAA-A50959D2E7F0} - System32\Tasks\HPCustParticipation HP ColorLaserJet MFP M178-M181 => C:\Program Files\HP\HP ColorLaserJet MFP M178-M181\Bin\HPCustPartic.exe [6660232 2018-02-27] (Hewlett Packard -> HP Inc.) Task: {0DFA53D5-4277-4A18-90C7-2E5FA262353B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {348A7D32-5A04-43A8-8C0F-233F84442AD6} - System32\Tasks\Opera scheduled Autoupdate 1553454481 => C:\Users\NEU\AppData\Local\Programs\Opera\launcher.exe Task: {3508BC71-5E2C-40CB-B3EA-31B05ADDF6F2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3CCE3AB3-E48B-43E2-8F8C-BAD14E070830} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {58D4C18E-9EC0-4C3F-A71E-77C5D2E8F868} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-17] (Google Inc -> Google Inc.) Task: {5E25B98D-7B07-45A8-A9BA-2F9664A6D262} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe Task: {5E7CFC61-C266-4C6A-A7B1-2E431E39C0B4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4427584 2019-11-03] (Microsoft Corporation -> Microsoft Corporation) Task: {5ED2D867-A033-4AAB-BC9D-EE22DB3A2BA2} - \KMSAutoNet -> No File <==== ATTENTION Task: {6B9C09ED-F11C-416C-8808-089849A7839A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {6D1C058D-8D75-4D36-991F-76B3ECC0050E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367800 2019-11-08] (Microsoft Corporation -> Microsoft Corporation) Task: {764D08EF-7298-4761-8EB7-8CE1BE0EA8E2} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {773335E9-D711-4C1B-92CA-39DEA4D057D2} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1423464 2019-11-19] (Microsoft Corporation -> Microsoft Corporation) Task: {799E7EEA-6CBF-4B3B-B170-2F7BB1C29EFE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4427584 2019-11-03] (Microsoft Corporation -> Microsoft Corporation) Task: {8BCDFB54-611E-421F-9318-F3FD826E2F22} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8E1B75D3-CAE7-42AF-B43A-6CC69A904109} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8E8B78D4-B860-4095-848A-29F1CED161D0} - \KMSAuto -> No File <==== ATTENTION Task: {9B419DA7-7DEB-4ACE-ABF1-297FA1D1D2EE} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [488760 2019-07-15] (Bitdefender SRL -> Bitdefender) Task: {9CECA7A6-5C58-4D5E-932D-C0C8AC1D04C5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114520 2019-11-19] (Microsoft Corporation -> Microsoft Corporation) Task: {9D67FEB7-568B-4AA1-BC32-50E7E79EFC9B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A273E1EF-84EF-4F52-8844-E1CFE1255843} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BBA5844C-FB1C-4145-BFBC-8890685FFA64} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BC30B6FA-20CD-4F6E-9AA9-6977A8995932} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2252380669-208864170-4196355365-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {C1597AFD-A22A-48A3-85AE-BC14063DBFE7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1423464 2019-11-19] (Microsoft Corporation -> Microsoft Corporation) Task: {DEC21C63-91E3-45D9-8262-9DB8362AC337} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DF0AE1D0-4CC9-4053-9732-D25E9876D7D0} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [687616 2013-11-12] () [File not signed] Task: {E25F282E-60B9-43A4-97F1-CDEF0E508A51} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [520456 2019-11-21] (Bitdefender SRL -> Bitdefender) Task: {E3342D11-F92B-4ED2-A6B9-94892ED4C614} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-17] (Google Inc -> Google Inc.) Task: {E4D75F05-E862-44B6-9972-3A92B1F1D5AD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114520 2019-11-19] (Microsoft Corporation -> Microsoft Corporation) Task: {EA08CEC5-7E6E-40D9-BD89-0D138ECE2E9E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FFC7E085-DEF4-4BE1-9DD3-BD6E10ADFEAA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367800 2019-11-08] (Microsoft Corporation -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\..\Interfaces\{1545cfa3-66e3-4083-a51b-9a85951c4f9a}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{44ccafbd-def1-40f3-95b0-51883a19cb71}: [NameServer] 8.8.8.8 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2252380669-208864170-4196355365-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00 SearchScopes: HKU\S-1-5-21-2252380669-208864170-4196355365-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00 SearchScopes: HKU\S-1-5-21-2252380669-208864170-4196355365-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00 BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2019-11-21] (Bitdefender SRL -> Bitdefender) BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-11-21] (Bitdefender SRL -> Bitdefender) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-02] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2019-11-21] (Bitdefender SRL -> Bitdefender) BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-11-21] (Bitdefender SRL -> Bitdefender) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-25] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-25] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-11-21] (Bitdefender SRL -> Bitdefender) Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-11-21] (Bitdefender SRL -> Bitdefender) Toolbar: HKU\S-1-5-21-2252380669-208864170-4196355365-1001 -> Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-11-21] (Bitdefender SRL -> Bitdefender) DPF: HKLM-x32 {FD3BEB0C-AB43-4253-9146-C371D48FBE0D} hxxps://www.xmeye.net/cloud/video/web.cab Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-03] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\NEU\Downloads FireFox: ======== FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2019-09-10] FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2019-11-21] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2019-03-06] [Legacy] [not signed] FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @DVR/npmedia,version=3.1.0.4 -> C:\Program Files (x86)\webrec\WEB30\WebPlugin\npmedia.dll [2018-03-12] () [File not signed] FF Plugin-x32: @DVR/npmedia,version=3.1.0.5 -> C:\Program Files\webrec\WEB30\DVR32\3.1.0.5\npmedia3105.dll [No File] FF Plugin-x32: @DVR/npplugin,version=3.1.0.4 -> C:\Program Files (x86)\webrec\WEB30\WebPlugin_V2\npPlugin.dll [No File] FF Plugin-x32: @DVR/npTimeGrid,version=3.1.0.4 -> C:\Program Files (x86)\webrec\WEB30\WebPlugin\npTimeGrid.dll [2018-03-12] (Unauthorized copy) [File not signed] FF Plugin-x32: @DVR/npTimeGrid,version=3.1.0.5 -> C:\Program Files\webrec\WEB30\DVR32\3.1.0.5\npTimeGrid3105.dll [No File] FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @IPC/npmedia3.0.0.3,version=3.0.0.3 -> C:\Program Files\webrec\Torch\3.0.0.3\npmedia3.0.0.3.dll [No File] FF Plugin-x32: @IPC/npmedia3.3.16431.0,version=3.3.16431.0 -> C:\Program Files\webrec\Torch\3.3.16431.0\npmedia3.3.16431.0.dll [No File] FF Plugin-x32: @IPC/npmedia3.3.549.0,version=3.3.549.0 -> C:\Program Files\webrec\Torch\3.3.549.0\npmedia3.3.549.0.dll [No File] FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @NVR/npmedia4.1.63.0,version=4.1.63.0 -> C:\Program Files (x86)\webrec\Torch\4.1.63.0\npmedia.dll [No File] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.402\npGoogleUpdate3.dll [2019-11-16] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.402\npGoogleUpdate3.dll [2019-11-16] (Google Inc -> Google LLC) FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: JFGuide -> C:\Program Files (x86)\NetSurveillance\CMS\npGuide.dll [2018-12-13] () [File not signed] FF Plugin-x32: JFWeb -> C:\Program Files (x86)\NetSurveillance\CMS\npWebPlugin.dll [2018-12-13] () [File not signed] FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2018-05-15] () [File not signed] Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://www.google.es/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Notifications: Default -> hxxps://appuals.com; hxxps://blog.desdelinux.net; hxxps://dailynews-finance.com; hxxps://es-pl.com; hxxps://free-coupons.network; hxxps://l2.mastercoria.com; hxxps://lalittandkedsi.info; hxxps://maranhesduve.club; hxxps://miyoigo.yoigo.com; hxxps://pornocasero.co; hxxps://pornoplay.online; hxxps://roams.es; hxxps://special-promotions.online; hxxps://www.alibaba.com; hxxps://www.banggood.com; hxxps://www.hwlibre.com; hxxps://www.linuxsat-support.com; hxxps://www.milanuncios.com; hxxps://www.pccomponentes.com; hxxps://www.recambioscoche.es; hxxps://www.redeszone.net; hxxps://www.yoigo.com; hxxps://www.youtube.com; hxxps://www3.ecleneue.com CHR Profile: C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default [2019-11-23] CHR DownloadDir: G:\descargas CHR Extension: (Presentaciones) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-17] CHR Extension: (Easy Viewer) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\anjoggeimnldigfcihcggejncophmhjc [2019-02-23] CHR Extension: (Documentos) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-17] CHR Extension: (Google Drive) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17] CHR Extension: (YouTube) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-17] CHR Extension: (Mi dirección IP) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccfphbgnmmhjfalloifioeeeokjemobf [2018-03-17] CHR Extension: (Floating Video for YouTube) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekafcngfbjjdmnmacbojjcfnnbigpim [2019-08-16] CHR Extension: (Tampermonkey) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-08-24] CHR Extension: (Hojas de cálculo) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-17] CHR Extension: (Documentos de Google sin conexión) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17] CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2019-11-20] CHR Extension: (IE Tab) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2019-11-21] CHR Extension: (Ubiquiti Device Discovery Tool) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmpigflbjeapnknladcfphgkemopofig [2019-01-23] CHR Extension: (anonymoX) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpklikeghomkemdellmmkoifgfbakio [2019-09-22] CHR Extension: (Herramienta de recuperación de Chromebooks) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\jndclpdbaamdhonoechobihbbiimdgai [2018-03-17] CHR Extension: (Player para ver Movistar+) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2019-03-08] CHR Extension: (mydlink services plugin) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldibdoepbjbkkcbgndfljnphngpglhbb [2018-03-17] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-01-24] CHR Extension: (Video DownloadHelper) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2019-06-27] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-30] CHR Extension: (NACL Web Plug-in) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbdcmagkbhnjpjlnpibbmggikpedpilc [2018-07-05] CHR Extension: (Gmail) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29] CHR Extension: (Chrome Media Router) - C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-29] CHR Profile: C:\Users\NEU\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-11-22] CHR Profile: C:\Users\NEU\AppData\Local\Google\Chrome\User Data\System Profile [2019-11-22] CHR HKU\S-1-5-21-2252380669-208864170-4196355365-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-2252380669-208864170-4196355365-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [2985424 2019-09-11] (philandro Software GmbH -> ) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2019-11-21] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2019-11-21] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender) S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (Shanghai Comet Network Technology -> www.BitComet.com) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11649912 2019-11-08] (Microsoft Corporation -> Microsoft Corporation) R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [125120 2019-09-17] (Bitdefender SRL -> Bitdefender) S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG -> Nero AG) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation) R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2120680 2019-06-28] (Plex, Inc -> Plex, Inc.) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1291888 2019-07-15] (Bitdefender SRL -> Bitdefender) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-11] (Microsoft Windows Publisher -> Microsoft Corporation) S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [686592 2013-11-12] () [File not signed] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12135768 2019-09-16] (TeamViewer GmbH -> TeamViewer GmbH) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [151656 2019-11-21] (Bitdefender SRL -> Bitdefender) S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2019-10-10] (Oracle Corporation -> Oracle Corporation) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2019-11-21] (Bitdefender SRL -> Bitdefender) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 S2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1693368 2019-11-21] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [739264 2019-11-21] (Bitdefender SRL -> Bitdefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2019-09-10] (Bitdefender SRL -> © Bitdefender SRL) R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (Bitdefender SRL -> BitDefender) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [33448 2016-12-07] (CHENGDU YIWO Tech Development Co., Ltd. -> ) S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [564112 2019-11-21] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [188384 2019-06-03] (Bitdefender SRL -> BitDefender LLC) R2 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [196392 2019-09-10] (Bitdefender SRL -> Bitdefender) S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2019-03-19] (Microsoft Windows -> MediaTek Inc.) R2 NPF; C:\Program Files\Safire Control Center Station\Safire Control Center\Drivers\npf64.sys [36600 2018-07-30] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_adc520364db29861\nvlddmkm.sys [17213832 2018-09-06] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek ) S3 RtlWlanu_OldIC; C:\WINDOWS\System32\drivers\rtwlanu_oldIC.sys [3814400 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation ) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [610640 2019-01-14] (Bitdefender SRL -> Bitdefender) R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [237376 2019-10-11] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [248464 2019-10-11] (Oracle Corporation -> Oracle Corporation) S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [175040 2019-10-11] (Oracle Corporation -> Oracle Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R3 X86BDA; C:\WINDOWS\System32\drivers\OEMDrv.sys [268416 2011-06-08] (Microsoft Windows Hardware Compatibility Publisher -> ) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) =================== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-11-23 13:12 - 2019-11-23 13:12 - 000042053 _____ C:\Users\NEU\Desktop\FRST.txt 2019-11-23 13:11 - 2019-11-23 13:12 - 000000000 ____D C:\FRST 2019-11-23 13:09 - 2019-11-23 13:09 - 002261504 _____ (Farbar) C:\Users\NEU\Desktop\FRST64.exe 2019-11-23 01:11 - 2019-11-23 01:11 - 000000000 ____D C:\Users\NEU\AppData\Local\PC SpeedCat-Logs 2019-11-23 00:49 - 2019-11-23 00:53 - 000000000 ____D C:\ProgramData\Dumps 2019-11-23 00:31 - 2019-11-23 00:53 - 822462882 _____ C:\Users\NEU\Desktop\BDSP_MASTER_2019_11_23_00_31.zip 2019-11-23 00:31 - 2019-11-23 00:31 - 000637112 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\trufosalt.sys 2019-11-23 00:00 - 2019-11-23 00:00 - 000000000 ___HD C:\$SysReset 2019-11-22 18:46 - 2019-11-22 18:46 - 000003634 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask 2019-11-22 18:22 - 2019-11-22 18:23 - 000132106 _____ C:\WINDOWS\ntbtlog.txt 2019-11-22 18:11 - 2019-11-22 18:46 - 000000517 _____ C:\DelFix.txt 2019-11-22 18:11 - 2019-11-22 18:11 - 000000000 ____D C:\WINDOWS\ERUNT 2019-11-22 09:28 - 2019-11-22 09:28 - 000000000 ____D C:\Users\NEU\AppData\Local\mbamtray 2019-11-22 09:28 - 2019-11-22 09:28 - 000000000 ____D C:\Users\NEU\AppData\Local\mbam 2019-11-22 09:28 - 2019-11-22 09:28 - 000000000 ____D C:\Users\NEU\AppData\Local\cache 2019-11-22 09:27 - 2019-11-22 09:27 - 000000000 ____D C:\Program Files\Malwarebytes 2019-11-21 20:23 - 2019-11-21 20:24 - 000000000 ____D C:\4412723 2019-11-21 20:22 - 2019-11-21 20:22 - 000000000 ____D C:\testintel 2019-11-15 22:30 - 2019-11-15 22:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet (64-bit) 2019-11-14 07:38 - 2019-11-14 07:38 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 005501952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 004307968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 002956472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 001866272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 001659192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 001495864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000030720 _____ C:\WINDOWS\system32\uwfservicingapi.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx 2019-11-14 07:38 - 2019-11-14 07:38 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll 2019-11-14 07:38 - 2019-11-14 07:38 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL 2019-11-14 07:37 - 2019-11-14 07:37 - 025901056 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 008011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 007195648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 007015936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 006521768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 006232576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 005943296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 005914112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 005763848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 005112320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 004578816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 004150272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 003967920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 003752960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 003487232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-11-14 07:37 - 2019-11-14 07:37 - 002772272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002586816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002562048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002399232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002369552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002258848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002188808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 002158080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001916984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001718584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001691648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001664688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001616696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001413864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 001387024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001185792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001017680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000960040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000827192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000816952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000768488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000679152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000666640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000452920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000404904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000396088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000380944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000375720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2019-11-14 07:37 - 2019-11-14 07:37 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ManagedEventLogging.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000259384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000251512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000230200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2019-11-14 07:37 - 2019-11-14 07:37 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CmUtil.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accessibilitycpl.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000193800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2019-11-14 07:37 - 2019-11-14 07:37 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000136536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys 2019-11-14 07:37 - 2019-11-14 07:37 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcXtrnal.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000084488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys 2019-11-14 07:37 - 2019-11-14 07:37 - 000084488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2019-11-14 07:37 - 2019-11-14 07:37 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2019-11-14 07:37 - 2019-11-14 07:37 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncController.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\reg.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2019-11-14 07:37 - 2019-11-14 07:37 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AtBroker.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000061240 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\reg.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CabUtil.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.EventLogMessages.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAgentPolicyGenerator.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\posetup.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Management.WmiAccess.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Management.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppData.WinRT.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncCommon.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.WinRT.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.LocalSyncProvider.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcXtrnal.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernSync.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL 2019-11-14 07:37 - 2019-11-14 07:37 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevTemplateBaselineGenerator.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevTemplateConfigItemGenerator.exe 2019-11-14 07:37 - 2019-11-14 07:37 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SmbSyncProvider.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.MonitorSyncProvider.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncConditions.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2019-11-14 07:37 - 2019-11-14 07:37 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 017787904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 007904152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 007849424 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 007278592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 007262456 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 006227104 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 006166016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 005890048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 004615616 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 004047360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 003968512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 003791360 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 003728384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 003591208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 003371928 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 003105792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 002988344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 002871848 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 002763016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 002703872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 002698768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 002126112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 002120704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 002114048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001974824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-11-14 07:36 - 2019-11-14 07:36 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001656392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001647064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001327064 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001259416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001171704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001069064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000911824 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000874936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000874536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000657424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000638264 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000589592 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000586768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000551736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000517432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000514576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000477712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2019-11-14 07:36 - 2019-11-14 07:36 - 000466928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000461320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000372752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000322504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000292664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000291256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\accessibilitycpl.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000204816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000113160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000105488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2019-11-14 07:36 - 2019-11-14 07:36 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000088568 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AtBroker.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000065272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000047208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS 2019-11-14 07:36 - 2019-11-14 07:36 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winnsi.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000028344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winnsi.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscisvif.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000024792 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys 2019-11-14 07:36 - 2019-11-14 07:36 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscadminui.exe 2019-11-14 07:36 - 2019-11-14 07:36 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2019-11-14 07:36 - 2019-11-14 07:36 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll 2019-11-14 00:04 - 2019-10-17 07:17 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2019-11-14 00:04 - 2019-10-17 07:01 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2019-11-08 00:26 - 2019-11-08 00:26 - 000002602 _____ C:\Users\Public\Desktop\Safire Control Center Client.lnk 2019-11-08 00:26 - 2019-11-08 00:26 - 000002602 _____ C:\ProgramData\Desktop\Safire Control Center Client.lnk 2019-11-08 00:26 - 2019-11-08 00:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safire Control Center Station 2019-11-07 12:31 - 2019-11-07 12:31 - 000000000 ____D C:\Program Files (x86)\webrec 2019-11-05 18:46 - 2019-11-13 14:33 - 000000574 _____ C:\Users\NEU\ezpcopensdkconfig_7690c03d63bdd9224495ac1f4f3201cb.xml 2019-11-05 18:42 - 2019-11-05 18:42 - 000002759 _____ C:\Users\Public\Desktop\Safire Control Center 3.1.1 Client.lnk 2019-11-05 18:42 - 2019-11-05 18:42 - 000002759 _____ C:\ProgramData\Desktop\Safire Control Center 3.1.1 Client.lnk 2019-11-05 18:42 - 2019-11-05 18:42 - 000000000 ____D C:\Users\Public\Safire Control Center Site 2019-11-05 18:42 - 2019-11-05 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safire Control Center 3.1.1 2019-11-05 18:42 - 2019-11-05 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hicloud 2019-11-05 18:42 - 2019-11-05 18:42 - 000000000 ____D C:\Program Files (x86)\hicloud 2019-11-05 18:41 - 2019-11-05 18:42 - 000000000 ____D C:\Program Files (x86)\Safire Control Center Site 2019-11-05 18:15 - 2019-11-05 18:15 - 000000000 ____D C:\Program Files (x86)\Web Components 2019-11-01 19:29 - 2019-11-01 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2019-11-01 19:28 - 2019-11-01 19:28 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk 2019-11-01 19:28 - 2019-11-01 19:28 - 000001816 _____ C:\ProgramData\Desktop\iTunes.lnk 2019-11-01 19:28 - 2019-11-01 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2019-11-01 19:28 - 2019-11-01 19:28 - 000000000 ____D C:\Program Files\iTunes 2019-11-01 19:28 - 2019-11-01 19:28 - 000000000 ____D C:\Program Files\iPod 2019-10-30 08:24 - 2019-10-30 08:24 - 000000000 ____D C:\Users\NEU\AppData\Roaming\Picosmos 2019-10-28 15:16 - 2019-10-28 15:16 - 000000000 ____D C:\Users\NEU\AppData\Roaming\balenaEtcher 2019-10-28 15:16 - 2019-10-28 15:16 - 000000000 ____D C:\Users\NEU\AppData\Local\balena-etcher-updater 2019-10-27 22:40 - 2019-10-27 22:42 - 000002600 _____ C:\Users\NEU\Desktop\raspberry pi unifi.txt 2019-10-26 09:22 - 2019-10-26 09:23 - 000000000 ____D C:\Recuperacion local store 2019-10-26 09:12 - 2019-10-26 09:29 - 000000000 ____D C:\recuperacion google 2019-10-25 13:42 - 2019-10-25 13:42 - 000000014 _____ C:\Users\NEU\Desktop\RMA Instabyte.txt 2019-10-25 12:56 - 2019-10-25 12:57 - 000000050 _____ C:\Users\NEU\Desktop\devolucion router yoigo.txt 2019-10-24 15:57 - 2019-10-25 08:54 - 000000000 ____D C:\M5 ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-11-23 12:27 - 2019-07-16 15:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-11-23 12:27 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-11-23 12:25 - 2018-03-17 20:33 - 000000000 ____D C:\ProgramData\NVIDIA 2019-11-23 08:40 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-11-23 01:17 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-11-23 01:16 - 2018-03-17 21:39 - 000000000 ____D C:\Users\NEU\AppData\Local\CrashDumps 2019-11-23 01:07 - 2018-03-17 20:44 - 000000000 ____D C:\ProgramData\BDLogging 2019-11-23 01:07 - 2018-03-17 20:42 - 000000000 ____D C:\Program Files\Bitdefender Agent 2019-11-23 00:31 - 2018-03-17 20:43 - 000000000 ____D C:\ProgramData\Bitdefender 2019-11-23 00:16 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2019-11-22 23:59 - 2019-07-16 16:02 - 001773366 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-11-22 23:59 - 2019-03-19 12:59 - 000788560 _____ C:\WINDOWS\system32\perfh00A.dat 2019-11-22 23:59 - 2019-03-19 12:59 - 000155850 _____ C:\WINDOWS\system32\perfc00A.dat 2019-11-22 23:59 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2019-11-22 23:53 - 2019-07-16 16:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-11-22 23:53 - 2018-03-18 19:40 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2019-11-22 23:52 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-11-22 18:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-11-22 18:41 - 2019-03-19 05:37 - 000065536 _____ C:\WINDOWS\system32\config\ELAM 2019-11-22 18:41 - 2018-06-07 18:22 - 000000008 __RSH C:\ProgramData\ntuser.pol 2019-11-22 18:40 - 2018-04-18 10:44 - 000000000 ____D C:\Users\NEU\AppData\LocalLow\Temp 2019-11-22 18:38 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2019-11-22 18:38 - 2015-07-10 12:04 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2019-11-22 18:31 - 2018-03-21 22:41 - 000000000 ____D C:\Users\NEU\AppData\Local\ElevatedDiagnostics 2019-11-22 18:25 - 2018-03-17 21:14 - 000000000 ____D C:\Program Files (x86)\Notepad++ 2019-11-22 17:53 - 2018-03-17 21:11 - 000000000 ____D C:\Users\NEU\AppData\Roaming\vlc 2019-11-22 17:07 - 2018-03-18 00:05 - 000000000 ____D C:\Users\NEU\.VirtualBox 2019-11-22 14:53 - 2018-12-24 09:42 - 000000000 ____D C:\ProgramData\VirtualBox 2019-11-22 09:33 - 2018-03-29 16:26 - 000000000 ____D C:\ProgramData\Nero 2019-11-22 09:28 - 2018-03-17 21:14 - 000000600 _____ C:\Users\NEU\AppData\Roaming\winscp.rnd 2019-11-22 09:05 - 2019-01-31 07:55 - 000000000 ____D C:\Users\NEU\Desktop\Iptv 2019-11-22 08:47 - 2018-03-17 20:36 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-11-22 08:47 - 2018-03-17 20:36 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-11-22 08:47 - 2018-03-17 20:36 - 000002258 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2019-11-21 17:34 - 2018-03-17 21:09 - 000000000 ____D C:\Users\NEU\Documents\Bandicam 2019-11-21 13:41 - 2018-03-17 21:20 - 000000600 _____ C:\Users\NEU\AppData\Local\PUTTY.RND 2019-11-21 10:06 - 2019-04-01 22:01 - 001693368 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys 2019-11-21 10:06 - 2019-04-01 22:01 - 000739264 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci.sys 2019-11-21 10:06 - 2019-04-01 22:01 - 000001983 _____ C:\Users\Public\Desktop\Bitdefender.lnk 2019-11-21 10:06 - 2019-04-01 22:01 - 000001983 _____ C:\ProgramData\Desktop\Bitdefender.lnk 2019-11-21 10:06 - 2019-04-01 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security 2019-11-21 09:02 - 2019-04-01 22:01 - 000564112 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\gemma.sys 2019-11-21 08:18 - 2018-05-08 09:30 - 000000000 ____D C:\Users\NEU\AppData\Local\IE Tab 2019-11-19 08:25 - 2018-03-18 00:32 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-11-19 00:24 - 2019-07-16 15:53 - 000000000 ____D C:\Users\NEU 2019-11-18 13:59 - 2019-07-16 20:36 - 000000032 _____ C:\WINDOWS\FAR01.INI 2019-11-18 13:59 - 2019-07-16 20:36 - 000000032 _____ C:\WINDOWS\FAC01.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000077 _____ C:\WINDOWS\LAGO.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\TPVRPT.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\TPV.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\SISTEMA.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\SERVICIO.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\REPRPT.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\REPARA.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\LIBRERIA.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\FORMATOS.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\FACTURA.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\FACRPT.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\DATA.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\ARCRPT.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\ARCHIVO.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\ALMRPT.INI 2019-11-18 13:59 - 2018-10-16 12:49 - 000000032 _____ C:\WINDOWS\ALMACEN.INI 2019-11-17 18:59 - 2018-03-18 20:33 - 000007834 _____ C:\Users\NEU\advanced_ip_scanner_MAC.bin 2019-11-17 18:59 - 2018-03-18 20:33 - 000000053 _____ C:\Users\NEU\advanced_ip_scanner_Aliases.bin 2019-11-17 18:59 - 2018-03-18 20:33 - 000000015 _____ C:\Users\NEU\advanced_ip_scanner_Comments.bin 2019-11-17 09:57 - 2019-09-10 22:33 - 000000000 ____D C:\WINDOWS\KMSAutoS 2019-11-16 08:54 - 2019-07-16 16:00 - 000003622 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2019-11-16 08:54 - 2019-07-16 16:00 - 000003498 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2019-11-16 00:06 - 2018-03-18 15:13 - 000000000 ____D C:\Users\NEU\AppData\Roaming\BitComet 2019-11-15 23:22 - 2018-03-24 20:48 - 000000000 ____D C:\ProgramData\boost_interprocess 2019-11-15 22:30 - 2018-03-18 15:13 - 000000853 _____ C:\Users\Public\Desktop\BitComet.lnk 2019-11-15 22:30 - 2018-03-18 15:13 - 000000853 _____ C:\ProgramData\Desktop\BitComet.lnk 2019-11-15 14:04 - 2019-07-16 15:51 - 000536152 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-11-15 08:43 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2019-11-15 08:43 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\appraiser 2019-11-15 08:42 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog 2019-11-15 08:42 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2019-11-15 08:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-11-15 08:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents 2019-11-15 08:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2019-11-15 08:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\DiagTrack 2019-11-15 08:42 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-11-14 07:49 - 2018-03-17 20:56 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-11-14 07:45 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-11-14 07:45 - 2018-03-17 20:56 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-11-14 07:29 - 2019-01-24 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google 2019-11-11 23:19 - 2018-03-17 21:10 - 000000000 ____D C:\Users\NEU\Desktop\mio 2019-11-09 16:30 - 2019-02-28 20:25 - 000005632 _____ C:\Users\NEU\Desktop\oscammio.services 2019-11-09 16:30 - 2018-07-18 19:24 - 000005293 _____ C:\Users\NEU\Desktop\oscam.services 2019-11-08 09:28 - 2019-05-23 13:41 - 979508479 _____ C:\Users\NEU\Desktop\Iptv.zip 2019-11-08 00:25 - 2018-10-16 12:36 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-11-07 11:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF 2019-11-07 11:13 - 2018-10-16 13:03 - 000000000 ____D C:\Users\NEU\Desktop\txt 2019-11-06 14:10 - 2019-01-06 14:07 - 000000000 ____D C:\Users\NEU\Downloads\Telegram Desktop 2019-11-05 18:15 - 2019-03-30 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebComponents 2019-11-05 06:22 - 2018-03-17 20:36 - 000000000 ____D C:\Program Files (x86)\Google 2019-11-04 17:22 - 2018-10-02 10:53 - 000000000 ____D C:\Users\NEU\Ubiquiti UniFi 2019-11-03 17:54 - 2018-03-17 20:21 - 000000000 ____D C:\Users\NEU\AppData\Local\Packages 2019-11-02 18:08 - 2019-07-16 16:00 - 000003356 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2252380669-208864170-4196355365-1001 2019-11-02 18:08 - 2019-07-16 15:53 - 000002427 _____ C:\Users\NEU\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-11-02 18:08 - 2018-03-17 20:23 - 000000000 ___RD C:\Users\NEU\OneDrive 2019-11-01 22:18 - 2018-06-13 16:17 - 000000000 ____D C:\ProgramData\Packages 2019-11-01 10:24 - 2019-07-01 13:26 - 000000000 ____D C:\Safire Control Center 2019-10-30 08:24 - 2019-08-14 23:46 - 000000000 ____D C:\Users\NEU\Documents\Picosmos 2019-10-28 16:11 - 2019-02-01 18:47 - 000002438 _____ C:\Users\NEU\Desktop\balenaEtcher.lnk 2019-10-28 16:02 - 2019-02-01 18:47 - 000000000 ____D C:\Users\NEU\AppData\Roaming\balena-etcher 2019-10-27 12:13 - 2018-10-02 10:53 - 000001886 _____ C:\Users\NEU\Desktop\UniFi.lnk 2019-10-24 16:07 - 2019-03-19 05:58 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TFTP.EXE 2019-10-24 13:36 - 2019-02-04 23:16 - 000040960 _____ () C:\Users\NEU\Desktop\tftp2.exe ==================== Files in the root of some directories ======== 2018-04-02 21:10 - 2018-07-05 21:18 - 000001324 _____ () C:\Users\NEU\AppData\Roaming\DESKTOP-EGQ7GRC.MTBF.txt 2018-12-02 12:40 - 2019-09-02 12:50 - 000002654 _____ () C:\Users\NEU\AppData\Roaming\MASTER.MTBF.txt 2018-03-17 21:14 - 2019-11-22 09:28 - 000000600 _____ () C:\Users\NEU\AppData\Roaming\winscp.rnd 2019-07-28 01:13 - 2019-09-02 12:52 - 000001556 _____ () C:\Users\NEU\AppData\Roaming\__AvidCloudManager.log 2019-07-28 01:13 - 2019-09-01 10:02 - 000001878 _____ () C:\Users\NEU\AppData\Roaming\__AvidCloudManagerPrevious.log 2018-04-02 21:16 - 2019-08-31 21:24 - 000005120 _____ () C:\Users\NEU\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2018-03-17 21:20 - 2019-11-21 13:41 - 000000600 _____ () C:\Users\NEU\AppData\Local\PUTTY.RND 2018-10-28 19:23 - 2018-10-28 19:23 - 000000017 _____ () C:\Users\NEU\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================