Hi there

 

I was wondering if anyone could help with this.

 

Norton keeps picking up, and claiming to resolve a tracking cookie but it keeps returning.

 

Normally I wouldn’t be worried about this but there are a few things about it that seem strange, namely.

 

it has a weird name – it is listed as being called [email protected] which looks more like an email address than a cookie,

 

I have privacy badger as a browser extension which should block tracking cookies. I’ve looked through it’s settings and it says it is blocking anything it knows about with doubleclick in the name.

 

Norton is also listing it’s source as being from external media but it returns even when no hard drives or memory sticks have been plugged in between detections.

 

It started showing up after i copied some stuff over from an old hard drive so i assume it came from there.

 

It may just be me being paranoid but due to the above i’m worried that it’s possibly a symptom of something worse.

 

in addition to the FRST logs I’ve also included Nortons admittedly unhelpful info it gives when it claims to remove it.

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-08-2020

Ran by rowimen (administrator) on LAPTOP-EPI9KOBJ (HP HP 250 G7 Notebook PC) (10-08-2020 17:18:47)

Running from C:UsersrowimDesktop

Loaded Profiles: rowimen

Platform: Windows 10 Pro Version 1903 18362.959 (X64) Language: English (United Kingdom)

Default browser: Chrome

Boot Mode: Normal

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe

(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdateGoogleUpdate.exe

(HP Inc. -> HP Inc.) C:Program Files (x86)HPHPAudioSwitchHPAudioSwitch.exe

(HP Inc. -> HP Inc.) C:Program FilesHPCommRecoveryHPCommRecovery.exe

(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_f81da7794b7c4a41x64AppHelperCap.exe

(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_f81da7794b7c4a41x64BridgeCommunication.exe

(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_f81da7794b7c4a41x64NetworkCap.exe

(HP Inc. -> HP Inc.) C:WindowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_f81da7794b7c4a41x64SysInfoCap.exe

(HP Inc.) C:Program FilesWindowsAppsAD2F1837.HPJumpStarts_1.7.1464.0_x64__v10z8vjag6ke6HP.JumpStarts.exe <2>

(HP Inc.) C:Program FilesWindowsAppsAD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6SystemEventUtilityHPSystemEventUtilityHost.exe

(Intel Corporation -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorydptf_cpu.inf_amd64_9196e89091d8bdbbesif_uf.exe

(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorydal.inf_amd64_d52c63e0e1c02c96jhi_service.exe

(Intel® pGFX 2020 -> ) C:WindowsSystem32DriverStoreFileRepositoryigcc_dch.inf_amd64_577475639d32bfedOneApp.IGCC.WinService.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_d70b02a5a438df3cigfxCUIService.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_d70b02a5a438df3cigfxEM.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreTempDEL1779.tmp

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreTempDEL17A9.tmp

(Intel® Rapid Storage Technology -> Intel Corporation) C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorDataMgrSvc.exe

(Intel® Rapid Storage Technology -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryiastorac.inf_amd64_5df9b820083f7f5cRstMwService.exe

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe

(Microsoft Corporation -> Microsoft Corporation) C:Program Files (x86)MicrosoftEdgeUpdateMicrosoftEdgeUpdate.exe

(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon Filesmicrosoft sharedClickToRunAppVShNotify.exe

(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsImmersiveControlPanelSystemSettings.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32wlanext.exe

(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:WindowsRtkBtManServ.exe

(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:Program FilesNorton SecurityEngine22.20.5.39nsWscSvc.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:WindowsSystem32RtkAudUService64.exe <2>

(Realtek Semiconductor Corp. -> Realtek) C:Program Files (x86)RealtekPCIE Wireless LANRtlS5WakeRtlS5Wake.exe

(Sound Research Corporation -> Sound Research, Corp.) C:WindowsSystem32SECOMN64.exe

(Symantec Corporation -> Symantec Corporation) C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe <2>

(Synaptics Incorporated -> Synaptics Incorporated) C:WindowsSystem32SynTPEnh.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:WindowsSystem32SynTPEnhService.exe

(Valve -> Valve Corporation) C:Program Files (x86)Common FilesSteamSteamService.exe

(Valve -> Valve Corporation) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe <7>

(Valve -> Valve Corporation) C:Program Files (x86)Steamsteam.exe

 

==================== Registry (Whitelisted) ===================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM…Run: [RtkAudUService] => C:windowsSystem32RtkAudUService64.exe [1000736 2019-10-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM…Run: [RtlS5Wake] => C:Program Files (x86)RealtekPCIE Wireless LANRtlS5WakeRtlS5Wake.exe [2097600 2018-04-18] (Realtek Semiconductor Corp. -> Realtek)

HKUS-1-5-21-4253961842-2703587000-3729417406-1001…Run: [HPSEU_Host_Launcher] => C:System.savutilHpseuHostLauncher.exe [527368 2020-07-22] (HP Inc. -> HP Inc.)

HKUS-1-5-21-4253961842-2703587000-3729417406-1001…Run: [Steam] => C:Program Files (x86)Steamsteam.exe [3377440 2020-07-31] (Valve -> Valve Corporation)

HKUS-1-5-21-4253961842-2703587000-3729417406-1001…Run: [1D1BD0E0239B2B5D21EF30798954FBC2CBDF91BB._service_run] => “C:Program Files (x86)MicrosoftEdgeApplicationmsedge.exe” –type=service /prefetch:8

HKLMSoftwareMicrosoftActive SetupInstalled Components: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C:Program Files (x86)GoogleChromeApplication84.0.4147.105Installerchrmstp.exe [2020-07-29] (Google LLC -> Google LLC)

 

==================== Scheduled Tasks (Whitelisted) ============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: 34CE4DB3-6A8B-4F18-92B5-0B52FAA50BE3 – System32TasksRemediationAntimalwareMigrationTask => C:Program FilesCommon FilesAVNorton SecurityUpgrade.exe [2162328 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Task: 3F9BC86F-C9C6-45C4-9B60-6FE3A64B9A46 – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-05-26] (Google LLC -> Google LLC)

Task: 4650C55B-1A1C-46C1-916D-6683FD752286 – System32TasksHewlett-PackardHP Support AssistantWarrantyChecker => C:Program Files (x86)HPHP Support FrameworkResourcesHPWarrantyCheckHPWarrantyChecker.exe

Task: 4D94E3C2-0366-4078-94D0-8F92FEA3B1F1 – System32TasksMicrosoftOfficeOffice Feature Updates => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [155488 2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Task: 57D1FEBF-3D28-438A-8AB8-37DAEABD520B – System32TasksMicrosoftOfficeOffice Feature Updates Logon => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [155488 2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Task: 63E3B522-AC0A-4387-A32D-83468285FFD9 – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-05-26] (Google LLC -> Google LLC)

Task: 6BC0E9BB-3E5C-470D-91AD-F5E9F57EBF34 – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)

Task: 817EF339-D366-4B89-BE13-5FE2D78E7363 – System32TasksHPConsent Manager Launcher => sc start hptouchpointanalyticsservice

Task: 8D4D071C-EA09-496E-843F-6463F1C8DA3E – System32TasksNorton WSC Integration => C:Program FilesNorton SecurityEngine22.20.5.39WSCStub.exe [644608 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Task: 993992C4-F767-4E98-8634-18206465C89B – System32TasksHewlett-PackardHP Support AssistantWarrantyChecker_DeviceScan => C:Program Files (x86)HPHP Support FrameworkResourcesHPWarrantyCheckHPWarrantyChecker.exe

Task: A00DF3C3-9B96-4278-A172-846E5AD62060 – System32TasksNorton SecurityNorton Security Error Analyzer => C:Program FilesNorton SecurityEngine22.20.5.39SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Task: A2939672-89DF-4484-81C4-CE5D82268F77 – System32TasksMicrosoftOfficeOffice Automatic Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [23819128 2020-07-27] (Microsoft Corporation -> Microsoft Corporation)

Task: A3DA1EF0-1A91-48A8-A127-931C4AC7F373 – System32TasksNorton SecurityNorton Security Autofix => C:Program FilesNorton SecurityEngine22.20.5.39SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Task: B4C84977-507D-4F43-9767-C61C3CA49CED – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [23819128 2020-07-27] (Microsoft Corporation -> Microsoft Corporation)

Task: D29CA915-697A-4F3B-83B2-231F269B91AB – System32TasksNorton SecurityNorton Security Error Processor => C:Program FilesNorton SecurityEngine22.20.5.39SymErr.exe [117192 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Task: F233BA57-797F-4BF5-8729-A71616AA454C – System32TasksHPAudioSwitch => C:Program Files (x86)HPHPAudioSwitchHPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)

 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

 

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

TcpipParameters: [DhcpNameServer] 194.168.4.100 194.168.8.100

Tcpip..Interfaces89e31cb8-3083-4c9f-b275-e98ccb645f96: [DhcpNameServer] 194.168.4.100 194.168.8.100

 

Internet Explorer:

==================

HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE

HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE

HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE

HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE

HKUS-1-5-21-4253961842-2703587000-3729417406-1001SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE

HKUS-1-5-21-4253961842-2703587000-3729417406-1001SoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE

SearchScopes: HKLM -> E31EEDF9-F636-49AF-8C65-E77F05353A37 URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords=searchTerms

SearchScopes: HKLM-x32 -> DefaultScope 0633EE93-D776-472f-A0FF-E1416B8B2E3A URL = 

SearchScopes: HKLM-x32 -> E31EEDF9-F636-49AF-8C65-E77F05353A37 URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords=searchTerms

SearchScopes: HKUS-1-5-21-4253961842-2703587000-3729417406-1001 -> E31EEDF9-F636-49AF-8C65-E77F05353A37 URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords=searchTerms

BHO: IEToEdge BHO -> 1FD49718-1D00-4B19-AF5F-070AF6D5D54C -> C:Program Files (x86)MicrosoftEdgeApplication84.0.522.52BHOie_to_edge_bho_64.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)

BHO: Norton Password Manager -> 602ADB0E-4AFF-4217-8AA1-95DAC4DFA408 -> C:Program FilesNorton SecurityEngine22.20.5.39coIEPlg.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

BHO-x32: IEToEdge BHO -> 1FD49718-1D00-4B19-AF5F-070AF6D5D54C -> C:Program Files (x86)MicrosoftEdgeApplication84.0.522.52BHOie_to_edge_bho.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Skype for Business Browser Helper -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16OCHelper.dll [2020-05-27] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Norton Password Manager -> 602ADB0E-4AFF-4217-8AA1-95DAC4DFA408 -> C:Program FilesNorton SecurityEngine3222.20.5.39coIEPlg.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Toolbar: HKLM – Norton Toolbar – 7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA – C:Program FilesNorton SecurityEngine22.20.5.39coIEPlg.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Toolbar: HKLM-x32 – Norton Toolbar – 7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA – C:Program FilesNorton SecurityEngine3222.20.5.39coIEPlg.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Handler: mso-minsb-roaming.16 – 83C25742-A9F7-49FB-9138-434302C88D07 – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb-roaming.16 – 83C25742-A9F7-49FB-9138-434302C88D07 – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Handler: mso-minsb.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Handler: osf-roaming.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf-roaming.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Handler: osf.16 – 5504BE45-A83B-4808-900A-3A5C36E7F77A – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf.16 – 5504BE45-A83B-4808-900A-3A5C36E7F77A – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation)

 

Edge: 

======

Edge Profile: C:UsersrowimAppDataLocalMicrosoftEdgeUser DataDefault [2020-07-16]

 

FireFox:

========

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:Program FilesMicrosoft OfficerootOffice16NPSPWRAP.DLL [2020-05-27] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16NPSPWRAP.DLL [2020-05-27] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)

 

Chrome: 

=======

CHR Profile: C:UsersrowimAppDataLocalGoogleChromeUser DataDefault [2020-08-10]

CHR HomePage: Default -> hxxps://www.google.co.uk/

CHR DefaultSearchURL: Default -> hxxps://www.google.co.uk/search?source=hp&ei=DS72Xu2pDdXggwfKyaxo&q=searchTerms&btnK=Google+Search

CHR DefaultSearchKeyword: Default -> google.co.uk

CHR Session Restore: Default -> is enabled.

CHR Extension: (Slides) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2020-05-26]

CHR Extension: (Docs) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2020-05-26]

CHR Extension: (Google Drive) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2020-05-26]

CHR Extension: (BlockTube) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsbbeaicapbccfllodepmimpkgecanonai [2020-06-21]

CHR Extension: (YouTube) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2020-05-26]

CHR Extension: (uBlock Origin) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionscjpalhdlnbpafiamejdnhcphjbkeiagm [2020-07-26]

CHR Extension: (Sheets) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2020-05-26]

CHR Extension: (Norton Safe Web) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsfnpbeacklnhmkkilekogeiekaglbmmka [2020-07-10]

CHR Extension: (HTTPS Everywhere) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsgcbommkclmclpchllfjekcdonpmejbdp [2020-05-26]

CHR Extension: (Google Docs Offline) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-03]

CHR Extension: (LastPass: Free Password Manager) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionshdokiejnpimakedhajhdlcegeplioahd [2020-07-30]

CHR Extension: (Malwarebytes Browser Guard) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsihcjicgdanjaechkgeegckofjjedodee [2020-08-07]

CHR Extension: (Behave!) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsmppjbkhgconmemoeagfbgilblohhcica [2020-07-11]

CHR Extension: (Chrome Web Store Payments) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2020-05-26]

CHR Extension: (uBlock Origin Extra) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionspgdnlhfefecpicbbihgmbmffkjpaplco [2020-05-26]

CHR Extension: (Gmail) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2020-05-26]

CHR Extension: (Chrome Media Router) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-26]

CHR Extension: (Privacy Badger) – C:UsersrowimAppDataLocalGoogleChromeUser DataDefaultExtensionspkehgijcmpdhfbdbbnkijodmdjhbjlgp [2020-07-26]

 

==================== Services (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [10566528 2020-07-22] (Microsoft Corporation -> Microsoft Corporation)

R2 HP Comm Recover; C:Program FilesHPCommRecoveryHPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)

R2 HPAppHelperCap; C:windowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_f81da7794b7c4a41x64AppHelperCap.exe [613136 2020-06-15] (HP Inc. -> HP Inc.)

R2 HPNetworkCap; C:windowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_f81da7794b7c4a41x64NetworkCap.exe [612112 2020-06-15] (HP Inc. -> HP Inc.)

R2 HPSysInfoCap; C:windowsSystem32DriverStoreFileRepositoryhpcustomcapcomp.inf_amd64_f81da7794b7c4a41x64SysInfoCap.exe [612112 2020-06-15] (HP Inc. -> HP Inc.)

S4 HpTouchpointAnalyticsService; C:windowsSystem32DriverStoreFileRepositoryhpanalyticscomp.inf_amd64_2576de2e12637a57x64TouchpointAnalyticsClientService.exe [445184 2020-06-14] (HP Inc. -> HP Inc.)

R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [6970968 2020-07-11] (Malwarebytes Inc -> Malwarebytes)

R2 NortonSecurity; C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe [344760 2020-07-24] (Symantec Corporation -> Symantec Corporation)

R2 nsWscSvc; C:Program FilesNorton SecurityEngine22.20.5.39nsWscSvc.exe [1056096 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

R2 SECOMNService; C:windowsSystem32SECOMN64.exe [161296 2019-07-31] (Sound Research Corporation -> Sound Research, Corp.)

S3 Sense; C:Program FilesWindows Defender Advanced Threat ProtectionMsSense.exe [5930136 2020-05-28] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 WdNisSvc; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2006.8-0NisSrv.exe [2496152 2020-06-15] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 WinDefend; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2006.8-0MsMpEng.exe [104192 2020-06-15] (Microsoft Windows Publisher -> Microsoft Corporation)

 

===================== Drivers (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

S3 AmUStor; C:windowssystem32driversAmUStorU.sys [127936 2019-03-26] (Alcorlink Corp. -> )

R1 BHDrvx64; C:Program FilesNorton SecurityNortonData22.20.2.57DefinitionsBASHDefs20200728.001BHDrvx64.sys [1952136 2020-05-26] (Symantec Corporation -> Symantec Corporation)

R1 ccSet_NGC; C:windowsSystem32driversNGCx641614050.027ccSetx64.sys [192248 2020-07-24] (Symantec Corporation -> Symantec Corporation)

R1 eeCtrl; C:Program Files (x86)Common FilesSymantec SharedEENGINEeeCtrl64.sys [516960 2020-07-30] (Symantec Corporation -> Broadcom)

R3 EraserUtilRebootDrv; C:Program Files (x86)Common FilesSymantec SharedEENGINEEraserUtilRebootDrv.sys [154464 2020-08-01] (Symantec Corporation -> Broadcom)

R3 HPCustomCapDriver; C:windowsSystem32DriverStoreFileRepositoryhpcustomcapdriver.inf_amd64_1f5602eb8a12ac4cx64hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)

R1 IDSVia64; C:Program FilesNorton SecurityNortonData22.20.2.57DefinitionsIPSDefs20200807.061IDSvia64.sys [1451016 2020-05-26] (Symantec Corporation -> Symantec Corporation)

R2 MBAMChameleon; C:windowsSystem32DriversMbamChameleon.sys [216056 2020-08-07] (Malwarebytes Inc -> Malwarebytes)

S0 MbamElam; C:windowsSystem32DRIVERSMbamElam.sys [19912 2020-07-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R3 MBAMSwissArmy; C:windowsSystem32Driversmbamswissarmy.sys [248968 2020-08-07] (Malwarebytes Inc -> Malwarebytes)

R3 MEIx64; C:windowsSystem32DriverStoreFileRepositoryheci.inf_amd64_d01e7c2e2b4c1b72x64TeeDriverW10x64.sys [298480 2020-01-12] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)

R3 SRTSP; C:windowsSystem32driversNGCx641614050.027SRTSP64.SYS [889704 2020-07-24] (Symantec Corporation -> Symantec Corporation)

R1 SRTSPX; C:windowsSystem32driversNGCx641614050.027SRTSPX64.SYS [50920 2020-07-24] (Symantec Corporation -> Symantec Corporation)

R0 SymEFASI; C:windowsSystem32driversNGCx641614050.027SYMEFASI64.SYS [1964384 2020-07-24] (Symantec Corporation -> Symantec Corporation)

S0 SymELAM; C:windowsSystem32driversNGCx641614050.027SymELAM.sys [25080 2020-07-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)

R3 SymEvent; C:windowssystem32DriversSYMEVENT64x86.SYS [99848 2020-05-26] (Symantec Corporation -> Symantec Corporation)

R3 SymEvnt; C:Program FilesNorton SecurityNortonData22.20.2.57SymPlatformSymEvnt.sys [712368 2020-01-07] (Symantec Corporation -> Symantec Corporation)

R1 SymIRON; C:windowsSystem32driversNGCx641614050.027Ironx64.SYS [316488 2020-07-24] (Symantec Corporation -> Symantec Corporation)

R1 SymNetS; C:windowsSystem32driversNGCx641614050.027symnets.sys [575328 2020-07-24] (Symantec Corporation -> Symantec Corporation)

S3 WdBoot; C:windowssystem32driverswdWdBoot.sys [45960 2020-06-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WdFilter; C:windowssystem32driverswdWdFilter.sys [408800 2020-06-15] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:windowsSystem32driverswdWdNisDrv.sys [64224 2020-06-15] (Microsoft Windows -> Microsoft Corporation)

R3 WirelessButtonDriver64; C:windowsSystem32driversWirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)

S3 wpCtrlDrv_NGC; C:windowsSystem32driversNGCx641614050.027wpCtrlDrv.sys [1013792 2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One month (created) ===================

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2020-08-10 17:18 – 2020-08-10 17:19 – 000025086 _____ C:UsersrowimDesktopFRST.txt

2020-08-10 10:20 – 2020-08-10 10:20 – 000000000 ____D C:windowssystem32TasksRemediation

2020-08-10 10:15 – 2020-08-10 10:15 – 000000955 _____ C:UsersrowimDesktopnorton tracking cookie report.txt

2020-08-09 22:04 – 2020-08-10 17:19 – 000000000 ____D C:FRST

2020-08-09 22:00 – 2020-08-09 22:01 – 002296320 _____ (Farbar) C:UsersrowimDesktopFRST64 (1).exe

2020-08-07 20:02 – 2020-08-07 20:02 – 000248968 _____ (Malwarebytes) C:windowssystem32Driversmbamswissarmy.sys

2020-08-07 20:02 – 2020-08-07 20:02 – 000216056 _____ (Malwarebytes) C:windowssystem32DriversMbamChameleon.sys

2020-08-07 16:48 – 2020-08-07 16:48 – 000000955 _____ C:UsersrowimDesktoptracking cookie.txt

2020-08-07 00:48 – 2020-03-22 11:46 – 021460856 _____ (Intel Corporation) C:windowssystem32libmfxhw64.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 020356728 _____ (Intel Corporation) C:windowsSysWOW64libmfxhw32.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 003219816 _____ (Intel Corporation) C:windowssystem32mfx_mft_h265ve_64.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 003212944 _____ (Intel Corporation) C:windowssystem32mfx_mft_vp9ve_64.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 003199344 _____ (Intel Corporation) C:windowssystem32mfx_mft_h264ve_64.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 002996080 _____ (Intel Corporation) C:windowssystem32mfx_mft_encrypt_64.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 002606240 _____ (Intel Corporation) C:windowsSysWOW64mfx_mft_h265ve_32.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 002601512 _____ (Intel Corporation) C:windowsSysWOW64mfx_mft_vp9ve_32.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 002592424 _____ (Intel Corporation) C:windowsSysWOW64mfx_mft_h264ve_32.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 002435368 _____ (Intel Corporation) C:windowsSysWOW64mfx_mft_encrypt_32.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 000218752 _____ (Intel Corporation) C:windowssystem32intel_gfx_api-x64.dll

2020-08-07 00:48 – 2020-03-22 11:46 – 000186216 _____ (Intel Corporation) C:windowsSysWOW64intel_gfx_api-x86.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 025076544 _____ (Intel Corporation) C:windowssystem32mfxplugin64_hw.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 011920192 _____ (Intel Corporation) C:windowsSysWOW64mfxplugin32_hw.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 003013440 _____ (Intel Corporation) C:windowssystem32mfx_mft_mjpgvd_64.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 002438976 _____ (Intel Corporation) C:windowsSysWOW64mfx_mft_mjpgvd_32.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 001785920 _____ C:windowssystem32vulkaninfo-1-999-0-0-0.exe

2020-08-07 00:48 – 2020-03-22 08:46 – 001785920 _____ C:windowssystem32vulkaninfo.exe

2020-08-07 00:48 – 2020-03-22 08:46 – 001376112 _____ C:windowsSysWOW64vulkaninfo-1-999-0-0-0.exe

2020-08-07 00:48 – 2020-03-22 08:46 – 001376112 _____ C:windowsSysWOW64vulkaninfo.exe

2020-08-07 00:48 – 2020-03-22 08:46 – 001095280 _____ C:windowssystem32vulkan-1-999-0-0-0.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 001095280 _____ C:windowssystem32vulkan-1.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 000954992 _____ C:windowsSysWOW64vulkan-1-999-0-0-0.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 000954992 _____ C:windowsSysWOW64vulkan-1.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 000126272 _____ (Khronos Group) C:windowssystem32OpenCL.dll

2020-08-07 00:48 – 2020-03-22 08:46 – 000111424 _____ (Khronos Group) C:windowsSysWOW64OpenCL.dll

2020-08-03 18:30 – 2020-08-03 18:30 – 000008681 _____ C:UsersrowimDesktophouse plan for print mum ver.ods

2020-07-31 20:48 – 2020-07-31 20:49 – 000009745 _____ C:UsersrowimDesktophouse plan bathroom version.ods

2020-07-31 17:35 – 2020-07-31 20:31 – 000008691 _____ C:UsersrowimDesktophouse plan for print.ods

2020-07-31 17:17 – 2020-07-31 20:34 – 000008876 _____ C:UsersrowimDesktophouse plan.ods

2020-07-28 00:02 – 2020-07-28 00:04 – 000000147 _____ C:UsersrowimDesktoppersonal customs ideas.txt

2020-07-27 18:43 – 2020-07-27 18:59 – 000000620 _____ C:UsersrowimDesktopcustoms original set.txt

2020-07-27 18:42 – 2020-07-27 19:04 – 000000359 _____ C:UsersrowimDesktopcustoms 1st set.txt

2020-07-27 18:36 – 2020-07-28 19:06 – 000000568 _____ C:UsersrowimDesktopdisney villainous customs submissions list.txt

2020-07-26 20:56 – 2020-08-10 09:08 – 000000000 ____D C:windowssystem32TasksNorton Security

2020-07-26 20:54 – 2020-07-27 01:15 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsNorton Security

2020-07-26 20:54 – 2020-07-26 20:54 – 000003376 _____ C:windowssystem32TasksNorton WSC Integration

2020-07-24 18:03 – 2020-07-24 18:20 – 000005327 _____ C:UsersrowimDesktoppower rangers battle for the grid characters.xlsx

2020-07-24 17:27 – 2020-08-08 18:50 – 000000159 _____ C:UsersrowimDesktopaugust 2020 money sheet.txt

2020-07-22 12:12 – 2020-07-22 12:12 – 000000000 ____D C:UsersrowimAppDataLocalLowBerserk Games

2020-07-20 19:33 – 2020-07-20 19:33 – 000029325 _____ C:UsersrowimDownloadsFFOO-Character-Progression-v1.0.0.xlsx

2020-07-17 17:53 – 2020-07-18 13:15 – 000129840 _____ C:UsersrowimDesktopDead By Daylight Perks PC.xlsx

2020-07-16 03:20 – 2020-08-02 08:30 – 000002445 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk

2020-07-16 03:20 – 2020-07-16 14:25 – 000003478 _____ C:windowssystem32TasksMicrosoftEdgeUpdateTaskMachineUA

2020-07-16 03:20 – 2020-07-16 14:25 – 000003354 _____ C:windowssystem32TasksMicrosoftEdgeUpdateTaskMachineCore

2020-07-16 00:35 – 2020-07-16 00:35 – 025444352 _____ (Microsoft Corporation) C:windowssystem32Hydrogen.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 019812864 _____ (Microsoft Corporation) C:windowssystem32HologramWorld.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 007823912 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 007012864 _____ (Microsoft Corporation) C:windowsSysWOW64mstscax.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 006292992 _____ (Microsoft Corporation) C:windowsSysWOW64ieframe.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 005099384 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 004129424 _____ (Microsoft Corporation) C:windowssystem32mfcore.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 002494744 _____ (Microsoft Corporation) C:windowssystem32msmpeg2vdec.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 001610240 _____ (Microsoft Corporation) C:windowssystem32HologramCompositor.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 001346048 _____ (Microsoft Corporation) C:windowssystem32HoloSI.PCShell.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 001344512 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.Audio.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 001312256 _____ (Microsoft Corporation) C:windowsSysWOW64msjet40.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 001307136 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.Audio.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 001151816 _____ (Microsoft Corporation) C:windowssystem32mfmpeg2srcsnk.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000967680 _____ (Microsoft Corporation) C:windowssystem32WebcamUi.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000891392 _____ (Microsoft Corporation) C:windowssystem32HolographicExtensions.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000815616 _____ (Microsoft Corporation) C:windowsSysWOW64WebcamUi.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000701440 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Mirage.Internal.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000694784 _____ (Microsoft Corporation) C:windowssystem32gpprefcl.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000564736 _____ (Microsoft Corporation) C:windowsSysWOW64gpprefcl.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000521728 _____ (Microsoft Corporation) C:windowssystem32WinBioDataModel.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000484352 _____ (Microsoft Corporation) C:windowssystem32MixedReality.Broker.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000467456 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.Picker.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000432128 _____ (Microsoft Corporation) C:windowssystem32WalletService.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000355328 _____ (Microsoft Corporation) C:windowssystem32ConsoleLogon.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000353792 _____ (Microsoft Corporation) C:windowsSysWOW64msrd3x40.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000352256 _____ (Microsoft Corporation) C:windowssystem32APHostService.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000345560 _____ (Microsoft Corporation) C:windowsSysWOW64tsmf.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000338944 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.Picker.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000256000 _____ (Microsoft Corporation) C:windowsSysWOW64ConsoleLogon.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000231424 _____ (Microsoft Corporation) C:windowssystem32HoloShellRuntime.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000172032 _____ (Microsoft Corporation) C:windowsSysWOW64HoloShellRuntime.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000121856 _____ (Microsoft Corporation) C:windowsSysWOW64PrintWSDAHost.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000063488 _____ (Microsoft Corporation) C:windowsSysWOW64iemigplugin.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000050688 _____ (Microsoft Corporation) C:windowsSysWOW64tsgqec.dll

2020-07-16 00:35 – 2020-07-16 00:35 – 000012288 _____ (Microsoft Corporation) C:windowssystem32RemoteFXvGPUDisablement.exe

2020-07-16 00:34 – 2020-07-16 00:35 – 018031104 _____ (Microsoft Corporation) C:windowsSysWOW64mshtml.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 025902592 _____ (Microsoft Corporation) C:windowssystem32edgehtml.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 022641664 _____ (Microsoft Corporation) C:windowssystem32mshtml.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 019851776 _____ (Microsoft Corporation) C:windowsSysWOW64edgehtml.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 017792512 _____ (Microsoft Corporation) C:windowssystem32Windows.UI.Xaml.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 014820352 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.UI.Xaml.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 009931576 _____ (Microsoft Corporation) C:windowssystem32ntoskrnl.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 008015872 _____ (Microsoft Corporation) C:windowssystem32mstscax.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 007917408 _____ (Microsoft Corporation) C:windowssystem32windows.storage.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 007850288 _____ (Microsoft Corporation) C:windowssystem32OneCoreUAPCommonProxyStub.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 007604584 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.Protection.PlayReady.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 007297536 _____ (Microsoft Corporation) C:windowssystem32Windows.Data.Pdf.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 007269376 _____ (Microsoft Corporation) C:windowssystem32ieframe.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 007268640 _____ (Microsoft Corporation) C:windowssystem32shell32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 006523856 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.Protection.PlayReady.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 006437376 _____ (Microsoft Corporation) C:windowssystem32twinui.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 006233080 _____ (Microsoft Corporation) C:windowssystem32StartTileData.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 006169088 _____ (Microsoft Corporation) C:windowssystem32twinui.pcshell.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 006089512 _____ (Microsoft Corporation) C:windowsSysWOW64windows.storage.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 005946368 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Data.Pdf.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 005765648 _____ (Microsoft Corporation) C:windowsSysWOW64shell32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 005111808 _____ (Microsoft Corporation) C:windowsSysWOW64twinui.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 004625192 _____ (Microsoft Corporation) C:windowsexplorer.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 004565264 _____ (Microsoft Corporation) C:windowssystem32sppsvc.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 004014592 _____ (Microsoft Corporation) C:windowssystem32Microsoft.Bluetooth.Service.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 003980800 _____ (Microsoft Corporation) C:windowssystem32tellib.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 003974368 _____ (Microsoft Corporation) C:windowsSysWOW64explorer.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 003800576 _____ (Microsoft Corporation) C:windowssystem32diagtrack.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 003748352 _____ (Microsoft Corporation) C:windowssystem32SettingsHandlers_nt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 003743048 _____ (Microsoft Corporation) C:windowsSysWOW64OneCoreUAPCommonProxyStub.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 003727360 _____ (Microsoft Corporation) C:windowssystem32win32kfull.sys

2020-07-16 00:34 – 2020-07-16 00:34 – 003712000 _____ (Microsoft Corporation) C:windowssystem32AppXDeploymentServer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 003084800 _____ (Microsoft Corporation) C:windowssystem32DWrite.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002799104 _____ (Microsoft Corporation) C:windowsSysWOW64win32kfull.sys

2020-07-16 00:34 – 2020-07-16 00:34 – 002768984 _____ (Microsoft Corporation) C:windowssystem32KernelBase.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002737664 _____ (Microsoft Corporation) C:windowssystem32WebRuntimeManager.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002716672 _____ (Microsoft Corporation) C:windowssystem32win32kbase.sys

2020-07-16 00:34 – 2020-07-16 00:34 – 002576896 _____ (Microsoft Corporation) C:windowsSysWOW64DWrite.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002552120 _____ (Microsoft Corporation) C:windowssystem32UpdateAgent.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002505496 _____ (Microsoft Corporation) C:windowssystem32twinapi.appcore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002467840 _____ (Microsoft Corporation) C:windowssystem32InstallService.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002448712 _____ (Microsoft Corporation) C:windowssystem32msxml6.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002357248 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.Perception.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002285056 _____ (Microsoft Corporation) C:windowssystem32Windows.Graphics.Printing.3D.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002264064 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.Bluetooth.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002237096 _____ (Microsoft Corporation) C:windowssystem32Windows.ApplicationModel.Store.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002161664 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.PointOfService.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002087168 _____ (Microsoft Corporation) C:windowsSysWOW64KernelBase.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002074112 _____ (Microsoft Corporation) C:windowssystem32ISM.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 002060288 _____ (Microsoft Corporation) C:windowssystem32cdprt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001991592 _____ (Microsoft Corporation) C:windowsSysWOW64twinapi.appcore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001952880 _____ (Microsoft Corporation) C:windowsSysWOW64msxml6.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001946144 _____ (Microsoft Corporation) C:windowssystem32dcomp.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001918464 _____ (Microsoft Corporation) C:windowssystem32wevtsvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001885184 _____ (Microsoft Corporation) C:windowssystem32FntCache.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001877504 _____ (Microsoft Corporation) C:windowssystem32LocationFramework.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001827328 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.Speech.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001821696 _____ (Microsoft Corporation) C:windowssystem32CoreShell.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001787392 _____ (Microsoft Corporation) C:windowssystem32Windows.Globalization.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001764336 _____ (Microsoft Corporation) C:windowssystem32WindowsCodecs.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001745728 _____ (Microsoft Corporation) C:windowssystem32ContentDeliveryManager.Utilities.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001743680 _____ (Microsoft Corporation) C:windowssystem32sppobjs.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001737728 _____ (Microsoft Corporation) C:windowsSysWOW64InstallService.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001723392 _____ (Microsoft Corporation) C:windowssystem32Wpc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001697792 _____ (Microsoft Corporation) C:windowssystem32GdiPlus.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001665728 _____ (Microsoft Corporation) C:windowsSysWOW64user32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001658368 _____ (Microsoft Corporation) C:windowssystem32lsasrv.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001656904 _____ (Microsoft Corporation) C:windowssystem32user32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001655472 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.ApplicationModel.Store.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001654304 _____ (Microsoft Corporation) C:windowssystem32gdi32full.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001640448 _____ (Microsoft Corporation) C:windowssystem32TaskFlowDataEngine.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001612800 _____ (Microsoft Corporation) C:windowssystem32wpncore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001604608 _____ (Microsoft Corporation) C:windowssystem32dosvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001581568 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.Perception.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001550336 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Graphics.Printing.3D.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001540608 _____ (Microsoft Corporation) C:windowssystem32WindowManagement.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001512960 _____ (Microsoft Corporation) C:windowsSysWOW64cdprt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001500160 _____ (Microsoft Corporation) C:windowssystem32TokenBroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001495040 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.Bluetooth.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001486848 _____ (Microsoft Corporation) C:windowssystem32usocoreworker.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 001484384 _____ (Microsoft Corporation) C:windowsSysWOW64WindowsCodecs.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001477632 _____ (Microsoft Corporation) C:windowsSysWOW64dcomp.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001463808 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.PointOfService.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001458688 _____ (Microsoft Corporation) C:windowsSysWOW64GdiPlus.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001420328 _____ (Microsoft Corporation) C:windowsSysWOW64gdi32full.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001397568 _____ (Microsoft Corporation) C:windowssystem32hvix64.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 001392128 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.FaceAnalysis.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001385696 _____ (Microsoft Corporation) C:windowssystem32Windows.UI.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001374208 _____ (Microsoft Corporation) C:windowssystem32NotificationController.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001371136 _____ (Microsoft Corporation) C:windowsSysWOW64Wpc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001357824 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Globalization.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001337856 _____ (Microsoft Corporation) C:windowssystem32wpnapps.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001335296 _____ (Microsoft Corporation) C:windowssystem32MiracastReceiver.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001306944 _____ (Microsoft Corporation) C:windowsSysWOW64ContentDeliveryManager.Utilities.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001290192 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.Sensors.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001284608 _____ (Microsoft Corporation) C:windowssystem32werconcpl.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001284608 _____ (Microsoft Corporation) C:windowssystem32usermgr.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001271296 _____ (Microsoft Corporation) C:windowssystem32SEMgrSvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001265152 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.Speech.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001247232 _____ (Microsoft Corporation) C:windowsSysWOW64TokenBroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001223168 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.FaceAnalysis.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001195008 _____ (Microsoft Corporation) C:windowssystem32sdengin2.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001183744 _____ (Microsoft Corporation) C:windowssystem32Windows.Security.Authentication.Web.Core.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001159168 _____ (Microsoft Corporation) C:windowssystem32MbaeApiPublic.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001151304 _____ (Microsoft Corporation) C:windowssystem32InputHost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001149712 _____ (Microsoft Corporation) C:windowssystem32ApplyTrustOffline.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 001125376 _____ (Microsoft Corporation) C:windowssystem32CBDHSvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001121792 _____ (Microsoft Corporation) C:windowssystem32MrmCoreR.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001100800 _____ (Microsoft Corporation) C:windowssystem32Windows.UI.Immersive.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001086776 _____ (Microsoft Corporation) C:windowssystem32Windows.Services.TargetedContent.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001081344 _____ (Microsoft Corporation) C:windowssystem32ShareHost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001077048 _____ (Microsoft Corporation) C:windowssystem32hvax64.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 001068544 _____ (Microsoft Corporation) C:windowssystem32SettingSyncCore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001059840 _____ (Microsoft Corporation) C:windowssystem32Windows.Networking.BackgroundTransfer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001055232 _____ (Microsoft Corporation) C:windowssystem32Windows.AccountsControl.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001048992 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.UI.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001028336 _____ (Microsoft Corporation) C:windowssystem32Windows.Perception.Stub.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001014784 _____ (Microsoft Corporation) C:windowsSysWOW64wpnapps.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001009152 _____ (Microsoft Corporation) C:windowssystem32StorSvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001008960 _____ (Microsoft Corporation) C:windowssystem32CloudExperienceHostCommon.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 001007616 _____ (Microsoft Corporation) C:windowssystem32kerberos.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000995840 _____ (Microsoft Corporation) C:windowssystem32EdgeManager.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000958608 _____ (Microsoft Corporation) C:windowssystem32AppContracts.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000950272 _____ (Microsoft Corporation) C:windowssystem32rasapi32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000949760 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.Ocr.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000945176 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.Sensors.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000931840 _____ (Microsoft Corporation) C:windowssystem32Windows.Internal.Management.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000922624 _____ (Microsoft Corporation) C:windowssystem32Windows.Management.Service.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000919880 _____ (Microsoft Corporation) C:windowssystem32Windows.ApplicationModel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000917504 _____ (Microsoft Corporation) C:windowssystem32Windows.Security.Authentication.OnlineId.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000913408 _____ (Microsoft Corporation) C:windowssystem32Windows.UI.Search.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000912896 _____ (Microsoft Corporation) C:windowsSysWOW64MiracastReceiver.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000904192 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.SmartCards.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000899584 _____ (Microsoft Corporation) C:windowssystem32MdmDiagnostics.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000898048 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.UI.Immersive.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000895600 _____ (Microsoft Corporation) C:windowsSysWOW64MrmCoreR.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000892928 _____ (Microsoft Corporation) C:windowsSysWOW64MbaeApiPublic.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000889416 _____ (Microsoft Corporation) C:windowssystem32Windows.Internal.Shell.Broker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000882184 _____ (Microsoft Corporation) C:windowssystem32wer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000882176 _____ (Microsoft Corporation) C:windowsSysWOW64ShareHost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000875008 _____ (Microsoft Corporation) C:windowsSysWOW64rasapi32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000867840 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Security.Authentication.Web.Core.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000865280 _____ (Microsoft Corporation) C:windowssystem32efswrt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000848384 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Networking.BackgroundTransfer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000844096 _____ (Microsoft Corporation) C:windowsSysWOW64CloudExperienceHostCommon.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000827904 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.Import.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000822200 _____ (Microsoft Corporation) C:windowssystem32fontdrvhost.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000821232 _____ (Microsoft Corporation) C:windowssystem32windows.applicationmodel.datatransfer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000814080 _____ (Microsoft Corporation) C:windowsSysWOW64SettingSyncCore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000809984 _____ (Microsoft Corporation) C:windowssystem32Windows.Gaming.Input.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000797448 _____ (Microsoft Corporation) C:windowssystem32oleaut32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000793320 _____ (Microsoft Corporation) C:windowsSysWOW64InputHost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000783488 _____ (Microsoft Corporation) C:windowssystem32tcblaunch.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000782848 _____ (Microsoft Corporation) C:windowsSysWOW64kerberos.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000779080 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Services.TargetedContent.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000778872 _____ (Microsoft Corporation) C:windowsSysWOW64AppContracts.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000750592 _____ (Microsoft Corporation) C:windowssystem32ActivationManager.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000750080 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Security.Authentication.OnlineId.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000742712 _____ (Microsoft Corporation) C:windowssystem32LicensingWinRT.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000737792 _____ (Microsoft Corporation) C:windowssystem32Windows.System.Launcher.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000733184 _____ (Microsoft Corporation) C:windowssystem32windows.immersiveshell.serviceprovider.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000727040 _____ (Microsoft Corporation) C:windowssystem32agentactivationruntime.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000722072 _____ (Microsoft Corporation) C:windowssystem32kernel32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000717824 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.AccountsControl.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000716288 _____ (Microsoft Corporation) C:windowssystem32agentactivationruntimewindows.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000695208 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.ApplicationModel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000692224 _____ (Microsoft Corporation) C:windowssystem32LockController.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000689664 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.UI.Search.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000687104 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.Ocr.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000685384 _____ (Microsoft Corporation) C:windowsSysWOW64wer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000684864 _____ (Microsoft Corporation) C:windowssystem32SHCore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000678720 _____ (Microsoft Corporation) C:windowssystem32StructuredQuery.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000673448 _____ (Microsoft Corporation) C:windowsSysWOW64fontdrvhost.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000669184 _____ (Microsoft Corporation) C:windowsSysWOW64EdgeManager.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000656696 _____ (Microsoft Corporation) C:windowssystem32Driversspaceport.sys

2020-07-16 00:34 – 2020-07-16 00:34 – 000653824 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Internal.Management.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000651264 _____ (Microsoft Corporation) C:windowssystem32DevicesFlowBroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000639488 _____ (Microsoft Corporation) C:windowssystem32twinapi.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000638464 _____ (Microsoft Corporation) C:windowssystem32twinui.appcore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000630784 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.AllJoyn.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000628416 _____ (Microsoft Corporation) C:windowsSysWOW64kernel32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000628024 _____ (Microsoft Corporation) C:windowsSysWOW64LicensingWinRT.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000624640 _____ (Microsoft Corporation) C:windowssystem32TileDataRepository.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000616960 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.LowLevel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000614912 _____ (Microsoft Corporation) C:windowsSysWOW64efswrt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000614912 _____ (Microsoft Corporation) C:windowssystem32netprofmsvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000608256 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.SmartCards.Phone.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000605896 _____ (Microsoft Corporation) C:windowssystem32sechost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000602112 _____ (Microsoft Corporation) C:windowssystem32Windows.Payments.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000600064 _____ (Microsoft Corporation) C:windowsSysWOW64ActivationManager.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000596992 _____ (Microsoft Corporation) C:windowssystem32vbscript.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000594992 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Perception.Stub.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000593408 _____ (Microsoft Corporation) C:windowsSysWOW64oleaut32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000584704 _____ (Microsoft Corporation) C:windowssystem32PlayToManager.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000582056 _____ (Microsoft Corporation) C:windowsSysWOW64windows.applicationmodel.datatransfer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000570368 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.Import.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000565248 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Gaming.Input.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000550400 _____ (Microsoft Corporation) C:windowssystem32win32k.sys

2020-07-16 00:34 – 2020-07-16 00:34 – 000549048 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.MediaControl.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000544256 _____ (Microsoft Corporation) C:windowssystem32usosvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000542288 _____ (Microsoft Corporation) C:windowsSysWOW64StructuredQuery.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000540672 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.SmartCards.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000538664 _____ (Microsoft Corporation) C:windowsSysWOW64SHCore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000534016 _____ (Microsoft Corporation) C:windowssystem32schannel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000533504 _____ (Microsoft Corporation) C:windowsSysWOW64vbscript.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000526848 _____ (Microsoft Corporation) C:windowssystem32Windows.Graphics.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000524784 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.Enumeration.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000522240 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.System.Launcher.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000518656 _____ (Microsoft Corporation) C:windowssystem32ncsi.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000518464 _____ (Microsoft Corporation) C:windowssystem32WerFault.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000513024 _____ (Microsoft Corporation) C:windowsSysWOW64twinapi.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000513024 _____ (Microsoft Corporation) C:windowssystem32Windows.Data.Activities.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000512000 _____ (Microsoft Corporation) C:windowssystem32Windows.Cortana.Desktop.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000502784 _____ (Microsoft Corporation) C:windowsSysWOW64twinui.appcore.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000502784 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.WiFiDirect.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000501760 _____ (Microsoft Corporation) C:windowssystem32Windows.ApplicationModel.LockScreen.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000497664 _____ (Microsoft Corporation) C:windowssystem32werui.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000495616 _____ (Microsoft Corporation) C:windowssystem32RTMediaFrame.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000490496 _____ (Microsoft Corporation) C:windowssystem32profsvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000478296 _____ (Microsoft Corporation) C:windowsSysWOW64sechost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000477184 _____ (Microsoft Corporation) C:windowssystem32CloudDomainJoinDataModelServer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000476160 _____ (Microsoft Corporation) C:windowssystem32MicrosoftAccountWAMExtension.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000475136 _____ (Microsoft Corporation) C:windowssystem32Geolocation.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000467960 _____ (Microsoft Corporation) C:windowssystem32Faultrep.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000467456 _____ (Microsoft Corporation) C:windowssystem32modernexecserver.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000466432 _____ (Microsoft Corporation) C:windowssystem32Windows.Graphics.Printing.Workflow.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000462848 _____ (Microsoft Corporation) C:windowsSysWOW64schannel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000461112 _____ (Microsoft Corporation) C:windowssystem32msv1_0.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000458240 _____ (Microsoft Corporation) C:windowssystem32Windows.ApplicationModel.ConversationalAgent.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000456704 _____ (Microsoft Corporation) C:windowssystem32upnphost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000453944 _____ (Microsoft Corporation) C:windowsSysWOW64WerFault.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000452096 _____ (Microsoft Corporation) C:windowsSysWOW64TileDataRepository.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000444416 _____ (Microsoft Corporation) C:windowssystem32fhsettingsprovider.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000444416 _____ (Microsoft Corporation) C:windowssystem32edgeIso.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000442368 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.AllJoyn.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000442096 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.MediaControl.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000434176 _____ (Microsoft Corporation) C:windowssystem32MicrosoftAccountExtension.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000432128 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.Midi.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000430592 _____ (Microsoft Corporation) C:windowsSysWOW64werui.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000419328 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Graphics.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000419328 _____ (Microsoft Corporation) C:windowssystem32Windows.Networking.NetworkOperators.ESim.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000416768 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.Usb.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000416768 _____ (Microsoft Corporation) C:windowssystem32RDXTaskFactory.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000412672 _____ (Microsoft Corporation) C:windowssystem32AboveLockAppHost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000411640 _____ (Microsoft Corporation) C:windowssystem32Windows.Media.Devices.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000411136 _____ (Microsoft Corporation) C:windowsSysWOW64PlayToManager.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000410112 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.SmartCards.Phone.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000406992 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.Enumeration.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000406992 _____ (Microsoft Corporation) C:windowssystem32tsmf.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000405944 _____ (Microsoft Corporation) C:windowsSysWOW64Faultrep.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000403968 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Payments.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000399672 _____ (Microsoft Corporation) C:windowssystem32SystemSettings.DataModel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000397824 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.Lights.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000395264 _____ (Microsoft Corporation) C:windowssystem32Windows.Gaming.Preview.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000392504 _____ (Microsoft Corporation) C:windowssystem32CloudExperienceHost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000388096 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.LowLevel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000387584 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.ApplicationModel.LockScreen.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000382976 _____ (Microsoft Corporation) C:windowssystem32nlasvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000381152 _____ (Microsoft Corporation) C:windowssystem32CredentialEnrollmentManager.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000380224 _____ (Microsoft Corporation) C:windowsSysWOW64msv1_0.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000375296 _____ (Microsoft Corporation) C:windowssystem32Windows.System.Diagnostics.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000374272 _____ (Microsoft Corporation) C:windowssystem32PickerPlatform.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000371712 _____ (Microsoft Corporation) C:windowsSysWOW64Geolocation.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000361472 _____ (Microsoft Corporation) C:windowssystem32vaultsvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000361472 _____ (Microsoft Corporation) C:windowssystem32QuickActionsDataModel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000358912 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.WiFiDirect.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000355840 _____ (Microsoft Corporation) C:windowssystem32wpnclient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000355840 _____ (Microsoft Corporation) C:windowssystem32WaaSMedicSvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000354816 _____ (Microsoft Corporation) C:windowsSysWOW64RTMediaFrame.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000341504 _____ (Microsoft Corporation) C:windowsSysWOW64AboveLockAppHost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000340328 _____ (Microsoft Corporation) C:windowssystem32Windows.Storage.ApplicationData.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000335360 _____ (Microsoft Corporation) C:windowsSysWOW64MicrosoftAccountWAMExtension.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000334336 _____ (Microsoft Corporation) C:windowssystem32SettingsHandlers_Cortana.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000329728 _____ (Microsoft Corporation) C:windowsSysWOW64upnphost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000328192 _____ (Microsoft Corporation) C:windowsSysWOW64edgeIso.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000327168 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Graphics.Printing.Workflow.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000327168 _____ (Microsoft Corporation) C:windowssystem32windows.internal.shellcommon.shareexperience.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000324096 _____ (Microsoft Corporation) C:windowsSysWOW64win32k.sys

2020-07-16 00:34 – 2020-07-16 00:34 – 000317440 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.Midi.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000316928 _____ (Microsoft Corporation) C:windowssystem32SyncSettings.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000311608 _____ (Microsoft Corporation) C:windowssystem32CloudExperienceHostBroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000311440 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Media.Devices.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000306688 _____ (Microsoft Corporation) C:windowssystem32Windows.UI.CredDialogController.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000295936 _____ (Microsoft Corporation) C:windowssystem32TDLMigration.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000293888 _____ (Microsoft Corporation) C:windowssystem32CXHProvisioningServer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000293376 _____ (Microsoft Corporation) C:windowsSysWOW64wpnclient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000292864 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.System.Diagnostics.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000290304 _____ (Microsoft Corporation) C:windowssystem32vaultcli.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000287744 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Gaming.Preview.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000285184 _____ (Microsoft Corporation) C:windowssystem32WaaSMedicCapsule.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000283648 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Networking.NetworkOperators.ESim.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000283136 _____ (Microsoft Corporation) C:windowssystem32Windows.UI.AppDefaults.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000281600 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.HumanInterfaceDevice.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000280576 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.Usb.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000275968 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.Lights.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000274432 _____ (Microsoft Corporation) C:windowssystem32Windows.Security.Authentication.Identity.Provider.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000272384 _____ (Microsoft Corporation) C:windowsSysWOW64PickerPlatform.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000268552 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Storage.ApplicationData.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000266552 _____ (Microsoft Corporation) C:windowsSysWOW64SystemSettings.DataModel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000265728 _____ (Microsoft Corporation) C:windowssystem32netman.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000261632 _____ (Microsoft Corporation) C:windowssystem32bthprops.cpl

2020-07-16 00:34 – 2020-07-16 00:34 – 000260288 _____ (Microsoft Corporation) C:windowssystem32logoncli.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000248832 _____ (Microsoft Corporation) C:windowssystem32PasswordEnrollmentManager.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000247864 _____ (Microsoft Corporation) C:windowssystem32weretw.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000243200 _____ (Microsoft Corporation) C:windowssystem32SystemEventsBrokerServer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000242688 _____ (Microsoft Corporation) C:windowssystem32CapabilityAccessManagerClient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000241152 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.UI.CredDialogController.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000240640 _____ (Microsoft Corporation) C:windowssystem32dialclient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000239928 _____ (Microsoft Corporation) C:windowssystem32Windows.Management.Workplace.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000237056 _____ (Microsoft Corporation) C:windowssystem32Windows.Internal.CapturePicker.Desktop.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000237056 _____ (Microsoft Corporation) C:windowssystem32psmsrv.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000237056 _____ (Microsoft Corporation) C:windowssystem32pku2u.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000228864 _____ (Microsoft Corporation) C:windowssystem32wersvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000228864 _____ (Microsoft Corporation) C:windowssystem32netprofm.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000227840 _____ (Microsoft Corporation) C:windowsSysWOW64SyncSettings.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000224768 _____ (Microsoft Corporation) C:windowssystem32DWWIN.EXE

2020-07-16 00:34 – 2020-07-16 00:34 – 000220992 _____ (Microsoft Corporation) C:windowssystem32wermgr.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000220672 _____ (Microsoft Corporation) C:windowssystem32MtcModel.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000219136 _____ (Microsoft Corporation) C:windowssystem32wdigest.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000217600 _____ (Microsoft Corporation) C:windowsSysWOW64bthprops.cpl

2020-07-16 00:34 – 2020-07-16 00:34 – 000217600 _____ (Microsoft Corporation) C:windowssystem32Windows.ApplicationModel.Core.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000215552 _____ (Microsoft Corporation) C:windowssystem32UserDeviceRegistration.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000215040 _____ (Microsoft Corporation) C:windowssystem32PeopleBand.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000215040 _____ (Microsoft Corporation) C:windowssystem32DiagSvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000211256 _____ (Microsoft Corporation) C:windowssystem32tcbloader.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000210944 _____ (Microsoft Corporation) C:windowssystem32ErrorDetails.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000206336 _____ (Microsoft Corporation) C:windowssystem32useractivitybroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000204608 _____ (Microsoft Corporation) C:windowssystem32Driversspacedump.sys

2020-07-16 00:34 – 2020-07-16 00:34 – 000200704 _____ (Microsoft Corporation) C:windowssystem32Windows.UI.Internal.Input.ExpressiveInput.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000199496 _____ (Microsoft Corporation) C:windowsSysWOW64wermgr.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000196096 _____ (Microsoft Corporation) C:windowsSysWOW64pku2u.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000195584 _____ (Microsoft Corporation) C:windowssystem32AarSvc.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000193600 _____ (Microsoft Corporation) C:windowsSysWOW64weretw.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000190056 _____ (Microsoft Corporation) C:windowsSysWOW64logoncli.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000188928 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Security.Authentication.Identity.Provider.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000188928 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.HumanInterfaceDevice.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000186880 _____ (Microsoft Corporation) C:windowsSysWOW64DWWIN.EXE

2020-07-16 00:34 – 2020-07-16 00:34 – 000186368 _____ (Microsoft Corporation) C:windowsSysWOW64wdigest.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000183808 _____ (Microsoft Corporation) C:windowssystem32Windows.Energy.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000180224 _____ (Microsoft Corporation) C:windowssystem32dialserver.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000179712 _____ (Microsoft Corporation) C:windowssystem32SettingsHandlers_Clipboard.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000179512 _____ (Microsoft Corporation) C:windowssystem32Driversksecpkg.sys

2020-07-16 00:34 – 2020-07-16 00:34 – 000179200 _____ (Microsoft Corporation) C:windowssystem32PrintWorkflowService.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000179200 _____ (Microsoft Corporation) C:windowssystem32easwrt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000179200 _____ (Microsoft Corporation) C:windowssystem32AppExtension.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000178688 _____ (Microsoft Corporation) C:windowssystem32Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000176952 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Management.Workplace.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000172032 _____ (Microsoft Corporation) C:windowsSysWOW64dialclient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000172032 _____ (Microsoft Corporation) C:windowssystem32Windows.Internal.CapturePicker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000165840 _____ (Microsoft Corporation) C:windowssystem32WerFaultSecure.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000165376 _____ (Microsoft Corporation) C:windowssplwow64.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000162816 _____ (Microsoft Corporation) C:windowsSysWOW64ErrorDetails.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000162304 _____ (Microsoft Corporation) C:windowsSysWOW64UserDeviceRegistration.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000160768 _____ (Microsoft Corporation) C:windowsSysWOW64CapabilityAccessManagerClient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000159744 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.ApplicationModel.Core.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000157184 _____ (Microsoft Corporation) C:windowssystem32PrintWSDAHost.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000152064 _____ (Microsoft Corporation) C:windowsSysWOW64useractivitybroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000151552 _____ (Microsoft Corporation) C:windowssystem32fdWSD.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000151040 _____ (Microsoft Corporation) C:windowssystem32Windows.Devices.SerialCommunication.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000150336 _____ (Microsoft Corporation) C:windowsSysWOW64WerFaultSecure.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000147968 _____ (Microsoft Corporation) C:windowssystem32Family.Client.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000146232 _____ (Microsoft Corporation) C:windowssystem32ResourcePolicyServer.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000144384 _____ (Microsoft Corporation) C:windowssystem32AppointmentActivation.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000143360 _____ (Microsoft Corporation) C:windowsSysWOW64easwrt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000141312 _____ (Microsoft Corporation) C:windowsSysWOW64PrintWorkflowService.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000140800 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Energy.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000133632 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000133632 _____ (Microsoft Corporation) C:windowsSysWOW64AppExtension.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000132608 _____ (Microsoft Corporation) C:windowssystem32Windows.UI.Storage.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000132408 _____ (Microsoft Corporation) C:windowssystem32offlinelsa.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000131584 _____ (Microsoft Corporation) C:windowssystem32DevicePairingExperienceMEM.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000131072 _____ (Microsoft Corporation) C:windowssystem32CredDialogBroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000130560 _____ (Microsoft Corporation) C:windowssystem32StorageUsage.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000129536 _____ (Microsoft Corporation) C:windowssystem32CameraCaptureUI.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000128512 _____ (Microsoft Corporation) C:windowssystem32CaptureService.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000127488 _____ (Microsoft Corporation) C:windowsSysWOW64fdWSD.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000127064 _____ (Microsoft Corporation) C:windowssystem32win32u.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000125952 _____ (Microsoft Corporation) C:windowssystem32fontsub.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000124928 _____ (Microsoft Corporation) C:windowssystem32wercplsupport.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000118784 _____ (Microsoft Corporation) C:windowssystem32Windows.ApplicationModel.Background.SystemEventsBroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000118272 _____ (Microsoft Corporation) C:windowssystem32EaseOfAccessDialog.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000115712 _____ (Microsoft Corporation) C:windowsSysWOW64AppointmentActivation.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000112128 _____ (Microsoft Corporation) C:windowssystem32AxInstSv.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000110040 _____ (Microsoft Corporation) C:windowssystem32Windows.Security.Credentials.UI.CredentialPicker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000107520 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Devices.SerialCommunication.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000105984 _____ (Microsoft Corporation) C:windowssystem32utcutil.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000100864 _____ (Microsoft Corporation) C:windowssystem32sethc.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000100864 _____ (Microsoft Corporation) C:windowssystem32Family.Authentication.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000100352 _____ (Microsoft Corporation) C:windowssystem32DiagnosticInvoker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000099328 _____ (Microsoft Corporation) C:windowsSysWOW64fontsub.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000094720 _____ (Microsoft Corporation) C:windowsSysWOW64CameraCaptureUI.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000094208 _____ (Microsoft Corporation) C:windowsSysWOW64EaseOfAccessDialog.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000093184 _____ (Microsoft Corporation) C:windowssystem32nlaapi.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000092672 _____ (Microsoft Corporation) C:windowssystem32wsqmcons.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000091648 _____ (Microsoft Corporation) C:windowssystem32Windows.Internal.Graphics.Display.DisplayColorManagement.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000090624 _____ (Microsoft Corporation) C:windowssystem32keyiso.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000089600 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.ApplicationModel.Background.SystemEventsBroker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000089328 _____ (Microsoft Corporation) C:windowsSysWOW64win32u.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000089088 _____ (Microsoft Corporation) C:windowssystem32WaaSMedicAgent.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000086272 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Security.Credentials.UI.CredentialPicker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000083456 _____ (Microsoft Corporation) C:windowssystem32SystemUWPLauncher.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000082432 _____ (Microsoft Corporation) C:windowssystem32LocationFrameworkInternalPS.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000081408 _____ (Microsoft Corporation) C:windowssystem32Print.Workflow.Source.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000079360 _____ (Microsoft Corporation) C:windowsSysWOW64sethc.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000076952 _____ (Microsoft Corporation) C:windowssystem32CredentialEnrollmentManagerForUser.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000075776 _____ (Microsoft Corporation) C:windowsSysWOW64DiagnosticInvoker.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000071168 _____ (Microsoft Corporation) C:windowssystem32MiracastReceiverExt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000070248 _____ (Microsoft Corporation) C:windowssystem32ResourcePolicyClient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000068096 _____ (Microsoft Corporation) C:windowssystem32udhisapi.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000066560 _____ (Microsoft Corporation) C:windowsSysWOW64keyiso.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000066048 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Internal.Graphics.Display.DisplayColorManagement.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000065536 _____ (Microsoft Corporation) C:windowssystem32iemigplugin.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000064512 _____ (Microsoft Corporation) C:windowsSysWOW64SystemUWPLauncher.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000063488 _____ (Microsoft Corporation) C:windowssystem32tsgqec.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000061952 _____ (Microsoft Corporation) C:windowsSysWOW64Print.Workflow.Source.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000060928 _____ (Microsoft Corporation) C:windowssystem32mf3216.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000060416 _____ (Microsoft Corporation) C:windowssystem32AxInstUI.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000058368 _____ (Microsoft Corporation) C:windowsSysWOW64udhisapi.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000058368 _____ (Microsoft Corporation) C:windowsSysWOW64MiracastReceiverExt.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000052152 _____ (Microsoft Corporation) C:windowsSysWOW64ResourcePolicyClient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000046080 _____ (Microsoft Corporation) C:windowsSysWOW64mf3216.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000045056 _____ (Microsoft Corporation) C:windowssystem32npmproxy.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000044544 _____ (Microsoft Corporation) C:windowssystem32werdiagcontroller.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000040960 _____ (Microsoft Corporation) C:windowssystem32upnpcont.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000040248 _____ (Microsoft Corporation) C:windowssystem32LocationFrameworkPS.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000038912 _____ (Microsoft Corporation) C:windowsSysWOW64werdiagcontroller.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000037376 _____ (Microsoft Corporation) C:windowssystem32UIMgrBroker.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000035328 _____ (Microsoft Corporation) C:windowsSysWOW64upnpcont.exe

2020-07-16 00:34 – 2020-07-16 00:34 – 000029696 _____ (Microsoft Corporation) C:windowssystem32SystemEventsBrokerClient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000029696 _____ (Microsoft Corporation) C:windowssystem32nlmproxy.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000028672 _____ (Microsoft Corporation) C:windowssystem32WaaSMedicPS.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000026112 _____ (Microsoft Corporation) C:windowssystem32PrintWorkflowProxy.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000024064 _____ (Microsoft Corporation) C:windowssystem32CSystemEventsBrokerClient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000021504 _____ (Microsoft Corporation) C:windowsSysWOW64SystemEventsBrokerClient.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000017408 _____ (Microsoft Corporation) C:windowssystem32nlmsprep.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000016896 _____ (Microsoft Corporation) C:windowsSysWOW64PrintWorkflowProxy.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000016896 _____ (Microsoft Corporation) C:windowssystem32Windows.Graphics.Printing.Workflow.Native.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000014336 _____ (Microsoft Corporation) C:windowssystem32dciman32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000013824 _____ (Microsoft Corporation) C:windowssystem32UIManagerBrokerps.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000012288 _____ (Microsoft Corporation) C:windowsSysWOW64Windows.Graphics.Printing.Workflow.Native.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000011776 _____ (Microsoft Corporation) C:windowsSysWOW64dciman32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000008192 _____ (Microsoft Corporation) C:windowssystem32msimg32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000007168 _____ (Microsoft Corporation) C:windowsSysWOW64msimg32.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000003072 _____ (Microsoft Corporation) C:windowssystem32lpk.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000002560 _____ (Microsoft Corporation) C:windowsSysWOW64msxml6r.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000002560 _____ (Microsoft Corporation) C:windowsSysWOW64lpk.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000002560 _____ (Microsoft Corporation) C:windowssystem32msxml6r.dll

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth9.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth8.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth7.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth6.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth5.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth4.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth3.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth2.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth12.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth11.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth10.bin

2020-07-16 00:34 – 2020-07-16 00:34 – 000000315 _____ C:windowssystem32DrtmAuth1.bin

2020-07-16 00:29 – 2020-06-30 05:32 – 000390656 _____ (Microsoft Corporation) C:windowsSysWOW64poqexec.exe

2020-07-16 00:29 – 2020-06-30 05:26 – 000492544 _____ (Microsoft Corporation) C:windowssystem32poqexec.exe

2020-07-15 14:55 – 2020-08-05 18:53 – 000009369 _____ C:UsersrowimDesktopVillainous Board Game Characters.ods

2020-07-15 14:55 – 2020-07-15 14:55 – 000176888 _____ C:UsersrowimDesktopbookmarks_7_15_20.html

2020-07-15 14:39 – 2020-07-15 14:41 – 000022003 _____ C:UsersrowimDesktopWonderful 101 Collectables switch.xlsx

2020-07-14 17:18 – 2020-07-14 17:18 – 000000000 _____ C:UsersrowimAppDataLocal21F7B2F3-BE56-492C-B3E8-95A0082F884B

2020-07-12 18:05 – 2020-07-12 18:05 – 000000000 ____D C:windowssystem32TasksS-1-5-21-4253961842-2703587000-3729417406-1001

2020-07-12 17:19 – 2020-07-12 17:19 – 000000000 _____ C:UsersrowimAppDataLocal8C1B9C3C-ED41-4CF3-96F0-041243E207C8

2020-07-11 13:46 – 2020-07-11 13:45 – 000019912 _____ (Malwarebytes) C:windowssystem32DriversMbamElam.sys

2020-07-11 12:49 – 2020-08-02 13:38 – 000047915 _____ C:UsersrowimDesktopHeroes of the grid Figure List.xlsx

2020-07-11 12:49 – 2020-07-24 18:03 – 000007915 _____ C:UsersrowimDesktopStreet Fighter Figures List.xlsx

2020-07-11 12:49 – 2020-07-19 17:01 – 000154590 _____ C:UsersrowimDesktopXenoblade Chronicles 2 Rare Blades.xlsx

2020-07-11 12:49 – 2020-04-24 18:33 – 000058442 _____ C:UsersrowimDesktopMarvel Ultimate Alliance Characters.xlsx

2020-07-11 12:49 – 2020-02-20 02:39 – 000015266 _____ C:UsersrowimDesktopThree Houses Recruitment.xlsx

2020-07-11 12:49 – 2019-12-14 23:40 – 000029435 _____ C:UsersrowimDesktopXenoverse 2 Moves.xlsx

2020-07-11 12:49 – 2014-01-18 22:06 – 000019825 _____ C:UsersrowimDesktopWonderful 101 Collectables.xlsx

2020-07-11 12:48 – 2020-07-15 14:43 – 000035465 _____ C:UsersrowimDesktopSentai Series.xlsx

2020-07-11 12:47 – 2020-03-26 17:06 – 000034896 _____ C:UsersrowimDesktopMonster Hunter Monsters.xlsx

2020-07-11 12:46 – 2020-07-17 02:56 – 000129825 _____ C:UsersrowimDesktopDead By Daylight Perks.xlsx

2020-07-11 12:46 – 2020-07-15 14:25 – 000016152 _____ C:UsersrowimDesktopEpic Spell Wars Cards.xlsx

 

==================== One month (modified) ==================

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2020-08-10 17:17 – 2020-05-26 17:41 – 000000000 ____D C:Program Files (x86)Steam

2020-08-10 17:17 – 2019-03-19 05:52 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft

2020-08-10 09:59 – 2019-04-15 16:38 – 000000000 ____D C:windowssystem32SleepStudy

2020-08-09 23:00 – 2020-05-26 16:50 – 000000000 ____D C:UsersrowimAppDataLocalPackages

2020-08-09 23:00 – 2019-03-19 05:52 – 000000000 ____D C:windowsAppReadiness

2020-08-09 22:02 – 2020-06-27 22:31 – 000000785 _____ C:UsersrowimAppDataRoamingMicrosoftWindowsStart MenuProgramsESET Online Scanner.lnk

2020-08-09 22:02 – 2020-06-27 22:31 – 000000657 _____ C:UsersrowimDesktopESET Online Scanner.lnk

2020-08-08 12:42 – 2019-03-19 05:50 – 000000000 ____D C:windowsINF

2020-08-08 10:09 – 2019-05-07 05:30 – 000000000 ____D C:Program FilesMicrosoft Office

2020-08-08 00:30 – 2019-03-19 05:52 – 000000000 ___HD C:Program FilesWindowsApps

2020-08-07 17:15 – 2020-06-27 22:30 – 014860896 _____ (ESET spol. s r.o.) C:UsersrowimDownloadsesetonlinescanner.exe

2020-08-07 00:50 – 2019-05-07 05:18 – 000848226 _____ C:windowssystem32PerfStringBackup.INI

2020-08-07 00:49 – 2020-03-29 15:02 – 000000000 ____D C:Intel

2020-08-06 09:44 – 2020-06-25 18:16 – 000045945 _____ C:UsersrowimDesktopOne Piece Pirate Warriors 4 Possible Characters.xlsx

2020-08-05 23:57 – 2020-06-25 18:15 – 000014412 _____ C:UsersrowimDesktopDissidia Opera Omnia Characters.xlsx

2020-08-05 22:14 – 2020-05-26 16:52 – 000003384 _____ C:windowssystem32TasksOneDrive Standalone Update Task-S-1-5-21-4253961842-2703587000-3729417406-1001

2020-08-05 22:14 – 2020-05-26 16:52 – 000000000 ___RD C:UsersrowimOneDrive

2020-08-05 22:14 – 2020-05-26 16:46 – 000002374 _____ C:UsersrowimAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk

2020-08-05 15:24 – 2019-03-19 05:52 – 000000000 ____D C:windowssystem32NDF

2020-08-03 18:57 – 2020-05-26 16:52 – 000000000 ____D C:UsersrowimAppDataLocalPlaceholderTileLogoFolder

2020-08-02 11:51 – 2020-06-25 18:05 – 000000000 ____D C:UsersrowimDesktopHeroes of the grid Campaigns

2020-08-01 11:16 – 2020-06-25 22:22 – 000006421 _____ C:UsersrowimDesktopGuilty Gear 2020 Characters.xlsx

2020-08-01 04:04 – 2019-04-15 16:38 – 000000006 ____H C:windowsTasksSA.DAT

2020-08-01 04:04 – 2019-03-19 05:37 – 000786432 _____ C:windowssystem32configBBI

2020-07-30 19:40 – 2020-06-24 18:55 – 000000000 ____D C:UsersrowimAppDataLocalElevatedDiagnostics

2020-07-29 22:12 – 2020-05-26 17:13 – 000002308 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk

2020-07-29 22:12 – 2020-05-26 17:13 – 000002267 _____ C:UsersPublicDesktopGoogle Chrome.lnk

2020-07-29 22:12 – 2020-05-26 17:13 – 000002267 _____ C:ProgramDataDesktopGoogle Chrome.lnk

2020-07-27 01:15 – 2020-05-26 17:09 – 000002427 _____ C:UsersPublicDesktopNorton Security.lnk

2020-07-27 01:15 – 2020-05-26 17:09 – 000002427 _____ C:ProgramDataDesktopNorton Security.lnk

2020-07-26 21:20 – 2020-05-26 17:57 – 000000000 ____D C:Program FilesCommon FilesAV

2020-07-26 20:54 – 2020-05-26 17:08 – 000000000 ____D C:windowssystem32DriversNGCx64

2020-07-26 20:54 – 2019-03-19 05:37 – 000032768 _____ C:windowssystem32configELAM

2020-07-22 12:13 – 2020-05-26 20:33 – 000000000 ____D C:UsersrowimDocumentsMy Games

2020-07-22 12:12 – 2020-05-26 20:33 – 000000000 ____D C:ProgramDataPackage Cache

2020-07-20 19:34 – 2020-05-27 16:19 – 000000000 ____D C:UsersrowimDesktopgames

2020-07-16 03:20 – 2020-05-26 16:50 – 000000000 ___RD C:Usersrowim3D Objects

2020-07-16 03:20 – 2019-04-15 16:39 – 000000000 __RHD C:UsersPublicAccountPictures

2020-07-16 03:20 – 2019-04-15 16:38 – 000715480 _____ C:windowssystem32FNTCACHE.DAT

2020-07-16 03:19 – 2019-03-19 05:52 – 000000000 ___SD C:windowssystem32DiagSvcs

2020-07-16 03:19 – 2019-03-19 05:52 – 000000000 ____D C:windowsSystemResources

2020-07-16 03:19 – 2019-03-19 05:52 – 000000000 ____D C:windowssystem32oobe

2020-07-16 03:19 – 2019-03-19 05:52 – 000000000 ____D C:windowsShellExperiences

2020-07-16 03:19 – 2019-03-19 05:52 – 000000000 ____D C:windowsbcastdvr

2020-07-16 03:19 – 2019-03-19 05:52 – 000000000 ____D C:Program FilesCommon FilesSystem

2020-07-16 00:37 – 2019-03-19 05:37 – 000000000 ____D C:windowsCbsTemp

2020-07-15 14:39 – 2020-06-25 18:04 – 000000000 ____D C:UsersrowimDesktopPayouts

2020-07-15 10:57 – 2019-03-19 05:52 – 000000000 ____D C:windowsLiveKernelReports

2020-07-11 13:46 – 2020-06-13 04:00 – 000002040 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk

2020-07-11 13:46 – 2020-06-13 04:00 – 000002028 _____ C:UsersPublicDesktopMalwarebytes.lnk

2020-07-11 13:46 – 2020-06-13 04:00 – 000002028 _____ C:ProgramDataDesktopMalwarebytes.lnk

2020-07-11 13:46 – 2019-03-19 05:52 – 000000000 ___HD C:windowsELAMBKUP

2020-07-11 13:45 – 2020-06-13 04:00 – 000153312 _____ (Malwarebytes) C:windowssystem32Driversmbae64.sys

 

==================== Files in the root of some directories ========

 

2020-07-14 17:18 – 2020-07-14 17:18 – 000000000 _____ () C:UsersrowimAppDataLocal21F7B2F3-BE56-492C-B3E8-95A0082F884B

2020-07-12 17:19 – 2020-07-12 17:19 – 000000000 _____ () C:UsersrowimAppDataLocal8C1B9C3C-ED41-4CF3-96F0-041243E207C8

 

==================== SigCheck ============================

 

(There is no automatic fix for files that do not pass verification.)

 

==================== End of FRST.txt ========================

 

 

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-08-2020

Ran by rowimen (10-08-2020 17:19:34)

Running from C:UsersrowimDesktop

Windows 10 Pro Version 1903 18362.959 (X64) (2020-05-26 14:43:26)

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-4253961842-2703587000-3729417406-500 – Administrator – Disabled)

DefaultAccount (S-1-5-21-4253961842-2703587000-3729417406-503 – Limited – Disabled)

Guest (S-1-5-21-4253961842-2703587000-3729417406-501 – Limited – Disabled)

rowimen (S-1-5-21-4253961842-2703587000-3729417406-1001 – Administrator – Enabled) => C:Usersrowim

WDAGUtilityAccount (S-1-5-21-4253961842-2703587000-3729417406-504 – Limited – Disabled)

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: Norton Security (Enabled – Up to date) 1122B19A-E671-38EC-8EAC-87048FD4528D

AV: Windows Defender (Disabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

AV: Norton Security (Enabled – Up to date) 9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A

FW: Norton Security (Enabled) A6045214-8EAD-7B9C-2E68-BA2B11C858F1

FW: Norton Security (Enabled) 291930BF-AC1E-39B4-A5F3-2E31710715F6

 

==================== Installed Programs ======================

 

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

Adobe Acrobat Reader DC (HKLM-x32…AC76BA86-7AD7-1033-7B44-AC0F074E4100) (Version: 20.009.20074 – Adobe Systems Incorporated)

Google Chrome (HKLM-x32…Google Chrome) (Version: 84.0.4147.105 – Google LLC)

Google Update Helper (HKLM-x32…60EC980A-BDA2-4CB6-A427-B07A5498B4CA) (Version: 1.3.35.451 – Google LLC) Hidden

HP Audio Switch (HKLM-x32…20A40E7C-E470-4E9F-9B5C-DDB2C205E856) (Version: 1.0.154.0 – HP Inc.)

HP Connection Optimizer (HKLM-x32…6468C4A5-E47E-405F-B675-A70A70983EA6) (Version: 2.0.17.0 – HP Inc.)

HP Documentation (HKLM…HP_Documentation) (Version: 1.0.0.0 – HP Inc.)

Intel® Rapid Storage Technology (HKLM…409CB30E-E457-4008-9B1A-ED1B9EA21140) (Version: 17.2.8.1029 – Intel Corporation)

Intel® Optane™ Pinning Explorer Extensions (HKLM…94979CD2-0904-47DE-A4AC-04F1C4524650) (Version: 17.2.8.1029 – Intel Corporation)

LibreOffice 6.4.4.2 (HKLM…F00C391B-6092-40E7-9ECD-144933865571) (Version: 6.4.4.2 – The Document Foundation)

Malwarebytes version 4.1.2.73 (HKLM…35065F43-4BB2-439A-BFF7-0F1014F2E0CD_is1) (Version: 4.1.2.73 – Malwarebytes)

Microsoft 365 – en-us (HKLM…O365HomePremRetail – en-us) (Version: 16.0.13029.20308 – Microsoft Corporation)

Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 84.0.522.52 – Microsoft Corporation)

Microsoft Edge Update (HKLM-x32…Microsoft Edge Update) (Version: 1.3.133.5 – )

Microsoft OneDrive (HKUS-1-5-21-4253961842-2703587000-3729417406-1001…OneDriveSetup.exe) (Version: 20.124.0621.0006 – Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4) (Version: 9.0.30729.6161 – Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…9BE518E6-ECC6-35A9-88E4-87755C07200F) (Version: 9.0.30729.6161 – Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable – 10.0.40219 (HKLM…1D8E6291-B0D5-35EC-8441-6616F567A0F7) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…F0C3E5D1-1ADE-321E-8167-68EF0DE699A5) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…ca67548a-5ebe-413a-b50c-4b9ceb6d66c6) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…33d1fd90-4274-48a1-9bc1-97e33d9c2d6f) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…50d4fc8-5d48-4b8f-8972-47c82c46020f) (Version: 12.0.30501.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…f65db027-aff3-4070-886a-0d87064aabb1) (Version: 12.0.30501.0 – Microsoft Corporation)

Microsoft Visual C++ 2017 Redistributable (x64) – 14.10.25008 (HKLM-x32…f1e7e313-06df-4c56-96a9-99fdfd149c51) (Version: 14.10.25008.0 – Microsoft Corporation)

Microsoft Visual C++ 2017 Redistributable (x86) – 14.10.25008 (HKLM-x32…c239cea1-d49e-4e16-8e87-8c055765f7ec) (Version: 14.10.25008.0 – Microsoft Corporation)

Norton Security (HKLM-x32…NGC) (Version: 22.20.5.39 – Symantec Corporation)

Office 16 Click-to-Run Extensibility Component (HKLM…90160000-008C-0000-1000-0000000FF1CE) (Version: 16.0.13029.20200 – Microsoft Corporation) Hidden

Office 16 Click-to-Run Licensing Component (HKLM…90160000-007E-0000-1000-0000000FF1CE) (Version: 16.0.13029.20236 – Microsoft Corporation) Hidden

Office 16 Click-to-Run Localization Component (HKLM…90160000-008C-0409-1000-0000000FF1CE) (Version: 16.0.13029.20200 – Microsoft Corporation) Hidden

Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)

VLC media player (HKLM…VLC media player) (Version: 3.0.11 – VideoLAN)

 

Packages:

=========

Energy Star -> C:Program FilesWindowsAppsAD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2020-03-29] (HP Inc.)

HP Audio Control -> C:Program FilesWindowsAppsRealtekSemiconductorCorp.HPAudioControl_1.7.197.0_x64__dt26b99r8h8gj [2020-05-29] (Realtek Semiconductor Corp)

HP JumpStarts -> C:Program FilesWindowsAppsAD2F1837.HPJumpStarts_1.7.1464.0_x64__v10z8vjag6ke6 [2020-07-19] (HP Inc.)

HP PC Hardware Diagnostics Windows -> C:Program FilesWindowsAppsAD2F1837.HPPCHardwareDiagnosticsWindows_1.6.6.0_x64__v10z8vjag6ke6 [2020-08-08] (HP Inc.)

HP Privacy Settings -> C:Program FilesWindowsAppsAD2F1837.HPPrivacySettings_1.0.38.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.)

HP Smart -> C:Program FilesWindowsAppsAD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.)

HP System Event Utility -> C:Program FilesWindowsAppsAD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6 [2020-07-22] (HP Inc.)

Intel® Graphics Command Center -> C:Program FilesWindowsAppsAppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt [2020-06-09] (INTEL CORP) [Startup Task]

Intel® Graphics Control Panel -> C:Program FilesWindowsAppsAppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-05-26] (INTEL CORP)

Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-27] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-27] (Microsoft Corporation) [MS Ad]

MSN Weather -> C:Program FilesWindowsAppsMicrosoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-28] (Microsoft Corporation) [MS Ad]

sMedio True DVD for HP -> C:Program FilesWindowsAppsE3921EB.sMedioTrueDVDforHP_1.1.128.0_x64__agwrg61xdd7p4 [2020-07-26] (sMedio Inc.)

Synaptics TouchPad -> C:Program FilesWindowsAppsSynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-05-26] (Synaptics Incorporated)

 

==================== Custom CLSID (Whitelisted): ==============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

ShellIconOverlayIdentifiers: [  OptaneIconOverlay] -> A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9 => C:Program FilesIntelOptaneShellExtensionsOptaneShellExt.dll [2019-03-27] () [File not signed] [File is in use]

ShellIconOverlayIdentifiers: [  OverlayExcluded] -> 4433A54A-1AC8-432F-90FC-85F045CF383C => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers: [  OverlayPending] -> F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225 => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers: [  OverlayProtected] -> 476D0EA3-80F9-48B5-B70B-05E677C9C148 => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> 4433A54A-1AC8-432F-90FC-85F045CF383C => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225 => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> 476D0EA3-80F9-48B5-B70B-05E677C9C148 => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers1: [BUContextMenu] -> F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> FAD61B3D-699D-49B2-BE16-7F82CB4C59CA => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> FAD61B3D-699D-49B2-BE16-7F82CB4C59CA => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers3: [OptaneContextMenu] -> AD7EBB13-617D-3270-8FA8-46583499C4FB => C:Program FilesIntelOptaneShellExtensionsOptaneShellExt.dll [2019-03-27] () [File not signed] [File is in use]

ContextMenuHandlers6: [BUContextMenu] -> F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> FAD61B3D-699D-49B2-BE16-7F82CB4C59CA => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

 

==================== Codecs (Whitelisted) ====================

 

==================== Shortcuts & WMI ========================

 

==================== Loaded Modules (Whitelisted) =============

 

2020-05-28 20:18 – 2020-05-28 20:18 – 000138240 _____ () [File not signed] C:windowsassemblyNativeImages_v4.0.30319_32Interop.IWs06dcaa36#4ecda042e9dca02a70ac5d199921f788Interop.IWshRuntimeLibrary.ni.dll

2020-07-16 13:44 – 2020-07-16 13:44 – 000134656 _____ (hardcodet.net) [File not signed] C:windowsassemblyNativeImages_v4.0.30319_32Hardcodet.W6cab32f3#2e4498f9f3d5933ab70e316788a218edHardcodet.Wpf.TaskbarNotification.ni.dll

2020-06-20 23:42 – 2020-06-20 23:42 – 000014336 _____ (HP Inc.) [File not signed] C:Program FilesWindowsAppsAD2F1837.HPSystemEventUtility_1.1.18.0_x64__v10z8vjag6ke6SystemEventUtilityNativeRpcClient.DLL

2019-03-27 15:29 – 2019-03-27 15:29 – 000126976 _____ (Intel Corporation) [File not signed] C:Program FilesIntelOptaneShellExtensionsiaStorAfsServiceApi.dll

2020-07-16 13:44 – 2020-07-16 13:44 – 001591808 _____ (Mark Heath) [File not signed] C:windowsassemblyNativeImages_v4.0.30319_32NAudiob2e10de052bfbd5ff19c34138508e5c2NAudio.ni.dll

2020-07-16 13:44 – 2020-07-16 13:44 – 003127808 _____ (Newtonsoft) [File not signed] C:windowsassemblyNativeImages_v4.0.30319_32Newtonsoft.Jsonb429a7afd78bd366ec7825f3e7cc8c9Newtonsoft.Json.ni.dll

2020-07-16 13:44 – 2020-07-16 13:44 – 000793088 _____ (The Apache Software Foundation) [File not signed] C:windowsassemblyNativeImages_v4.0.30319_32log4netaaf8a8054b24dc9ca7d3da9831902178log4net.ni.dll

 

==================== Alternate Data Streams (Whitelisted) ========

 

==================== Safe Mode (Whitelisted) ==================

 

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

 

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMCODS => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMcMPFSvc => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMCODS => “”=”Service”

 

==================== Association (Whitelisted) =================

 

==================== Internet Explorer trusted/restricted ==========

 

==================== Hosts content: =========================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2019-03-19 05:49 – 2019-03-19 05:49 – 000000824 ____N C:windowssystem32driversetchosts

 

==================== Other Areas ===========================

 

(Currently there is no automatic fix for this section.)

 

HKUS-1-5-21-4253961842-2703587000-3729417406-1001Control PanelDesktop\Wallpaper -> C:windowswebwallpaperHP BackgroundsbackgroundDefault.jpg

DNS Servers: 194.168.4.100 – 194.168.8.100

HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )

Windows Firewall is enabled.

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(If an entry is included in the fixlist, it will be removed.)

 

HKUS-1-5-21-4253961842-2703587000-3729417406-1001…StartupApprovedRun: => “1D1BD0E0239B2B5D21EF30798954FBC2CBDF91BB._service_run”

 

==================== FirewallRules (Whitelisted) ================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [FBB68475-8CCF-4145-97C3-9E6597F41C32] => (Allow) C:Program Files (x86)Common FilesMcafeeMMSSHostMMSSHost.exe => No File

FirewallRules: [F56128DF-1B23-4F72-8D05-1B7B5FD5AC6A] => (Allow) C:Program FilesCommon FilesMcAfeeMMSSHostMMSSHost.exe => No File

FirewallRules: [FFE35D7C-BF7C-410B-9972-6AFB375BFDA8] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)

FirewallRules: [8B773A0A-B3A0-49B5-989A-8C36D881F930] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)

FirewallRules: [6DC9554F-3C66-42AD-8DFA-CB7331E1F766] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [DAEC0A4A-4A51-4212-8D27-4A552F017FB7] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [E45E668C-6AB7-4F6C-98D9-D7DC71F4E162] => (Allow) C:Program Files (x86)SteamsteamappscommonAssault SpyWindowsNoEditorASSAULT_SPY.exe () [File not signed]

FirewallRules: [F1B0F42A-76A7-4DE9-B58E-AA378F80B11F] => (Allow) C:Program Files (x86)SteamsteamappscommonAssault SpyWindowsNoEditorASSAULT_SPY.exe () [File not signed]

FirewallRules: [3D3544FC-EBD4-4C67-80BC-81411BDF63B9] => (Allow) C:Program Files (x86)SteamsteamappscommonClam ManClam Man.exe () [File not signed]

FirewallRules: [B6A86297-C359-4241-BB0B-6832A3F5D322] => (Allow) C:Program Files (x86)SteamsteamappscommonClam ManClam Man.exe () [File not signed]

FirewallRules: [E78595DB-C29B-4D52-B1B7-8791F236B60C] => (Allow) C:Program Files (x86)SteamsteamappscommonHypnospace OutlawHypnOS.exe (The NWJS Community) [File not signed]

FirewallRules: [F80C1A43-0E92-4F91-97F0-8E8530BA5283] => (Allow) C:Program Files (x86)SteamsteamappscommonHypnospace OutlawHypnOS.exe (The NWJS Community) [File not signed]

FirewallRules: [1CCB0326-46C9-4195-8BE9-8ED4BAC0F734] => (Allow) C:Program Files (x86)SteamsteamappscommonLaterAlligatorLaterAlligator.exe () [File not signed]

FirewallRules: [E3852F40-C9D6-45C5-A2F5-97370349329C] => (Allow) C:Program Files (x86)SteamsteamappscommonLaterAlligatorLaterAlligator.exe () [File not signed]

FirewallRules: [4FC2138E-06B8-4496-85E4-CAFE9CBECB4E] => (Allow) C:Program Files (x86)SteamsteamappscommonLego Star Wars SagaLEGOStarWarsSaga.exe (Traveller’s Tales (UK) Ltd) [File not signed]

FirewallRules: [BE35AC23-20D6-477E-A83E-B0AB3B4724CC] => (Allow) C:Program Files (x86)SteamsteamappscommonLego Star Wars SagaLEGOStarWarsSaga.exe (Traveller’s Tales (UK) Ltd) [File not signed]

FirewallRules: [B3CA8E1F-E551-46C6-B0AB-D9AC083AA4BF] => (Allow) C:Program Files (x86)SteamsteamappscommonLLBlazeLLBlaze.exe () [File not signed]

FirewallRules: [EFB7B632-CAE5-476A-9919-3A06E21C6B77] => (Allow) C:Program Files (x86)SteamsteamappscommonLLBlazeLLBlaze.exe () [File not signed]

FirewallRules: [FF7BAADE-D699-4522-A7D2-5E5E71492548] => (Allow) C:Program Files (x86)SteamsteamappscommonMonster PromMonsterProm.exe () [File not signed]

FirewallRules: [FBF5D355-BA5A-4A3A-B8EE-8F5A23939704] => (Allow) C:Program Files (x86)SteamsteamappscommonMonster PromMonsterProm.exe () [File not signed]

FirewallRules: [BBD17E37-84F9-49E8-BDCB-D077BA344B13] => (Allow) C:Program Files (x86)SteamsteamappscommonLovers of AetherLoversOfAether.exe (Dan Fornace) [File not signed]

FirewallRules: [F92CECCE-E219-4710-9A17-B0557D75EABF] => (Allow) C:Program Files (x86)SteamsteamappscommonLovers of AetherLoversOfAether.exe (Dan Fornace) [File not signed]

FirewallRules: [B782EF4E-BFFD-46E5-AD67-D2F4A17B49BA] => (Allow) C:Program Files (x86)SteamsteamappscommonPetal CrashPetal Crash.exe (The NW.js Community) [File not signed]

FirewallRules: [41F3B47B-B910-414E-A7FA-149ED82AFFE8] => (Allow) C:Program Files (x86)SteamsteamappscommonPetal CrashPetal Crash.exe (The NW.js Community) [File not signed]

FirewallRules: [9D042BB1-A8B2-4B38-8836-2225A85CD11D] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Pirate’s FateGame.exe (The NWJS Community) [File not signed]

FirewallRules: [BCF76B1D-6588-41CF-9814-F55DDE74501A] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Pirate’s FateGame.exe (The NWJS Community) [File not signed]

FirewallRules: [5430EA0C-8E0A-4642-894F-99C0732A9642] => (Allow) C:Program Files (x86)SteamsteamappscommonRivals of AetherRivalsofAether.exe (Dan Fornace) [File not signed]

FirewallRules: [2562CC81-D2DB-4F7D-86C5-C8A7A5EEDA3F] => (Allow) C:Program Files (x86)SteamsteamappscommonRivals of AetherRivalsofAether.exe (Dan Fornace) [File not signed]

FirewallRules: [A2B0EF34-78DB-4B5E-B52E-174904078FE2] => (Allow) C:Program Files (x86)SteamsteamappscommonSkullgirlsSkullGirls.exe () [File not signed]

FirewallRules: [519D2A11-E781-4B8E-9306-B5A3EA1AC64B] => (Allow) C:Program Files (x86)SteamsteamappscommonSkullgirlsSkullGirls.exe () [File not signed]

FirewallRules: [8B69353A-B214-4ED3-B326-4DC952F73EEB] => (Allow) C:Program Files (x86)SteamsteamappscommonSonic Adventure 2Launcher.exe () [File not signed]

FirewallRules: [DA4E0E5A-DC0D-478C-BE1F-AB6C585A7E4F] => (Allow) C:Program Files (x86)SteamsteamappscommonSonic Adventure 2Launcher.exe () [File not signed]

FirewallRules: [BC50A828-BE65-4AA4-9E11-CA574E3729D2] => (Allow) C:Program Files (x86)SteamsteamappscommonTerrariaTerraria.exe (Re-Logic) [File not signed]

FirewallRules: [2F518855-4FBD-49F1-AD10-695F9AB47B35] => (Allow) C:Program Files (x86)SteamsteamappscommonTerrariaTerraria.exe (Re-Logic) [File not signed]

FirewallRules: [D680B1C3-B475-4837-BB24-64FC2742C29E] => (Allow) C:Program Files (x86)SteamsteamappscommonThem’s Fightin’ HerdsThem’s Fightin’ Herds.exe () [File not signed]

FirewallRules: [AA6A676A-2B07-45B2-ADAF-DC061024CD48] => (Allow) C:Program Files (x86)SteamsteamappscommonThem’s Fightin’ HerdsThem’s Fightin’ Herds.exe () [File not signed]

FirewallRules: [483999E7-D4AC-41F1-BBDD-468343B499B9] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [561FB712-EF3A-443C-8B4D-450DFC61973C] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [2357B494-16D8-4895-8D7F-9CE1E7D5D6B7] => (Allow) C:Program Files (x86)SteamsteamappscommonPersona 4 GoldenP4G.exe (Sega of America, Inc. -> )

FirewallRules: [823B97D8-C573-4AFF-82AF-92FF75D27A76] => (Allow) C:Program Files (x86)SteamsteamappscommonPersona 4 GoldenP4G.exe (Sega of America, Inc. -> )

FirewallRules: [6D9C3414-2526-4E22-84B2-C627196D39B1] => (Allow) C:Program Files (x86)SteamsteamappscommonMonster Camp DemoMonsterCampDemo.exe () [File not signed]

FirewallRules: [E7E25D77-0523-430C-A4D5-9DB484C67E83] => (Allow) C:Program Files (x86)SteamsteamappscommonMonster Camp DemoMonsterCampDemo.exe () [File not signed]

FirewallRules: [949EDE96-18F2-469B-AAE5-45A2FBCF61EE] => (Allow) C:Program Files (x86)SteamsteamappscommonClam Man 2 Open MicClam Man 2 Open Mic PCClam Man 2 Open Mic.exe () [File not signed]

FirewallRules: [61A98D9E-71C3-4821-B64C-20ECF9BD5E89] => (Allow) C:Program Files (x86)SteamsteamappscommonClam Man 2 Open MicClam Man 2 Open Mic PCClam Man 2 Open Mic.exe () [File not signed]

FirewallRules: [441A15AC-7A5C-44DE-933B-C027CED8B650] => (Allow) C:Program Files (x86)SteamsteamappscommonHatinTimeBinariesWin64HatinTimeGame.exe (Gears for Breakfast ApS) [File not signed]

FirewallRules: [804CBFAB-F2C9-40BA-8CD1-6972CF326053] => (Allow) C:Program Files (x86)SteamsteamappscommonHatinTimeBinariesWin64HatinTimeGame.exe (Gears for Breakfast ApS) [File not signed]

FirewallRules: [AD6A0889-C723-4C42-852E-A450BDFE993E] => (Allow) C:Program Files (x86)SteamsteamappscommonTabletop SimulatorTabletop Simulator.exe () [File not signed]

FirewallRules: [9FB0081E-8230-4BBC-92D6-AECE5E03BCD2] => (Allow) C:Program Files (x86)SteamsteamappscommonTabletop SimulatorTabletop Simulator.exe () [File not signed]

FirewallRules: [767415CC-69CD-4319-8AEB-F5630D50426F] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

FirewallRules: [1A2DDAFD-A24B-4921-B768-6E42E8155AA0] => (Allow) C:Program FilesMicrosoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)

 

==================== Restore Points =========================

 

22-07-2020 12:12:43 Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501

29-07-2020 06:26:52 Windows Update

07-08-2020 00:43:56 Scheduled Checkpoint

 

==================== Faulty Device Manager Devices ============

 

 

==================== Event log errors: ========================

 

Application errors:

==================

Error: (08/05/2020 10:01:36 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program HP.JumpStarts.exe version 1.7.1464.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 35d4

 

Start Time: 01d66b6b91ee137a

 

Termination Time: 4294967295

 

Application Path: C:Program FilesWindowsAppsAD2F1837.HPJumpStarts_1.7.1464.0_x64__v10z8vjag6ke6HP.JumpStarts.exe

 

Report Id: 7b965161-c7dc-425c-8376-21c2a6c10cce

 

Faulting package full name: AD2F1837.HPJumpStarts_1.7.1464.0_x64__v10z8vjag6ke6

 

Faulting package-relative application ID: App

 

Hang type: Quiesce

 

Error: (08/03/2020 10:11:19 AM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program HP.JumpStarts.exe version 1.7.1464.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 4470

 

Start Time: 01d669760552ed93

 

Termination Time: 4294967295

 

Application Path: C:Program FilesWindowsAppsAD2F1837.HPJumpStarts_1.7.1464.0_x64__v10z8vjag6ke6HP.JumpStarts.exe

 

Report Id: 9828d035-15e8-4353-8665-22b5fd309cee

 

Faulting package full name: AD2F1837.HPJumpStarts_1.7.1464.0_x64__v10z8vjag6ke6

 

Faulting package-relative application ID: App

 

Hang type: Quiesce

 

Error: (07/16/2020 04:25:43 AM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program msedge.exe version 81.0.416.62 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 2224

 

Start Time: 01d65b20ac7388a5

 

Termination Time: 4294967295

 

Application Path: C:Program Files (x86)MicrosoftEdgeApplicationmsedge.exe

 

Report Id: 823d7d71-0427-4a00-8cb9-1f356210cac6

 

Faulting package full name: 

 

Faulting package-relative application ID: 

 

Hang type: Top level window is idle

 

Error: (07/15/2020 06:21:03 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: OfficeC2RClient.exe, version: 16.0.13001.20262, time stamp: 0x5ef1f593

Faulting module name: OfficeC2RClient.exe, version: 16.0.13001.20262, time stamp: 0x5ef1f593

Exception code: 0xc0000005

Fault offset: 0x00000000002de2b7

Faulting process ID: 0x3be0

Faulting application start time: 0x01d65acc410ca8dc

Faulting application path: C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe

Faulting module path: C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe

Report ID: 55ee068b-3ccb-440d-96dc-e0702f11466b

Faulting package full name: 

Faulting package-relative application ID:

 

Error: (07/15/2020 10:56:23 AM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program SystemSettings.exe version 10.0.18362.628 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 457c

 

Start Time: 01d65a8d6e7da8ea

 

Termination Time: 4294967295

 

Application Path: C:WindowsImmersiveControlPanelSystemSettings.exe

 

Report Id: 776444e0-011a-4446-a077-16e8fa2ab5bf

 

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

 

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

 

Hang type: Quiesce

 

Error: (07/15/2020 10:50:54 AM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program SystemSettings.exe version 10.0.18362.628 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 60d8

 

Start Time: 01d65a8d15ede373

 

Termination Time: 4294967295

 

Application Path: C:WindowsImmersiveControlPanelSystemSettings.exe

 

Report Id: 01a0ac91-f6f7-4057-8324-c5c2445da92b

 

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

 

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

 

Hang type: Quiesce

 

Error: (07/15/2020 10:48:25 AM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program SystemSettings.exe version 10.0.18362.628 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 4a80

 

Start Time: 01d65a7a1707df1d

 

Termination Time: 4294967295

 

Application Path: C:WindowsImmersiveControlPanelSystemSettings.exe

 

Report Id: 515f2ed8-720a-4ade-81fe-f68bbc49a4c7

 

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

 

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

 

Hang type: Quiesce

 

Error: (07/15/2020 08:32:27 AM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program SystemSettings.exe version 10.0.18362.628 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 4e40

 

Start Time: 01d6588a47e2b126

 

Termination Time: 4294967295

 

Application Path: C:WindowsImmersiveControlPanelSystemSettings.exe

 

Report Id: 983ecaa8-217c-4e70-845d-84f7838c94a3

 

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

 

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

 

Hang type: Quiesce

 

 

System errors:

=============

Error: (08/07/2020 05:28:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The eapihdrv service failed to start due to the following error: 

This driver has been blocked from loading

 

Error: (08/07/2020 05:28:43 PM) (Source: Application Popup) (EventID: 1060) (User: )

Description: ??C:UsersrowimAppDataLocalTempehdrv.sys

 

Error: (08/07/2020 05:28:42 PM) (Source: Application Popup) (EventID: 1060) (User: )

Description: ??C:UsersrowimAppDataLocalTempehdrv.sys

 

Error: (08/07/2020 05:28:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The eapihdrv service failed to start due to the following error: 

This driver has been blocked from loading

 

Error: (08/07/2020 05:28:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The eapihdrv service failed to start due to the following error: 

This driver has been blocked from loading

 

Error: (08/07/2020 05:28:42 PM) (Source: Application Popup) (EventID: 1060) (User: )

Description: ??C:UsersrowimAppDataLocalTempehdrv.sys

 

Error: (08/07/2020 05:28:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The eapihdrv service failed to start due to the following error: 

This driver has been blocked from loading

 

Error: (08/07/2020 05:28:42 PM) (Source: Application Popup) (EventID: 1060) (User: )

Description: ??C:UsersrowimAppDataLocalTempehdrv.sys

 

 

Windows Defender:

===================================

Date: 2020-06-15 12:45:58.128

Description: 

Windows Defender Antivirus scan has been stopped before completion.

Scan ID: EA4DEA9D-5B40-43DF-A86C-137F45C43D94

Scan Type: Antimalware

Scan Parameters: Full Scan

 

Date: 2020-06-13 04:22:13.276

Description: 

Windows Defender Antivirus scan has been stopped before completion.

Scan ID: 445BEA8C-648B-4893-9A6E-AE8DFF56FC19

Scan Type: Antimalware

Scan Parameters: Full Scan

 

Date: 2020-06-15 13:40:18.931

Description: 

Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.

Feature: Behavior Monitoring

Error Code: 0x80508023

Error description: The program could not find the malware and other potentially unwanted software on this device. 

Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

 

Date: 2020-06-13 04:35:31.919

Description: 

Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.

Feature: Behavior Monitoring

Error Code: 0x80508023

Error description: The program could not find the malware and other potentially unwanted software on this device. 

Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

 

Date: 2020-06-13 04:23:41.162

Description: 

Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.

Feature: Behavior Monitoring

Error Code: 0x80508023

Error description: The program could not find the malware and other potentially unwanted software on this device. 

Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

 

CodeIntegrity:

===================================

 

Date: 2020-08-09 23:38:48.484

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SIHClient.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-09 23:38:48.479

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SIHClient.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-09 23:38:48.473

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SIHClient.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-09 23:38:48.468

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SIHClient.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-09 23:38:48.455

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SIHClient.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-09 05:38:48.457

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SIHClient.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-09 05:38:48.453

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SIHClient.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

Date: 2020-08-09 05:38:48.447

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume3WindowsSystem32SIHClient.exe) attempted to load DeviceHarddiskVolume3Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that did not meet the Windows signing level requirements.

 

==================== Memory info =========================== 

 

BIOS: Insyde F.30 06/02/2020

Motherboard: HP 8532

Processor: Intel® Core™ i7-8565U CPU @ 1.80GHz

Percentage of memory in use: 64%

Total physical RAM: 8070.3 MB

Available physical RAM: 2879.33 MB

Total Virtual: 16774.3 MB

Available Virtual: 10949.55 MB

 

==================== Drives ================================

 

Drive c: (Windows) (Fixed) (Total:237.73 GB) (Free:77.7 GB) NTFS

 

\?Volume28e49cca-7b4f-40cc-b0ac-86ed876c8de9 (Windows RE tools) (Fixed) (Total:0.46 GB) (Free:0.06 GB) NTFS

\?Volume148e4f8d-5af5-454d-acc8-84ce69237c51 (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

 

==================== MBR & Partition Table ====================

 

==========================================================

Disk: 0 (Size: 238.5 GB) (Disk ID: E5A26EEC)

 

Partition: GPT.

 

==================== End of Addition.txt =======================

 

 

 

 

 

Filename: Tracking Cookies

Full Path: Not Available

 

____________________________

 

____________________________

 

 

On computers as of 

Not Available

 

Last Used 

10/08/2020 at 10:00:53

 

Startup Item 

No

 

Launched 

No

 

Threat type: Tracking Cookies. A tracking cookie is a file that can track your computing activities and report them to a third party.

 

 

____________________________

 

 

Tracking Cookies

Locate

 

 

Unknown

It is unknown how many users in the Norton Community have used this file.

 

Unknown

This file release is currently not known.

 

Low

This file risk is low.

 

 

____________________________

 

 

Source: External Media