Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-03-2020 Exécuté par afers (administrateur) sur DESKTOP-04TPRE9 (ASUSTeK COMPUTER INC. N551JX) (29-03-2020 14:31:11) Exécuté depuis C:\Users\afers\Desktop\Software safety Profils chargés: afers (Profils disponibles: afers) Platform: Windows 10 Home Version 1903 18362.720 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Bruker\Diskless\WinApp\bfsd.exe () [Fichier non signé] C:\flexlm\Bruker\SRVANY.EXE () [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe (ABBYY SOLUTIONS LIMITED -> ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Advanced Chemistry Development, Inc -> Advanced Chemistry Development Inc.) C:\ACD2018LSM\UFCSVC.EXE (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTek Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\PixelMaster Video HDR\DriverMFTService.exe (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe (ICEpower a/s -> ICEpower a/s) C:\Windows\System32\ICEsoundService64.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Novawave Inc. -> Novawave Inc.) C:\Program Files\Novawave\Novabench\NovabenchService.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [5990688 2020-03-29] (Malwarebytes Inc -> Malwarebytes) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\ecmdS.exe [185648 2020-03-20] (ESET, spol. s r.o. -> ESET) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM-x32\...\Run: [PaperCut MF Client] => C:\Program Files (x86)\PaperCut MF Client\pc-client.exe [359872 2018-07-24] (PaperCut Software International Pty. Ltd. -> ) HKU\S-1-5-21-2032608331-1222864265-3776741931-1001\...\Run: [Discord] => C:\Users\afers\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-20] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2019-04-02] ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0A51B491-33EA-49A1-B0F6-93BEB74068B0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0D0D7C12-BE3C-4824-A6B9-D222BD749D0D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [505200 2015-05-29] (Dropbox, Inc -> ) Task: {13F38D7B-43AC-4DCB-9DF2-1076D0337C23} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {16C0F2CB-05FF-42DC-B079-DCDC8E771142} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe Task: {22439F75-31BE-4973-A8E6-492CCF445F86} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {26F8B45D-F613-4E6E-8953-945EC9A3B483} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [817472 2017-11-08] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe Task: {30F304E9-2804-4D5F-BB3D-B660138C8375} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-07-21] (Google Inc -> Google Inc.) Task: {39064887-6BB0-456F-9DD0-81F82B2508C4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-07-21] (Google Inc -> Google Inc.) Task: {3FD9EA0D-D655-4F67-8EB6-D967B99D10E8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {59015C58-6EE3-4D0F-8DEA-44E929C70FB7} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5BB54FF9-A029-4847-8368-D7C3D856D462} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {62750BA4-AB56-4267-804D-291571E40145} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {657CC5A6-F8BC-4DFD-B6D4-607503AFE57D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {67651B0C-9858-40DA-A41A-CD01B571C027} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {6B115D8E-95A5-4E26-A3E1-051A81F1CE86} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {73B7C4B4-73A5-467C-B2AC-58ADA8502239} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd) Task: {7968A849-3F08-4669-AD0D-ECD0E4FAA0CE} - System32\Tasks\Update\kmspico => C:\Users\afers\AppData\Roaming\kmspico.exe <==== ATTENTION Task: {91626867-1595-4AAF-BC6B-9860AA71E8D3} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {916F8E28-D206-42D9-8A4B-501AF800DC36} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A4B38598-FF5C-4B84-B8D8-04A5477F9F4A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1505728 2018-09-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {ADD93242-8423-4927-8B83-725A5CBE3B08} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {C1DE76EF-248C-41AE-88FB-7ED10286101B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CFCCADBD-A5C3-42D2-A6F3-95DBA1AD05E6} - System32\Tasks\Helium_Level_Transfer => C:\Bruker\Diskless\prog\bin\helev_transfer.cmd Task: {D00AE3FE-DE69-496E-8EFE-A6A3C4142E5B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems) Task: {DE2AF451-F2F7-43E8-8C9B-8AC388DB5C66} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1505728 2018-09-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {EB212578-090E-4009-B0A8-79EB309C307F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-20] (Adobe Inc. -> Adobe) Task: {EDCF6DC9-B8E8-4076-9A82-9FDA1A5334DA} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {EF90320A-C56E-4888-B59C-EB6BB7FE46B8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F7FF9F74-CC05-4B40-83F7-F4AA5F0AD5AE} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {FAF93E85-1A96-46AB-8CDB-FA511E417B5A} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-20] (Adobe Inc. -> Adobe) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe Task: C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 75.153.171.122 Tcpip\..\Interfaces\{1c43deb6-592a-48d9-97f4-920134a7a7d9}: [DhcpNameServer] 142.58.98.5 142.58.200.2 Tcpip\..\Interfaces\{bf12b8fb-76d2-4c07-9f8d-5b9140badb52}: [DhcpNameServer] 192.168.1.254 75.153.171.122 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-2032608331-1222864265-3776741931-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2032608331-1222864265-3776741931-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Pas de nom - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Pas de fichier Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: ueiqg4lp.default-1490419739095 FF ProfilePath: C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095 [2020-03-29] FF Extension: (Grammarly for Firefox) - C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095\Extensions\87677a2c52b84ad3a151a4a72f5bd3c4@jetpack.xpi [2020-01-02] FF Extension: (Facebook Container) - C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095\Extensions\@contain-facebook.xpi [2020-03-13] FF Extension: (United States English Spellchecker) - C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095\Extensions\en-US@dictionaries.addons.mozilla.org.xpi [2018-11-28] FF Extension: (Debrid-Link) - C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095\Extensions\jid1-6kU7yIbrTcZvJg@jetpack.xpi [2020-01-29] FF Extension: (English (US) Language Pack) - C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2020-03-16] FF Extension: (uBlock Origin) - C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095\Extensions\uBlock0@raymondhill.net.xpi [2020-02-05] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [helper-sig@savefrom.net] - C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095\extensions\staged\helper-sig@savefrom.net.xpi => non trouvé(e) FF HKU\S-1-5-21-2032608331-1222864265-3776741931-1001\...\Firefox\Extensions: [helper-sig@savefrom.net] - C:\Users\afers\AppData\Roaming\Mozilla\Firefox\Profiles\ueiqg4lp.default-1490419739095\extensions\staged\helper-sig@savefrom.net.xpi => non trouvé(e) FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-20] (Adobe Inc. -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-20] (Adobe Inc. -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Pas de fichier] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: questrade.com/QuestradeIQEdgeDetector -> C:\Program Files (x86)\Questrade IQ Edge\npQuestradeIQEdgeDetector.dll [2019-12-18] (Questrade Inc) [Fichier non signé] FF Plugin HKU\S-1-5-21-2032608331-1222864265-3776741931-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\afers\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-10-17] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FF Plugin HKU\S-1-5-21-2032608331-1222864265-3776741931-1001: tdameritrade.com/thinkorswim -> C:\Users\afers\AppData\Local\thinkorswim\npthinkorswim.dll [2019-10-31] (TD Ameritrade -> TD Ameritrade) FF Plugin HKU\S-1-5-21-2032608331-1222864265-3776741931-1001: tdameritrade.com/tossc -> C:\Users\afers\AppData\Local\thinkorswim\nptossc.dll [2019-10-31] (TD Ameritrade -> TD Ameritrade) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-02-07] Chrome: ======= CHR Profile: C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default [2020-03-29] CHR Notifications: Default -> hxxps://www.facebook.com CHR Extension: (Slides) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-28] CHR Extension: (Docs) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-28] CHR Extension: (Google Drive) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-24] CHR Extension: (YouTube) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-24] CHR Extension: (Sheets) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-28] CHR Extension: (Google Docs hors connexion) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-28] CHR Extension: (Grammarly for Chrome) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-03-28] CHR Extension: (MeddleMonkey) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\moihledlmchhofenpacbhphnbnpakgmo [2020-03-28] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-29] CHR Extension: (Gmail) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-03-29] CHR Extension: (Chrome Media Router) - C:\Users\afers\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-29] CHR HKU\S-1-5-21-2032608331-1222864265-3776741931-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [moihledlmchhofenpacbhphnbnpakgmo] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY SOLUTIONS LIMITED -> ABBYY) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-04-27] (Apple Inc. -> Apple Inc.) R2 bfs; C:\Bruker\Diskless\WinApp\bfsd.exe [113152 2009-12-31] () [Fichier non signé] S2 bootparam; C:\Bruker\Diskless\WinApp\rpc.bootparamd.exe [120320 2009-08-31] () [Fichier non signé] S2 Bruker Dhcp Server; C:\Bruker\Diskless\tftpboot\dhcpd.exe [544256 2017-04-04] () [Fichier non signé] R2 Bruker FLEXlm License Server; C:\flexlm\Bruker\srvany.exe [13312 1996-08-30] () [Fichier non signé] R2 DriverMFTService; C:\Program Files (x86)\Asus\PixelMaster Video HDR\DriverMFTService.exe [20992 2015-05-19] (ASUSTek Computer Inc.) [Fichier non signé] R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2358784 2020-03-20] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2358784 2020-03-20] (ESET, spol. s r.o. -> ESET) R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [532968 2018-09-03] (Intel Corporation -> Intel Corporation) R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [483808 2018-09-03] (ICEpower a/s -> ICEpower a/s) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel(R) pGFX -> Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [743728 2017-11-08] (Intel(R) Trust Services -> Intel(R) Corporation) S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé] S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [720184 2017-11-08] (Intel(R) Trust Services -> Intel(R) Corporation) R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [213648 2017-11-22] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-29] (Malwarebytes Inc -> Malwarebytes) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268968 2018-02-07] (Intel(R) Wireless Connectivity Solutions -> ) R2 NovabenchService; C:\Program Files\Novawave\Novabench\NovabenchService.exe [330288 2018-10-06] (Novawave Inc. -> Novawave Inc.) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2017-02-04] (Even Balance, Inc. -> ) R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [103736 2017-02-04] (Even Balance, Inc. -> ) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> ) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 ufcsvc_on_c__acd2018lsm; C:\ACD2018LSM\ufcsvc.exe [1781504 2017-02-03] (Advanced Chemistry Development, Inc -> Advanced Chemistry Development Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-18] (Microsoft Corporation -> Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3851432 2018-02-07] (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) S2 Bruker tftpd32; C:\Bruker\Diskless\tftpboot\tftpd.exe -v -s -a 149.236.99.1 "C:\Bruker\Diskless\tftpboot" S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [X] R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [101368 2016-08-17] (ASUSTeK Computer Inc. -> ASUS Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2018-09-03] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-04] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-04] (Disc Soft Ltd -> Disc Soft Ltd) R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [154328 2020-03-20] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106840 2020-03-20] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188872 2020-03-20] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [115960 2020-03-20] (ESET, spol. s r.o. -> ESET) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-03-29] (Malwarebytes Corporation -> Malwarebytes) R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [31816 2018-09-03] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-09-03] (Martin Malik - REALiX -> REALiX(tm)) R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-09-03] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-25] (Intel(R) Software -> Intel Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-03-29] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-03-29] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-03-29] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-03-29] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-03-29] (Malwarebytes Inc -> Malwarebytes) R3 necbatt; C:\WINDOWS\System32\drivers\necbatt.sys [37240 2018-09-09] (NEC Personal Computers, Ltd. -> NEC Personal Computers, Ltd.) R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3521016 2019-04-29] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) R3 NovabenchDriver; C:\Program Files\Novawave\Novabench\NovabenchDriverWin10.sys [28216 2018-03-28] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_856ec29e64962cfb\nvlddmkm.sys [23439080 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1139424 2018-09-03] (Realtek Semiconductor Corp. -> Realtek ) R3 RTSPER; C:\WINDOWS\System32\drivers\RtsPer.sys [887240 2018-10-15] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] (Intel(R) Code Signing External -> ) R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2018-09-03] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2017-03-02] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) =================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-03-29 14:30 - 2020-03-29 14:32 - 000000000 ____D C:\FRST 2020-03-29 14:21 - 2020-03-29 14:21 - 000000000 ____D C:\Users\afers\AppData\Local\ZHP 2020-03-29 14:19 - 2020-03-29 14:31 - 000000000 ____D C:\Users\afers\Desktop\Software safety 2020-03-29 14:06 - 2020-03-29 14:12 - 000000000 ____D C:\Users\afers\AppData\LocalLow\IGDump 2020-03-29 14:06 - 2020-03-29 14:06 - 000000000 ____D C:\Users\afers\AppData\Local\cache 2020-03-29 14:05 - 2020-03-29 14:05 - 000000000 ____D C:\Users\afers\AppData\Local\mbamtray 2020-03-29 14:05 - 2020-03-29 14:05 - 000000000 ____D C:\Users\afers\AppData\Local\mbam 2020-03-29 14:04 - 2020-03-29 14:03 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-03-29 14:02 - 2020-03-29 14:02 - 000000004 ____H C:\ProgramData\cm-lock 2020-03-29 13:43 - 2020-03-29 13:43 - 011112471 _____ C:\Users\afers\Desktop\Install_Win10_10039_03232020.zip 2020-03-29 13:42 - 2020-03-29 13:46 - 297814874 _____ C:\Users\afers\Desktop\Realtek_High_Definition_Audio_6.0.1.8454.zip 2020-03-29 13:42 - 2020-03-29 13:42 - 208533416 _____ (Intel) C:\Users\afers\Desktop\win64_15.40.45.5126.exe 2020-03-29 13:42 - 2020-03-29 13:42 - 027606800 _____ (Intel(R) Corporation) C:\Users\afers\Desktop\WiFi_21.10.1_Driver64_Win10.exe 2020-03-29 13:32 - 2020-03-29 13:33 - 001624440 _____ (Tous Les Drivers) C:\Users\afers\Downloads\Mes_Drivers_3.0.4(1).exe 2020-03-29 00:01 - 2020-03-29 00:01 - 000255320 _____ (Asurvio, LP) C:\Users\afers\Downloads\DSOne.exe 2020-03-28 23:56 - 2020-03-28 23:56 - 000001046 _____ C:\Users\Public\Desktop\DriversCloud.com - Start the detection.lnk 2020-03-28 23:56 - 2020-03-28 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com 2020-03-28 23:56 - 2020-03-28 23:56 - 000000000 ____D C:\Program Files\DriversCloud.com 2020-03-28 21:55 - 2020-03-28 21:55 - 000001385 _____ C:\Users\Public\Desktop\Skype.lnk 2020-03-28 21:55 - 2020-03-28 21:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2020-03-28 21:54 - 2020-03-28 21:54 - 070011112 _____ (Skype Technologies S.A.) C:\Users\afers\Downloads\Skype-8.58.0.93.exe 2020-03-28 16:04 - 2020-03-29 13:10 - 000000000 ____D C:\Users\afers\AppData\Roaming\discord 2020-03-28 16:04 - 2020-03-28 16:04 - 000002239 _____ C:\Users\afers\Desktop\Discord.lnk 2020-03-28 16:04 - 2020-03-28 16:04 - 000000000 ____D C:\Users\afers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-03-28 16:04 - 2020-03-28 16:04 - 000000000 ____D C:\Users\afers\AppData\Local\Discord 2020-03-28 16:03 - 2020-03-28 16:04 - 000000000 ____D C:\Users\afers\AppData\Local\SquirrelTemp 2020-03-28 16:03 - 2020-03-28 16:03 - 062620472 _____ (Discord Inc.) C:\Users\afers\Downloads\DiscordSetup.exe 2020-03-28 15:50 - 2020-03-28 15:50 - 000000000 ____D C:\Users\afers\Desktop\Age of Empires II 2020-03-28 15:49 - 2020-03-28 15:49 - 215195600 _____ C:\Users\afers\Downloads\Age of Empires II.zip 2020-03-28 14:34 - 2020-03-28 14:34 - 000000000 ____H C:\Users\afers\Desktop\~WRL1436.tmp 2020-03-27 18:59 - 2020-03-27 18:59 - 000001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novabench.lnk 2020-03-27 18:59 - 2020-03-27 18:59 - 000000000 ____D C:\Users\afers\AppData\Roaming\Novabench 2020-03-27 18:59 - 2020-03-27 18:59 - 000000000 ____D C:\Users\afers\AppData\Local\Novabench 2020-03-27 18:59 - 2020-03-27 18:59 - 000000000 ____D C:\ProgramData\Novabench 2020-03-27 18:59 - 2020-03-27 18:59 - 000000000 ____D C:\Program Files\Novawave 2020-03-27 18:56 - 2020-03-27 18:57 - 097783808 _____ C:\Users\afers\Downloads\novabench.msi 2020-03-27 18:37 - 2017-08-28 10:05 - 000094812 _____ C:\Users\afers\Desktop\Lindel et al. - 1997 - Eleutherobin, a new cytotoxin that mimics paclitaxel (Taxol) by stabilizing microtubules.pdf 2020-03-27 16:08 - 2020-03-27 16:48 - 000126928 _____ C:\Users\afers\Desktop\Thesis Molecules book by book.cdx 2020-03-26 12:45 - 2019-03-18 15:20 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll 2020-03-26 12:45 - 2019-03-18 15:19 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll 2020-03-26 12:45 - 2019-03-18 15:07 - 006359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll 2020-03-26 12:45 - 2019-03-18 15:01 - 005496832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll 2020-03-25 20:00 - 2020-03-25 12:40 - 000000000 ___HD C:\$SysReset 2020-03-25 19:31 - 2020-03-25 19:31 - 000106496 _____ (PCGameBenchmark) C:\Users\afers\Downloads\PCGameBenchmark_Detector.exe 2020-03-25 19:17 - 2020-03-18 22:11 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-03-25 19:17 - 2020-03-18 22:11 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-03-25 19:17 - 2020-03-18 22:11 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-03-25 19:17 - 2020-03-18 22:11 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-03-25 19:17 - 2020-03-18 22:11 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-03-25 19:17 - 2020-03-18 22:11 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-03-25 19:17 - 2020-03-18 22:11 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-03-25 19:17 - 2020-03-18 22:11 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-03-25 19:17 - 2020-03-18 22:11 - 000450464 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-03-25 19:17 - 2020-03-18 22:10 - 011945072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2020-03-25 19:17 - 2020-03-18 22:10 - 010285680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2020-03-25 19:17 - 2020-03-18 00:51 - 000075600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys 2020-03-25 19:16 - 2020-03-18 22:10 - 000676448 _____ C:\WINDOWS\system32\nvofapi64.dll 2020-03-25 19:16 - 2020-03-18 22:10 - 000544352 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 017600912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 015157664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 005856656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 005158304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 002072992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 001723280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444575.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 001564904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 001483168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444575.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 001480936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 001351568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 001142176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 001049488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 000811424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 000679840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 000655264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2020-03-25 19:16 - 2020-03-18 22:09 - 000546720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2020-03-25 19:03 - 2020-03-25 19:03 - 000001449 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2020-03-25 19:03 - 2019-12-08 07:47 - 001321496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll 2020-03-25 19:02 - 2020-03-25 19:02 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-25 19:02 - 2020-03-25 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2020-03-25 19:02 - 2020-02-28 07:39 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2020-03-25 19:02 - 2019-12-08 07:47 - 002859872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2020-03-25 19:02 - 2019-12-08 07:47 - 002221064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2020-03-25 19:02 - 2019-12-07 07:21 - 000174560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2020-03-25 19:02 - 2019-12-07 07:21 - 000149472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2020-03-25 18:58 - 2019-04-17 00:42 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2020-03-25 18:10 - 2020-03-25 18:11 - 123065280 _____ (NVIDIA Corporation New) C:\Users\afers\Downloads\GeForce_Experience_v3.20.2.34.exe 2020-03-25 12:40 - 2020-03-25 12:42 - 000000000 ____D C:\$Windows.~BT 2020-03-24 15:08 - 2020-03-24 15:08 - 000367062 _____ C:\Users\afers\Downloads\ja9823870.pdf 2020-03-24 11:32 - 2020-03-24 11:32 - 000849619 _____ C:\Users\afers\Downloads\anie.199725201(1).pdf 2020-03-24 11:29 - 2020-03-24 11:29 - 000849619 _____ C:\Users\afers\Downloads\anie.199725201.pdf 2020-03-24 11:29 - 2020-03-24 11:29 - 000144069 _____ C:\Users\afers\Downloads\ja9810639.pdf 2020-03-24 10:54 - 2020-03-24 11:22 - 071369158 _____ C:\Users\afers\Downloads\(Horwood Chemical Science Series) Timothy J Mason, Dietmar Peters - Practical Sonochemistry_ Power Ultrasound Uses and Applications-Woodhead Publishing (2002).pdf 2020-03-20 16:51 - 2020-03-20 16:51 - 001255288 _____ C:\Users\afers\Downloads\1111.full.pdf 2020-03-17 19:01 - 2020-03-25 19:43 - 000000000 ____D C:\Program Files (x86)\SpeedFan 2020-03-17 19:01 - 2020-03-17 19:01 - 000001082 _____ C:\Users\afers\Desktop\SpeedFan.lnk 2020-03-17 19:01 - 2020-03-17 19:01 - 000000000 ____D C:\Users\afers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan 2020-03-17 19:00 - 2020-03-17 19:00 - 003086696 _____ C:\Users\afers\Downloads\instspeedfan452.exe 2020-03-13 11:21 - 2020-03-20 13:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2020-03-12 13:02 - 2020-03-12 13:02 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-03-12 13:02 - 2020-03-12 13:02 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-03-12 13:02 - 2020-03-12 13:02 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-03-12 13:02 - 2020-03-12 13:02 - 006520776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-03-12 13:02 - 2020-03-12 13:02 - 004563416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-03-12 13:02 - 2020-03-12 13:02 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-03-12 13:02 - 2020-03-12 13:02 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-03-12 13:02 - 2020-03-12 13:02 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-03-12 13:02 - 2020-03-12 13:02 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2020-03-12 13:02 - 2020-03-12 13:02 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-03-12 13:02 - 2020-03-12 13:02 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2020-03-11 14:25 - 2020-03-11 14:25 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 018027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 011607552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 004855808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 004580352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 004129648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 003819520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 003488768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 003243296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 002956688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-03-11 14:25 - 2020-03-11 14:25 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 002315680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 002072664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001867816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001770552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001490640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001108040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000757632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2020-03-11 14:25 - 2020-03-11 14:25 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacEncoder.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacEncoder.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe 2020-03-11 14:25 - 2020-03-11 14:25 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe 2020-03-11 14:25 - 2020-03-11 14:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe 2020-03-11 14:25 - 2020-03-11 14:25 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys 2020-03-11 14:25 - 2020-03-11 14:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-03-11 14:25 - 2020-03-11 14:25 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe 2020-03-11 14:24 - 2020-03-11 14:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-03-11 14:24 - 2020-03-11 14:24 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 006084344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 005112832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 003971808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 003799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 002875904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 002773568 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002768440 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002740736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002698040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002259872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002087376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 002021888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001999952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001985104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001684992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001665416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001484600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-03-11 14:24 - 2020-03-11 14:24 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001218632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 001190912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001054376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001031680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 001007672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000983896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000935040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000929144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000877232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000776488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000769552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000734720 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000668296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000627216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000478792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-03-11 14:24 - 2020-03-11 14:24 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2020-03-11 14:24 - 2020-03-11 14:24 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000213984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000165504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000133944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000120560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000102760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000098104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000042336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys 2020-03-11 14:24 - 2020-03-11 14:24 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe 2020-03-11 14:24 - 2020-03-11 14:24 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-03-11 14:24 - 2020-03-11 14:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-03-11 14:23 - 2020-03-11 14:24 - 003371720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 007905784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 006436352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 004622280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 004471296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 004048896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 003728896 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 003587896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 003552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 003260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 003143168 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 002715648 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 002522112 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 002474496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001972536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001823232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-03-11 14:23 - 2020-03-11 14:23 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001657120 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 001396152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-03-11 14:23 - 2020-03-11 14:23 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000945384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000908504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000833616 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000642216 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2020-03-11 14:23 - 2020-03-11 14:23 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2020-03-11 14:23 - 2020-03-11 14:23 - 000522384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Acx01000.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000306696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000250896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000224056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000222520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000180232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2020-03-11 14:23 - 2020-03-11 14:23 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000089616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000066336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000056632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS 2020-03-11 14:23 - 2020-03-11 14:23 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000030008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys 2020-03-11 14:23 - 2020-03-11 14:23 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe 2020-03-11 14:23 - 2020-03-11 14:23 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll 2020-03-11 14:23 - 2020-03-11 14:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUserRes.dll 2020-03-11 14:05 - 2020-03-11 14:06 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-03-11 14:05 - 2020-03-11 14:06 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-03-02 12:06 - 2020-03-02 12:07 - 019153255 _____ C:\Users\afers\Downloads\ja4121814_si_001.pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-03-29 14:32 - 2019-03-18 21:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-03-29 14:25 - 2019-04-02 11:10 - 000000068 __RSH C:\WINDOWS\system32\Drivers\WUDFRd.winsecurity 2020-03-29 14:24 - 2017-02-20 09:42 - 000000000 ____D C:\Users\afers\AppData\Roaming\ZHP 2020-03-29 14:17 - 2017-07-25 09:02 - 000000000 ____D C:\ProgramData\NVIDIA 2020-03-29 14:17 - 2016-11-16 00:48 - 000000000 ____D C:\Users\afers\AppData\LocalLow\Mozilla 2020-03-29 14:09 - 2019-08-08 11:29 - 001773226 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-03-29 14:09 - 2019-03-19 05:00 - 000793190 _____ C:\WINDOWS\system32\perfh00C.dat 2020-03-29 14:09 - 2019-03-19 05:00 - 000150222 _____ C:\WINDOWS\system32\perfc00C.dat 2020-03-29 14:09 - 2019-03-18 21:50 - 000000000 ____D C:\WINDOWS\INF 2020-03-29 14:09 - 2015-10-23 09:40 - 000000000 ____D C:\ProgramData\Package Cache 2020-03-29 14:06 - 2017-03-17 10:28 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2020-03-29 14:06 - 2017-03-17 10:28 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2020-03-29 14:06 - 2017-03-17 10:28 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2020-03-29 14:05 - 2017-03-17 10:28 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-03-29 14:04 - 2019-03-18 21:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-03-29 14:04 - 2017-07-25 09:02 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2020-03-29 14:04 - 2017-03-17 10:27 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-03-29 14:04 - 2015-12-25 14:21 - 000000000 __SHD C:\Users\afers\IntelGraphicsProfiles 2020-03-29 14:03 - 2017-03-17 10:27 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-03-29 14:02 - 2019-08-08 11:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-03-29 14:02 - 2019-04-02 11:10 - 000000068 __RSH C:\WINDOWS\system32\Drivers\WUDFPf.winsecurity 2020-03-29 14:02 - 2019-03-18 21:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-03-29 13:55 - 2018-09-03 12:05 - 000000000 ____D C:\Users\afers\AppData\Roaming\IObit 2020-03-29 13:55 - 2017-07-25 09:03 - 000000000 ____D C:\Program Files (x86)\ASUS 2020-03-29 13:55 - 2015-12-25 14:16 - 000000000 ____D C:\ProgramData\ASUS 2020-03-29 13:53 - 2017-03-17 10:19 - 000000000 ____D C:\AdwCleaner 2020-03-29 13:47 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-03-29 13:13 - 2019-03-18 21:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-03-29 13:12 - 2019-08-08 11:18 - 000000000 ____D C:\Users\afers 2020-03-29 13:06 - 2019-08-08 11:08 - 000455248 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-03-29 13:06 - 2019-08-08 11:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-03-29 00:04 - 2015-12-25 15:31 - 000000000 ____D C:\Users\afers\AppData\Local\ElevatedDiagnostics 2020-03-28 23:56 - 2017-02-20 23:02 - 000000000 ____D C:\ProgramData\DriversCloud.com 2020-03-28 13:14 - 2017-12-01 08:59 - 000000000 ____D C:\Users\afers\AppData\Local\Packages 2020-03-27 19:02 - 2016-07-13 10:26 - 000000000 ____D C:\Users\afers\AppData\Local\CrashDumps 2020-03-27 15:35 - 2019-03-18 21:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-03-27 11:21 - 2017-02-19 21:24 - 000007621 _____ C:\Users\afers\AppData\Local\Resmon.ResmonCfg 2020-03-27 11:12 - 2017-02-13 00:20 - 000000000 ____D C:\Program Files (x86)\Steam 2020-03-26 12:59 - 2017-07-25 09:02 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2020-03-26 12:45 - 2019-03-19 05:02 - 000000000 ____D C:\WINDOWS\OCR 2020-03-25 19:19 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\Help 2020-03-25 19:19 - 2018-06-15 16:14 - 000000000 ____D C:\Users\afers\AppData\Local\D3DSCache 2020-03-25 19:19 - 2017-07-25 09:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2020-03-25 19:19 - 2017-07-25 09:02 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2020-03-25 19:03 - 2016-04-10 07:41 - 000000000 ____D C:\Users\afers\AppData\Local\NVIDIA Corporation 2020-03-25 18:31 - 2019-08-08 11:38 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-03-25 18:17 - 2019-03-19 05:02 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2020-03-25 18:17 - 2019-03-19 05:02 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2020-03-25 18:17 - 2019-03-19 05:00 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2020-03-25 18:17 - 2019-03-19 05:00 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2020-03-25 18:17 - 2019-03-19 05:00 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2020-03-25 18:17 - 2019-03-19 05:00 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2020-03-25 18:17 - 2019-03-19 05:00 - 000000000 ____D C:\WINDOWS\system32\winrm 2020-03-25 18:17 - 2019-03-19 05:00 - 000000000 ____D C:\WINDOWS\system32\WCN 2020-03-25 18:17 - 2019-03-19 05:00 - 000000000 ____D C:\WINDOWS\system32\slmgr 2020-03-25 18:17 - 2019-03-19 05:00 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ___SD C:\WINDOWS\system32\F12 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ___SD C:\WINDOWS\system32\dsc 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ____D C:\Program Files\Windows Defender 2020-03-25 18:17 - 2019-03-18 21:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2020-03-25 18:17 - 2019-03-18 21:37 - 000000000 ____D C:\WINDOWS\servicing 2020-03-25 18:02 - 2018-01-09 17:16 - 000000000 ____D C:\Users\afers\AppData\Local\PlaceholderTileLogoFolder 2020-03-25 15:08 - 2020-02-24 10:01 - 000000000 ____D C:\WINDOWS\Minidump 2020-03-25 15:08 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-03-25 15:05 - 2016-02-17 09:40 - 000000000 ____D C:\Users\afers\Anthony 2020-03-20 14:18 - 2019-08-08 11:38 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2020-03-20 14:17 - 2017-04-13 23:26 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-03-20 14:12 - 2017-12-06 09:49 - 000000000 ____D C:\Program Files (x86)\Mendeley Desktop 2020-03-20 13:31 - 2016-10-04 07:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-03-20 13:27 - 2017-05-24 22:04 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-03-20 13:21 - 2019-08-08 11:38 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-03-20 13:21 - 2019-08-08 11:38 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-03-20 13:20 - 2018-01-08 19:58 - 000115960 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys 2020-03-20 13:20 - 2017-11-30 11:50 - 000188872 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys 2020-03-20 13:20 - 2017-11-30 11:50 - 000154328 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys 2020-03-20 13:20 - 2017-11-30 11:50 - 000106840 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys 2020-03-18 22:11 - 2019-08-08 11:13 - 000348048 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-03-18 19:06 - 2018-04-03 20:59 - 004927048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2020-03-18 19:05 - 2018-04-03 20:59 - 004196160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2020-03-18 00:51 - 2018-04-03 20:59 - 000056618 _____ C:\WINDOWS\system32\nvinfo.pb 2020-03-17 21:00 - 2017-07-25 09:02 - 005581800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2020-03-17 21:00 - 2017-07-25 09:02 - 002632680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2020-03-17 21:00 - 2017-07-25 09:02 - 001759216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2020-03-17 21:00 - 2017-07-25 09:02 - 001172464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2020-03-17 21:00 - 2017-07-25 09:02 - 000446264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2020-03-17 21:00 - 2017-07-25 09:02 - 000121144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2020-03-17 21:00 - 2017-07-25 09:02 - 000074736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2020-03-17 19:01 - 2017-02-18 00:20 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo 2020-03-15 23:39 - 2017-07-25 09:02 - 008997147 _____ C:\WINDOWS\system32\nvcoproc.bin 2020-03-13 18:30 - 2016-10-04 07:15 - 000001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-03-12 19:25 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-03-12 19:25 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-03-12 09:31 - 2017-12-01 09:19 - 000000000 ___RD C:\Users\afers\3D Objects 2020-03-12 09:31 - 2015-10-23 09:38 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-03-11 18:44 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-03-11 18:44 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-03-11 18:44 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-03-11 18:44 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\setup 2020-03-11 18:44 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-03-11 18:44 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-03-11 14:36 - 2016-01-04 03:59 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-03-11 14:32 - 2016-01-04 03:59 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-03-11 14:31 - 2015-12-25 11:47 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2020-03-06 13:59 - 2018-08-01 12:07 - 000000000 ____D C:\Users\afers\AppData\Roaming\Questrade 2020-03-04 11:45 - 2016-09-23 02:58 - 000000000 ____D C:\Program Files\CCleaner ==================== Fichiers à la racine de certains dossiers ======== 2017-02-20 14:05 - 2017-02-20 14:05 - 002698240 _____ () C:\Users\afers\ZHPDiag3.exe 2019-06-27 11:42 - 2020-03-08 18:38 - 000057418 _____ () C:\Users\afers\AppData\Local\CDXLExtendedShim.log 2017-02-19 21:24 - 2020-03-27 11:21 - 000007621 _____ () C:\Users\afers\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================