Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-11-2023 02 Ran by twister30 (27-11-2023 17:43:22) Running from C:\Users\twister30\Desktop\barrow-aaikokïk-vil 6 suite v1\Tech tool store tools Microsoft Windows 8.1 (Update) (X64) (2023-10-13 16:18:36) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= (If an entry is included in the fixlist, it will be removed.) Administrator (S-1-5-21-1104844665-821516771-4157366267-500 - Administrator - Disabled) Guest (S-1-5-21-1104844665-821516771-4157366267-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1104844665-821516771-4157366267-1003 - Limited - Enabled) twister30 (S-1-5-21-1104844665-821516771-4157366267-1001 - Administrator - Enabled) => C:\Users\twister30 ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) ¾Ë¸¶Àεå 1.91 (HKLM-x32\...\ALMind_is1) (Version: 1.91 - ESTsoft Corp.) 4DDiG Duplicate File Deleter 2.5.1.14 (HKLM\...\{Tenorshare Duplicate File Deleter}_is1) (Version: 2.5.1.14 - Tenorshare, Inc.) 4uKey - iTunes Backup 5.2.30.0 (HKLM-x32\...\{Tenorshare 4uKey - iTunes Backup}_is1) (Version: 5.2.30.0 - Tenorshare, Inc.) 7-Zip 23.01 (x64) (HKLM\...\7-Zip) (Version: 23.01 - Igor Pavlov) 8GadgetPack (HKLM-x32\...\{B6AF19AD-2D5B-44DC-9272-EC91965123E8}) (Version: 37.0.0 - 8GadgetPack.net) Absolute Uninstaller 5.3.1.49 (HKLM-x32\...\Absolute Uninstaller) (Version: 5.3.1.49 - Glarysoft Ltd) AceMovi Video Editor 4.20.0.163 (HKLM-x32\...\AceMovi Video Editor_is1) (Version: - AceMovi, Inc.) AceThinker Video Master V4.8.8.0 (HKLM-x32\...\{CDD36B59-DF4F-4401-92FF-0FF8417CDF4C}_is1) (Version: 4.8.8.0 - AceThinker) Adobe AIR (HKLM-x32\...\{6E78C9DF-BEDF-4EDB-A3B8-C956DD4B4E1B}) (Version: 50.2.4.1 - HARMAN International) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 50.2.4.1 - HARMAN International) Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.12 - Adobe Systems Incorporated) Advanced IP Scanner 2.5 (HKLM-x32\...\{8C4D9115-8CE7-4292-86BD-27540D62473B}) (Version: 2.5.3850 - Famatech) Advanced Renamer (HKLM\...\Advanced Renamer_is1) (Version: 3.88 - Hulubulu Software) AIDA64 Extreme v6.88 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.88 - FinalWire Ltd.) AIMP (HKLM-x32\...\AIMP) (Version: 5.11.2436 - Artem Izmaylov) Aiseesoft 4K Converter 9.2.50 (HKLM-x32\...\{E662AE17-AAF9-44db-B101-B395FB4DA342}_is1) (Version: 9.2.50 - Aiseesoft Studio) Aiseesoft Blu-ray Player 6.7.60 (HKLM-x32\...\{3E1A13C3-E458-4995-BEA6-4B9BE279D502}_is1) (Version: 6.7.60 - Aiseesoft Studio) Aiseesoft Data Recovery 1.6.12 (HKLM-x32\...\{E67DD0BA-233F-4EA9-B010-9B0A3D58F690}_is1) (Version: 1.6.12 - Aiseesoft Studio) Aiseesoft Total Video Converter 9.2.66 (HKLM-x32\...\{E09CEBAA-4435-4404-8D82-4C029F6391E4}_is1) (Version: 9.2.66 - Aiseesoft Studio) Aiseesoft Video Converter Ultimate 10.7.32 (HKLM-x32\...\{BD446D04-7426-4a27-9B0B-33B0C386F71B}_is1) (Version: 10.7.32 - Aiseesoft Studio) Aiseesoft Video Enhancer 9.2.58 (HKLM-x32\...\{0F8A1CB4-7F19-4fe9-A724-5F3DE1CB4513}_is1) (Version: 9.2.58 - Aiseesoft Studio) ALDrive (HKLM-x32\...\ALDrive_is1) (Version: 2.12 - ESTsoft Corp.) ALKeeper (HKLM-x32\...\ALKeeper_is1) (Version: 2.0 - ESTsoft Corp.) ALLPlayer version 8.9.6 (HKLM\...\{68972948-F221-4267-9EB6-2EB5D913C4CF}_is1) (Version: 8.9.6 - ALLPlayer Ltd.) ALTools Update (HKLM-x32\...\ALUpdate_is1) (Version: - ESTsoft Corp.) AnyMP4 Blu-ray Player 6.5.56 (HKLM-x32\...\{DF8BE739-832A-482a-8C75-FB9628A6BE6E}_is1) (Version: 6.5.56 - AnyMP4 Studio) AnyMP4 Blu-ray Ripper 8.0.97 (HKLM-x32\...\{24282023-D344-47f0-ABEA-C1734F1F291B}_is1) (Version: 8.0.97 - AnyMP4 Studio) AnyMP4 Data Recovery 1.3.8 (HKLM-x32\...\{4F8EFE48-C4A1-462B-B0E2-B2353A3C6BD3}_is1) (Version: 1.3.8 - AnyMP4 Studio) AnyMP4 DVD Copie 3.1.70 (HKLM-x32\...\{069020F5-973C-4b00-AA76-7246EB45B5A1}_is1) (Version: 3.1.70 - AnyMP4 Studio) AnyMP4 DVD Ripper 8.0.88 (HKLM-x32\...\{991684FE-29A2-4b20-8CD5-FFD2275FD2CD}_is1) (Version: 8.0.88 - AnyMP4 Studio) AnyMP4 MP4 Converter 7.2.32 (HKLM-x32\...\{116DCE20-DA28-44fb-9C04-DDE2AD05AC8C}_is1) (Version: 7.2.32 - AnyMP4 Studio) AnyMP4 Video Converter 7.2.56 (HKLM-x32\...\{91817EE6-0249-4bc0-AC18-8C8B75ED0ED2}_is1) (Version: 7.2.56 - AnyMP4 Studio) AnyMP4 Video Converter Ultimate 8.5.36 (HKLM-x32\...\{B77ACAAE-53EE-43c3-86F1-4AEA52F6CDD5}_is1) (Version: 8.5.36 - AnyMP4 Studio) AnyMP4 Video Enhancement 7.2.50 (HKLM-x32\...\{7A9F7D07-9A56-44cc-AC75-C0085959546D}_is1) (Version: 7.2.50 - AnyMP4 Studio) Apeaksoft DVD Creator 1.0.86 (HKLM-x32\...\{FD8E02C3-96DB-4FB7-BDA3-0CFD58CC29F3}_is1) (Version: 1.0.86 - Apeaksoft Studio) Apeaksoft PPT to Video Converter 1.0.6 (HKLM-x32\...\{3F0E7421-D38B-487A-9D9D-F74D6BEF574B}_is1) (Version: 1.0.6 - Apeaksoft Studio) Apeaksoft Slideshow Maker 1.0.50 (HKLM-x32\...\{67B78B88-868D-4D77-AB70-D08E09536BA9}_is1) (Version: 1.0.50 - Apeaksoft Studio) Apeaksoft Video Editor 1.0.38 (HKLM-x32\...\{2C7B4F1C-08D8-4BC5-AC21-52930D9D5BBE}_is1) (Version: 1.0.38 - Apeaksoft Studio) ApowerRescue V1.0.6 (HKLM-x32\...\{A0431605-D303-48EC-86E4-4E9570C44811}_is1) (Version: 1.0.6 - Apowersoft LIMITED) Apowersoft Photo Viewer V1.1.9 (HKLM-x32\...\{AA88C325-55DB-463A-801E-ED6929D0260E}_is1) (Version: 1.1.9 - APOWERSOFT LIMITED) AquaSnap 1.24.0 (HKLM-x32\...\{E2A55C30-414C-4E92-AE85-C382B9153030}) (Version: 1.24.0 - Nurgo Software) BCUninstaller (HKLM\...\{f4fef76c-1aa9-441c-af7e-d27f58d898d1}_is1) (Version: 5.7.0.0 - Marcin Szeniak) Catalyst Control Center - Branding (HKLM-x32\...\{25A3B953-1423-3F15-640E-B620DD0F419A}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) CCleaner (HKLM\...\CCleaner) (Version: 6.18 - Piriform) Comfort Clipboard Pro (HKLM-x32\...\{969568E5-5613-4BA5-8FA9-FB9023C9DE71}_is1) (Version: 9.5.0.0 - Comfort Software Group) CPUID CPU-Z 2.08 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.08 - CPUID, Inc.) CPUID HWMonitor 1.52 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.52 - CPUID, Inc.) CrystalDiskInfo 9.2.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 9.2.0 - Crystal Dew World) CrystalDiskMark 8.0.4c (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.4c - Crystal Dew World) CyberLink Power2Go 13 (HKLM-x32\...\{7BB5FFC9-EC40-47c7-B10A-E0E6A296074D}) (Version: 13.0.5318.0 - CyberLink Corp.) Edge Reset Button 1.00 (HKLM-x32\...\Edge Reset Button_is1) (Version: - Greatis Software, LLC.) EPSON WF-2760 Series Printer Uninstall (HKLM\...\EPSON WF-2760 Series) (Version: - Seiko Epson Corporation) Everything 1.4.1.1024 (x64) (HKLM\...\Everything) (Version: 1.4.1.1024 - voidtools) f.lux (HKU\S-1-5-21-1104844665-821516771-4157366267-1001\...\Flux) (Version: 4.126 - f.lux Software LLC) FastCopy (HKU\S-1-5-21-1104844665-821516771-4157366267-1001\...\FastCopy) (Version: 5.4.2 - H.Shirouzu & FastCopy Lab, LLC.) FlexiServer – Logiciel de productivité et de suivi de la présence (HKLM-x32\...\FlexiServer) (Version: 7.04 - NCH Software) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.168 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) HD Tune Pro 5.75 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) HWiNFO64 (HKLM\...\HWiNFO64_is1) (Version: 7.66 - Martin Malik, REALiX s.r.o.) IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 6.3.0.15 - IObit) iTop Easy Desktop (HKLM-x32\...\iTop Easy Desktop_is1) (Version: 2.2.1.18 - iTop Inc.) iTop Screen Recorder (HKLM-x32\...\iTop Screen Recorder_is1) (Version: 4.3.0.1275 - iTop Inc.) iTop VPN (HKLM-x32\...\iTop VPN_is1) (Version: 5.1.0.4953 - iTop Inc.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.140 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.140 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (HKLM-x32\...\{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}) (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (HKLM-x32\...\{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}) (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden Music Center for PC (HKLM-x32\...\{A75B1CD2-FF6C-450B-A833-1F34BCC80437}) (Version: 2.6.0.03030 - Sony Corporation) Music Recorder 1.1.6 (HKLM-x32\...\{4A036460-D889-4D74-AAD4-08AA8FFE2B5E}_is1) (Version: 1.1.6 - AceThinker) NZXT CAM 4.58.1 (HKLM\...\ac0666ae-ee66-5310-ac01-9d6348133b2d) (Version: 4.58.1 - NZXT, Inc.) Open-Shell (HKLM\...\{FA86549E-94DD-4475-8EDC-504B6882E1F7}) (Version: 4.4.191 - The Open-Shell Team) Opera Stable 95.0.4635.90 (HKU\S-1-5-21-1104844665-821516771-4157366267-1001\...\Opera 95.0.4635.90) (Version: 95.0.4635.90 - Opera Software) Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 12.4.2.44 - Bitsum) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.) Super bateau-école 3D (version de démonstration) (HKLM-x32\...\Super bateau-école 3D (version de démonstration)_is1) (Version: - Anuman Interactive) TeraCopy (HKLM\...\{814A9D93-2A41-4A6A-AD60-36651434AF1F}) (Version: 3.12 - Code Sector) TreeSize Free V4.7.1 (64 bit) (HKLM\...\TreeSize Free_is1) (Version: 4.7.1 - JAM Software) UCheck version 5.0.0.0 (HKLM\...\C4E7EE54-826F-41C4-BE3C-375CC70DC1D8_is1) (Version: 5.0.0.0 - Adlice Software) WinDirStat 1.1.2 (HKU\S-1-5-21-1104844665-821516771-4157366267-1001\...\WinDirStat) (Version: - ) 알PDF 3.10 (HKLM-x32\...\ALPDF_is1) (Version: 3.10 - ESTsoft Corp.) 알매니저 (HKLM-x32\...\ALToolsManager_is1) (Version: 1.2 - ESTsoft Corp.) 알송 3.52 (HKLM-x32\...\ALSong_is1) (Version: 3.52 - ESTsoft Corp.) 알씨 9.27 (HKLM-x32\...\ALSee_is1) (Version: 9.27 - ESTsoft Corp.) 알집 12.20 (HKLM-x32\...\ALZip_is1) (Version: 12.20 - ESTsoft Corp.) 알캡처 3.10 (HKLM-x32\...\ALCapture_is1) (Version: 3.10 - ESTsoft Corp.) Packages: ========= Games -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] MSN Actualité -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.213_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.212_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] MSN Food & Drink -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.212_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] MSN Santé & Forme -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.212_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.212_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] MSN Travel -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.212_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.214_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] Music -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.320.0_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5c [2014-11-21] (Skype) [MS Ad] Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.344.0_x64__8wekyb3d8bbwe [2014-11-21] (Microsoft Corporation) [MS Ad] ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2023-08-16] (Open-Shell) [File not signed] ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2023-08-16] (Open-Shell) [File not signed] ContextMenuHandlers1: [ {E1403226-8785-4BCC-88F5-815DB04D2822}] -> {E1403226-8785-4BCC-88F5-815DB04D2822} => C:\Program Files\Common Files\Aiseesoft Studio\Aiseesoft Video Converter Ultimate Shell Extension.dll [2023-11-16] (RayShare Co., Ltd -> Aiseesoft Studio) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed] ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2023-11-26] (IP Izmaylov Artem Andreevich -> AIMP DevTeam) ContextMenuHandlers1: [ALPDF.ContextMenu] -> {d3a4abe0-0fbd-4ae8-9de5-195028aca9ad} => C:\Program Files\Common Files\ESTsoft\ALPDF\Shell Extensions\PEShellContextMenu4.exe [2023-10-11] (Wondershare Technology Group Co.,Ltd -> ESTsoft) ContextMenuHandlers1: [ALSee] -> {F4E6147B-C1F0-44AC-80EE-CE12622E421C} => C:\Program Files (x86)\ESTsoft\ALSee\ASSHLExt926_64.dll [2023-08-25] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers1: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2023-11-13] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers1: [CLVDShellExt13] -> {19476CE9-8B19-4EA5-A6FD-5BB11832C0EA} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt13.dll [2023-07-03] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers1: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\Program Files\iTop Easy Desktop\IEDMenu.dll [2023-10-30] (ORANGE VIEW LIMITED -> iTop Inc.) ContextMenuHandlers1: [TeraCopy] -> {2386CB87-96FF-473D-A009-957E3BFE6F88} => C:\Program Files\TeraCopy\Context.dll [2021-04-21] (Code Sector -> Code Sector) ContextMenuHandlers2: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2023-11-13] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers2: [CLVDShellExt13] -> {19476CE9-8B19-4EA5-A6FD-5BB11832C0EA} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt13.dll [2023-07-03] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers2: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\Program Files\iTop Easy Desktop\IEDMenu.dll [2023-10-30] (ORANGE VIEW LIMITED -> iTop Inc.) ContextMenuHandlers2: [TeraCopy] -> {2386CB87-96FF-473D-A009-957E3BFE6F88} => C:\Program Files\TeraCopy\Context.dll [2021-04-21] (Code Sector -> Code Sector) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed] ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2023-11-26] (IP Izmaylov Artem Andreevich -> AIMP DevTeam) ContextMenuHandlers4: [ALSee] -> {F4E6147B-C1F0-44AC-80EE-CE12622E421C} => C:\Program Files (x86)\ESTsoft\ALSee\ASSHLExt926_64.dll [2023-08-25] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers4: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2023-11-13] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers4: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\Program Files\iTop Easy Desktop\IEDMenu.dll [2023-10-30] (ORANGE VIEW LIMITED -> iTop Inc.) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-06-02] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) ContextMenuHandlers4: [TeraCopy] -> {2386CB87-96FF-473D-A009-957E3BFE6F88} => C:\Program Files\TeraCopy\Context.dll [2021-04-21] (Code Sector -> Code Sector) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2014-07-04] (Advanced Micro Devices, Inc.) [File not signed] ContextMenuHandlers5: [ALSee] -> {F4E6147B-C1F0-44AC-80EE-CE12622E421C} => C:\Program Files (x86)\ESTsoft\ALSee\ASSHLExt926_64.dll [2023-08-25] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2023-11-13] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers5: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\Program Files\iTop Easy Desktop\IEDMenu.dll [2023-10-30] (ORANGE VIEW LIMITED -> iTop Inc.) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed] ContextMenuHandlers6: [ALSee] -> {F4E6147B-C1F0-44AC-80EE-CE12622E421C} => C:\Program Files (x86)\ESTsoft\ALSee\ASSHLExt926_64.dll [2023-08-25] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers6: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2023-11-13] (ESTsoft Corp. -> ESTsoft Corp.) ContextMenuHandlers6: [iTop Desktop Manager] -> {609ED1DF-1540-4F2E-BAAC-C2C9CDB64C00} => C:\Program Files\iTop Easy Desktop\IEDMenu.dll [2023-10-30] (ORANGE VIEW LIMITED -> iTop Inc.) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-06-02] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\Windows\system32\StartMenuHelper64.dll [2023-08-16] (Open-Shell) [File not signed] ContextMenuHandlers6: [TeraCopy] -> {2386CB87-96FF-473D-A009-957E3BFE6F88} => C:\Program Files\TeraCopy\Context.dll [2021-04-21] (Code Sector -> Code Sector) ==================== Codecs (Whitelisted) ==================== ==================== Shortcuts & WMI ======================== ==================== Loaded Modules (Whitelisted) ============= 2014-07-21 21:04 - 2014-07-21 21:04 - 001144320 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\system32\atiadlxx.dll 2014-07-21 21:04 - 2014-07-21 21:04 - 001318552 _____ (AMD PMP-PE CB Code Signer v20140501 -> Advanced Micro Devices, Inc.) [File not signed] C:\Windows\system32\aticfx64.dll 2014-07-21 21:04 - 2014-07-21 21:04 - 009753752 _____ (AMD PMP-PE CB Code Signer v20140501 -> Advanced Micro Devices, Inc.) [File not signed] C:\Windows\system32\atidxx64.dll 2014-07-21 21:04 - 2014-07-21 21:04 - 000143304 _____ (AMD PMP-PE CB Code Signer v20140501 -> Advanced Micro Devices, Inc.) [File not signed] C:\Windows\SYSTEM32\atiuxp64.dll 2023-11-26 04:48 - 2023-06-20 09:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll 2023-11-24 17:31 - 2022-09-23 05:32 - 000522752 _____ (Microsoft Corporation) [File not signed] [File is in use] c:\windows\system32\es.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000679936 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000286208 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Internet Explorer\sqmapi.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000286208 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Windows Portable Devices\SqmApi.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000332800 _____ (Microsoft Corporation) [File not signed] C:\Windows\AppPatch\AcLayers.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000037376 _____ (Microsoft Corporation) [File not signed] C:\Windows\servicing\CbsApi.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000055808 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\acppage.dll 2023-11-24 17:24 - 2019-01-09 05:06 - 000894976 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Actioncenter.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000278528 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\ACTIVEDS.dll 2023-11-24 17:33 - 2022-07-12 22:59 - 002882048 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\actxprxy.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000251392 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\adsldpc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000142848 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\advpack.dll 2023-11-24 17:27 - 2020-08-10 01:04 - 000475136 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\AEPIC.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000118272 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\AltTab.dll 2023-11-24 17:27 - 2020-09-10 22:27 - 000564224 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\apphelp.dll 2023-11-24 17:26 - 2022-10-10 05:13 - 000110080 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\appinfo.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000163328 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\apprepapi.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000034816 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\appsruprov.dll 2023-11-24 17:24 - 2020-06-02 06:18 - 000109568 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ATL.DLL 2014-11-21 10:17 - 2014-11-21 10:17 - 000048128 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\atlthunk.dll 2023-11-24 17:29 - 2019-05-25 01:17 - 000230400 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\audioendpointbuilder.dll 2023-11-24 17:31 - 2019-06-15 16:22 - 000910848 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\audiosrv.dll 2023-11-24 17:31 - 2022-12-15 06:29 - 002778624 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\authui.dll 2023-11-24 17:23 - 2017-08-11 03:16 - 000275968 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\AUTHZ.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 002022912 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\BatMeter.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000397312 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\Bcp47Langs.dll 2023-11-24 17:31 - 2022-08-08 04:01 - 000845312 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\bfe.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000024064 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\bi.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000047616 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\bidispl.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000270336 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\bisrv.dll 2023-11-24 17:24 - 2022-07-12 23:00 - 000104960 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\BluetoothApis.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000133120 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\BrokerLib.dll 2023-11-24 17:23 - 2022-03-08 06:37 - 000058880 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\BROWCLI.DLL 2014-11-21 10:16 - 2014-11-21 10:16 - 000221184 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\bthprops.cpl 2014-11-21 10:15 - 2014-11-21 10:15 - 000024576 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\chkwudrv.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000432128 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\CLUSAPI.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000717312 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\comdlg32.dll 2023-11-24 17:26 - 2020-08-15 05:02 - 000121344 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\cryptcatsvc.dll 2023-11-24 17:25 - 2017-12-05 17:02 - 000186880 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\cryptnet.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000131584 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\cryptsvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000055296 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\cscapi.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000020480 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\CSystemEventsBrokerClient.dll 2023-11-24 16:41 - 2015-08-06 17:47 - 004710400 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\d2d1.dll 2023-11-24 17:26 - 2018-10-06 16:41 - 002465792 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\D3D10Warp.dll 2023-11-24 17:29 - 2019-02-12 04:48 - 000092672 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\DAB.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000013312 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\DABAPI.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000146432 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\dafupnp.dll 2023-11-24 17:24 - 2017-05-09 15:28 - 000193024 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\DAFWSD.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000407040 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\das.dll 2023-11-24 16:33 - 2015-07-01 23:16 - 000104448 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\davclnt.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000025600 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\DAVHLPR.dll 2023-11-24 17:26 - 2022-04-28 04:31 - 001491968 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dbghelp.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000102400 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\DevDispItemProvider.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000038912 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\deviceassociation.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000515072 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\DeviceCenter.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000034304 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\DeviceDriverRetrievalClient.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000206848 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\devicesetupmanager.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000517632 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\devmgr.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000122368 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\DevPropMgr.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000069632 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\DEVRTL.dll 2023-11-24 17:33 - 2022-09-20 06:54 - 000364032 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dhcpcore.dll 2023-11-24 17:33 - 2022-09-20 06:54 - 000269312 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\dhcpcore6.dll 2023-11-24 17:33 - 2022-09-20 06:54 - 000089088 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dhcpcsvc.DLL 2023-11-24 17:34 - 2022-09-20 06:54 - 000066048 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dhcpcsvc6.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 001540096 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\diagperf.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000390656 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\DIFXAPI.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000489472 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\dlnashext.dll 2023-11-24 17:33 - 2021-03-18 06:21 - 000656896 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\DNSAPI.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000013824 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\dnsext.dll 2023-11-24 17:33 - 2020-12-09 02:19 - 000252928 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dnsrslvr.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000015360 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\DPAPI.dll 2023-11-24 17:30 - 2021-12-30 05:56 - 000188928 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\dpapisrv.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000174080 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\dps.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000297984 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\drivers\UMDF\WpdFs.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000027648 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\drprov.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000744448 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\drvstore.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000120832 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\dskquota.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000037888 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\dtsh.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 001822720 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\DUI70.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000658944 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\DUser.dll 2023-11-24 17:33 - 2018-04-07 16:34 - 002255360 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\dwmcore.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000164352 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\dwmredir.dll 2023-11-24 17:33 - 2021-09-14 05:12 - 001995264 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\dwrite.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000463872 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\dxp.dll 2023-11-24 17:32 - 2022-06-18 05:48 - 000055296 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\efslsaext.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000207872 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\EhStorShell.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000070656 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\elscore.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000700928 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\ElsLad.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000053760 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\energyprov.dll 2023-11-24 17:28 - 2016-07-30 18:12 - 002896384 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ESENT.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000028160 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\EventAggregation.dll 2023-11-24 17:31 - 2018-06-11 17:36 - 003119616 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\explorerframe.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000022016 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\fdphost.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000052736 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fdPnp.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000075264 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fdproxy.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000034816 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\fdrespub.dll 2023-11-24 17:25 - 2020-10-15 04:26 - 000110080 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fdssdp.dll 2023-11-24 17:25 - 2020-09-24 04:18 - 000172032 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fdwsd.dll 2023-11-24 17:28 - 2021-01-09 19:56 - 000066048 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\fhlisten.dll 2023-11-24 17:32 - 2018-01-02 05:29 - 000754176 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\FirewallAPI.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000019968 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\fltLib.dll 2023-11-24 17:33 - 2021-09-14 04:59 - 001384960 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\fntcache.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000849408 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\fontext.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000320512 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\framedynos.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000157696 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\FunDisc.dll 2023-11-24 17:30 - 2022-03-25 04:07 - 000737280 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\fveapi.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000025600 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\FVECERTS.dll 2023-11-24 17:32 - 2022-08-08 03:55 - 000422400 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\fwpuclnt.dll 2023-11-24 17:24 - 2022-07-12 23:43 - 000042496 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\FXSMON.DLL 2014-11-21 10:16 - 2014-11-21 10:16 - 000162304 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\globinputhost.dll 2023-11-24 17:33 - 2022-09-07 00:18 - 001381376 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\gpsvc.dll 2023-11-24 17:24 - 2019-01-09 05:20 - 000048128 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\hcproviders.dll 2023-11-24 16:31 - 2016-02-08 18:00 - 000599552 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\hgcpl.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000240128 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\hgprint.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000036864 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\HID.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000033792 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\hidserv.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000038912 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\HTTPAPI.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000014336 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\IconCodecService.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000203264 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\IdListen.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000146432 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\IDStore.dll 2023-11-24 17:33 - 2022-11-04 03:01 - 015507968 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\ieframe.dll 2023-11-24 17:32 - 2022-11-04 03:33 - 002917888 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\iertutil.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000547328 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\imapi2.dll 2023-11-24 17:31 - 2022-12-02 05:37 - 000166400 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\inetpp.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000259072 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\InputSwitch.dll 2023-11-24 17:33 - 2019-10-04 14:35 - 000929280 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\iphlpsvc.dll 2023-11-24 17:33 - 2022-10-13 05:35 - 000950784 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\kerberos.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000024576 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ktmw32.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000030208 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\LINKINFO.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000275968 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\listsvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000376320 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\livessp.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000024576 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\lmhsvc.dll 2023-11-24 17:30 - 2022-12-15 06:24 - 001110528 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\localspl.dll 2014-11-21 15:35 - 2014-11-21 15:35 - 000321536 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\lockscreencn.dll 2023-11-24 17:34 - 2022-04-12 04:58 - 000247296 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\logoncli.dll 2023-11-24 17:30 - 2022-12-20 07:29 - 001452032 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\lsasrv.dll 2023-11-24 16:31 - 2015-02-21 00:49 - 000780800 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\lsm.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000050688 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\lsmproxy.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000102912 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\MAPI32.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000553984 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\mfh264enc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000114176 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\mi.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000023552 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\midimap.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000234496 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\miutils.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000238592 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\MLANG.dll 2023-11-24 17:30 - 2018-01-02 05:16 - 000881152 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\mpssvc.dll 2023-11-24 15:53 - 2015-02-08 00:57 - 001090048 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\mrmcorer.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000026624 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\msacm32.drv 2023-11-24 17:25 - 2017-02-04 18:32 - 000584704 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\mscms.dll 2013-08-22 12:04 - 2013-08-22 12:04 - 000382976 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\mscoree.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000028160 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\MsCtfMonitor.dll 2023-11-24 17:33 - 2021-09-14 05:13 - 003079680 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\MsftEdit.dll 2023-11-24 17:33 - 2022-10-10 04:57 - 003345408 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\msi.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000011264 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\Msidle.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000007680 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\msimg32.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 001164288 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\msmpeg2enc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000046080 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\mspatcha.dll 2013-08-22 12:44 - 2013-08-22 12:44 - 000002048 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\msprivs.DLL 2014-11-21 10:17 - 2014-11-21 10:17 - 000014336 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\MSSHooks.dll 2023-11-24 17:32 - 2020-12-09 02:37 - 000467968 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\mssph.dll 2023-11-24 17:25 - 2020-09-24 04:10 - 000133120 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\mssprxy.dll 2023-11-24 17:31 - 2020-12-09 01:49 - 002530816 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\MSSRCH.DLL 2014-11-21 10:16 - 2014-11-21 10:16 - 000480256 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\MSUTB.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000237056 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\MSWB7.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000734208 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\MSWB7001E.dll 2023-11-24 16:28 - 2016-05-13 22:58 - 000339456 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\mswsock.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000069120 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\napinsp.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 001248256 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\NaturalLanguage6.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000154112 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ncbservice.dll 2023-11-24 16:16 - 2015-07-16 19:58 - 000074752 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ncdautosetup.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000026624 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\NCI.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000073216 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\NCObjAPI.DLL 2023-11-24 17:28 - 2022-03-10 06:09 - 000342016 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\ncryptprov.dll 2023-11-24 17:32 - 2020-06-12 23:53 - 000360448 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ncsi.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000025600 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\ncuprov.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000064512 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\nduprov.dll 2023-11-24 17:24 - 2022-08-09 19:50 - 000128000 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\negoexts.DLL 2023-11-24 17:25 - 2022-09-13 05:15 - 000330240 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\netjoin.dll 2023-11-24 17:33 - 2022-12-20 07:23 - 000853504 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\netlogon.DLL 2023-11-24 17:31 - 2020-12-09 02:13 - 000252928 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\netprofm.dll 2023-11-24 17:30 - 2020-12-09 02:11 - 000549376 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\netprofmsvc.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 001678336 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\NetworkExplorer.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000106496 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\NetworkStatus.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000333824 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\newdev.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000393728 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\NInput.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000860672 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\NL7Data001e.dll 2023-11-24 17:31 - 2018-01-02 05:33 - 000086016 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\nlaapi.dll 2023-11-24 17:30 - 2020-06-12 22:39 - 000391168 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\nlasvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 002403328 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\NLSData000c.dll 2013-08-22 12:44 - 2013-08-22 12:44 - 006237696 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\NLSLexicons000c.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000004096 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\Normaliz.dll 2023-11-24 17:34 - 2020-02-08 18:55 - 000037888 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\npmproxy.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000016896 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\nrpsrv.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000028672 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\nsisvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000148480 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\NTDSAPI.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000074240 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\ntlanman.dll 2023-11-24 17:25 - 2016-08-25 21:50 - 000747008 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\ntshrui.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000412160 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\OLEACC.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000033280 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\ondemandconnroutehelper.dll 2023-11-24 17:27 - 2019-07-11 03:39 - 000216576 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\P2P.dll 2023-11-24 17:25 - 2019-07-11 03:52 - 000434176 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\P2PGRAPH.dll 2023-11-24 17:27 - 2018-01-02 05:07 - 000440832 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\p2psvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000025088 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\pcacli.dll 2023-11-24 15:50 - 2018-01-02 05:16 - 000464384 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\pcasvc.dll 2013-08-22 12:41 - 2013-08-22 12:41 - 000040448 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\pcwum.dll 2023-11-24 17:25 - 2016-09-02 15:05 - 000306176 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\pdh.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000039424 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\perfdisk.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000039936 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\perfos.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 001145856 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\perftrack.dll 2023-11-24 16:30 - 2015-04-03 01:35 - 000445440 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\PhotoMetadataHandler.dll 2023-11-24 17:25 - 2021-01-19 05:33 - 000260608 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\pku2u.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000088064 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\PlaySndSrv.dll 2023-11-24 15:54 - 2016-08-11 17:17 - 000627200 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\pnidui.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000014336 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\pnpts.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000088576 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\pnrpnsp.dll 2023-11-24 17:27 - 2020-08-11 03:55 - 000380416 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\pnrpsvc.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000719360 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\PortableDeviceApi.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000134656 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\portabledeviceclassextension.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000073728 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\portabledeviceconnectapi.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000222208 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\PortableDeviceTypes.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000161280 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\PortableDeviceWiaCompat.dll 2023-11-24 17:26 - 2021-09-06 04:05 - 000053248 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\PrintIsolationProxy.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000478208 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\prnfldr.dll 2023-11-24 17:30 - 2020-09-24 04:27 - 000230400 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\profsvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000130048 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\profsvcext.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000445952 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\provsvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000162816 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\ProximityCommon.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000015872 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\ProximityCommonPal.dll 2023-11-24 17:29 - 2022-09-15 05:22 - 000302080 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\ProximityService.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000040448 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\ProximityServicePAL.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000141312 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\psmsrv.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000086528 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\query.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 001636864 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\RacEngn.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000100864 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\radardt.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000017408 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\rasadhlp.dll 2023-11-24 17:27 - 2022-08-08 03:48 - 000702464 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\RasApi32.dll 2023-11-24 17:27 - 2022-08-08 04:04 - 000173568 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\rasman.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000100352 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\REGAPI.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000290816 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\RESUTILS.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000080896 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\rpcepmap.dll 2023-11-24 17:32 - 2022-12-15 06:39 - 000805376 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\rpcss.dll 2023-11-24 17:31 - 2021-11-03 04:37 - 000057856 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\rtutils.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000075776 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\samcli.dll 2023-11-24 17:31 - 2022-07-26 07:05 - 000122880 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\SAMLIB.dll 2023-11-24 17:30 - 2022-09-17 06:01 - 000863744 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\samsrv.dll 2023-11-24 17:32 - 2022-08-31 04:22 - 000270848 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\scecli.DLL 2023-11-24 17:33 - 2022-10-13 04:51 - 000434176 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\schannel.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000024576 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\SCHEDCLI.DLL 2023-11-24 17:31 - 2022-12-20 07:03 - 001264640 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\schedsvc.dll 2023-11-24 17:33 - 2018-10-12 03:10 - 000235520 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\scrobj.dll 2023-11-24 17:33 - 2020-04-14 08:33 - 000205824 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\scrrun.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 001275904 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\searchfolder.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000029184 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SECUR32.DLL 2013-08-22 12:43 - 2013-08-22 12:43 - 000005120 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\SECURITY.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000073728 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\sens.dll 2023-11-24 17:26 - 2018-07-06 18:14 - 000346112 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\sessenv.dll 2023-11-24 16:31 - 2016-02-08 17:55 - 000173056 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SettingMonitor.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000031232 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\SETTINGSYNCPOLICY.dll 2013-08-22 12:42 - 2013-08-22 12:41 - 000003072 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\sfc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000051712 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\sfc_os.dll 2023-11-24 16:32 - 2016-03-05 18:04 - 000192512 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\shacct.dll 2023-11-24 17:23 - 2017-08-19 18:27 - 000237568 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SHDOCVW.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000640000 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\shsvcs.dll 2014-11-21 14:35 - 2014-11-21 14:35 - 000291840 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\SkydriveShell.dll 2014-11-21 09:52 - 2014-11-21 09:52 - 000156672 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\SLC.dll 2013-08-22 12:29 - 2013-08-22 12:29 - 000069632 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SLWGA.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000234496 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\SndVolSSO.DLL 2014-11-21 10:16 - 2014-11-21 10:16 - 000032256 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\snmpapi.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000107008 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SPINF.dll 2023-11-24 17:30 - 2022-07-14 05:20 - 000045056 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\spool\PRTPROCS\x64\winprint.dll 2023-11-24 17:31 - 2021-10-02 03:34 - 000106496 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\SPOOLSS.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000275968 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\SPP.dll 2014-11-21 09:52 - 2014-11-21 09:52 - 000123904 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\sppc.dll 2013-08-22 12:08 - 2013-08-22 12:08 - 000492032 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\sppcext.dll 2013-08-22 12:16 - 2013-08-22 12:15 - 000138240 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\sppwmi.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000370176 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\srchadmin.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000071168 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\SrClient.dll 2023-11-24 17:22 - 2020-03-08 02:39 - 000045056 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SrumAPI.dll 2023-11-24 17:25 - 2020-03-08 02:33 - 000175104 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\srumsvc.dll 2023-11-24 17:31 - 2022-10-03 14:57 - 000329728 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\srvsvc.dll 2023-11-24 17:31 - 2022-10-03 15:01 - 000044032 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SSCORE.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000012288 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\sscoreext.dll 2023-11-24 17:29 - 2019-07-11 04:58 - 000065024 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\SSDPAPI.dll 2023-11-24 17:33 - 2021-04-15 04:32 - 000249344 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\ssdpsrv.dll 2023-11-24 17:22 - 2022-09-13 06:01 - 000029696 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SspiSrv.dll 2023-11-24 16:31 - 2016-02-08 17:58 - 000336384 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\stobject.dll 2023-11-24 17:31 - 2020-06-03 17:12 - 000750080 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\StructuredQuery.dll 2023-11-24 17:32 - 2022-11-08 07:29 - 000611328 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\sxs.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 002334720 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\SyncCenter.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000098304 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\SYNCENG.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000081408 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\Syncreg.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000174592 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\syncui.dll 2023-11-24 17:33 - 2020-01-10 00:00 - 001217536 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\sysmain.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000025600 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\SYSNTFY.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000018432 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\SystemEventsBrokerClient.dll 2023-11-24 16:35 - 2015-05-12 14:19 - 000294912 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\systemeventsbrokerserver.dll 2023-11-24 17:25 - 2019-05-31 17:54 - 000504832 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\taskcomp.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000030720 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\tbs.dll 2023-11-24 17:31 - 2022-03-10 05:51 - 000216064 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\tcpmon.dll 2023-11-24 17:27 - 2022-08-09 19:45 - 000951296 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\tdh.dll 2023-11-24 17:31 - 2021-10-12 05:22 - 001110528 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\termsrv.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000059392 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\themeservice.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000171008 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\thumbcache.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000262656 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\timebrokerserver.dll 2023-11-24 17:33 - 2020-12-09 02:17 - 003630592 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\TQUERY.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000124416 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\trkwks.dll 2023-11-24 17:33 - 2021-10-19 04:31 - 000109056 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\tspkg.DLL 2023-11-24 17:24 - 2022-05-12 06:23 - 000153600 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\twext.dll 2023-11-24 17:26 - 2021-12-16 01:20 - 000813568 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\twinapi.dll 2023-11-24 17:31 - 2021-12-16 01:15 - 001166848 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\twinui.appcore.dll 2023-11-24 17:31 - 2022-04-07 03:52 - 014496768 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\twinui.dll 2023-11-24 17:25 - 2018-02-08 19:03 - 000202752 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\UBPM.dll 2023-11-24 17:26 - 2019-10-11 17:17 - 000067584 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\udhisapi.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000843776 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\uDWM.dll 2023-11-24 17:25 - 2016-10-08 23:07 - 000332288 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\UIAnimation.dll 2023-11-24 16:31 - 2015-04-10 01:40 - 001249280 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\UIAutomationCore.DLL 2014-11-21 10:16 - 2014-11-21 10:16 - 004483072 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\UIRibbon.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000638976 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\UIRibbonRes.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000116736 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\umpnpmgr.dll 2023-11-24 17:33 - 2020-03-10 06:57 - 000083456 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\umpo.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000045056 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\umpoext.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000397312 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\upnp.dll 2023-11-24 17:33 - 2021-02-09 06:56 - 000453632 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\upnphost.dll 2023-11-24 17:33 - 2022-11-04 02:41 - 001563648 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\urlmon.dll 2023-11-24 17:31 - 2022-09-13 05:45 - 000309248 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\usbmon.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000077312 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\usp10.dll 2023-11-24 17:28 - 2019-12-17 02:08 - 000068096 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\uxinit.dll 2023-11-24 17:31 - 2019-12-17 02:19 - 001191936 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\UxTheme.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 001574400 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\VSSAPI.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000074752 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\VssTrace.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 001842176 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\cimwin32.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000463360 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\esscli.dll 2023-11-24 17:26 - 2018-03-03 05:47 - 001005056 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\fastprox.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000094720 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\ncprov.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000397824 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\repdrvfs.dll 2023-11-24 17:31 - 2020-03-08 02:33 - 001283584 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\wbemcore.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000282112 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\wbemdisp.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000512512 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\wbemess.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000046592 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\wbemprox.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000065024 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\wbemsvc.dll 2023-11-24 17:24 - 2017-08-13 16:50 - 000131584 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wbem\WmiPerfClass.dll 2023-11-24 17:26 - 2018-03-03 05:47 - 000864768 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\wmiprvsd.dll 2023-11-24 17:25 - 2020-07-10 18:58 - 000231936 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wbem\wmisvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000131072 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wbem\wmiutils.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000517120 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\wbemcomn.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000035328 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wcmapi.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000109056 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wcmcsp.dll 2023-11-24 17:25 - 2019-07-11 03:49 - 000375296 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wcmsvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000095744 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wdi.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000040960 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wdiasqmmodule.dll 2023-11-24 17:25 - 2020-06-05 17:15 - 000227328 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wdigest.DLL 2014-11-21 10:15 - 2014-11-21 10:15 - 000228864 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wdmaud.drv 2014-11-21 10:15 - 2014-11-21 10:15 - 000275968 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WDSCORE.dll 2023-11-24 17:28 - 2020-02-08 18:04 - 001254912 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\werconcpl.dll 2023-11-24 17:29 - 2020-02-08 18:32 - 000087040 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wercplsupport.dll 2023-11-24 17:29 - 2022-12-15 06:40 - 000108544 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wersvc.dll 2023-11-24 17:28 - 2022-08-09 19:46 - 001697280 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wevtsvc.dll 2023-11-24 17:28 - 2020-07-11 17:29 - 000671744 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wiaservc.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000017920 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wiatrace.dll 2023-11-24 17:30 - 2022-07-14 05:00 - 000872960 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\win32spl.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000036352 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\winbrand.dll 2023-11-24 17:30 - 2022-10-03 14:58 - 000391168 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wincorlib.DLL 2023-11-24 17:31 - 2019-05-06 02:41 - 001197056 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.Globalization.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000055296 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\windows.globalization.fontgroups.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000115200 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll 2023-11-24 17:31 - 2020-04-11 16:23 - 001317888 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.Media.Streaming.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000591872 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.Networking.Connectivity.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000740352 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll 2023-11-24 16:41 - 2016-04-09 22:58 - 000534016 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.UI.dll 2023-11-24 17:30 - 2022-01-11 05:54 - 001731072 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Windows.UI.Immersive.dll 2023-11-24 17:29 - 2021-12-16 01:18 - 009628672 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\Windows.UI.Search.dll 2023-11-24 17:33 - 2018-12-27 18:57 - 000805376 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WINHTTP.dll 2023-11-24 17:32 - 2022-11-04 02:56 - 004858880 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\WININET.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000022528 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\wininitext.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000086016 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\winlogonext.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000030720 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\winrnr.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000381952 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WinSATAPI.dll 2023-11-24 17:31 - 2018-04-07 17:43 - 000243200 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\WinSCard.dll 2023-11-24 17:31 - 2022-10-27 05:31 - 000520192 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WINSPOOL.DRV 2023-11-24 17:31 - 2022-10-03 15:02 - 000300032 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wkssvc.dll 2023-11-24 17:29 - 2022-09-15 05:20 - 000302080 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WlanApi.dll 2023-11-24 17:32 - 2022-08-13 06:42 - 000353280 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WLDAP32.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000465920 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wlidprov.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000038400 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WMICLNT.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000166912 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wmidcom.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000016896 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WMsgAPI.dll 2023-11-24 17:31 - 2020-12-09 02:35 - 000193536 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\WorkFoldersShell.dll 2023-11-24 17:28 - 2022-07-12 23:57 - 000285184 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\wow64.dll 2023-11-24 17:28 - 2022-07-12 23:57 - 000013312 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wow64cpu.dll 2023-11-24 17:26 - 2019-11-28 06:20 - 000432128 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wow64win.dll 2023-11-24 17:28 - 2020-04-16 03:53 - 003258368 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\Wpc.dll 2014-11-21 10:17 - 2014-11-21 10:17 - 000110080 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\wpdshserviceobj.dll 2023-11-24 17:26 - 2020-03-08 02:24 - 000606720 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wpncore.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000026624 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wpnsruprov.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000171008 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wscinterop.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000206336 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WSClient.dll 2023-11-24 16:31 - 2016-01-06 17:47 - 000146944 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wscsvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 001152000 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wscui.cpl 2023-11-24 17:25 - 2017-05-09 15:37 - 000658432 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wsdapi.dll 2023-11-24 17:23 - 2017-05-09 15:28 - 000030208 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WSDCHNGR.DLL 2023-11-24 17:25 - 2020-04-30 03:40 - 000309760 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\WSDMon.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000077824 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\WSDPrintProxy.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000070656 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WSDScanProxy.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000246272 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WSDScDrv.dll 2023-11-24 17:23 - 2018-03-07 20:28 - 000064512 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wsnmp32.dll 2014-11-21 10:16 - 2014-11-21 10:16 - 000017408 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\wsock32.dll 2023-11-24 16:31 - 2015-05-03 15:55 - 000971776 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WSShared.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000203264 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\WSSync.dll 2023-11-24 17:31 - 2020-12-15 04:58 - 000892928 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wuapi.dll 2023-11-24 17:33 - 2020-12-15 05:14 - 003722240 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wuaueng.dll 2023-11-24 17:26 - 2022-03-10 06:04 - 000225792 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\WUDFPlatform.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000104960 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\wudfsvc.dll 2014-11-21 10:15 - 2014-11-21 10:15 - 000899584 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\WUDFx.dll 2023-11-24 17:32 - 2018-03-10 18:47 - 000066048 _____ (Microsoft Corporation) [File not signed] C:\Windows\System32\wups.dll 2023-11-24 17:30 - 2018-06-08 19:26 - 000440832 _____ (Microsoft Corporation) [File not signed] C:\Windows\SYSTEM32\zipfldr.dll 2013-08-22 07:57 - 2013-08-17 01:06 - 001062400 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_88dcdb0b2fb19957\MSVCP80.dll 2013-08-22 07:57 - 2013-08-17 01:06 - 000796672 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_88dcdb0b2fb19957\MSVCR80.dll 2023-11-24 16:31 - 2015-04-25 03:34 - 000653824 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9600.17810_none_34ae2abd958aedeb\comctl32.dll 2023-11-24 17:33 - 2019-06-02 17:51 - 002583552 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.19394_none_62486577ecb635cf\COMCTL32.dll 2023-11-24 17:28 - 2022-10-11 06:01 - 001760256 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.20663_none_7c62c18d60f2b32a\gdiplus.dll 2023-11-24 16:40 - 2022-09-15 05:02 - 001607168 _____ (Microsoft Corporation) [File not signed] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.20617_none_faf6123cb423a35e\cbscore.dll 2023-11-24 16:40 - 2022-08-09 19:40 - 000345088 _____ (Microsoft Corporation) [File not signed] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.20617_none_faf6123cb423a35e\dpx.dll 2023-11-24 16:40 - 2022-08-09 19:50 - 000246784 _____ (Microsoft Corporation) [File not signed] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.20617_none_faf6123cb423a35e\DrUpdate.dll 2023-11-24 16:40 - 2022-08-09 19:48 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.20617_none_faf6123cb423a35e\msdelta.dll 2023-11-24 16:40 - 2022-09-15 05:29 - 002854912 _____ (Microsoft Corporation) [File not signed] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.20617_none_faf6123cb423a35e\wcp.dll 2023-11-24 16:40 - 2022-08-09 19:48 - 000276480 _____ (Microsoft Corporation) [File not signed] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.20617_none_faf6123cb423a35e\wdscore.dll 2023-11-24 17:33 - 2019-06-02 17:05 - 002107392 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.19394_none_a9f59c4f01325ed5\comctl32.dll 2023-11-24 17:27 - 2022-10-11 05:28 - 001488896 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.20663_none_c40ff864756edc30\gdiplus.dll 2023-08-16 12:46 - 2023-08-16 12:46 - 002867200 _____ (Open-Shell) [File not signed] C:\Program Files\Open-Shell\StartMenuDLL.dll 2023-08-16 12:47 - 2023-08-16 12:47 - 000436736 _____ (Open-Shell) [File not signed] C:\Windows\system32\StartMenuHelper64.dll 2023-10-13 17:55 - 2023-10-13 17:55 - 000187392 _____ (Seiko Epson Corporation) [File not signed] C:\Windows\System32\E_YLMBM1E.DLL 2023-10-13 17:55 - 2023-10-13 17:55 - 002374656 _____ (Seiko Epson Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\E_YUICM1E.DLL ==================== Alternate Data Streams (Whitelisted) ======== ==================== Safe Mode (Whitelisted) ================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\a0867295.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\a0867295.sys => ""="Driver" ==================== Association (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2018-02-10] (Microsoft Corporation) [File not signed] Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2018-02-10] (Microsoft Corporation) [File not signed] Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2018-12-02] (Microsoft Corporation) [File not signed] Handler-x32: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2018-12-01] (Microsoft Corporation) [File not signed] Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2018-12-02] (Microsoft Corporation) [File not signed] Handler-x32: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2018-12-01] (Microsoft Corporation) [File not signed] Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2018-02-10] (Microsoft Corporation) [File not signed] Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2018-02-10] (Microsoft Corporation) [File not signed] Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2022-11-04] (Microsoft Corporation) [File not signed] ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2023-11-27 16:48 - 2023-11-27 17:02 - 000002114 _____ C:\Windows\system32\drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1104844665-821516771-4157366267-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 24-11-2023 18:53:13 Windows Update 26-11-2023 04:32:51 IObit Software Updater restore point 27-11-2023 16:22:45 ZHPcleaner ==================== Faulty Device Manager Devices ============ Name: TRANSCODER Description: TRANSCODER Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ======================== Application errors: ================== Error: (11/27/2023 05:11:51 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (11/27/2023 03:20:44 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: Monitor.exe, version: 17.0.0.48, time stamp: 0x652f486c Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x67006100 Faulting process id: 0x5e0 Faulting application start time: 0x01da213401660a1b Faulting application path: C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe Faulting module path: unknown Report Id: 2604824a-8d30-11ee-8257-4c72b9f956a2 Faulting package full name: Faulting package-relative application ID: Error: (11/27/2023 02:48:31 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: Monitor.exe, version: 17.0.0.48, time stamp: 0x652f486c Faulting module name: rtl120.bpl, version: 12.0.3420.21218, time stamp: 0x4a0b8b7f Exception code: 0xc0000005 Fault offset: 0x0000457f Faulting process id: 0x5e0 Faulting application start time: 0x01da213401660a1b Faulting application path: C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe Faulting module path: C:\Program Files (x86)\IObit\Advanced SystemCare\rtl120.bpl Report Id: a61faec1-8d2b-11ee-8257-4c72b9f956a2 Faulting package full name: Faulting package-relative application ID: Error: (11/27/2023 11:29:18 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: GMERAnti-rootkit.exe, version: 2.2.19882.0, time stamp: 0x56e2cdca Faulting module name: GMERAnti-rootkit.exe, version: 2.2.19882.0, time stamp: 0x56e2cdca Exception code: 0xc0000409 Fault offset: 0x0007f314 Faulting process id: 0x15c0 Faulting application start time: 0x01da2118e0fd6690 Faulting application path: C:\Users\twister30\Desktop\barrow-aaikokïk-vil 6 suite v1\Tech tool store tools\GMERAnti-rootkit.exe Faulting module path: C:\Users\twister30\Desktop\barrow-aaikokïk-vil 6 suite v1\Tech tool store tools\GMERAnti-rootkit.exe Report Id: d185a43a-8d0f-11ee-8256-4c72b9f956a2 Faulting package full name: Faulting package-relative application ID: Error: (11/26/2023 05:39:00 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program processlasso.exe version 12.4.2.44 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 284 Start Time: 01da207286a2d2b1 Termination Time: 194 Application Path: C:\Program Files\Process Lasso\processlasso.exe Report Id: 42f81752-8c7a-11ee-8256-4c72b9f956a2 Faulting package full name: Faulting package-relative application ID: Error: (11/26/2023 03:53:38 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: Monitor.exe, version: 17.0.0.48, time stamp: 0x652f486c Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x6c007000 Faulting process id: 0xb68 Faulting application start time: 0x01da20728484e48c Faulting application path: C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe Faulting module path: unknown Report Id: 9487420e-8c6b-11ee-8256-4c72b9f956a2 Faulting package full name: Faulting package-relative application ID: Error: (11/26/2023 03:43:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: Monitor.exe, version: 17.0.0.48, time stamp: 0x652f486c Faulting module name: rtl120.bpl, version: 12.0.3420.21218, time stamp: 0x4a0b8b7f Exception code: 0xc0000005 Fault offset: 0x0000457f Faulting process id: 0xb68 Faulting application start time: 0x01da20728484e48c Faulting application path: C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe Faulting module path: C:\Program Files (x86)\IObit\Advanced SystemCare\rtl120.bpl Report Id: 3b3d9847-8c6a-11ee-8256-4c72b9f956a2 Faulting package full name: Faulting package-relative application ID: Error: (11/26/2023 03:30:32 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: explorer.exe, version: 6.3.9600.18460, time stamp: 0x57c1b8c1 Faulting module name: SHELL32.dll, version: 6.3.9600.20617, time stamp: 0x6322abf6 Exception code: 0xc0000005 Fault offset: 0x000000000085a7f1 Faulting process id: 0xb0 Faulting application start time: 0x01da207512ce87c5 Faulting application path: C:\Windows\explorer.exe Faulting module path: C:\Windows\system32\SHELL32.dll Report Id: 5a64e378-8c68-11ee-8256-4c72b9f956a2 Faulting package full name: Faulting package-relative application ID: System errors: ============= Error: (11/27/2023 05:49:15 PM) (Source: DCOM) (EventID: 10010) (User: liyah) Description: The server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} did not register with DCOM within the required timeout. Error: (11/27/2023 05:47:15 PM) (Source: DCOM) (EventID: 10010) (User: liyah) Description: The server {1ECCA34C-E88A-44E3-8D6A-8921BDE9E452} did not register with DCOM within the required timeout. Error: (11/27/2023 04:51:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Superfetch service terminated with the following error: The service has not been started. Error: (11/27/2023 04:49:20 PM) (Source: DCOM) (EventID: 10010) (User: liyah) Description: The server {3EEF301F-B596-4C0B-BD92-013BEAFCE793} did not register with DCOM within the required timeout. Error: (11/27/2023 04:49:20 PM) (Source: DCOM) (EventID: 10010) (User: liyah) Description: The server {3EEF301F-B596-4C0B-BD92-013BEAFCE793} did not register with DCOM within the required timeout. Error: (11/27/2023 04:49:20 PM) (Source: DCOM) (EventID: 10010) (User: liyah) Description: The server {3EEF301F-B596-4C0B-BD92-013BEAFCE793} did not register with DCOM within the required timeout. Error: (11/27/2023 04:49:20 PM) (Source: DCOM) (EventID: 10010) (User: liyah) Description: The server {3EEF301F-B596-4C0B-BD92-013BEAFCE793} did not register with DCOM within the required timeout. Error: (11/27/2023 03:25:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Everything service terminated unexpectedly. It has done this 1 time(s). Windows Defender: ================ Date: 2023-11-27 14:58:16.368 Description: Windows Defender scan has been stopped before completion. Scan Type: Antimalware Scan Parameters: Quick Scan Date: 2023-11-27 10:33:43.914 Description: Windows Defender has detected malware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0 Name: Trojan:Win32/Wacatac.H!ml Severity: Severe Category: Trojan Path: file:_C:\Users\twister30\Downloads\processclose_2_08.01.17.1.exe;webfile:_C:\Users\twister30\Downloads\processclose_2_08.01.17.1.exe|https://download.toolslib.net/download/file/85/85?s=05ZMlNOfjWMZp68P5zComLy3YDkEoDCQ|msedge.exe Detection Origin: Internet Detection Type: FastPath Detection Source: Real-Time Protection Process Name: C:\Windows\explorer.exe Signature Version: AV: 1.401.1166.0, AS: 1.401.1166.0, NIS: 0.0.0.0 Engine Version: AM: 1.1.23100.2009, NIS: 0.0.0.0 Date: 2023-11-27 10:33:41.539 Description: Windows Defender has detected malware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0 Name: Trojan:Win32/Wacatac.H!ml Severity: Severe Category: Trojan Path: file:_C:\Users\twister30\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\processclose_2_08.01.17.lnk;file:_C:\Users\twister30\Downloads\processclose_2_08.01.17.1.exe Detection Origin: Local machine Detection Type: FastPath Detection Source: System Process Name: Unknown Signature Version: AV: 1.401.1166.0, AS: 1.401.1166.0, NIS: 0.0.0.0 Engine Version: AM: 1.1.23100.2009, NIS: 0.0.0.0 Date: 2023-11-27 10:20:40.044 Description: Windows Defender has detected malware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0 Name: Trojan:Win32/Wacatac.H!ml Severity: Severe Category: Trojan Path: file:_C:\Users\twister30\Downloads\processclose_2_08.01.17.1.exe;webfile:_C:\Users\twister30\Downloads\processclose_2_08.01.17.1.exe|https://download.toolslib.net/download/file/85/85?s=05ZMlNOfjWMZp68P5zComLy3YDkEoDCQ|msedge.exe Detection Origin: Internet Detection Type: FastPath Detection Source: Real-Time Protection Process Name: C:\Windows\explorer.exe Signature Version: AV: 1.401.1166.0, AS: 1.401.1166.0, NIS: 119.0.0.0 Engine Version: AM: 1.1.23100.2009, NIS: 2.1.14600.4 Date: 2023-11-27 10:17:23.211 Description: Windows Defender has detected malware or other potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0 Name: Trojan:Win32/Wacatac.H!ml Severity: Severe Category: Trojan Path: file:_C:\Users\twister30\Downloads\processclose_2_08.01.17.1.exe Detection Origin: Local machine Detection Type: FastPath Detection Source: System Process Name: Unknown Signature Version: AV: 1.401.1166.0, AS: 1.401.1166.0, NIS: 119.0.0.0 Engine Version: AM: 1.1.23100.2009, NIS: 2.1.14600.4 Event[0]: Date: 2023-11-27 14:37:13.450 Description: Windows Defender has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.401.1166.0 Update Source: Microsoft Update Server Signature Type: AntiVirus Update Type: Full Current Engine Version: Previous Engine Version: 1.1.23100.2009 Error code: 0x80240016 Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. Date: 2023-11-27 14:37:13.450 Description: Windows Defender has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.401.1166.0 Update Source: Microsoft Update Server Signature Type: AntiVirus Update Type: Full Current Engine Version: Previous Engine Version: 1.1.23100.2009 Error code: 0x80240016 Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. Date: 2023-11-27 14:37:13.419 Description: Windows Defender has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.401.1166.0 Update Source: Microsoft Update Server Signature Type: AntiVirus Update Type: Full Current Engine Version: Previous Engine Version: 1.1.23100.2009 Error code: 0x80240016 Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. Date: 2023-11-24 16:02:05.017 Description: Windows Defender Real-Time Protection feature has encountered an error and failed. Feature: Network Inspection System Error Code: 0x80070002 Error description: The system cannot find the file specified. Reason: Antimalware protection has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem. Date: 2023-11-24 15:58:28.501 Description: Windows Defender has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.401.1120.0 Update Source: User Signature Type: AntiSpyware Update Type: Delta Current Engine Version: Previous Engine Version: 1.1.23100.2009 Error code: 0x80070020 Error description: The process cannot access the file because it is being used by another process. ==================== Memory info =========================== BIOS: AMI 8.17 01/25/2013 Motherboard: Hewlett-Packard 2AE3 Processor: AMD E1-1200 APU with Radeon(tm) HD Graphics Percentage of memory in use: 54% Total physical RAM: 3659.75 MB Available physical RAM: 1667.37 MB Total Virtual: 9291.75 MB Available Virtual: 6596.2 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:930.88 GB) (Free:837.64 GB) (Model: WDC WD10EADS-65L5B1 ATA Device) NTFS Drive d: () (Removable) (Total:119.08 GB) (Free:119.03 GB) exFAT Drive e: (USB DISK) (Removable) (Total:28.89 GB) (Free:28.89 GB) FAT32 Drive f: () (Removable) (Total:1.74 GB) (Free:1 GB) FAT32 Drive i: (Roxio Game Capture HD Pro) (CDROM) (Total:0.47 GB) (Free:0 GB) UDF Drive l: (FRAMAK SALI) (Removable) (Total:14.54 GB) (Free:0.82 GB) FAT32 Drive n: () (Removable) (Total:117.72 GB) (Free:85.76 GB) exFAT Drive o: () (Removable) (Total:5.45 GB) (Free:4.19 GB) FAT32 Drive p: (GSP1RMCSTFR) (Removable) (Total:29.3 GB) (Free:26.88 GB) NTFS Drive q: (Ventoy) (Removable) (Total:29.26 GB) (Free:15.34 GB) exFAT Drive r: (MULTIBOOT) (Removable) (Total:1.88 GB) (Free:0.97 GB) FAT Drive s: (USB DISK) (Removable) (Total:7.21 GB) (Free:1.47 GB) FAT32 Drive u: () (Removable) (Total:0 GB) (Free:0 GB) Drive v: (ZALMAN) (Fixed) (Total:931.47 GB) (Free:914.2 GB) (Model: ZALMAN ZM-VE350 USB Device) NTFS Drive w: () (Removable) (Total:0 GB) (Free:0 GB) Drive x: (MULTIBOOT) (Removable) (Total:7.48 GB) (Free:0.68 GB) FAT32 Drive y: (CUBUNTU ONE) (Removable) (Total:7.2 GB) (Free:1.85 GB) FAT32 Drive z: (MULTIBOOT) (Removable) (Total:12.91 GB) (Free:4.96 GB) FAT32 \\?\Volume{c9d53c88-716f-11ee-8252-4c72b9f956a2}\ (AVIRA MULTI) (Removable) (Total:17.88 GB) (Free:15.57 GB) FAT32 \\?\Volume{490a1855-341f-4160-0add-c156c860c7e4}\ (SARDU MEMTE) (Removable) (Total:12.25 GB) (Free:1.61 GB) FAT32 \\?\Volume{372b690f-268b-42e5-8c25-66db91e7557c}\ () (Removable) (Total:0 GB) (Free:0 GB) \\?\Volume{c9d53c87-716f-11ee-8252-4c72b9f956a2}\ () (Removable) (Total:29.27 GB) (Free:13.33 GB) FAT32 \\?\Volume{c9d53c84-716f-11ee-8252-4c72b9f956a2}\ (MULTIBOOT) (Removable) (Total:7.21 GB) (Free:5.71 GB) FAT32 \\?\Volume{f9e7ea35-e9b7-4d6f-baf1-e3c76cff20e6}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 2 (Size: 7.2 GB) (Disk ID: 726246BA) Partition 1: (Active) - (Size=7.2 GB) - (Type=FAT32) ========================================================== Disk: 3 (Size: 1.9 GB) (Disk ID: E428A155) Could not read MBR for disk 8. ========================================================== Disk: 9 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 1DD60BC6) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 10 (MBR Code: Windows 7/8/10) (Size: 250 GB) (Disk ID: 69737369) Partition 1: (Not Active) - (Size=250 GB) - (Type=04) ========================================================== Disk: 11 (MBR Code: Windows 7/8/10) (Size: 119.1 GB) (Disk ID: 654D4650) Partition 1: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS) ========================================================== Disk: 12 (Size: 14.6 GB) (Disk ID: 0A0DFF65) No partition Table on disk 12. ========================================================== Disk: 13 (MBR Code: Windows 7/8/10) (Size: 29.3 GB) (Disk ID: 7B96E8F8) Partition 1: (Active) - (Size=29.3 GB) - (Type=07 NTFS) ========================================================== Disk: 14 (Protective MBR) (Size: 117.8 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 15 (MBR Code: Windows XP) (Size: 28.9 GB) (Disk ID: 2D386197) Partition 1: (Not Active) - (Size=28.9 GB) - (Type=FAT32) ========================================================== Disk: 16 (Size: 7.5 GB) (Disk ID: 76A33405) Partition 1: (Active) - (Size=5.5 GB) - (Type=FAT32) ========================================================== Disk: 17 (MBR Code: Windows XP) (Size: 7.2 GB) (Disk ID: B07E33E4) Partition 1: (Not Active) - (Size=7.2 GB) - (Type=FAT32) ========================================================== Disk: 18 (Size: 29.3 GB) (Disk ID: 7798538C) Partition 1: (Not Active) - (Size=29.3 GB) - (Type=07 NTFS) Partition 2: (Active) - (Size=32 MB) - (Type=01) Partition 3: (Not Active) - (Size=32 MB) - (Type=07 NTFS) ========================================================== Disk: 19 (Protective MBR) (Size: 1.9 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 20 (Size: 7.5 GB) (Disk ID: 32884F2D) Partition 1: (Active) - (Size=7.5 GB) - (Type=FAT32) ========================================================== Disk: 21 (Size: 29.8 GB) (Disk ID: 83AB8A00) ========================================================== Disk: 22 (MBR Code: Windows 7/8/10) (Size: 29.3 GB) (Disk ID: 001F5A9C) Partition 1: (Not Active) - (Size=17.9 GB) - (Type=FAT32) Partition 2: (Not Active) - (Size=5 GB) - (Type=FAT32) Partition 3: (Not Active) - (Size=3.4 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=3 GB) - (Type=07 NTFS) ========================================================== Disk: 23 (Size: 14.3 GB) (Disk ID: 0C9B8936) Partition: GPT. ========================================================== Disk: 24 (Size: 30 GB) (Disk ID: 25C8BCC2) Partition 1: (Active) - (Size=30 GB) - (Type=42) Partition 2: (Not Active) - (Size=76 MB) - (Type=42) ========================================================== Disk: 25 (Protective MBR) (Size: 28.9 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt =======================