Status
Not open for further replies.
System logs
I did not upload the FRST.txt logs

jc135

Level 1
Hi,

When I boot Windows setup DVD, after the logo screen, a MS DOS box blinks quickly and disappears, then the Keyboard question screen comes on. Is this a bad symptom of something running in the background ?

Thanks
 

nasdaq

Moderator
Verified
Staff member
Hello, Welcome to MALWARETIPS.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

When I boot Windows setup DVD, after the logo screen, a MS DOS box blinks quickly and disappears, then the Keyboard question screen comes on
Do you always boot from the Setup DVD?
What is the Keyboard question you are being asked?

===

Download the Farbar Recovery Scan Tool (FRST).
Choose the 32 or 64 bit version for your system.
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

How to attach a file:
In the Reply section in the bottom of the topic Select Click the Choose a File.
Navigate to the location of the File.
Click the file. It will appear in section.
Click the Saving button.

Please attach the logs for my review.

Let me know what problems persists.

Wait for further instructions
 

jc135

Level 1
I was trying to re-install Windows. No I do not usually boot with the Windows Setup DVD
The first question that the setup asks is to verify that you have a US keyboard.
 

jc135

Level 1
I downloaded FRST. But when I double click on it, a message box says "Windows cannot access the specified device, path or file. You may not have appropriate permissions to access the item". I downloaded it twice. Same message. Some kinda trick the hackers are playing. But I don't know how to get around it.
 

nasdaq

Moderator
Verified
Staff member
Hi,

You must use an Administrator account to download the program.
Make sure the program is located on the Desktop folder.

It may just be that your Security program is blocking the program.
Check the the security settings and if the program is quarantine restore it.

p.s.
If the Farbar program is in the Desktop Folder right click on the program and run it as an Administrator.

If all fails try to run it in Safe Mode.
 

jc135

Level 1
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-02-2020
Ran by Juko (administrator) on DESKTOP-06QQ6DN (Dell Inc. Inspiron 5520) (17-02-2020 17:29:45)
Running from C:\Users\Juko\Desktop
Loaded Profiles: Juko (Available Profiles: Juko & CSO)
Platform: Windows 10 Pro Version 1909 18363.592 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Windows Firewall Control\wfc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Windows Firewall Control\wfcs.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(NoVirusThanks Company Srl -> NoVirusThanks Company Srl) C:\Program Files\NoVirusThanks\OSArmorDevSvc\OSArmorDevSvc.exe
(NoVirusThanks Company Srl -> NoVirusThanks Company Srl) C:\Program Files\NoVirusThanks\OSArmorDevSvc\OSArmorDevUI.exe
(NoVirusThanks Company Srl -> NoVirusThanks Company Srl) C:\RegGuardSvc\Service\RegGuardSvc.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(SurfRight B.V. -> SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
(SurfRight B.V. -> SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
(VoodooSoft, LLC -> VoodooSoft, LLC ) C:\Program Files\VoodooShield\VoodooShield.exe
(VoodooSoft, LLC -> VoodooSoft, LLC ) C:\Program Files\VoodooShield\VoodooShieldService.exe
(Yang Ping -> SHADOWDEFENDER.COM) C:\Program Files\Shadow Defender\DefenderDaemon.exe
(Yang Ping -> SHADOWDEFENDER.COM) C:\Program Files\Shadow Defender\Service.exe
Failed to access process -> cavwp.exe
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> dwm.exe
Failed to access process -> fontdrvhost.exe
Failed to access process -> fontdrvhost.exe
Failed to access process -> MicrosoftEdgeUpdate.exe
Failed to access process -> svchost.exe
Failed to access process -> usocoreworker.exe
Failed to access process -> WmiPrvSE.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Malwarebytes Windows Firewall Control] => C:\Program Files\Malwarebytes\Windows Firewall Control\wfc.exe [647856 2020-02-11] (Malwarebytes Inc -> Malwarebytes)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [6531536 2019-10-31] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
HKLM\...\Run: [Shadow Defender Daemon] => C:\Program Files\Shadow Defender\DefenderDaemon.exe [601640 2018-04-21] (Yang Ping -> SHADOWDEFENDER.COM)
HKLM Group Policy restriction on software: c:\windows\System32\spool\drivers\color <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\Temp <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\system32\tasks\comodo <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\Temp\DiagTrack_miniTrace <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\Temp\* <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress <==== ATTENTION
HKLM Group Policy restriction on software: cscript.exe <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\tracing <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\SysWOW64\Tasks\Microsoft\Windows\SyncCenter <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\SysWOW64\Tasks\Microsoft\Windows\PLA\System <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\SyncCenter <==== ATTENTION
HKLM Group Policy restriction on software: wscript.exe <==== ATTENTION
HKLM Group Policy restriction on software: wmic.exe <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\SysWOW64\com\dmp <==== ATTENTION
HKLM Group Policy restriction on software: psexec.exe <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\Temp\DiagTrack_alternativeTrace <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync <==== ATTENTION
HKLM Group Policy restriction on software: powershell_ise.exe <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\SysWOW64\Tasks\Microsoft\Windows\WCM <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\SysWOW64\FxsTmp <==== ATTENTION
HKLM Group Policy restriction on software: system.management.automation.dll <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\SysWOW64\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update <==== ATTENTION
HKLM Group Policy restriction on software: C:\windows\temp\mptelemetrysubmit <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\System32\com\dmp <==== ATTENTION
HKLM Group Policy restriction on software: C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\Temporary ASP.NET Files <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\System32\Tasks <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\backgroundTaskHost.exe <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\spool\SERVERS <==== ATTENTION
HKLM Group Policy restriction on software: mshta.exe <==== ATTENTION
HKLM Group Policy restriction on software: cmd.exe <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\SysWOW64\Tasks <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam <==== ATTENTION
HKLM Group Policy restriction on software: C:\WINDOWS\Tasks <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\System32\spool\PRINTERS <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\Temp\DiagTrack_aot <==== ATTENTION
HKLM Group Policy restriction on software: powershell.exe <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\CertificateServicesClient <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader <==== ATTENTION
HKLM Group Policy restriction on software: C:\Windows\Temp\DiagTrack_diag <==== ATTENTION
HKLM Group Policy restriction on software: c:\windows\System32\FxsTmp <==== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Google\Chrome\Application\SetupMetrics <==== ATTENTION
HKLM Group Policy restriction on software: C:\WINDOWS\Registration\CRMLog <==== ATTENTION
HKLM\...\Policies\Explorer: [NoAutorun] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> C:\Program Files (x86)\Microsoft\Edge\Application\79.0.309.71\Installer\setup.exe [2020-02-11] (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicyScripts\User: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {097B8C04-26E3-4271-8668-141CDA57E024} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {123814BA-15A4-4110-B07D-8A9D67F1832F} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {1BB37779-6FBC-4185-8E01-6FEF598A671F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1D019EF0-76CF-469D-8605-B3C60D4ACDAE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {34F93BB3-2213-4B8C-A3DF-29C2ED753896} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {637EF8FB-3AA0-4813-9C65-5CC15568798B} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {674B629B-7A70-42E0-891F-51F33214E41C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {861F4092-1743-4AEB-B046-BFE3321A77CF} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223336 2020-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {BAE3F92A-974B-4894-8961-27FCE70439B5} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223336 2020-02-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {BBCB558F-8DE5-49B6-8541-B379D39B1101} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {EFC71195-FE2B-41FE-8370-6B101E269257} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {F80B7A67-FAF6-423E-98AA-C1D631F1FF86} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FEB7D7F0-F6F6-41C0-A0CB-9F5AE07AA82B} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 207.164.234.129
Tcpip\..\Interfaces\{355b1698-3af4-4ed6-b997-ed17bb457ba6}: [DhcpNameServer] 192.168.2.1 207.164.234.129

Internet Explorer:
==================

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Juko\AppData\Local\Microsoft\Edge\User Data\Default [2020-02-11]

FireFox:
========
FF DefaultProfile: m95njref.default
FF ProfilePath: C:\Users\Juko\AppData\Roaming\Mozilla\Firefox\Profiles\m95njref.default [2020-02-11]
FF ProfilePath: C:\Users\Juko\AppData\Roaming\Mozilla\Firefox\Profiles\yrz13zrh.default-release [2020-02-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-04-11] (Comodo Security Solutions, Inc. -> COMODO)
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223336 2020-02-11] (Microsoft Corporation -> Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [223336 2020-02-11] (Microsoft Corporation -> Microsoft Corporation)
R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [4471752 2019-11-13] (SurfRight B.V. -> SurfRight B.V.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-31] (Intel Corporation - pGFX -> Intel Corporation)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [6435880 2019-10-31] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\79.0.309.71\elevation_service.exe [1089928 2020-02-11] (Microsoft Corporation -> Microsoft Corporation)
R2 OSArmorDevSvc; C:\Program Files\NoVirusThanks\OSArmorDevSvc\OSArmorDevSvc.exe [3857024 2019-03-25] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)
R2 RegGuardSvc; C:\RegGuardSvc\Service\RegGuardSvc.exe [2307712 2020-02-11] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 VoodooShieldService; C:\Program Files\VoodooShield\VoodooShieldService.exe [149504 2019-12-31] (VoodooSoft, LLC -> VoodooSoft, LLC )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 wfcs; C:\Program Files\Malwarebytes\Windows Firewall Control\wfcs.exe [124592 2020-02-11] (Malwarebytes Inc -> Malwarebytes)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 {0CBD4F48-3751-475D-BE88-4F271385B672}; C:\Program Files\Shadow Defender\Service.exe [135160 2018-04-21] (Yang Ping -> SHADOWDEFENDER.COM)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 cmdboot; C:\Windows\System32\DRIVERS\cmdboot.sys [17872 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [43416 2019-03-19] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [849048 2019-03-19] (Comodo Security Solutions, Inc. -> COMODO)
R0 diskpt; C:\Windows\System32\drivers\diskpt.sys [464008 2017-10-15] (StarSoftComm(China) Ltd. -> SHADOWDEFENDER.COM)
R1 hmpalert; C:\Windows\system32\drivers\hmpalert.sys [323384 2020-02-11] (SurfRight B.V. -> SurfRight B.V.)
S3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3343872 2019-03-18] (Microsoft Windows -> Intel Corporation)
U5 osadevprotect; C:\Windows\System32\Drivers\osadevprotect.sys [25440 2020-02-17] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)
U5 OSArmorDevDrv; C:\Windows\system32\drivers\OSArmorDevDrv.sys [26576 2020-02-17] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)
U5 RegGuard; C:\Windows\system32\drivers\RegGuard.sys [31216 2020-02-17] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [451616 2018-11-23] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 VSScanner; C:\Windows\System32\DRIVERS\vsscanner.sys [29752 2018-06-25] (Microsoft Windows Hardware Compatibility Publisher -> VoodooSoft, LLC)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45664 2020-02-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [355760 2020-02-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-11] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-17 16:43 - 2020-02-17 16:44 - 000033201 _____ C:\Users\Juko\Desktop\Addition.txt
2020-02-17 16:42 - 2020-02-17 17:30 - 000019510 _____ C:\Users\Juko\Desktop\FRST.txt
2020-02-17 16:42 - 2020-02-17 17:30 - 000000000 ____D C:\FRST
2020-02-17 16:42 - 2020-02-17 17:05 - 000182154 _____ C:\Windows\ntbtlog.txt
2020-02-17 16:42 - 2020-02-17 16:42 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2020-02-17 16:39 - 2020-02-17 16:17 - 002279424 _____ (Farbar) C:\Users\Juko\Desktop\FRST64.exe
2020-02-11 19:18 - 2020-02-11 19:18 - 000000000 ____D C:\Users\Juko\Documents\Reflect
2020-02-11 19:10 - 2020-02-11 19:10 - 000000000 ____D C:\Users\Juko\AppData\Local\D3DSCache
2020-02-11 19:08 - 2020-02-17 17:06 - 000031216 _____ (NoVirusThanks Company Srl) C:\Windows\system32\Drivers\RegGuard.sys
2020-02-11 19:04 - 2020-02-11 19:04 - 000027752 _____ C:\Users\Juko\Documents\driverquery-out.txt
2020-02-11 19:01 - 2020-02-11 19:01 - 007930238 _____ C:\Users\Juko\Documents\DESKTOP-06QQ6DN.arn
2020-02-11 18:09 - 2020-02-11 18:09 - 000000000 ____D C:\Users\CSO\AppData\Roaming\Notepad++
2020-02-11 18:06 - 2019-12-24 07:34 - 000006120 _____ C:\Users\Public\Documents\user.js.71.0.k
2020-02-11 18:06 - 2019-12-24 07:34 - 000006120 _____ C:\ProgramData\Documents\user.js.71.0.k
2020-02-11 17:48 - 2020-02-11 17:48 - 000000000 ____D C:\Users\CSO\AppData\Local\PeerDistRepub
2020-02-11 17:37 - 2020-02-11 17:42 - 000000000 ____D C:\Users\Juko\AppData\Local\CrashDumps
2020-02-11 17:13 - 2020-02-11 17:13 - 000000000 ____D C:\Users\CSO\AppData\Local\Comms
2020-02-11 17:11 - 2020-02-11 17:49 - 000000000 ____D C:\Users\CSO\AppData\Local\CrashDumps
2020-02-11 17:07 - 2020-02-11 17:07 - 000000000 ___RD C:\Users\CSO\3D Objects
2020-02-11 17:07 - 2020-02-11 17:07 - 000000000 ____D C:\Users\CSO\AppData\Local\Publishers
2020-02-11 17:05 - 2020-02-11 18:14 - 000000000 __SHD C:\Users\CSO\IntelGraphicsProfiles
2020-02-11 17:05 - 2020-02-11 17:19 - 000000000 ____D C:\Users\CSO\AppData\Local\Packages
2020-02-11 17:05 - 2020-02-11 17:07 - 000000000 ____D C:\Users\CSO\AppData\Local\ConnectedDevicesPlatform
2020-02-11 17:05 - 2020-02-11 17:07 - 000000000 ____D C:\Users\CSO
2020-02-11 17:05 - 2020-02-11 17:05 - 000000020 ___SH C:\Users\CSO\ntuser.ini
2020-02-11 17:05 - 2020-02-11 17:05 - 000000000 ____D C:\Users\CSO\AppData\Roaming\Adobe
2020-02-11 17:05 - 2020-02-11 17:05 - 000000000 ____D C:\Users\CSO\AppData\Local\VirtualStore
2020-02-11 17:03 - 2020-02-01 18:28 - 000265559 _____ C:\Users\Public\Documents\Harden Windows 10 Pro 64bit v1909-g.html
2020-02-11 17:03 - 2020-02-01 18:28 - 000265559 _____ C:\ProgramData\Documents\Harden Windows 10 Pro 64bit v1909-g.html
2020-02-11 16:39 - 2020-02-11 16:39 - 000000000 ____D C:\Users\Juko\Documents\Security
2020-02-11 16:22 - 2020-02-11 16:21 - 005018200 _____ (Microsoft Corporation) C:\Users\Juko\Downloads\updateplatform_b849c0cc5fee72c5bd951d22e1cf7181814d51e0.exe
2020-02-11 16:04 - 2020-02-11 16:04 - 000000000 ____D C:\Users\Juko\Downloads\Defender 1911
2020-02-11 15:43 - 2020-02-11 15:46 - 000012766 _____ C:\Users\Juko\Documents\ac-out.txt
2020-02-11 15:40 - 2020-02-11 15:43 - 000001082 _____ C:\Users\Juko\Documents\ac.bat
2020-02-11 15:21 - 2020-02-17 17:28 - 000065502 __RSH C:\ProgramData\ntuser.pol
2020-02-11 08:43 - 2020-02-11 08:43 - 000000000 ____D C:\Users\Juko\AppData\Roaming\Scooter Software
2020-02-11 08:40 - 2020-02-11 15:40 - 000000000 ____D C:\Program Files\MS AccessChk
2020-02-11 08:31 - 2020-02-11 08:31 - 000000000 ____D C:\Users\Juko\AppData\Local\PeerDistRepub
2020-02-11 08:20 - 2020-02-11 08:20 - 000000000 ____D C:\Program Files\MS Autoruns
2020-02-11 08:18 - 2020-02-11 17:56 - 000000000 ____D C:\Users\Juko\AppData\LocalLow\Mozilla
2020-02-11 08:18 - 2020-02-11 08:18 - 000000000 ____D C:\Users\Juko\AppData\Roaming\Mozilla
2020-02-11 08:18 - 2020-02-11 08:18 - 000000000 ____D C:\Users\Juko\AppData\Local\Mozilla
2020-02-11 08:16 - 2020-02-11 19:13 - 000002008 _____ C:\Windows\diskpt.dat
2020-02-11 08:16 - 2020-02-11 08:16 - 000001083 _____ C:\Users\Public\Desktop\Shadow Defender.lnk
2020-02-11 08:16 - 2020-02-11 08:16 - 000001083 _____ C:\ProgramData\Desktop\Shadow Defender.lnk
2020-02-11 08:16 - 2020-02-11 08:16 - 000000064 _____ C:\Windows\diskpt.crt
2020-02-11 08:16 - 2020-02-11 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Defender
2020-02-11 08:16 - 2020-02-11 08:16 - 000000000 ____D C:\Program Files\Shadow Defender
2020-02-11 08:16 - 2020-02-11 08:16 - 000000000 _____ C:\Windows\diskptex.dat
2020-02-11 08:16 - 2017-10-15 05:40 - 000464008 _____ (SHADOWDEFENDER.COM) C:\Windows\system32\Drivers\diskpt.sys
2020-02-11 08:15 - 2020-02-11 08:15 - 000000000 ____D C:\RegGuardSvc
2020-02-11 08:14 - 2020-02-11 08:14 - 000000000 ____D C:\Program Files\QuickHash
2020-02-11 08:13 - 2020-02-11 08:13 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-02-11 08:13 - 2020-02-11 08:13 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-02-11 08:13 - 2020-02-11 08:13 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-02-11 08:13 - 2020-02-11 08:13 - 000002259 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-02-11 08:13 - 2020-02-11 08:13 - 000002259 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-02-11 08:12 - 2020-02-17 17:06 - 000000000 ____D C:\ProgramData\HitmanPro.Alert
2020-02-11 08:12 - 2020-02-11 08:12 - 001107400 _____ (SurfRight B.V.) C:\Windows\system32\hmpalert.dll
2020-02-11 08:12 - 2020-02-11 08:12 - 000946120 _____ (SurfRight B.V.) C:\Windows\SysWOW64\hmpalert.dll
2020-02-11 08:12 - 2020-02-11 08:12 - 000323384 _____ (SurfRight B.V.) C:\Windows\system32\Drivers\hmpalert.sys
2020-02-11 08:12 - 2020-02-11 08:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro.Alert
2020-02-11 08:12 - 2020-02-11 08:12 - 000000000 ____D C:\ProgramData\HitmanPro
2020-02-11 08:12 - 2020-02-11 08:12 - 000000000 ____D C:\Program Files (x86)\HitmanPro.Alert
2020-02-11 08:10 - 2020-02-11 08:10 - 000002023 _____ C:\Users\Public\Desktop\Macrium Reflect.lnk
2020-02-11 08:10 - 2020-02-11 08:10 - 000002023 _____ C:\ProgramData\Desktop\Macrium Reflect.lnk
2020-02-11 08:10 - 2020-02-11 08:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macrium
2020-02-11 08:10 - 2020-02-11 08:10 - 000000000 ____D C:\Program Files\Macrium
2020-02-11 08:09 - 2020-02-17 17:06 - 000026576 _____ (NoVirusThanks Company Srl) C:\Windows\system32\Drivers\OSArmorDevDrv.sys
2020-02-11 08:09 - 2020-02-17 17:06 - 000025440 _____ (NoVirusThanks Company Srl) C:\Windows\system32\Drivers\osadevprotect.sys
2020-02-11 08:09 - 2020-02-11 08:10 - 000000000 ____D C:\ProgramData\Macrium
2020-02-11 08:09 - 2020-02-11 08:09 - 000001078 _____ C:\Users\Juko\Desktop\OSArmor UI.lnk
2020-02-11 08:09 - 2020-02-11 08:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NoVirusThanks
2020-02-11 08:09 - 2020-02-11 08:09 - 000000000 ____D C:\Program Files\NoVirusThanks
2020-02-11 08:08 - 2020-02-11 08:08 - 000000921 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Beyond Compare 4.lnk
2020-02-11 08:08 - 2020-02-11 08:08 - 000000909 _____ C:\Users\Public\Desktop\Beyond Compare 4.lnk
2020-02-11 08:08 - 2020-02-11 08:08 - 000000909 _____ C:\ProgramData\Desktop\Beyond Compare 4.lnk
2020-02-11 08:08 - 2020-02-11 08:08 - 000000000 ____D C:\Program Files\Beyond Compare 4
2020-02-11 08:07 - 2020-02-11 17:59 - 000000000 ____D C:\Users\Juko\AppData\Roaming\Notepad++
2020-02-11 08:07 - 2020-02-11 08:07 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2020-02-11 08:07 - 2020-02-11 08:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-02-11 08:07 - 2020-02-11 08:07 - 000000000 ____D C:\Program Files\Notepad++
2020-02-11 08:07 - 2020-02-11 08:07 - 000000000 ____D C:\Program Files\7-Zip
2020-02-11 08:05 - 2020-02-17 17:29 - 000000000 ____D C:\ProgramData\VoodooShield
2020-02-11 08:05 - 2020-02-11 08:05 - 000000901 _____ C:\Users\Public\Desktop\Voodoo Shield.lnk
2020-02-11 08:05 - 2020-02-11 08:05 - 000000901 _____ C:\ProgramData\Desktop\Voodoo Shield.lnk
2020-02-11 08:05 - 2020-02-11 08:05 - 000000000 ____D C:\ProgramData\Package Cache
2020-02-11 08:05 - 2020-02-11 08:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VoodooShield
2020-02-11 08:05 - 2020-02-11 08:05 - 000000000 ____D C:\Program Files\VoodooShield
2020-02-11 08:05 - 2018-06-25 11:48 - 000029752 _____ (VoodooSoft, LLC) C:\Windows\system32\Drivers\vsscanner.sys
2020-02-11 08:02 - 2020-02-17 17:18 - 000136968 _____ C:\Windows\system32\Drivers\fvstore.dat
2020-02-11 08:02 - 2020-02-11 08:02 - 000000000 ___HD C:\VTRoot
2020-02-11 08:01 - 2020-02-11 08:01 - 000000000 ____D C:\ProgramData\Comodo Downloader
2020-02-11 08:00 - 2020-02-17 17:06 - 000020672 _____ C:\Windows\system32\Drivers\sfi.dat
2020-02-11 08:00 - 2020-02-11 08:00 - 000002138 _____ C:\Users\Public\Desktop\COMODO Antivirus.lnk
2020-02-11 08:00 - 2020-02-11 08:00 - 000002138 _____ C:\ProgramData\Desktop\COMODO Antivirus.lnk
2020-02-11 08:00 - 2020-02-11 08:00 - 000000000 ____D C:\Windows\system32\Tasks\COMODO
2020-02-11 08:00 - 2020-02-11 08:00 - 000000000 ____D C:\ProgramData\Shared Space
2020-02-11 08:00 - 2020-02-11 08:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2020-02-11 08:00 - 2020-02-11 08:00 - 000000000 ____D C:\ProgramData\Comodo
2020-02-11 08:00 - 2020-02-11 08:00 - 000000000 ____D C:\Program Files\COMODO
2020-02-11 08:00 - 2019-03-19 00:22 - 000017872 _____ (COMODO) C:\Windows\system32\Drivers\cmdboot.sys
2020-02-11 07:59 - 2020-02-11 08:18 - 000000000 ____D C:\ProgramData\Mozilla
2020-02-11 07:59 - 2020-02-11 07:59 - 000001368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Malwarebytes Windows Firewall Control.lnk
2020-02-11 07:59 - 2020-02-11 07:59 - 000001362 _____ C:\Users\Public\Desktop\Malwarebytes Windows Firewall Control.lnk
2020-02-11 07:59 - 2020-02-11 07:59 - 000001362 _____ C:\ProgramData\Desktop\Malwarebytes Windows Firewall Control.lnk
2020-02-11 07:59 - 2020-02-11 07:59 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-02-11 07:59 - 2020-02-11 07:59 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-02-11 07:59 - 2020-02-11 07:59 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-11 07:59 - 2020-02-11 07:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-02-11 07:57 - 2020-02-11 07:57 - 000000000 ____D C:\Users\Juko\Documents\Hardening31 1909
2020-02-11 07:54 - 2020-02-11 08:40 - 000000000 ____D C:\Users\Juko\Downloads\D3
2020-02-09 16:33 - 2020-02-09 16:33 - 000000144 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-02-09 16:31 - 2020-02-09 16:31 - 000000000 ____D C:\ProgramData\Dell
2020-02-09 16:29 - 2020-02-09 16:30 - 000000000 ____D C:\Users\Juko\Downloads\dell laptop
2020-02-09 16:28 - 2020-02-09 16:28 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2020-02-09 16:15 - 2020-02-09 16:15 - 000000000 ____D C:\Users\Juko\AppData\Local\Comms
2020-02-09 16:15 - 2020-02-09 16:15 - 000000000 ____D C:\ProgramData\Packages
2020-02-09 16:01 - 2020-02-11 16:44 - 000000000 ___RD C:\Users\Juko\OneDrive
2020-02-09 16:00 - 2020-02-17 17:13 - 000795992 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-09 16:00 - 2020-02-09 16:00 - 000000000 ____D C:\Users\Juko\AppData\Local\MicrosoftEdge
2020-02-09 16:00 - 2020-02-09 16:00 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-02-09 15:59 - 2020-02-11 17:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-02-09 15:59 - 2020-02-11 16:47 - 000000000 ____D C:\Users\Juko\AppData\Local\Packages
2020-02-09 15:59 - 2020-02-09 15:59 - 000000000 ____D C:\Users\Juko\AppData\Roaming\Adobe
2020-02-09 15:59 - 2020-02-09 15:59 - 000000000 ____D C:\Users\Juko\AppData\Local\VirtualStore
2020-02-09 15:59 - 2020-02-09 15:59 - 000000000 ____D C:\Users\Juko\AppData\Local\Publishers
2020-02-09 15:59 - 2020-02-09 15:59 - 000000000 ____D C:\Users\Juko\AppData\Local\ConnectedDevicesPlatform
2020-02-09 15:59 - 2020-02-09 14:31 - 000000000 ___RD C:\Users\Juko\3D Objects
2020-02-09 15:58 - 2020-02-16 18:30 - 000000000 ____D C:\Users\Juko
2020-02-09 15:58 - 2020-02-09 15:58 - 000000020 ___SH C:\Users\Juko\ntuser.ini
2020-02-09 15:58 - 2020-02-09 15:58 - 000000000 ____D C:\Windows\CSC
2020-02-09 15:58 - 2019-10-06 21:56 - 002874368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-02-09 15:56 - 2020-02-09 15:56 - 000000000 ____D C:\Windows\minidump
2020-02-09 15:55 - 2020-02-09 15:55 - 000000000 _SHDL C:\Documents and Settings
2020-02-09 15:54 - 2020-02-17 17:06 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-09 15:54 - 2020-02-17 17:04 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-02-09 15:54 - 2020-02-11 17:33 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-02-09 15:54 - 2020-02-09 15:54 - 000000000 ____D C:\Windows\ServiceProfiles
2020-02-09 15:54 - 2020-02-09 14:30 - 000257824 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-09 15:53 - 2020-02-16 18:30 - 000000000 ____D C:\Windows\Panther
2020-02-09 14:31 - 2020-02-17 17:06 - 000000000 __SHD C:\Users\Juko\IntelGraphicsProfiles
2020-02-09 14:31 - 2020-02-09 14:31 - 000000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-02-09 14:07 - 2020-02-09 14:07 - 000000000 ____D C:\Program Files\Intel
2020-02-09 14:07 - 2020-02-09 14:07 - 000000000 ____D C:\Program Files (x86)\Intel
2020-02-09 14:07 - 2020-02-09 14:07 - 000000000 ____D C:\Intel
2020-02-09 14:07 - 2015-07-31 01:45 - 000072688 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2020-02-09 14:00 - 2020-02-09 14:06 - 000000000 ____D C:\Windows\system32\MRT
2020-02-09 14:00 - 2020-02-09 14:00 - 120202352 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 025900032 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 022627840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 019849216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 018020352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 017787904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 014816256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 009928208 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 009711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 008012800 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 007905000 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 007849424 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 007754752 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 007600448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 007278592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 007263992 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 007195648 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 007016448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 006520480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 006435840 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 006232576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 006227104 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 006166016 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 006083832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 005943296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 005913600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 005890048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 005764664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 005501952 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 005112320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 004615616 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 004578816 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 004307968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 004150272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 004140544 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 004047360 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 004005888 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003968512 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003967920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 003791360 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003752960 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003742544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003729408 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 003703296 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003591208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 003487232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003387392 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003371928 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003263488 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003105792 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 003084800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002988344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 002956472 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002871848 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 002870784 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002801152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 002772272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002762296 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 002703872 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002698768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 002586816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002561536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002494464 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002473976 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002399232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002369552 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002305536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002284544 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002258848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002188816 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002158080 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002147328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002126112 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002120704 _____ (Microsoft Corporation) C:\Windows\system32\WpcDesktopMonSvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002114048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 002082208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001985928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001974824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 001942528 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001920512 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001916984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001866272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001856512 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001757304 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-02-09 13:57 - 2020-02-09 13:57 - 001748480 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001743888 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001726480 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001718584 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001697280 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001691648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001687040 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001659192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001655880 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001647072 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001616696 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001610752 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001539584 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001512528 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001496080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001451520 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001428992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 001413912 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001413840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001399096 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001394168 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001387024 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001366128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-02-09 13:57 - 2020-02-09 13:57 - 001348096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001330952 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001283072 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001261464 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001259416 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001257472 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001189376 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001185792 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001182720 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001182448 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001171704 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001154656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001151816 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001126912 _____ (Microsoft Corporation) C:\Windows\system32\ApplySettingsTemplateCatalog.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001106944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001098720 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001094656 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001072952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001070080 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001069064 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001066496 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001059840 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 001054864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001051664 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001047352 _____ (Microsoft Corporation) C:\Windows\system32\AppVPolicy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001027000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001020032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001007616 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 001006904 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000986936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000982840 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000975872 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000960040 _____ (Microsoft Corporation) C:\Windows\system32\AppVManifest.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000911824 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000892696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000874936 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000874536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000852480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000851456 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000844800 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000842552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000832000 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000827192 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000826368 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000822416 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000822072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000816952 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000811536 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000797112 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000774456 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000768528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000768488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000765440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000762880 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.PrinterCustomActions.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000747320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000743224 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000741376 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000708096 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000704000 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000700416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000689664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000679152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000678712 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000674280 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000673456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000671232 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000670720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000669352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000666640 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000657424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000642560 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000638264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000632320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000618496 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000606720 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000604984 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000599552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000598528 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000598016 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000593128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000589592 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000586768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000571392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000563712 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000552448 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000551736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Vid.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000542496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000534528 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.UserService.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000530944 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000524800 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000524264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000522176 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000517432 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000516544 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000514576 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000513536 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000513336 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000512512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000511000 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000496640 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000494904 _____ (Microsoft Corporation) C:\Windows\system32\TransportDSA.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000477712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-02-09 13:57 - 2020-02-09 13:57 - 000477184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000466928 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000465208 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000461320 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000453632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000452920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000446464 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000432256 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000430080 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000429568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000423936 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CscUnpinTool.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000422712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000416016 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000415544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000406480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000404904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000401920 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000396088 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000381952 _____ (Microsoft Corporation) C:\Windows\system32\AppLockerCSP.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000380944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000380928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcLayers.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000379392 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000375720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000372752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000368128 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000363840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000359424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MbbCx.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000358400 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000350720 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SpeechPrivacy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000324624 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000322504 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV1.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\AcLayers.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000292664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000291256 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000287744 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ManagedEventLogging.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000283648 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000282112 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ConfigWrapper.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000280064 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000259384 _____ (Microsoft Corporation) C:\Windows\system32\AppVFileSystemMetadata.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000251512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000249856 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000247856 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000230200 _____ (Microsoft Corporation) C:\Windows\system32\AppVStreamMap.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000225280 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-02-09 13:57 - 2020-02-09 13:57 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000220472 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000214016 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CmUtil.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000210744 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\wincredui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000204816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000202552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accessibilitycpl.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000199480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000193800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-02-09 13:57 - 2020-02-09 13:57 - 000184832 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000164776 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000164368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredui.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000162696 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000162304 _____ (Microsoft Corporation) C:\Windows\system32\fwbase.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000159232 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000136536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\omadmapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000132608 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000132096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tsusbhub.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwbase.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\UtcDecoderHost.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000127520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\WinHvPlatform.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationControlCSP.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\EaseOfAccessDialog.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000113160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000105488 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2020-02-09 13:57 - 2020-02-09 13:57 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000097080 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EaseOfAccessDialog.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000093496 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000089536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000088568 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\ApiSetHost.AppExecutionAlias.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcXtrnal.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\AtBroker.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000084488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000084488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2020-02-09 13:57 - 2020-02-09 13:57 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.SyncController.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sethc.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000074240 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000073024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000071480 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Common.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2020-02-09 13:57 - 2020-02-09 13:57 - 000067112 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AtBroker.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000061240 _____ (Microsoft Corporation) C:\Windows\system32\hvhostsvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\reg.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppCore.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\UevAppMonitor.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000054272 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CabUtil.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000047616 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000047208 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.EventLogMessages.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2010CustomActions.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\UevAgentPolicyGenerator.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS
2020-02-09 13:57 - 2020-02-09 13:57 - 000036368 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\winnsi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\DevQueryBroker.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\posetup.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000032056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000030720 _____ C:\Windows\system32\uwfservicingapi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\nsisvc.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000028344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winnsi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\lstelemetry.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\appidtel.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000024792 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Management.WmiAccess.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Management.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000021304 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppData.WinRT.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000020352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000019456 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.SyncCommon.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\wscproxystub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Common.WinRT.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\wiatrace.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\applockerfltr.sys
2020-02-09 13:57 - 2020-02-09 13:57 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.LocalSyncProvider.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiatrace.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\AcXtrnal.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernSync.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDJPN.DLL
2020-02-09 13:57 - 2020-02-09 13:57 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\UevTemplateBaselineGenerator.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\dstokenclean.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\UevTemplateConfigItemGenerator.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.SmbSyncProvider.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000009216 _____ (Microsoft Corporation) C:\Windows\system32\wscadminui.exe
2020-02-09 13:57 - 2020-02-09 13:57 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.MonitorSyncProvider.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbd106.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.SyncConditions.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2020-02-09 13:57 - 2020-02-09 13:57 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2020-02-09 13:57 - 2020-02-09 13:57 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2020-02-09 13:57 - 2020-02-09 13:57 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tier2punctuations.dll
2020-02-09 13:52 - 2019-12-10 00:15 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-02-09 13:52 - 2019-12-09 23:59 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-02-09 13:50 - 2020-02-09 13:50 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-17 17:17 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-17 17:13 - 2019-03-18 23:50 - 000000000 ____D C:\Windows\INF
2020-02-17 17:05 - 2019-03-18 23:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-02-11 17:48 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\AppReadiness
2020-02-11 16:33 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\Registration
2020-02-11 15:21 - 2019-03-18 23:52 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2020-02-11 15:12 - 2019-03-18 23:37 - 000000000 ____D C:\Windows\CbsTemp
2020-02-11 08:04 - 2019-03-18 23:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-02-11 08:00 - 2019-03-18 23:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-02-11 07:56 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\LiveKernelReports
2020-02-09 16:34 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\USOPrivate
2020-02-09 16:15 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-09 16:15 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\ServiceState
2020-02-09 15:58 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2020-02-09 15:58 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\spool
2020-02-09 15:58 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\FxsTmp
2020-02-09 15:54 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\appcompat
2020-02-09 15:54 - 2019-03-18 23:37 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-02-09 15:53 - 2019-03-18 23:49 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ___SD C:\Windows\system32\UNP
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ___RD C:\Windows\PrintDialog
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\SystemResources
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\appraiser
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\ShellComponents
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\DiagTrack
2020-02-09 14:29 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\bcastdvr
2020-02-09 13:59 - 2019-03-18 23:37 - 000000000 ____D C:\Windows\servicing

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)



ATTENTION: ==> Could not access BCD. -> 0
==================== End of FRST.txt ========================





Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Juko (17-02-2020 17:31:02)
Running from C:\Users\Juko\Desktop
Windows 10 Pro Version 1909 18363.592 (X64) (2020-02-09 20:56:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1367776484-4285500921-39707785-500 - Administrator - Disabled)
CSO (S-1-5-21-1367776484-4285500921-39707785-1004 - Limited - Enabled) => C:\Users\CSO
DefaultAccount (S-1-5-21-1367776484-4285500921-39707785-503 - Limited - Disabled)
Guest (S-1-5-21-1367776484-4285500921-39707785-501 - Limited - Disabled)
Juko (S-1-5-21-1367776484-4285500921-39707785-1001 - Administrator - Enabled) => C:\Users\Juko
WDAGUtilityAccount (S-1-5-21-1367776484-4285500921-39707785-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: COMODO Antivirus (Disabled - Out of date) {9E3E06E3-F8E0-3C44-2336-BBD8AF8F84B8}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Beyond Compare 4.3.2 (HKLM\...\BeyondCompare4_is1) (Version: 4.3.2.24472 - Scooter Software)
COMODO Antivirus (HKLM\...\{E6B0FD8D-8799-441B-8734-B8A266C0C303}) (Version: 12.0.0.6818 - COMODO Security Solutions Inc.)
HitmanPro.Alert 3 (HKLM\...\HitmanPro.Alert) (Version: 3.7.11.791 - SurfRight B.V.)
Macrium Reflect Free Edition (HKLM\...\{5037EDD4-FD4D-43EC-8BBA-BE93D60FCCEA}) (Version: 7.2.4524 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 7.2 - Paramount Software (UK) Ltd.)
Malwarebytes Windows Firewall Control (HKLM\...\Windows Firewall Control) (Version: 6.1.0.0 - BiniSoft.org)
Microsoft Edge (HKLM-x32\...\{8061116E-DD27-34F8-A5C9-3361222BD2C8}) (Version: 79.0.309.71 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.117.29 - )
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Mozilla Firefox 72.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 72.0.2 (x64 en-US)) (Version: 72.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.2 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.1 - Notepad++ Team)
NoVirusThanks OSArmor v1.4.3 (HKLM\...\NoVirusThanks OSArmor_is1) (Version: 1.4.3.0 - NoVirusThanks Company Srl)
Shadow Defender (HKLM\...\{93A07A0D-454E-43d1-86A9-5DE9C5F4411A}) (Version: 1.4.0.680 - ShadowDefender.com)
VoodooShield version 5.55 (HKLM\...\{A8644328-A66F-490E-B8FA-901FF649189D}_is1) (Version: 5.55 - VoodooSoft, LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1367776484-4285500921-39707785-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Juko\AppData\Local\Microsoft\OneDrive\19.002.0107.0005\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1367776484-4285500921-39707785-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Juko\AppData\Local\Microsoft\OneDrive\19.002.0107.0005\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-1367776484-4285500921-39707785-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1367776484-4285500921-39707785-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Juko\AppData\Local\Microsoft\OneDrive\19.002.0107.0005\amd64\FileSyncShell64.dll => No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2019-10-27] (Notepad++ -> )
ContextMenuHandlers1: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => C:\Program Files\Beyond Compare 4\BCShellEx64.dll [2019-11-01] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [DefenderContextMenuExt] -> {5EE8E9E6-2853-4D28-B2DE-6529EDA0A294} => C:\Program Files\Shadow Defender\ShellExt.dll [2018-04-21] (Yang Ping -> SHADOWDEFENDER.COM)
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers2: [DefenderContextMenuExt] -> {5EE8E9E6-2853-4D28-B2DE-6529EDA0A294} => C:\Program Files\Shadow Defender\ShellExt.dll [2018-04-21] (Yang Ping -> SHADOWDEFENDER.COM)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => C:\Program Files\Beyond Compare 4\BCShellEx64.dll [2019-11-01] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers4: [DefenderContextMenuExt] -> {5EE8E9E6-2853-4D28-B2DE-6529EDA0A294} => C:\Program Files\Shadow Defender\ShellExt.dll [2018-04-21] (Yang Ping -> SHADOWDEFENDER.COM)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => C:\Program Files\Beyond Compare 4\BCShellEx64.dll [2019-11-01] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Juko\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2020-02-11 08:05 - 2018-03-02 10:51 - 001548800 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\VoodooShield\SQLite.Interop.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\Logs:Defender.log [0]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{0CBD4F48-3751-475D-BE88-4F271385B672} => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{0CBD4F48-3751-475D-BE88-4F271385B672} => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-18 23:49 - 2019-03-18 23:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1367776484-4285500921-39707785-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 0) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WMP-In-UDP-x86] => (Allow) C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-Out-UDP-x86] => (Allow) C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-Out-TCP-x86] => (Allow) C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-In-UDP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-Out-UDP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-Out-TCP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-In-UDP-NoScope] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-Out-UDP-NoScope] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-Out-TCP-NoScope] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-In-UDP-NoScope] => (Allow) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-Out-UDP-NoScope] => (Allow) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-In-TCP-NoScope] => (Allow) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-Out-TCP-NoScope] => (Allow) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-In-UDP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-Out-UDP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-Out-TCP] => (Allow) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-In-UDP] => (Allow) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-Out-UDP] => (Allow) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-In-TCP] => (Allow) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-Out-TCP] => (Allow) C:\Program Files\Windows Media Player\wmpnetwk.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{81dd2542-30a8-4d2b-be6d-ca46477f5153}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{f3724555-3f30-4c0f-aba6-7575de43f980}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{1d34133f-8c7a-453b-8c8f-5da45a954d79}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{267c235b-a186-4521-85ea-fe09f2f667ef}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{011356e4-fd21-4d96-8263-5332bb32fba9}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{971dde8f-4de3-4adc-b38f-f3bba166f69a}] => (Block) c:\windows\system32\mdeserver.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{864de25a-3bbe-46a8-b5a5-c5985cd010d6}] => (Block) c:\windows\system32\mdeserver.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{09548098-b1de-4493-840a-5f720f2fafba}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{4949f266-bd6c-4d68-8bec-b6d94c742e5e}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{dd8c3e84-2f8e-430f-85c0-73ee102a1327}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{ca75e379-f43f-4656-a881-140a65d32e6f}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{fbb926bd-cda1-473c-9fd1-27322cb94f2d}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{db5663a6-5d3c-4779-8563-e2af4618c035}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{dc4ad771-3f51-4fb9-9ab1-c02c873b30d8}] => (Block) c:\windows\system32\dashost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{e5d786dd-257a-40fd-af51-071218ab5638}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{1fec5093-ee0e-45dd-95df-e8541597136a}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{d8aa4bf9-5617-4654-8ce2-ed079fe55d40}] => (Block) c:\windows\system32\proximityuxhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{d7681832-dc61-472a-884d-5fc442e22379}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{a73c4b9c-99cd-4807-86a6-3f9d88d49aba}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{fac5479c-a792-4782-8c3e-3f7b0a3805fa}] => (Block) c:\windows\system32\raserver.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{2a7baf09-3a31-48bf-bbf3-9e97b8e38f76}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{4c03fcd5-5cef-4d35-ad0c-529966d06189}] => (Block) c:\windows\system32\msra.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{19af1baf-2fb9-44a1-b446-e894be093c2b}] => (Block) c:\windows\system32\dashost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{e8795b6f-5d44-4706-bc56-09df240e743b}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{c149fb68-dee5-4481-8003-2e47d6cac6af}] => (Block) c:\windows\system32\spoolsv.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{26f712c2-cc85-4734-aed6-1d04dd2ea1df}] => (Block) c:\windows\system32\WUDFHost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{4fbc7573-12c6-48d3-b2ce-5a5dd05d663f}] => (Block) c:\windows\system32\CastSrv.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{2adf8990-78c9-49f6-bf1e-0730d54e2dda}] => (Block) c:\windows\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{1c48d8e8-a633-409b-ad84-52628c6fbc43}] => (Allow) c:\windows\system32\authhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{a2687e4b-efdb-473c-9f56-959137ebced4}] => (Allow) c:\windows\system32\wwahost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{dd185b09-0348-4953-90f4-0eea5e45e966}] => (Allow) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MpCmdRun.exe No File
FirewallRules: [{e917aa05-a77c-4509-ab1a-0aad4093fc64}] => (Allow) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe No File
FirewallRules: [{BC978F85-B31F-48BE-8A67-80FCE9B69704}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{50422065-15FC-474F-9202-12D78B937590}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A3B45614-788A-4B76-8575-4746ED6A206C}] => (Allow) C:\Program Files\VoodooShield\VoodooShield.exe (VoodooSoft, LLC -> VoodooSoft, LLC )
FirewallRules: [{64F36E6D-8E46-4682-B65D-62D7570E059C}] => (Allow) C:\Program Files\VoodooShield\VoodooShieldService.exe (VoodooSoft, LLC -> VoodooSoft, LLC )
FirewallRules: [{E512262A-0A4E-4711-A301-A807FD3843A3}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

16-02-2020 19:31:14 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============

Name: Bluetooth Device (Personal Area Network)
Description: Bluetooth Device (Personal Area Network)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Intel(R) Centrino(R) Wireless-N 2230
Description: Intel(R) Centrino(R) Wireless-N 2230
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: NETwNe64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Realtek PCIe FE Family Controller
Description: Realtek PCIe FE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: rt640x64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Remote Desktop Device Redirector Bus
Description: Remote Desktop Device Redirector Bus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: rdpbus
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: ========================

Application errors:
==================
Error: (02/16/2020 07:31:14 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine IVssAsrWriterBackup::GetDiskComponents. hr = 0x8007085a, The Workstation service has not been started.
.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: ASR Writer
Writer Class Id: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Writer Name: ASR Writer
Writer Instance ID: {2d982c76-d0ba-402c-9bf0-342cfff669ce}

Error: (02/16/2020 06:31:08 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.

Details:
The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

Error: (02/16/2020 06:31:08 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

Error: (02/16/2020 06:31:08 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

Error: (02/16/2020 06:31:08 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

Error: (02/16/2020 06:31:07 PM) (Source: Windows Search Service) (EventID: 3057) (User: )
Description: The plug-in manager <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application

Details:
(HRESULT : 0x8e5e0713) (0x8e5e0713)

Error: (02/16/2020 06:31:07 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.

Details:
The content index catalog is corrupt. 0xc0041801 (0xc0041801)

Error: (02/16/2020 06:31:05 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: The search service has detected corrupted data files in the index {id=4810 - onecoreuap\base\appmodel\search\search\ytrip\common\util\jetutil.cpp (310)}. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
0x8e5e0713 (0x8e5e0713)


System errors:
=============
Error: (02/17/2020 05:28:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network Connectivity Assistant service depends on the IP Helper service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (02/17/2020 05:06:38 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The NcaSvc service depends on the iphlpsvc service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (02/17/2020 05:06:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The BluetoothUserService_2146b service depends on the bthserv service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (02/17/2020 05:05:01 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-06QQ6DN)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (02/17/2020 05:04:37 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-06QQ6DN)
Description: DCOM got error "1084" attempting to start the service netprofm with arguments "Unavailable" in order to run the server:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (02/17/2020 05:02:25 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-06QQ6DN)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (02/17/2020 04:55:48 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-06QQ6DN)
Description: DCOM got error "1084" attempting to start the service netprofm with arguments "Unavailable" in order to run the server:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (02/17/2020 04:52:25 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-06QQ6DN)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}


==================== Memory info ===========================

BIOS: Dell Inc. A17 05/17/2018
Motherboard: Dell Inc. 04G65K
Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
Percentage of memory in use: 38%
Total physical RAM: 8061.27 MB
Available physical RAM: 4978.01 MB
Total Virtual: 8573.27 MB
Available Virtual: 5942.95 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:81.86 GB) (Free:55.19 GB) NTFS

\\?\Volume{170575cb-0aa1-4dc4-ac3d-c89cb62b6a90}\ (Recovery) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{0b3f14de-8c7b-4b22-aae6-5bb9f10451ef}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: 25319A88)

Partition: GPT.

==================== End of Addition.txt =======================
 
Last edited:

nasdaq

Moderator
Verified
Staff member
Hi,

COMODO IS disabled and out of date.

I suggest you remove it using their uninstaller.
Download and run their uninstaller tool from this site.

Restart the computer when the removal completed.
-----

I see may restrictions on your Group Policy restriction on software
Did you set this up?
It may have been set by COMODO. Not sure.

===

After the removal of the Comodo please run the Farbar program and post fresh logs.

===

I also need you to run this program.

Read carefully and follow these steps.
TDSS

  • Download TDSSKiller and save it to your Desktop.[/*]
  • Doubleclick on TDSSKiller.exe to run the application.[/*]
  • Then click on Start Scan.[/*]
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • If an infected file is detected, the default action will be Cure, click on Continue.[/*]
  • Important: Do NOT change the default action on your own unless instructed by a malware Helper! Doing so may render your computer unbootable.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.[/*]
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.[/*]
===

Please post the logs and let me know what problem still persists.
 

nasdaq

Moderator
Verified
Staff member
Hi,
May be not. There is some entries possibly in the registry that triggers this.
We have to found out what?

Removing Comodo may help.

The TDSSKiller may give us some clues as what is process may be causing this,
 

jc135

Level 1
11:11:33.0146 0220 SetPrivileges failed!
11:11:33.0146 0220 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:11:33.0146 0220 UEFI system
11:11:33.0193 0220 ============================================================
11:11:33.0193 0220 Current date / time: 2020/02/20 11:11:33.0193
11:11:33.0193 0220 SystemInfo:
11:11:33.0193 0220
11:11:33.0193 0220 OS Version: 6.2.9200 ServicePack: 0.0
11:11:33.0193 0220 Product type: Workstation
11:11:33.0193 0220 ComputerName: DESKTOP-06QQ6DN
11:11:33.0193 0220 UserName: Juko
11:11:33.0193 0220 Windows directory: C:\Windows
11:11:33.0193 0220 System windows directory: C:\Windows
11:11:33.0193 0220 Running under WOW64
11:11:33.0193 0220 Processor architecture: Intel x64
11:11:33.0193 0220 Number of processors: 4
11:11:33.0193 0220 Page size: 0x1000
11:11:33.0193 0220 Boot type: Normal boot
11:11:33.0193 0220 ============================================================
11:11:33.0381 0220 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:11:33.0381 0220 ============================================================
11:11:33.0381 0220 \Device\Harddisk0\DR0:
11:11:33.0381 0220 GPT partitions:
11:11:33.0381 0220 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {170575CB-0AA1-4DC4-AC3D-C89CB62B6A90}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x108800
11:11:33.0381 0220 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {0B3F14DE-8C7B-4B22-AAE6-5BB9F10451EF}, Name: EFI system partition, StartLBA 0x109000, BlocksNum 0x32000
11:11:33.0381 0220 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {1CBF20D2-0C22-4D4D-9F3F-3C321B22A753}, Name: Microsoft reserved partition, StartLBA 0x13B000, BlocksNum 0x8000
11:11:33.0381 0220 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7D3DEDCC-C231-4F81-B9FC-AFB7B1825037}, Name: Basic data partition, StartLBA 0x143000, BlocksNum 0xA3B9800
11:11:33.0381 0220 MBR partitions:
11:11:33.0381 0220 ============================================================
11:11:33.0381 0220 C: <-> \Device\Harddisk0\DR0\Partition4
11:11:33.0381 0220 ============================================================
11:11:33.0381 0220 Initialize success
11:11:33.0381 0220 ============================================================
11:11:35.0475 6296 ============================================================
11:11:35.0475 6296 Scan started
11:11:35.0475 6296 Mode: Manual;
11:11:35.0475 6296 ============================================================
11:11:35.0678 6296 ================ Scan system memory ========================
11:11:35.0678 6296 System memory - ok
11:11:35.0678 6296 ================ Scan services =============================
11:11:35.0756 6296 [ 214FD47FAA4CA006B575B65AC7604E3A ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
11:11:35.0756 6296 1394ohci - ok
11:11:35.0756 6296 [ 4A8F6E456977488CC4C77149792340E9 ] 3ware C:\Windows\system32\drivers\3ware.sys
11:11:35.0756 6296 3ware - ok
11:11:35.0771 6296 [ 7B5B6E72CA093A6D6804FC430B21BC65 ] AarSvc C:\Windows\System32\AarSvc.dll
11:11:35.0771 6296 AarSvc - ok
11:11:35.0787 6296 [ 4EC1CE67D6DF47C05C9400332BB6699C ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:11:35.0787 6296 ACPI - ok
11:11:35.0803 6296 [ 97CD5E972FA665A42E9C087B1DFAE6E6 ] AcpiDev C:\Windows\System32\drivers\AcpiDev.sys
11:11:35.0803 6296 AcpiDev - ok
11:11:35.0803 6296 [ D5294DC5293B58E1B400984AC326FF3B ] acpiex C:\Windows\system32\Drivers\acpiex.sys
11:11:35.0803 6296 acpiex - ok
11:11:35.0818 6296 [ 8E4182F6A345D2D85F9AC3BCBBD7F18C ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
11:11:35.0818 6296 acpipagr - ok
11:11:35.0818 6296 [ 48D460FAA6929BC81869CC7299A6B70A ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
11:11:35.0818 6296 AcpiPmi - ok
11:11:35.0818 6296 [ B9EDE7133F52C0B989A66CA3B39AA588 ] acpitime C:\Windows\System32\drivers\acpitime.sys
11:11:35.0818 6296 acpitime - ok
11:11:35.0834 6296 [ E4EBF97A193047430CE5DE7485991CEF ] Acx01000 C:\Windows\system32\drivers\Acx01000.sys
11:11:35.0834 6296 Acx01000 - ok
11:11:35.0850 6296 [ 126384CA8ADA5F1E061CAE75581CEE8F ] ADP80XX C:\Windows\system32\drivers\ADP80XX.SYS
11:11:35.0850 6296 ADP80XX - ok
11:11:35.0865 6296 [ DE2CAA60B963E5103B3543C0DE45D25D ] AFD C:\Windows\system32\drivers\afd.sys
11:11:35.0865 6296 AFD - ok
11:11:35.0865 6296 [ 033DE3E43A9FC3F02B04E791148D0F11 ] afunix C:\Windows\system32\drivers\afunix.sys
11:11:35.0865 6296 afunix - ok
11:11:35.0881 6296 [ 1772CB571F5CAB57E407CB1DCE570D4B ] ahcache C:\Windows\system32\DRIVERS\ahcache.sys
11:11:35.0881 6296 ahcache - ok
11:11:35.0881 6296 [ 232B30ECEFBB1BEC07F2DF21D46DCDB6 ] AJRouter C:\Windows\System32\AJRouter.dll
11:11:35.0881 6296 AJRouter - ok
11:11:35.0896 6296 [ FADF878C0D61D07170C91C891EBC72B2 ] ALG C:\Windows\System32\alg.exe
11:11:35.0896 6296 ALG - ok
11:11:35.0896 6296 [ 55578CF027B0AE9F0D653B209C9F1B6D ] amdgpio2 C:\Windows\System32\drivers\amdgpio2.sys
11:11:35.0896 6296 amdgpio2 - ok
11:11:35.0896 6296 [ A6B00F4CD34F26B22B1B97D454567DA1 ] amdi2c C:\Windows\System32\drivers\amdi2c.sys
11:11:35.0896 6296 amdi2c - ok
11:11:35.0912 6296 [ 0D8417FA650DC4797B6887ED7C7B98EB ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
11:11:35.0912 6296 AmdK8 - ok
11:11:35.0912 6296 [ F59B38434ABADE857DA389F38FEBD061 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
11:11:35.0912 6296 AmdPPM - ok
11:11:35.0928 6296 [ 6BA3FF67D317AF6A6946CCF4E80B5B33 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:11:35.0928 6296 amdsata - ok
11:11:35.0928 6296 [ 3FD087BF35CFC998037DF2534ED9CBC2 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:11:35.0928 6296 amdsbs - ok
11:11:35.0928 6296 [ B6AF8AAE55DC50EA0610FCFF92133952 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:11:35.0928 6296 amdxata - ok
11:11:35.0943 6296 [ 4E8E32057AA60133C15B8D8CA110A186 ] AppID C:\Windows\system32\drivers\appid.sys
11:11:35.0943 6296 AppID - ok
11:11:35.0943 6296 [ 34F6D0A9692590838D867A26FD83B257 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:11:35.0943 6296 AppIDSvc - ok
11:11:35.0959 6296 [ EF69FEA1735E79ADE0CC1619C505FEA3 ] Appinfo C:\Windows\System32\appinfo.dll
11:11:35.0959 6296 Appinfo - ok
11:11:35.0959 6296 [ 5C8B1D3954F8ED849C68CD6D98636605 ] applockerfltr C:\Windows\system32\drivers\applockerfltr.sys
11:11:35.0959 6296 applockerfltr - ok
11:11:35.0959 6296 [ 57EEEC521B7CA488A2C0C627B1F8DB75 ] AppMgmt C:\Windows\System32\appmgmts.dll
11:11:35.0959 6296 AppMgmt - ok
11:11:35.0975 6296 [ 2D7826A4C6C3DE9668DEC67FA352ADBB ] AppReadiness C:\Windows\system32\AppReadiness.dll
11:11:35.0975 6296 AppReadiness - ok
11:11:35.0990 6296 [ C87CFD3EDEC1617BF7FD78D8ABBD6338 ] AppVClient C:\Windows\system32\AppVClient.exe
11:11:35.0990 6296 AppVClient - ok
11:11:35.0990 6296 [ 4C50309C8BCF09CD3BE8D6BFB2AC7F8A ] AppvStrm C:\Windows\system32\drivers\AppvStrm.sys
11:11:36.0006 6296 AppvStrm - ok
11:11:36.0006 6296 [ C07F25668586373CBD89CB123B2B1D00 ] AppvVemgr C:\Windows\system32\drivers\AppvVemgr.sys
11:11:36.0006 6296 AppvVemgr - ok
11:11:36.0006 6296 [ 27F8D8709FD6DE069606D162076A8340 ] AppvVfs C:\Windows\system32\drivers\AppvVfs.sys
11:11:36.0006 6296 AppvVfs - ok
11:11:36.0037 6296 [ 6C24DEB48C04FF8463CDB6F9CFA2F567 ] AppXSvc C:\Windows\system32\appxdeploymentserver.dll
11:11:36.0053 6296 AppXSvc - ok
11:11:36.0068 6296 [ A05FF69C88EAB79E51430E6982BCC6F0 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:11:36.0068 6296 arcsas - ok
11:11:36.0084 6296 [ F19C92E8396CB3BED513EFF9CE0D5923 ] AssignedAccessManagerSvc C:\Windows\System32\assignedaccessmanagersvc.dll
11:11:36.0084 6296 AssignedAccessManagerSvc - ok
11:11:36.0084 6296 [ A6275119CE5EC54FDBC62C307503F767 ] AsyncMac C:\Windows\System32\drivers\asyncmac.sys
11:11:36.0084 6296 AsyncMac - ok
11:11:36.0084 6296 [ 6CB8D419AD7A2D7D5373A7DDE2664D5C ] atapi C:\Windows\system32\drivers\atapi.sys
11:11:36.0100 6296 atapi - ok
11:11:36.0100 6296 [ 1B11588783079AF2E85C42D7C09969A4 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
11:11:36.0100 6296 AudioEndpointBuilder - ok
11:11:36.0131 6296 [ 1D0963532970A041DEEE1695E297DA3F ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:11:36.0131 6296 Audiosrv - ok
11:11:36.0131 6296 [ 23410CD6AD97FDF3FD465ACBB6C170E2 ] autotimesvc C:\Windows\System32\autotimesvc.dll
11:11:36.0146 6296 autotimesvc - ok
11:11:36.0146 6296 [ 764F44181B6092E4FA1B16F88E9571DC ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:11:36.0146 6296 AxInstSV - ok
11:11:36.0146 6296 [ A1FF5E48350A1C3332190CA008916F0E ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:11:36.0162 6296 b06bdrv - ok
11:11:36.0162 6296 [ 96ECA99B219CBB4F7C95176E492F53BF ] bam C:\Windows\system32\drivers\bam.sys
11:11:36.0162 6296 bam - ok
11:11:36.0178 6296 [ 2EA5A34CE470500BC36B02BD25836B2C ] BasicDisplay C:\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys
11:11:36.0178 6296 BasicDisplay - ok
11:11:36.0178 6296 [ A48DAFD906B1912D738A9A90559EF5F3 ] BasicRender C:\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys
11:11:36.0178 6296 BasicRender - ok
11:11:36.0193 6296 [ FEEAA31D7AAC2119B4AE5C340490524B ] BcastDVRUserService C:\Windows\System32\BcastDVRUserService.dll
11:11:36.0209 6296 BcastDVRUserService - ok
11:11:36.0209 6296 [ 739D089777D2B66DBE7201E5EA4BA2D7 ] bcmfn2 C:\Windows\System32\drivers\bcmfn2.sys
11:11:36.0209 6296 bcmfn2 - ok
11:11:36.0224 6296 [ 77FCD2D8339007BC914AF1DBAE5C6BC8 ] BDESVC C:\Windows\System32\bdesvc.dll
11:11:36.0224 6296 BDESVC - ok
11:11:36.0224 6296 [ A5D43CA19863A29D219C3C588D936FFC ] Beep C:\Windows\system32\drivers\Beep.sys
11:11:36.0224 6296 Beep - ok
11:11:36.0240 6296 [ D7654CCF919B8BD04B6D4972459F01B2 ] BFE C:\Windows\System32\bfe.dll
11:11:36.0240 6296 BFE - ok
11:11:36.0256 6296 [ 296AE796E186D9F5A9E2C219F209869E ] bindflt C:\Windows\system32\drivers\bindflt.sys
11:11:36.0256 6296 bindflt - ok
11:11:36.0271 6296 [ 0BF638DE99C7F4E45228C6325293E2DD ] BITS C:\Windows\System32\qmgr.dll
11:11:36.0271 6296 BITS - ok
11:11:36.0287 6296 [ EAF35F231112E4FB5FA1B64F817E5708 ] BluetoothUserService C:\Windows\System32\Microsoft.Bluetooth.UserService.dll
11:11:36.0287 6296 BluetoothUserService - ok
11:11:36.0303 6296 [ EE14F8F0269DB5C26D3DAD7B1A65894B ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:11:36.0303 6296 bowser - ok
11:11:36.0303 6296 [ 0339E495F3EBC438DEE1DD299E06CEDC ] BrokerInfrastructure C:\Windows\System32\psmsrv.dll
11:11:36.0303 6296 BrokerInfrastructure - ok
11:11:36.0318 6296 [ B9A68F85FB7AB4FE1EF51591DF9ABD6C ] BTAGService C:\Windows\System32\BTAGService.dll
11:11:36.0318 6296 BTAGService - ok
11:11:36.0334 6296 [ CCA2505C9EB10CDABDC9FEE10D812F02 ] BthA2dp C:\Windows\System32\drivers\BthA2dp.sys
11:11:36.0334 6296 BthA2dp - ok
11:11:36.0334 6296 [ 42C9AFF4636ACE3DCFB79FEF85345545 ] BthAvctpSvc C:\Windows\System32\BthAvctpSvc.dll
11:11:36.0334 6296 BthAvctpSvc - ok
11:11:36.0349 6296 [ 106123BBB49CB8CE937FD61CF26C3C9B ] BthEnum C:\Windows\System32\drivers\BthEnum.sys
11:11:36.0349 6296 BthEnum - ok
11:11:36.0349 6296 [ 48AE897A64019A816D694241BF62E266 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
11:11:36.0349 6296 BthHFEnum - ok
11:11:36.0349 6296 [ 9E958ED983C0DD9C690248084219C2DE ] BthLEEnum C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
11:11:36.0349 6296 BthLEEnum - ok
11:11:36.0365 6296 [ AF935DF213BEA3BAEDD40E524BB6E4F6 ] BthMini C:\Windows\System32\drivers\BTHMINI.sys
11:11:36.0365 6296 BthMini - ok
11:11:36.0365 6296 [ 98C477D98674C799758B3C6E9950E11A ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
11:11:36.0365 6296 BTHMODEM - ok
11:11:36.0381 6296 [ BCD11BDC707A4A2563774476AF6FCCBB ] BthPan C:\Windows\System32\drivers\bthpan.sys
11:11:36.0381 6296 BthPan - ok
11:11:36.0396 6296 [ 9EE2677BD8520DB004F665EF709936DB ] BTHPORT C:\Windows\System32\drivers\BTHport.sys
11:11:36.0396 6296 BTHPORT - ok
11:11:36.0396 6296 [ E947884C5B5A5FDE7F13D0D16EEA45EE ] bthserv C:\Windows\system32\bthserv.dll
11:11:36.0412 6296 bthserv - ok
11:11:36.0412 6296 [ DB77227DFDC89599B5BC605A8E1CA6B1 ] BTHUSB C:\Windows\System32\drivers\BTHUSB.sys
11:11:36.0412 6296 BTHUSB - ok
11:11:36.0412 6296 [ 600CA7D3C456198089558B142D86C065 ] bttflt C:\Windows\system32\drivers\bttflt.sys
11:11:36.0412 6296 bttflt - ok
11:11:36.0412 6296 [ 58F44FD7BA873AAA8FE6C9473702492B ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys
11:11:36.0428 6296 buttonconverter - ok
11:11:36.0428 6296 [ D3FC817DA4694E586135A3221811B409 ] CAD C:\Windows\System32\drivers\CAD.sys
11:11:36.0428 6296 CAD - ok
11:11:36.0428 6296 [ 771A2F98EA940349AA0B490DD35156E5 ] camsvc C:\Windows\system32\CapabilityAccessManager.dll
11:11:36.0428 6296 camsvc - ok
11:11:36.0443 6296 [ C240AF291AC69BF55C33DC9820338D66 ] CaptureService C:\Windows\System32\CaptureService.dll
11:11:36.0443 6296 CaptureService - ok
11:11:36.0459 6296 [ 1F8DEF3E9D4A1225D2275E6AA3A7744A ] cbdhsvc C:\Windows\System32\cbdhsvc.dll
11:11:36.0459 6296 cbdhsvc - ok
11:11:36.0474 6296 [ 3E9C20ED02FAA6D194C060BC6E7D587E ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:11:36.0474 6296 cdfs - ok
11:11:36.0474 6296 [ 87B5A8D5F423542445AFD6C47059845C ] CDPSvc C:\Windows\System32\CDPSvc.dll
11:11:36.0474 6296 CDPSvc - ok
11:11:36.0490 6296 [ 0CD86DF5805D6DCD09B930A7E7BFF156 ] CDPUserSvc C:\Windows\System32\CDPUserSvc.dll
11:11:36.0490 6296 CDPUserSvc - ok
11:11:36.0506 6296 [ 81E3779064C04790E30F25770F0AEADD ] cdrom C:\Windows\System32\drivers\cdrom.sys
11:11:36.0506 6296 cdrom - ok
11:11:36.0506 6296 [ F738B75E685601069A0A3F8C30CF4F47 ] CertPropSvc C:\Windows\System32\certprop.dll
11:11:36.0506 6296 CertPropSvc - ok
11:11:36.0521 6296 [ E5259475D04AA9C04D2B44DB0BAC05D8 ] cht4iscsi C:\Windows\system32\drivers\cht4sx64.sys
11:11:36.0521 6296 cht4iscsi - ok
11:11:36.0537 6296 [ C748EE7BCE13820DB957C79B64219992 ] cht4vbd C:\Windows\System32\drivers\cht4vx64.sys
11:11:36.0537 6296 cht4vbd - ok
11:11:36.0553 6296 [ B7FCEF757304710463D78C1155764BA7 ] circlass C:\Windows\System32\drivers\circlass.sys
11:11:36.0553 6296 circlass - ok
11:11:36.0553 6296 [ 362291ED9494E5C6995ECC6BCC191D2B ] CldFlt C:\Windows\system32\drivers\cldflt.sys
11:11:36.0553 6296 CldFlt - ok
11:11:36.0568 6296 [ 147CA2158FB10D7F65098833C9345115 ] CLFS C:\Windows\system32\drivers\CLFS.sys
11:11:36.0568 6296 CLFS - ok
11:11:36.0584 6296 [ 021FDC5448AD231597D349F210B6EC19 ] ClipSVC C:\Windows\System32\ClipSVC.dll
11:11:36.0584 6296 ClipSVC - ok
11:11:36.0599 6296 [ 61F6E1DB8CC17FFDEC5DDE1715320729 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
11:11:36.0599 6296 CmBatt - ok
11:11:36.0678 6296 [ 4EA8BF39093CBD79FF9DDAA08DB19DE7 ] CmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
11:11:36.0724 6296 CmdAgent - ok
11:11:36.0834 6296 [ 4EA8BF39093CBD79FF9DDAA08DB19DE7 ] CmdAgentProt C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
11:11:36.0881 6296 CmdAgentProt - ok
11:11:36.0881 6296 [ 42A0DD2C97751447DEDADA1A18536707 ] cmdboot C:\Windows\system32\DRIVERS\cmdboot.sys
11:11:36.0881 6296 cmdboot - ok
11:11:36.0896 6296 [ 4BF85B5C143E7CBDBB3A2BF77C6A4F52 ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
11:11:36.0896 6296 cmderd - ok
11:11:36.0912 6296 [ EC128D4A52A91019ED66DCD4FD989FAD ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
11:11:36.0912 6296 cmdGuard - ok
11:11:36.0928 6296 [ E5CA4D22B4F36CE9EE404E9F1504AA52 ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
11:11:36.0943 6296 cmdvirth - ok
11:11:36.0959 6296 [ A47AB918DD77B629B6C41064DDA431DD ] CNG C:\Windows\system32\Drivers\cng.sys
11:11:36.0959 6296 CNG - ok
11:11:36.0959 6296 [ 6FD42010608BC1B77D60947175E0BFD9 ] cnghwassist C:\Windows\system32\DRIVERS\cnghwassist.sys
11:11:36.0959 6296 cnghwassist - ok
11:11:36.0974 6296 [ 54789D18CB08EBB83C3BF07E87928F1F ] CompositeBus C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys
11:11:36.0974 6296 CompositeBus - ok
11:11:36.0974 6296 COMSysApp - ok
11:11:36.0974 6296 [ 77FE273FA6FFE487E689194DB20ACAE2 ] condrv C:\Windows\system32\drivers\condrv.sys
11:11:36.0974 6296 condrv - ok
11:11:36.0990 6296 [ 31D59C0A7B2549F578FC82B5ED9661FD ] ConsentUxUserSvc C:\Windows\System32\ConsentUxClient.dll
11:11:36.0990 6296 ConsentUxUserSvc - ok
11:11:36.0990 6296 [ 64C146E79B02051548A3D2790071C96A ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
11:11:37.0006 6296 CoreMessagingRegistrar - ok
11:11:37.0037 6296 [ 0781DE74790BDBB9A7B9EF6CAA62B4E0 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:11:37.0037 6296 cphs - ok
11:11:37.0053 6296 [ 868B7A47689F43A27D3BD5CBAD723055 ] CredentialEnrollmentManagerUserSvc C:\Windows\system32\CredentialEnrollmentManager.exe
11:11:37.0053 6296 CredentialEnrollmentManagerUserSvc - ok
11:11:37.0053 6296 [ 868B7A47689F43A27D3BD5CBAD723055 ] CredentialEnrollmentManagerUserSvc_2146b C:\Windows\system32\CredentialEnrollmentManager.exe
11:11:37.0053 6296 CredentialEnrollmentManagerUserSvc_2146b - ok
11:11:37.0068 6296 [ 0C757F912068DD931C2BB80845702779 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:11:37.0068 6296 CryptSvc - ok
11:11:37.0068 6296 [ B57D1A23B93D45F6485DE13167D85198 ] CSC C:\Windows\system32\drivers\csc.sys
11:11:37.0084 6296 CSC - ok
11:11:37.0084 6296 [ D1E156D0823810D24E6EEAF8E503C040 ] CscService C:\Windows\System32\cscsvc.dll
11:11:37.0084 6296 CscService - ok
11:11:37.0099 6296 [ D32047ED7F2718871AFC215FFF4760C2 ] dam C:\Windows\system32\drivers\dam.sys
11:11:37.0099 6296 dam - ok
11:11:37.0115 6296 [ 9996195077AE83EF7A57C58E136F551E ] DcomLaunch C:\Windows\system32\rpcss.dll
11:11:37.0115 6296 DcomLaunch - ok
11:11:37.0131 6296 [ 3D242FA4F441B7657807DB32AB9600DC ] defragsvc C:\Windows\System32\defragsvc.dll
11:11:37.0131 6296 defragsvc - ok
11:11:37.0131 6296 [ 1FFBA1554A8CA99C2D38AC678CF1E535 ] DeviceAssociationBrokerSvc C:\Windows\System32\deviceaccess.dll
11:11:37.0131 6296 DeviceAssociationBrokerSvc - ok
11:11:37.0146 6296 [ 8AB0C55A78B0C18991ACC62C13167DDD ] DeviceAssociationService C:\Windows\system32\das.dll
11:11:37.0146 6296 DeviceAssociationService - ok
11:11:37.0162 6296 [ C28BA33FE1373DE12B5FC1873FFAE4BE ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
11:11:37.0162 6296 DeviceInstall - ok
11:11:37.0162 6296 [ 6683A03C986D00273C67ADB1B249D7ED ] DevicePickerUserSvc C:\Windows\System32\Windows.Devices.Picker.dll
11:11:37.0178 6296 DevicePickerUserSvc - ok
11:11:37.0178 6296 [ BF9F78C84DB3F84149FAF6867DB52490 ] DevicesFlowUserSvc C:\Windows\System32\DevicesFlowBroker.dll
11:11:37.0193 6296 DevicesFlowUserSvc - ok
11:11:37.0193 6296 [ DC2944BD2B4DBA7AE74A32D8B57C554C ] DevQueryBroker C:\Windows\system32\DevQueryBroker.dll
11:11:37.0193 6296 DevQueryBroker - ok
11:11:37.0193 6296 [ D974C10E19DDC10622E30904AEE16FA3 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
11:11:37.0209 6296 Dfsc - ok
11:11:37.0209 6296 [ 02147FE1CB895CE623D32408C549DD04 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:11:37.0209 6296 Dhcp - ok
11:11:37.0224 6296 [ 47FE173DD6AC6234E40DDA4A9A2F6AC6 ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
11:11:37.0224 6296 diagnosticshub.standardcollector.service - ok
11:11:37.0224 6296 [ 720ABE3F8938902E9F0B512318975551 ] diagsvc C:\Windows\system32\DiagSvc.dll
11:11:37.0224 6296 diagsvc - ok
11:11:37.0256 6296 [ BBADBF5C29E86A48FCDE7A51818BB580 ] DiagTrack C:\Windows\system32\diagtrack.dll
11:11:37.0271 6296 DiagTrack - ok
11:11:37.0287 6296 [ F13316A14B8E7319C5DCD77A439BCCCF ] disk C:\Windows\system32\drivers\disk.sys
11:11:37.0287 6296 disk - ok
11:11:37.0287 6296 [ 3AE7155EC3B4AD2CD002C897F5985E60 ] diskpt C:\Windows\system32\drivers\diskpt.sys
11:11:37.0287 6296 diskpt - ok
11:11:37.0303 6296 [ 400246EE0A2CB4F03ED8CB3097DF4789 ] DispBrokerDesktopSvc C:\Windows\System32\DispBroker.Desktop.dll
11:11:37.0303 6296 DispBrokerDesktopSvc - ok
11:11:37.0318 6296 [ 8300CE8326DF8842EC47A103A3D462A5 ] DisplayEnhancementService C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
11:11:37.0318 6296 DisplayEnhancementService - ok
11:11:37.0334 6296 [ 15926BEA8C8B2BA0A89CCE8ABFDB4513 ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll
11:11:37.0349 6296 DmEnrollmentSvc - ok
11:11:37.0349 6296 [ 0F4ABC6AEF95AC1E50D3F36808DE4C3D ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
11:11:37.0349 6296 dmvsc - ok
11:11:37.0349 6296 [ A4F5D5C81B9690B8ACB8798A5C711D31 ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
11:11:37.0349 6296 dmwappushservice - ok
11:11:37.0365 6296 [ 22460A37FA73F13DA804E501BA9DC769 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:11:37.0365 6296 Dnscache - ok
11:11:37.0365 6296 [ 6C039C82B977F5BFE3FA576D28C15D5A ] dot3svc C:\Windows\System32\dot3svc.dll
11:11:37.0381 6296 dot3svc - ok
11:11:37.0381 6296 [ FC37ABA7F9026FFB255CEC78AC2410E4 ] DPS C:\Windows\system32\dps.dll
11:11:37.0381 6296 DPS - ok
11:11:37.0381 6296 [ 8D6B2A26E72E260860FC46593E67E94F ] drmkaud C:\Windows\System32\drivers\drmkaud.sys
11:11:37.0381 6296 drmkaud - ok
11:11:37.0396 6296 [ 5C438FD023BB99268C291E2A0F670AF9 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
11:11:37.0396 6296 DsmSvc - ok
11:11:37.0396 6296 [ 4F6364119F039BA8E8556533AD043A64 ] DsSvc C:\Windows\System32\DsSvc.dll
11:11:37.0396 6296 DsSvc - ok
11:11:37.0412 6296 [ 6A34FC162F61E26010BD0BF0F211C4A2 ] DusmSvc C:\Windows\System32\dusmsvc.dll
11:11:37.0412 6296 DusmSvc - ok
11:11:37.0443 6296 [ E42B17AEF1A0CAB93416B8B7902581F7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:11:37.0459 6296 DXGKrnl - ok
11:11:37.0459 6296 [ F48869A7BE7437F4742DD9D4126FD770 ] Eaphost C:\Windows\System32\eapsvc.dll
11:11:37.0474 6296 Eaphost - ok
11:11:37.0506 6296 [ E326127FB5622481C00EA40401039B2D ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:11:37.0506 6296 ebdrv - ok
11:11:37.0521 6296 [ 0114B3BF0B53DEB5B9C300B2295DD71F ] edgeupdate C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
11:11:37.0521 6296 edgeupdate - ok
11:11:37.0521 6296 [ 0114B3BF0B53DEB5B9C300B2295DD71F ] edgeupdatem C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
11:11:37.0521 6296 edgeupdatem - ok
11:11:37.0537 6296 [ 03C70933698C6E3E466076DD9C3FAA18 ] EFS C:\Windows\System32\lsass.exe
11:11:37.0537 6296 EFS - ok
11:11:37.0537 6296 [ 8A00A8300D25BAEFBB718436D55207B7 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
11:11:37.0537 6296 EhStorClass - ok
11:11:37.0537 6296 [ C31E54032B1B24F561535228F7714F85 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
11:11:37.0553 6296 EhStorTcgDrv - ok
11:11:37.0553 6296 [ 910F199C081D8D7471173333265982E3 ] embeddedmode C:\Windows\System32\embeddedmodesvc.dll
11:11:37.0553 6296 embeddedmode - ok
11:11:37.0568 6296 [ ADBA0456A915EFCD6B35F298D185A976 ] EntAppSvc C:\Windows\system32\EnterpriseAppMgmtSvc.dll
11:11:37.0568 6296 EntAppSvc - ok
11:11:37.0568 6296 [ 122DD638F997E3EB08E442DACFEE0D78 ] ErrDev C:\Windows\System32\drivers\errdev.sys
11:11:37.0568 6296 ErrDev - ok
11:11:37.0599 6296 [ DFA69405D7B213F7CE3EB2BCE64AAE6D ] EventLog C:\Windows\System32\wevtsvc.dll
11:11:37.0599 6296 EventLog - ok
11:11:37.0615 6296 [ B35DF93E24892EE15363AFAA678AF78E ] EventSystem C:\Windows\system32\es.dll
11:11:37.0615 6296 EventSystem - ok
11:11:37.0615 6296 [ E25A3F31BDAB7D8C9D17390852A4CD96 ] exfat C:\Windows\system32\drivers\exfat.sys
11:11:37.0631 6296 exfat - ok
11:11:37.0631 6296 [ 7CBC5EB3E9A9AD5D204F79D1030524DD ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:11:37.0631 6296 fastfat - ok
11:11:37.0646 6296 [ C6F56E6CF1822CFB9D8F85870453675E ] Fax C:\Windows\system32\fxssvc.exe
11:11:37.0646 6296 Fax - ok
11:11:37.0646 6296 [ F2F45F7B58EDBA2255AA0D0EDCE16C0F ] fdc C:\Windows\System32\drivers\fdc.sys
11:11:37.0646 6296 fdc - ok
11:11:37.0662 6296 [ 574937AAC16BC828BA35DA6639972660 ] fdPHost C:\Windows\system32\fdPHost.dll
11:11:37.0662 6296 fdPHost - ok
11:11:37.0662 6296 [ 5414A54236322C5ED8691CEC1A38EF80 ] FDResPub C:\Windows\system32\fdrespub.dll
11:11:37.0662 6296 FDResPub - ok
11:11:37.0678 6296 [ 9AC5E05D599A49DC91E2F438F93D719F ] fhsvc C:\Windows\system32\fhsvc.dll
11:11:37.0678 6296 fhsvc - ok
11:11:37.0678 6296 [ 35E6FE3288B6147F844B1845564FF161 ] FileCrypt C:\Windows\system32\drivers\filecrypt.sys
11:11:37.0678 6296 FileCrypt - ok
11:11:37.0678 6296 [ 5F4FB09BC4D33E6E3793AEA41D555697 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:11:37.0678 6296 FileInfo - ok
11:11:37.0693 6296 [ 75ABB7E381E36922230D55670B26D21A ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:11:37.0693 6296 Filetrace - ok
11:11:37.0693 6296 [ D346C0E0F62FCE6669783C3D8B527F74 ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
11:11:37.0693 6296 flpydisk - ok
11:11:37.0709 6296 [ 3E149E6CF0C5CA47C89FABAEE220922E ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:11:37.0709 6296 FltMgr - ok
11:11:37.0724 6296 [ 686DDF0A080D2B1DFDCB41CEFBC75330 ] FontCache C:\Windows\system32\FntCache.dll
11:11:37.0724 6296 FontCache - ok
11:11:37.0740 6296 [ 7A339EE25E46670F6ED6D545EAD46E2C ] FrameServer C:\Windows\system32\FrameServer.dll
11:11:37.0756 6296 FrameServer - ok
11:11:37.0756 6296 [ 9640EC828267B5BC7E587D581E3FCEA0 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:11:37.0756 6296 FsDepends - ok
11:11:37.0756 6296 [ 8DC43B0CC985D4FD9155739BD774471D ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:11:37.0756 6296 Fs_Rec - ok
11:11:37.0771 6296 [ 2E9974F4F6E81EF6A2C67DB6C6AA6932 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:11:37.0771 6296 fvevol - ok
11:11:37.0771 6296 [ EF8A6E4DDD8A6F5840B96C1C238B59EC ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
11:11:37.0771 6296 gencounter - ok
11:11:37.0787 6296 [ 56694161233F5A703E2C875BF4265407 ] genericusbfn C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys
11:11:37.0787 6296 genericusbfn - ok
11:11:37.0803 6296 [ 66ACDC2BF5346E2FC24AD20207AD43B7 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
11:11:37.0803 6296 GPIOClx0101 - ok
11:11:37.0818 6296 [ 2A6EEA251877EB33048A0E8A320F505C ] gpsvc C:\Windows\System32\gpsvc.dll
11:11:37.0818 6296 gpsvc - ok
11:11:37.0818 6296 [ ECF72E76711455EEB362E2E175395F87 ] GpuEnergyDrv C:\Windows\system32\drivers\gpuenergydrv.sys
11:11:37.0834 6296 GpuEnergyDrv - ok
11:11:37.0834 6296 [ 7A9DDF886942F5C791360BD76B06D874 ] GraphicsPerfSvc C:\Windows\System32\GraphicsPerfSvc.dll
11:11:37.0834 6296 GraphicsPerfSvc - ok
11:11:37.0834 6296 [ 543F752593EB8943A2A7F483C51723F5 ] HdAudAddService C:\Windows\System32\drivers\HdAudio.sys
11:11:37.0849 6296 HdAudAddService - ok
11:11:37.0849 6296 [ 7F2568836476437410BC7E9E003CFD74 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
11:11:37.0849 6296 HDAudBus - ok
11:11:37.0849 6296 [ 23CB986FD6DC1D8022831254C609E481 ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
11:11:37.0849 6296 HidBatt - ok
11:11:37.0865 6296 [ 98DB60B4CC713C73E3BFCD8521210B26 ] HidBth C:\Windows\System32\drivers\hidbth.sys
11:11:37.0865 6296 HidBth - ok
11:11:37.0865 6296 [ F5468C4442990B23D99FEA900B63338F ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
11:11:37.0865 6296 hidi2c - ok
11:11:37.0865 6296 [ 34642FB049036D8BAAA42C922A82CCBC ] hidinterrupt C:\Windows\System32\drivers\hidinterrupt.sys
11:11:37.0865 6296 hidinterrupt - ok
11:11:37.0881 6296 [ C789878B45C886DBD967826B491C9C19 ] HidIr C:\Windows\System32\drivers\hidir.sys
11:11:37.0881 6296 HidIr - ok
11:11:37.0881 6296 [ ACA51FC51A8D0959D3FF0E822A760E77 ] hidserv C:\Windows\system32\hidserv.dll
11:11:37.0881 6296 hidserv - ok
11:11:37.0881 6296 [ B3ACD7D2D86A046DB549B922D663DEA2 ] hidspi C:\Windows\System32\drivers\hidspi.sys
11:11:37.0881 6296 hidspi - ok
11:11:37.0896 6296 [ E6FB73DDF8BB4DF3F9BAE8D650ED2540 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
11:11:37.0896 6296 HidUsb - ok
11:11:37.0896 6296 [ CAC64EB8E5998EEDE7DDB0E3433E9100 ] hmpalert C:\Windows\system32\drivers\hmpalert.sys
11:11:37.0912 6296 hmpalert - ok
11:11:37.0943 6296 [ 1B7CAA589FDABC24315271D47F46ED44 ] hmpalertsvc C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
11:11:37.0959 6296 hmpalertsvc - ok
11:11:37.0974 6296 [ A195E0255B056E2968B3A4BE21588E35 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:11:37.0974 6296 HpSAMD - ok
11:11:37.0990 6296 [ ACEF317CC8F51F283E03AC4DDD351E6F ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:11:37.0990 6296 HTTP - ok
11:11:37.0990 6296 [ 6E7C4CAE43DA57A46DE9AC07D3400719 ] hvcrash C:\Windows\System32\drivers\hvcrash.sys
11:11:37.0990 6296 hvcrash - ok
11:11:38.0006 6296 [ 2B51ABC2AD3A5D1476D2833F8F03239A ] HvHost C:\Windows\System32\hvhostsvc.dll
11:11:38.0006 6296 HvHost - ok
11:11:38.0006 6296 [ BF54C94FEEBAF3996D0E25D28C8B5A17 ] hvservice C:\Windows\system32\drivers\hvservice.sys
11:11:38.0006 6296 hvservice - ok
11:11:38.0006 6296 [ C1AE2929CAD05CD2AA1FA835B06023A0 ] HwNClx0101 C:\Windows\system32\Drivers\mshwnclx.sys
11:11:38.0006 6296 HwNClx0101 - ok
11:11:38.0021 6296 [ 14B973B22FAE5AF8101303FCC8F18161 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:11:38.0021 6296 hwpolicy - ok
11:11:38.0021 6296 [ 4B0CB29B31E937AAC09EC0E66B03A70B ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
11:11:38.0021 6296 hyperkbd - ok
11:11:38.0021 6296 [ 454416484E10579883D0DE1CE13E695D ] HyperVideo C:\Windows\System32\drivers\HyperVideo.sys
11:11:38.0021 6296 HyperVideo - ok
11:11:38.0037 6296 [ B475892255B02D33CF29B24FBD4AFDC9 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
11:11:38.0037 6296 i8042prt - ok
11:11:38.0037 6296 [ 9E5AECAB5F05218D9AC923E7CEA1CE15 ] iagpio C:\Windows\System32\drivers\iagpio.sys
11:11:38.0037 6296 iagpio - ok
11:11:38.0037 6296 [ 48EDB9B5DAB7D294951A520330F13715 ] iai2c C:\Windows\System32\drivers\iai2c.sys
11:11:38.0037 6296 iai2c - ok
11:11:38.0053 6296 [ 6C3EDE394C71D5A67A504F55E35B6F47 ] iaLPSS2i_GPIO2 C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys
11:11:38.0053 6296 iaLPSS2i_GPIO2 - ok
11:11:38.0053 6296 [ 806D14CEAF25E5F2DFCBA8E7E33B86BB ] iaLPSS2i_GPIO2_BXT_P C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
11:11:38.0053 6296 iaLPSS2i_GPIO2_BXT_P - ok
11:11:38.0053 6296 [ 87DDDAE1693484BD0A210C877BDA00C2 ] iaLPSS2i_GPIO2_CNL C:\Windows\System32\drivers\iaLPSS2i_GPIO2_CNL.sys
11:11:38.0068 6296 iaLPSS2i_GPIO2_CNL - ok
11:11:38.0068 6296 [ 8D3E3C431367E3BA632B4396CA662E1A ] iaLPSS2i_GPIO2_GLK C:\Windows\System32\drivers\iaLPSS2i_GPIO2_GLK.sys
11:11:38.0068 6296 iaLPSS2i_GPIO2_GLK - ok
11:11:38.0068 6296 [ 149F1260537C4F68C3F67C363B62F3C5 ] iaLPSS2i_I2C C:\Windows\System32\drivers\iaLPSS2i_I2C.sys
11:11:38.0068 6296 iaLPSS2i_I2C - ok
11:11:38.0084 6296 [ 3E641E905A6DBF29CBA1E72BBE349808 ] iaLPSS2i_I2C_BXT_P C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
11:11:38.0084 6296 iaLPSS2i_I2C_BXT_P - ok
11:11:38.0084 6296 [ B78D6AF79045B0DAB58596AF75037516 ] iaLPSS2i_I2C_CNL C:\Windows\System32\drivers\iaLPSS2i_I2C_CNL.sys
11:11:38.0084 6296 iaLPSS2i_I2C_CNL - ok
11:11:38.0099 6296 [ 2ED3B41C7CB4101ACB15D84D8AB5AA9D ] iaLPSS2i_I2C_GLK C:\Windows\System32\drivers\iaLPSS2i_I2C_GLK.sys
11:11:38.0099 6296 iaLPSS2i_I2C_GLK - ok
11:11:38.0099 6296 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F ] iaLPSSi_GPIO C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
11:11:38.0099 6296 iaLPSSi_GPIO - ok
11:11:38.0099 6296 [ EB82A11613326691508D9ED9A4FE29E7 ] iaLPSSi_I2C C:\Windows\System32\drivers\iaLPSSi_I2C.sys
11:11:38.0099 6296 iaLPSSi_I2C - ok
11:11:38.0115 6296 [ 92175FB164CDD9A49821DCE51D9E2699 ] iaStorAVC C:\Windows\system32\drivers\iaStorAVC.sys
11:11:38.0115 6296 iaStorAVC - ok
11:11:38.0131 6296 [ E027678E8F76B2225C64CD186986E249 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:11:38.0131 6296 iaStorV - ok
11:11:38.0131 6296 [ B9D28B4AF5C5D472DB6659B787811CF3 ] ibbus C:\Windows\System32\drivers\ibbus.sys
11:11:38.0146 6296 ibbus - ok
11:11:38.0146 6296 [ 62F0CB0A54EAF37E15EC385300957BB8 ] ibtfltcoex C:\Windows\System32\drivers\ibtfltcoex.sys
11:11:38.0146 6296 ibtfltcoex - ok
11:11:38.0146 6296 [ B33F26DCC3E07ACC95DD146F3078BAB2 ] icssvc C:\Windows\System32\tetheringservice.dll
11:11:38.0162 6296 icssvc - ok
11:11:38.0193 6296 [ 3F8B046C0839FDB879FE179C07A1A6A4 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:11:38.0209 6296 igfx - ok
11:11:38.0209 6296 [ 1DBE918F1EDE43C8D49B6D9A7DEA25F3 ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe
11:11:38.0209 6296 igfxCUIService1.0.0.0 - ok
11:11:38.0224 6296 [ AA66B1519DE1DEF3D72EF4216F636E0A ] IKEEXT C:\Windows\System32\ikeext.dll
11:11:38.0240 6296 IKEEXT - ok
11:11:38.0240 6296 [ 7EDB7CCEDC86F03D3254274564DB0E99 ] IndirectKmd C:\Windows\System32\drivers\IndirectKmd.sys
11:11:38.0240 6296 IndirectKmd - ok
11:11:38.0271 6296 [ 51127F96B5571E453D12E45D7C5EE152 ] InstallService C:\Windows\system32\InstallService.dll
11:11:38.0271 6296 InstallService - ok
11:11:38.0287 6296 [ 87E738E189EB31E2EB07F609C930D068 ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
11:11:38.0287 6296 intaud_WaveExtensible - ok
11:11:38.0287 6296 [ A0A315EAF4617BED7B154DE5059F4ED6 ] intelide C:\Windows\system32\drivers\intelide.sys
11:11:38.0287 6296 intelide - ok
11:11:38.0287 6296 [ B3E270140879C45BF2B32D5EBE7A614A ] intelpep C:\Windows\system32\drivers\intelpep.sys
11:11:38.0303 6296 intelpep - ok
11:11:38.0303 6296 [ 8D6ADFE99C1DC577C74B0148E70ED5BB ] intelpmax C:\Windows\System32\drivers\intelpmax.sys
11:11:38.0303 6296 intelpmax - ok
11:11:38.0303 6296 [ 2ED1E741D4633DEAA6F84006EFD58A4F ] intelppm C:\Windows\System32\drivers\intelppm.sys
11:11:38.0303 6296 intelppm - ok
11:11:38.0318 6296 [ A89BF4378628224DA411A76FF6913E95 ] iorate C:\Windows\system32\drivers\iorate.sys
11:11:38.0318 6296 iorate - ok
11:11:38.0318 6296 [ 02A2D46896B4312F084D5095D00B6DE7 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:11:38.0318 6296 IpFilterDriver - ok
11:11:38.0334 6296 [ 0EB4405D79E1463454A79D42CCBC95E8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:11:38.0334 6296 iphlpsvc - ok
11:11:38.0334 6296 [ 4BAA9037E2D4544906A7E9BDFE0CFCB5 ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
11:11:38.0334 6296 IPMIDRV - ok
11:11:38.0349 6296 [ 5E05C0FEA671B910FEBC634E796C38B5 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:11:38.0349 6296 IPNAT - ok
11:11:38.0349 6296 [ 3BB90B22F0D8A58B261A1B1AE6B80EAD ] IPT C:\Windows\System32\drivers\ipt.sys
11:11:38.0349 6296 IPT - ok
11:11:38.0365 6296 [ 5B4848FF9C6D605563BE8E21D4D2F70F ] IpxlatCfgSvc C:\Windows\System32\IpxlatCfg.dll
11:11:38.0365 6296 IpxlatCfgSvc - ok
11:11:38.0365 6296 [ 054FE6D33A16F8CE82DCBA85AEE69B76 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:11:38.0365 6296 isapnp - ok
11:11:38.0381 6296 [ BEEE3BA3612ACAB58CEDABD6AAD10BAA ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
11:11:38.0381 6296 iScsiPrt - ok
11:11:38.0381 6296 [ 7C65B40F45AD2545443D009A837D7893 ] ItSas35i C:\Windows\system32\drivers\ItSas35i.sys
11:11:38.0381 6296 ItSas35i - ok
11:11:38.0381 6296 [ 56D480702478880805F4E74F2BA02382 ] iwdbus C:\Windows\System32\drivers\iwdbus.sys
11:11:38.0396 6296 iwdbus - ok
11:11:38.0396 6296 [ A6C674D09B6231702D1DE55E26441BA8 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
11:11:38.0396 6296 kbdclass - ok
11:11:38.0396 6296 [ FC6793F3CEA0B44CB516BEE39CA47538 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
11:11:38.0396 6296 kbdhid - ok
11:11:38.0396 6296 [ B773A19F81C442DF6FE7C6271ED7CFF4 ] kdnic C:\Windows\System32\drivers\kdnic.sys
11:11:38.0412 6296 kdnic - ok
11:11:38.0412 6296 [ 03C70933698C6E3E466076DD9C3FAA18 ] KeyIso C:\Windows\system32\lsass.exe
11:11:38.0412 6296 KeyIso - ok
11:11:38.0412 6296 [ 761E3C7936C0DC4C3F669E9795480361 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:11:38.0412 6296 KSecDD - ok
11:11:38.0428 6296 [ D4E279FBEBC5C64279719E78EFCD9762 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:11:38.0428 6296 KSecPkg - ok
11:11:38.0428 6296 [ 85F56430EDB7F15D7E74562B4B9F45ED ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:11:38.0428 6296 ksthunk - ok
11:11:38.0443 6296 [ 2A4F33C288355AF81387C4030C00FEBB ] KtmRm C:\Windows\system32\msdtckrm.dll
11:11:38.0443 6296 KtmRm - ok
11:11:38.0443 6296 [ 7445884AB1995E1605840E5C8947DDA3 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:11:38.0459 6296 LanmanServer - ok
11:11:38.0459 6296 [ 4B63205E92415FC3B12DCC23DB446CD5 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:11:38.0459 6296 LanmanWorkstation - ok
11:11:38.0474 6296 [ C74D6825D4F8F587AFBFE4CFAFA6CCE2 ] lfsvc C:\Windows\System32\lfsvc.dll
11:11:38.0474 6296 lfsvc - ok
11:11:38.0474 6296 [ 1DDE097A358F533F58060B49A06B0AA4 ] LicenseManager C:\Windows\system32\LicenseManagerSvc.dll
11:11:38.0490 6296 LicenseManager - ok
11:11:38.0490 6296 [ A0D1856F57DFCF58D8A9E23D8B205886 ] lltdio C:\Windows\system32\drivers\lltdio.sys
11:11:38.0490 6296 lltdio - ok
11:11:38.0490 6296 [ 27DA2D87DA23C2AB3328AFBA945DFEF4 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:11:38.0506 6296 lltdsvc - ok
11:11:38.0506 6296 [ 21DCCE84ACEE6DF560A54901460B1974 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:11:38.0506 6296 lmhosts - ok
11:11:38.0521 6296 [ 8EC5966393F3D2FB1F3663D47F059571 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:11:38.0521 6296 LSI_SAS - ok
11:11:38.0521 6296 [ B3A55D8E17DC2CEC64C55031B60692E5 ] LSI_SAS2i C:\Windows\system32\drivers\lsi_sas2i.sys
11:11:38.0521 6296 LSI_SAS2i - ok
11:11:38.0521 6296 [ 08F9429D6D41E0D217C415D052BC84D6 ] LSI_SAS3i C:\Windows\system32\drivers\lsi_sas3i.sys
11:11:38.0521 6296 LSI_SAS3i - ok
11:11:38.0537 6296 [ 21A85C6B86AF33EDED64F556D2DB7E32 ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
11:11:38.0537 6296 LSI_SSS - ok
11:11:38.0537 6296 [ BDA93061DADEAEFB75CC2FD0D54CDC4C ] LSM C:\Windows\System32\lsm.dll
11:11:38.0553 6296 LSM - ok
11:11:38.0553 6296 [ B1F6D849F8DDF1406454899C1BF5A1C5 ] luafv C:\Windows\system32\drivers\luafv.sys
11:11:38.0553 6296 luafv - ok
11:11:38.0568 6296 [ 41744BD2D3FBA7BD8C910913152A88C4 ] LxpSvc C:\Windows\System32\LanguageOverlayServer.dll
11:11:38.0568 6296 LxpSvc - ok
11:11:38.0615 6296 [ 97EFF2D5CA1DD06EE42FDF982D53C1C4 ] MacriumService C:\Program Files\Macrium\Common\MacriumService.exe
11:11:38.0646 6296 MacriumService - ok
11:11:38.0646 6296 [ 1294A83A7E61544E5C3678A40237F842 ] MapsBroker C:\Windows\System32\moshost.dll
11:11:38.0646 6296 MapsBroker - ok
11:11:38.0662 6296 [ 7B1EFA88175EFB47970D274E671C8BE8 ] mausbhost C:\Windows\System32\drivers\mausbhost.sys
11:11:38.0662 6296 mausbhost - ok
11:11:38.0662 6296 [ 822938D041A15C2FF4841C656D94F604 ] mausbip C:\Windows\System32\drivers\mausbip.sys
11:11:38.0678 6296 mausbip - ok
11:11:38.0678 6296 [ AD72EA72A524720D6FAA09DCAEEF3990 ] MbbCx C:\Windows\system32\drivers\MbbCx.sys
11:11:38.0678 6296 MbbCx - ok
11:11:38.0678 6296 [ 1BB90BE197FB0D96185B1E3A78177A57 ] megasas C:\Windows\system32\drivers\megasas.sys
11:11:38.0678 6296 megasas - ok
11:11:38.0693 6296 [ AEF3EA8036FF17BF8BD9403B1D76A876 ] megasas2i C:\Windows\system32\drivers\MegaSas2i.sys
11:11:38.0693 6296 megasas2i - ok
11:11:38.0693 6296 [ 91680A3466B271AAE802452BDE032380 ] megasas35i C:\Windows\system32\drivers\megasas35i.sys
11:11:38.0693 6296 megasas35i - ok
11:11:38.0709 6296 [ 721FC491970364F1065C791629323502 ] megasr C:\Windows\system32\drivers\megasr.sys
11:11:38.0709 6296 megasr - ok
11:11:38.0709 6296 [ E7C9F74D8CAAB1FF7964C27C070FB16C ] MEIx64 C:\Windows\System32\drivers\TeeDriverW8x64.sys
11:11:38.0709 6296 MEIx64 - ok
11:11:38.0724 6296 [ F1DE8D5576D0200A808C3475FC6E90A5 ] MessagingService C:\Windows\System32\MessagingService.dll
11:11:38.0724 6296 MessagingService - ok
11:11:38.0724 6296 MicrosoftEdgeElevationService - ok
11:11:38.0740 6296 [ 41A35E2FFC5F68F2345CAFDBA29D59E3 ] Microsoft_Bluetooth_AvrcpTransport C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
11:11:38.0740 6296 Microsoft_Bluetooth_AvrcpTransport - ok
11:11:38.0756 6296 [ 3FFE0858D0E44AD01151A1D20EFE8C6E ] mlx4_bus C:\Windows\System32\drivers\mlx4_bus.sys
11:11:38.0756 6296 mlx4_bus - ok
11:11:38.0756 6296 [ CABA725AA198FB1B8FC88BC863BC6C4E ] MMCSS C:\Windows\system32\drivers\mmcss.sys
11:11:38.0756 6296 MMCSS - ok
11:11:38.0771 6296 [ BD0744EA7533D420236F4958CDC88332 ] Modem C:\Windows\system32\drivers\modem.sys
11:11:38.0771 6296 Modem - ok
11:11:38.0771 6296 [ EDB215B68C29FEBA90E0A1A665321AD2 ] monitor C:\Windows\System32\drivers\monitor.sys
11:11:38.0771 6296 monitor - ok
11:11:38.0771 6296 [ 2636838B7F077F20C9FE4EB6C4762887 ] mouclass C:\Windows\System32\drivers\mouclass.sys
11:11:38.0787 6296 mouclass - ok
11:11:38.0787 6296 [ A461B82FE51C46FA77C124190E1A24E5 ] mouhid C:\Windows\System32\drivers\mouhid.sys
11:11:38.0787 6296 mouhid - ok
11:11:38.0787 6296 [ B85C904F394A8F13159541CFEB131B85 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:11:38.0787 6296 mountmgr - ok
11:11:38.0803 6296 [ 8AF4B7F9FCABF7FE2BA30BB74E825574 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:11:38.0803 6296 MozillaMaintenance - ok
11:11:38.0803 6296 [ 4F42CBB27A7B4AA26BE4DCCA6C25D136 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:11:38.0803 6296 mpsdrv - ok
11:11:38.0818 6296 [ 4D877C9393F2A61096F020BF9682F8FA ] mpssvc C:\Windows\system32\mpssvc.dll
11:11:38.0818 6296 mpssvc - ok
11:11:38.0834 6296 [ 6D7E0D16C4158099E4DD6D7F1E4DC8B3 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:11:38.0834 6296 MRxDAV - ok
11:11:38.0834 6296 [ 29B1D7ED2CD18C3789EA0A32CF430FF5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:11:38.0849 6296 mrxsmb - ok
11:11:38.0849 6296 [ 710910E698147124BEC28202D75F7F37 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:11:38.0849 6296 mrxsmb20 - ok
11:11:38.0865 6296 [ 90F0B61C3A11A7D2E718FC70EDF55942 ] MsBridge C:\Windows\system32\drivers\bridge.sys
11:11:38.0865 6296 MsBridge - ok
11:11:38.0865 6296 [ DC59FE37CFF118B6DAC426FE9923B32C ] MSDTC C:\Windows\System32\msdtc.exe
11:11:38.0865 6296 MSDTC - ok
11:11:38.0881 6296 [ FD79E6397F6915348FC7797018B496EF ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:11:38.0881 6296 Msfs - ok
11:11:38.0881 6296 [ 5CC4AE59BAC4DDE8C0ECB05A4A965D19 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
11:11:38.0881 6296 msgpiowin32 - ok
11:11:38.0881 6296 [ 22813FD068277CC4994CB3FB5547AA23 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:11:38.0881 6296 mshidkmdf - ok
11:11:38.0896 6296 [ ED11DC4C201FF6C06F171E18B379B589 ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
11:11:38.0896 6296 mshidumdf - ok
11:11:38.0896 6296 [ B96409D62458CF2D45895A8B112B1E24 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:11:38.0896 6296 msisadrv - ok
11:11:38.0896 6296 [ 7A11436A666D4CDD1D650FBC92738C8C ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:11:38.0912 6296 MSiSCSI - ok
11:11:38.0912 6296 msiserver - ok
11:11:38.0912 6296 [ E3B4680BAB18D0898E80C6E4FE05BF55 ] MSKSSRV C:\Windows\System32\drivers\MSKSSRV.sys
11:11:38.0912 6296 MSKSSRV - ok
11:11:38.0928 6296 [ D65874265E85BEF4E54740FB69803430 ] MsLldp C:\Windows\system32\drivers\mslldp.sys
11:11:38.0928 6296 MsLldp - ok
11:11:38.0928 6296 [ FAFA1781D123CD9B2542719DD523177D ] MSPCLOCK C:\Windows\System32\drivers\MSPCLOCK.sys
11:11:38.0928 6296 MSPCLOCK - ok
11:11:38.0928 6296 [ 031C0DAF57390C77A409E00031548827 ] MSPQM C:\Windows\System32\drivers\MSPQM.sys
11:11:38.0928 6296 MSPQM - ok
11:11:38.0943 6296 [ D766C72E3A6BCDC2510267BA84501539 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:11:38.0943 6296 MsRPC - ok
11:11:38.0943 6296 [ D0DA113BA6B5D41C6577BE96A74D1397 ] MsSecFlt C:\Windows\system32\drivers\mssecflt.sys
11:11:38.0959 6296 MsSecFlt - ok
11:11:38.0959 6296 [ 84AB9DA4C598BE81A7D0B88C8AE2DF41 ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
11:11:38.0959 6296 mssmbios - ok
11:11:38.0959 6296 [ E13D4B1DD649D69E974C51B2D550E4FC ] MSTEE C:\Windows\System32\drivers\MSTEE.sys
11:11:38.0959 6296 MSTEE - ok
11:11:38.0959 6296 [ EA16B406DCEF72848A1E2BA9B32469CF ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
11:11:38.0974 6296 MTConfig - ok
11:11:38.0974 6296 [ CEA4A7C14A65A7F1D10A089FE60FD9EC ] Mup C:\Windows\system32\Drivers\mup.sys
11:11:38.0974 6296 Mup - ok
11:11:38.0974 6296 [ 62F9AE1AB6F9B3825A4DB481E2613940 ] mvumis C:\Windows\system32\drivers\mvumis.sys
11:11:38.0974 6296 mvumis - ok
11:11:38.0990 6296 [ D727DD8EA3CD56115F9BDD5C33F9D1B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:11:38.0990 6296 NativeWifiP - ok
11:11:39.0006 6296 [ 3509BB296C4E2F8D71089C17DFB6CEAF ] NaturalAuthentication C:\Windows\System32\NaturalAuth.dll
11:11:39.0021 6296 NaturalAuthentication - ok
11:11:39.0021 6296 [ C8A90D48FB91BB96583322053FF67D2E ] NcaSvc C:\Windows\System32\ncasvc.dll
11:11:39.0021 6296 NcaSvc - ok
11:11:39.0037 6296 [ DF5A8E0E5E3FE297FCBC0F9F7E7DF4AC ] NcbService C:\Windows\System32\ncbservice.dll
11:11:39.0037 6296 NcbService - ok
11:11:39.0037 6296 [ 9EB402A3A00433B271C2DE5B904AA770 ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
11:11:39.0037 6296 NcdAutoSetup - ok
11:11:39.0053 6296 [ 323CE279076206EB4B1EC4FE85A81FEB ] ndfltr C:\Windows\System32\drivers\ndfltr.sys
11:11:39.0053 6296 ndfltr - ok
11:11:39.0068 6296 [ 92CE57FD567582B644A98A8D95963F30 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:11:39.0068 6296 NDIS - ok
11:11:39.0084 6296 [ FFB60317CFDA978621A5F8C54450AF01 ] NdisCap C:\Windows\system32\drivers\ndiscap.sys
11:11:39.0084 6296 NdisCap - ok
11:11:39.0084 6296 [ 50CA50122E9DE4F82B71C9F09A929700 ] NdisImPlatform C:\Windows\system32\drivers\NdisImPlatform.sys
11:11:39.0084 6296 NdisImPlatform - ok
11:11:39.0084 6296 [ 4FB78EEE9A0A57FFED051596EE75C0AD ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:11:39.0084 6296 NdisTapi - ok
11:11:39.0099 6296 [ 5F74158F98277E08CEA499AC7041A798 ] Ndisuio C:\Windows\system32\drivers\ndisuio.sys
11:11:39.0099 6296 Ndisuio - ok
11:11:39.0099 6296 [ 44FB0EB6FD78309E8A6A767B91AF3374 ] NdisVirtualBus C:\Windows\System32\drivers\NdisVirtualBus.sys
11:11:39.0099 6296 NdisVirtualBus - ok
11:11:39.0099 6296 [ E7F6AC29B5359F78169AD5C82925332D ] NdisWan C:\Windows\System32\drivers\ndiswan.sys
11:11:39.0115 6296 NdisWan - ok
11:11:39.0115 6296 [ E7F6AC29B5359F78169AD5C82925332D ] ndiswanlegacy C:\Windows\system32\DRIVERS\ndiswan.sys
11:11:39.0115 6296 ndiswanlegacy - ok
11:11:39.0115 6296 [ C91AE4E1A91B338F85D2F64667F0C6AA ] NDKPing C:\Windows\system32\drivers\NDKPing.sys
11:11:39.0115 6296 NDKPing - ok
11:11:39.0131 6296 [ 272BB37E2437E88920B5C0B19E9E280B ] ndproxy C:\Windows\system32\DRIVERS\NDProxy.sys
11:11:39.0131 6296 ndproxy - ok
11:11:39.0131 6296 [ 340AC1BF4E5727DC58E16E9F0806B36F ] Ndu C:\Windows\system32\drivers\Ndu.sys
11:11:39.0131 6296 Ndu - ok
11:11:39.0146 6296 [ 53FF0E34116C7835CB795C15341C2ECC ] NetAdapterCx C:\Windows\system32\drivers\NetAdapterCx.sys
11:11:39.0146 6296 NetAdapterCx - ok
11:11:39.0146 6296 [ 42F0CF6F74257A58D8F1EA68EA7782B8 ] NetBIOS C:\Windows\system32\drivers\netbios.sys
11:11:39.0146 6296 NetBIOS - ok
11:11:39.0162 6296 [ 729ED379D3A960CFBE02C7634651AC63 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:11:39.0162 6296 NetBT - ok
11:11:39.0162 6296 [ 03C70933698C6E3E466076DD9C3FAA18 ] Netlogon C:\Windows\system32\lsass.exe
11:11:39.0162 6296 Netlogon - ok
11:11:39.0178 6296 [ 3F961F54818A1849A306C6E9B2E059F6 ] Netman C:\Windows\System32\netman.dll
11:11:39.0178 6296 Netman - ok
11:11:39.0193 6296 [ EC71E3A24EF143DE8C02A3EB9488DFF4 ] netprofm C:\Windows\System32\netprofmsvc.dll
11:11:39.0193 6296 netprofm - ok
11:11:39.0209 6296 [ 52C81BF18B4DE114AFAD3FB92EF626B6 ] NetSetupSvc C:\Windows\System32\NetSetupSvc.dll
11:11:39.0209 6296 NetSetupSvc - ok
11:11:39.0209 6296 [ A35D38A33A4DE8EA83FBD73524DAA0D2 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:11:39.0209 6296 NetTcpPortSharing - ok
11:11:39.0224 6296 [ 9A623CA1E98A73B95F7C3F8C965C683B ] netvsc C:\Windows\System32\drivers\netvsc.sys
11:11:39.0224 6296 netvsc - ok
11:11:39.0256 6296 [ 99C24A7DC1F3D4845553B4BD189274A0 ] NETwNe64 C:\Windows\System32\drivers\NETwew01.sys
11:11:39.0271 6296 NETwNe64 - ok
11:11:39.0287 6296 [ 009CFEA73B021463EB8287C23D6812E6 ] NgcCtnrSvc C:\Windows\System32\NgcCtnrSvc.dll
11:11:39.0287 6296 NgcCtnrSvc - ok
11:11:39.0303 6296 [ A3E88BA1F249E819AE625645552B93F5 ] NgcSvc C:\Windows\system32\ngcsvc.dll
11:11:39.0303 6296 NgcSvc - ok
11:11:39.0318 6296 [ D14351719263EE34F441A8A454795EB9 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:11:39.0318 6296 NlaSvc - ok
11:11:39.0318 6296 [ 744DE5F3E878FA12739C0BD98A972153 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:11:39.0318 6296 Npfs - ok
11:11:39.0334 6296 [ 2F0A6D060CB7A32A96004A5A8A61E9FE ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
11:11:39.0334 6296 npsvctrig - ok
11:11:39.0334 6296 [ 7A92D9DB681E48655475F9D071E34950 ] nsi C:\Windows\system32\nsisvc.dll
11:11:39.0334 6296 nsi - ok
11:11:39.0349 6296 [ 7B37EF7E59C204DF60105C70BBE0D27E ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:11:39.0349 6296 nsiproxy - ok
11:11:39.0365 6296 [ E8DFE36C062380E6ED402B7574E1516B ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:11:39.0381 6296 Ntfs - ok
11:11:39.0381 6296 [ 7DE33B6BCD2113B39090D005BA5CFE9E ] Null C:\Windows\system32\drivers\Null.sys
11:11:39.0381 6296 Null - ok
11:11:39.0396 6296 [ F7E5F5D6F7A645A263F71D53F4B0EFD1 ] nvdimm C:\Windows\System32\drivers\nvdimm.sys
11:11:39.0396 6296 nvdimm - ok
11:11:39.0396 6296 [ 34185B2FFC507E1C93F1A90CC7F74ACD ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:11:39.0396 6296 nvraid - ok
11:11:39.0412 6296 [ 516681B5A77104029F18468E5428678F ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:11:39.0412 6296 nvstor - ok
11:11:39.0412 6296 [ 464C685801474077A3BA79529E6459E1 ] OneSyncSvc C:\Windows\System32\APHostService.dll
11:11:39.0412 6296 OneSyncSvc - ok
11:11:39.0428 6296 [ F1F3155E769EA05B5E35E9EE09041092 ] osadevprotect C:\Windows\system32\drivers\osadevprotect.sys
11:11:39.0443 6296 osadevprotect - ok
11:11:39.0443 6296 [ 301FF0BD694DC27D334C9B1DCA3542D1 ] OSArmorDevDrv C:\Windows\system32\drivers\OSArmorDevDrv.sys
11:11:39.0459 6296 OSArmorDevDrv - ok
11:11:39.0506 6296 [ A67B75E7E47E713F9F14260CA8C9ED35 ] OSArmorDevSvc C:\Program Files\NoVirusThanks\OSArmorDevSvc\OSArmorDevSvc.exe
11:11:39.0521 6296 OSArmorDevSvc - ok
11:11:39.0521 6296 [ E71271E27F8F1AFC93606866C205AC0F ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:11:39.0521 6296 p2pimsvc - ok
11:11:39.0537 6296 [ 63971F9592E9264CDD944E120CBAAF8A ] p2psvc C:\Windows\system32\p2psvc.dll
11:11:39.0537 6296 p2psvc - ok
11:11:39.0553 6296 [ AC682BC99BECA3A6C8C71234A9BC4225 ] Parport C:\Windows\System32\drivers\parport.sys
11:11:39.0553 6296 Parport - ok
11:11:39.0553 6296 [ 5DBF579E410726F43BB9F0DCFEFDA1CB ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:11:39.0553 6296 partmgr - ok
11:11:39.0568 6296 [ 8B35736DED2C6AE500BB4115B8BCC627 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:11:39.0568 6296 PcaSvc - ok
11:11:39.0584 6296 [ 10A749ACB28646D00CA6E53C8420AE5B ] pci C:\Windows\system32\drivers\pci.sys
11:11:39.0584 6296 pci - ok
11:11:39.0584 6296 [ 7EDA3D7F6ED0E9B27B451155FBB857C3 ] pciide C:\Windows\system32\drivers\pciide.sys
11:11:39.0584 6296 pciide - ok
11:11:39.0599 6296 [ C98DC1ACC9D5C4754BE83E28233369B9 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:11:39.0599 6296 pcmcia - ok
11:11:39.0599 6296 [ 9B7C96AB92C3EA3D6D7DE2291FDC0893 ] pcw C:\Windows\system32\drivers\pcw.sys
11:11:39.0599 6296 pcw - ok
11:11:39.0615 6296 [ ACAB4BE5EF4A94BE69ABC9BEB32D0208 ] pdc C:\Windows\system32\drivers\pdc.sys
11:11:39.0615 6296 pdc - ok
11:11:39.0631 6296 [ 095D67AD5263822A20B1C11BE21E18BC ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:11:39.0631 6296 PEAUTH - ok
11:11:39.0646 6296 [ DD862D97C38953177C798BEC6707512B ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
11:11:39.0662 6296 PeerDistSvc - ok
11:11:39.0662 6296 [ 3EDF20F5B059DD88ED7DBAF40CF31CA7 ] perceptionsimulation C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe
11:11:39.0662 6296 perceptionsimulation - ok
11:11:39.0662 6296 [ 5AAC1089AC330F737B445158094FD4B0 ] percsas2i C:\Windows\system32\drivers\percsas2i.sys
11:11:39.0678 6296 percsas2i - ok
11:11:39.0678 6296 [ 12E63DAE1AEFAF7C7C3A533184B14C11 ] percsas3i C:\Windows\system32\drivers\percsas3i.sys
11:11:39.0678 6296 percsas3i - ok
11:11:39.0709 6296 [ 0EC027E95D4B022102940FA3CD930E46 ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:11:39.0709 6296 PerfHost - ok
11:11:39.0724 6296 [ 0CB5CA2CF0539502E5019BED31A4DD3D ] PhoneSvc C:\Windows\System32\PhoneService.dll
11:11:39.0740 6296 PhoneSvc - ok
11:11:39.0740 6296 [ D4AE23C2024C079A8B3F3A11229B19D2 ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll
11:11:39.0740 6296 PimIndexMaintenanceSvc - ok
11:11:39.0756 6296 [ 0E3A1170D5698CACE6B6A4E72B04A5D0 ] PktMon C:\Windows\system32\drivers\PktMon.sys
11:11:39.0756 6296 PktMon - ok
11:11:39.0771 6296 [ 8059D6CF7FD1D34B61D1880A20F58B1C ] pla C:\Windows\system32\pla.dll
11:11:39.0771 6296 pla - ok
11:11:39.0787 6296 [ C28BA33FE1373DE12B5FC1873FFAE4BE ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:11:39.0787 6296 PlugPlay - ok
11:11:39.0787 6296 [ 26C53135EE0B51441B17AE473962303F ] pmem C:\Windows\System32\drivers\pmem.sys
11:11:39.0787 6296 pmem - ok
11:11:39.0803 6296 [ 4689DC2AEF21B8764CC4F4AD6712210A ] PNPMEM C:\Windows\System32\drivers\pnpmem.sys
11:11:39.0803 6296 PNPMEM - ok
11:11:39.0803 6296 [ 65272396F9B8D1F01E020639E1AC5DC3 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:11:39.0803 6296 PNRPAutoReg - ok
11:11:39.0818 6296 [ E71271E27F8F1AFC93606866C205AC0F ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:11:39.0818 6296 PNRPsvc - ok
11:11:39.0834 6296 [ 4FC9AC0B06074E1669FBF126C593A153 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:11:39.0834 6296 PolicyAgent - ok
11:11:39.0834 6296 [ 3DC43052FC990C7A0F3697F6E9142273 ] portcfg C:\Windows\System32\drivers\portcfg.sys
11:11:39.0834 6296 portcfg - ok
11:11:39.0849 6296 [ ECDAC2087A7185F542CFE6D00D66CBEE ] Power C:\Windows\system32\umpo.dll
11:11:39.0849 6296 Power - ok
11:11:39.0849 6296 [ 627C7573539A6CD64E5C34D4F630A3B1 ] PptpMiniport C:\Windows\System32\drivers\raspptp.sys
11:11:39.0849 6296 PptpMiniport - ok
11:11:39.0881 6296 [ 6173803E45D401CB58BBD1BD34DFDA59 ] PrintNotify C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
11:11:39.0896 6296 PrintNotify - ok
11:11:39.0912 6296 [ 9CCFB9CA2C3CE919D1E47321D6188F6E ] PrintWorkflowUserSvc C:\Windows\System32\PrintWorkflowService.dll
11:11:39.0912 6296 PrintWorkflowUserSvc - ok
11:11:39.0927 6296 [ D37B66581DC3911C26DABDE507B3BD49 ] Processor C:\Windows\System32\drivers\processr.sys
11:11:39.0927 6296 Processor - ok
11:11:39.0927 6296 [ 69C9FB006F377935F82FEA8AE4B6164E ] ProfSvc C:\Windows\system32\profsvc.dll
11:11:39.0943 6296 ProfSvc - ok
11:11:39.0943 6296 [ C0EF1DA7CB74EB2E0B87686AB7AA7454 ] Psched C:\Windows\system32\drivers\pacer.sys
11:11:39.0943 6296 Psched - ok
11:11:39.0943 6296 [ 34F064C964229611B694B5D01AAF4152 ] PushToInstall C:\Windows\system32\PushToInstall.dll
11:11:39.0959 6296 PushToInstall - ok
11:11:39.0959 6296 [ E862021CE0B9DA301969D8843A6F6AD8 ] QWAVE C:\Windows\system32\qwave.dll
11:11:39.0959 6296 QWAVE - ok
11:11:39.0974 6296 [ 00664026ACC782597B77AAAB5B65E715 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:11:39.0974 6296 QWAVEdrv - ok
11:11:39.0974 6296 [ E000172D517986EB493DBB0C42F76DCA ] Ramdisk C:\Windows\system32\DRIVERS\ramdisk.sys
11:11:39.0974 6296 Ramdisk - ok
11:11:39.0990 6296 [ 84E05BABA2B16499881D9E8BBC0779AC ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:11:39.0990 6296 RasAcd - ok
11:11:39.0990 6296 [ 67676B73B90C2C9BCEBAB4C79BE0853F ] RasAgileVpn C:\Windows\System32\drivers\AgileVpn.sys
11:11:39.0990 6296 RasAgileVpn - ok
11:11:39.0990 6296 [ F9804C84CEA2184B1E61E61E897B369E ] RasAuto C:\Windows\System32\rasauto.dll
11:11:40.0006 6296 RasAuto - ok
11:11:40.0006 6296 [ 555E33527CC3C34620E49F5F86C8F7B0 ] Rasl2tp C:\Windows\System32\drivers\rasl2tp.sys
11:11:40.0006 6296 Rasl2tp - ok
11:11:40.0021 6296 [ FF06DB75092372F49159B7E71F01EA6D ] RasMan C:\Windows\System32\rasmans.dll
11:11:40.0021 6296 RasMan - ok
11:11:40.0037 6296 [ A5FBC5FD8026AE164ECAD4882B24486E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:11:40.0037 6296 RasPppoe - ok
11:11:40.0037 6296 [ FE1C387B8C3BC89D907D3BB06F83315F ] RasSstp C:\Windows\System32\drivers\rassstp.sys
11:11:40.0037 6296 RasSstp - ok
11:11:40.0052 6296 [ BD53419B153C595001B9406AC1BB8791 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:11:40.0052 6296 rdbss - ok
11:11:40.0052 6296 [ D02EA52890750A5980EE970586942695 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
11:11:40.0052 6296 rdpbus - ok
11:11:40.0068 6296 [ 51D49770FD9D2E1956833C1F4D992893 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
11:11:40.0068 6296 RDPDR - ok
11:11:40.0084 6296 [ 9034A9F9A79A402F03C01AA0A8B37C3F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:11:40.0084 6296 RdpVideoMiniport - ok
11:11:40.0084 6296 [ CD3A6A87C682363E227F065B8E59D94C ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:11:40.0084 6296 rdyboost - ok
11:11:40.0115 6296 [ CE154F12790AFD58D12B751A00953729 ] ReFS C:\Windows\system32\drivers\ReFS.sys
11:11:40.0115 6296 ReFS - ok
11:11:40.0131 6296 [ EB0BB6BAD926A1024D1025641C03FF9D ] ReFSv1 C:\Windows\system32\drivers\ReFSv1.sys
11:11:40.0131 6296 ReFSv1 - ok
11:11:40.0131 6296 Suspicious service (Hidden): RegGuard
11:11:40.0146 6296 [ 07A98F85E84F6B3978D46C5E1484B915 ] RegGuard C:\Windows\system32\drivers\RegGuard.sys
11:11:40.0162 6296 RegGuard ( HiddenService.Multi.Generic ) - warning
11:11:40.0162 6296 RegGuard - detected HiddenService.Multi.Generic (1)
11:11:40.0177 6296 [ 66F57AA009EF8CDEFA0797BF0ECCF607 ] RegGuardSvc C:\RegGuardSvc\Service\RegGuardSvc.exe
11:11:40.0193 6296 RegGuardSvc - ok
11:11:40.0193 6296 [ 656E36EF61C55C51B0D66BCFC1C310EA ] RemoteAccess C:\Windows\System32\mprdim.dll
11:11:40.0209 6296 RemoteAccess - ok
11:11:40.0209 6296 [ 15D9B88C7258263375BA462B96E61860 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:11:40.0209 6296 RemoteRegistry - ok
11:11:40.0224 6296 [ 51304725CA84C6D40082A6FB0C29AFE9 ] RetailDemo C:\Windows\system32\RDXService.dll
11:11:40.0224 6296 RetailDemo - ok
11:11:40.0240 6296 [ FF46B8795B06BAB591F082FBEF17DC91 ] RFCOMM C:\Windows\System32\drivers\rfcomm.sys
11:11:40.0240 6296 RFCOMM - ok
11:11:40.0240 6296 [ E3DE6D17049E592A710284B4C811E7BF ] rhproxy C:\Windows\System32\drivers\rhproxy.sys
11:11:40.0240 6296 rhproxy - ok
11:11:40.0256 6296 [ 1DE7A310E67B46A010AF318A7DC67954 ] RmSvc C:\Windows\System32\RMapi.dll
11:11:40.0256 6296 RmSvc - ok
11:11:40.0256 6296 [ 9F8C24A7E07A8363D069F4D49993994C ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:11:40.0256 6296 RpcEptMapper - ok
11:11:40.0271 6296 [ A089120B99842F0A3CE8AE586A31BD56 ] RpcLocator C:\Windows\system32\locator.exe
11:11:40.0271 6296 RpcLocator - ok
11:11:40.0287 6296 [ 9996195077AE83EF7A57C58E136F551E ] RpcSs C:\Windows\system32\rpcss.dll
11:11:40.0287 6296 RpcSs - ok
11:11:40.0302 6296 [ CCF4A5CEC8FA38035007AB19EB0EBE2E ] rspndr C:\Windows\system32\drivers\rspndr.sys
11:11:40.0302 6296 rspndr - ok
11:11:40.0302 6296 [ 441AF1CFF84933E84A08CAE36D803B43 ] rt640x64 C:\Windows\System32\drivers\rt640x64.sys
11:11:40.0318 6296 rt640x64 - ok
11:11:40.0318 6296 [ 634E494D97381DAC40F6D04E2C4AB018 ] RTSUER C:\Windows\system32\Drivers\RtsUer.sys
11:11:40.0318 6296 RTSUER - ok
11:11:40.0334 6296 [ 40CD5DB1671197EFBD5C3AB16B9B037C ] s3cap C:\Windows\System32\drivers\vms3cap.sys
11:11:40.0334 6296 s3cap - ok
11:11:40.0334 6296 [ 03C70933698C6E3E466076DD9C3FAA18 ] SamSs C:\Windows\system32\lsass.exe
11:11:40.0334 6296 SamSs - ok
11:11:40.0349 6296 [ C111AC7C9698EAC8DAEA3425DAD68F42 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:11:40.0349 6296 sbp2port - ok
11:11:40.0349 6296 [ 6F1E358F693B1D389D7C12B271157D69 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:11:40.0349 6296 SCardSvr - ok
11:11:40.0365 6296 [ 057C49628A9E9945CA5676F52464D931 ] ScDeviceEnum C:\Windows\System32\ScDeviceEnum.dll
11:11:40.0365 6296 ScDeviceEnum - ok
11:11:40.0381 6296 [ E0891042C6FBF9FB1ED5133D745AD647 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:11:40.0381 6296 scfilter - ok
11:11:40.0381 6296 [ E2A91295F3B3419961F2C3AAE5BE8313 ] Schedule C:\Windows\system32\schedsvc.dll
11:11:40.0396 6296 Schedule - ok
11:11:40.0396 6296 [ 374BCC5C90587174FC2FC50401630E5E ] scmbus C:\Windows\system32\drivers\scmbus.sys
11:11:40.0396 6296 scmbus - ok
11:11:40.0412 6296 [ F738B75E685601069A0A3F8C30CF4F47 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:11:40.0412 6296 SCPolicySvc - ok
11:11:40.0412 6296 [ EDF00A16A45100A6F659065105E7F7B8 ] sdbus C:\Windows\System32\drivers\sdbus.sys
11:11:40.0412 6296 sdbus - ok
11:11:40.0427 6296 [ 801D9B80964AC7240F82C452709E28F8 ] SDFRd C:\Windows\System32\drivers\SDFRd.sys
11:11:40.0427 6296 SDFRd - ok
11:11:40.0427 6296 [ 12991E3B5C124E394DBA0D48D1B8E96E ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:11:40.0427 6296 SDRSVC - ok
11:11:40.0443 6296 [ 14B11BF6B3B0D4D54C4F649DB701A597 ] sdstor C:\Windows\System32\drivers\sdstor.sys
11:11:40.0443 6296 sdstor - ok
11:11:40.0443 6296 [ 512FD6039A256324A745DF4FA01D5D02 ] seclogon C:\Windows\system32\seclogon.dll
11:11:40.0443 6296 seclogon - ok
11:11:40.0459 6296 [ C86276FC1B654D4A806F93F6F593E585 ] SecurityHealthService C:\Windows\system32\SecurityHealthService.exe
11:11:40.0474 6296 SecurityHealthService - ok
11:11:40.0490 6296 [ 4F88B110B25531EC1CC84D621B2C74EC ] SEMgrSvc C:\Windows\system32\SEMgrSvc.dll
11:11:40.0490 6296 SEMgrSvc - ok
11:11:40.0490 6296 [ 84F8DAF82B643F63D5D6EF93F8F5BB95 ] SENS C:\Windows\System32\sens.dll
11:11:40.0506 6296 SENS - ok
11:11:40.0506 6296 Sense - ok
11:11:40.0521 6296 [ EA7F202EE760B3F949191FDF86E553EA ] SensorDataService C:\Windows\System32\SensorDataService.exe
11:11:40.0521 6296 SensorDataService - ok
11:11:40.0537 6296 [ D83530B2386434C004C0E4E41DD61843 ] SensorService C:\Windows\system32\SensorService.dll
11:11:40.0537 6296 SensorService - ok
11:11:40.0552 6296 [ 706087D7D9D2A5347F6B327B353E9E08 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:11:40.0552 6296 SensrSvc - ok
11:11:40.0552 6296 [ E1F507DB004880A5903EF7522912331B ] SerCx C:\Windows\system32\drivers\SerCx.sys
11:11:40.0552 6296 SerCx - ok
11:11:40.0568 6296 [ F43CB691DE5A8595B1558EC70E11F238 ] SerCx2 C:\Windows\system32\drivers\SerCx2.sys
11:11:40.0568 6296 SerCx2 - ok
11:11:40.0568 6296 [ 570C25D873C1BB07CEC1D244F540FBD7 ] Serenum C:\Windows\System32\drivers\serenum.sys
11:11:40.0568 6296 Serenum - ok
11:11:40.0584 6296 [ 75643A5BE2FB697CACB327C98571C1E0 ] Serial C:\Windows\System32\drivers\serial.sys
11:11:40.0584 6296 Serial - ok
11:11:40.0584 6296 [ 408A7AF941752F2CF6113A5028F10479 ] sermouse C:\Windows\System32\drivers\sermouse.sys
11:11:40.0584 6296 sermouse - ok
11:11:40.0599 6296 [ 0C1E0D0CD0B4683A27E27BC15A50921B ] SessionEnv C:\Windows\system32\sessenv.dll
11:11:40.0599 6296 SessionEnv - ok
11:11:40.0599 6296 [ B2CE0504DA72D0D6EB8A997D62852793 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
11:11:40.0599 6296 sfloppy - ok
11:11:40.0615 6296 [ C0F588AB65EE3869C38C1BD10A0AEF85 ] SgrmAgent C:\Windows\system32\drivers\SgrmAgent.sys
11:11:40.0615 6296 SgrmAgent - ok
11:11:40.0615 6296 [ C51AA0BB954EA45E85572E6CC29BA6F4 ] SgrmBroker C:\Windows\system32\SgrmBroker.exe
11:11:40.0631 6296 SgrmBroker - ok
11:11:40.0631 6296 [ 4F1EE4017B159974EC76EE0F3033C524 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:11:40.0646 6296 SharedAccess - ok
11:11:40.0646 6296 [ 9BC0F13DAD4AF8C6C4EEDBBE17025F1F ] SharedRealitySvc C:\Windows\System32\SharedRealitySvc.dll
11:11:40.0662 6296 SharedRealitySvc - ok
11:11:40.0662 6296 [ 66E6C9C7AEB812EF3F7ED69143E8E287 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:11:40.0662 6296 ShellHWDetection - ok
11:11:40.0677 6296 [ B2E022EFC0BB678D37D4595BEC535BF5 ] shpamsvc C:\Windows\system32\Windows.SharedPC.AccountManager.dll
11:11:40.0677 6296 shpamsvc - ok
11:11:40.0677 6296 [ E1FCDB9B82A224C4EB01F7A0C54DF557 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:11:40.0677 6296 SiSRaid2 - ok
11:11:40.0693 6296 [ 0588849E68C841A706081A294E51E759 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:11:40.0693 6296 SiSRaid4 - ok
11:11:40.0693 6296 [ 7A160562207FA446643277E75C6D697B ] SmartSAMD C:\Windows\system32\drivers\SmartSAMD.sys
11:11:40.0709 6296 SmartSAMD - ok
11:11:40.0709 6296 [ B15241350252D74581FE956F358478C5 ] smbdirect C:\Windows\system32\DRIVERS\smbdirect.sys
11:11:40.0709 6296 smbdirect - ok
11:11:40.0709 6296 [ 7EC5BE35AFE354E89378300C2455FE69 ] smphost C:\Windows\System32\smphost.dll
11:11:40.0724 6296 smphost - ok
11:11:40.0724 6296 [ 0D5698724FA6A269B9379C41FE2C1333 ] SmsRouter C:\Windows\system32\SmsRouterSvc.dll
11:11:40.0740 6296 SmsRouter - ok
11:11:40.0740 6296 [ 78172782B1E1E26933D67A9DA912158C ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:11:40.0740 6296 SNMPTRAP - ok
11:11:40.0756 6296 [ E2BA844230F364548420EDDF4C82E33F ] spaceport C:\Windows\system32\drivers\spaceport.sys
11:11:40.0756 6296 spaceport - ok
11:11:40.0771 6296 [ B0FC1C59BC63170BE57D66837FB6BEED ] SpatialGraphFilter C:\Windows\system32\drivers\SpatialGraphFilter.sys
11:11:40.0771 6296 SpatialGraphFilter - ok
11:11:40.0771 6296 [ D6E649E8482AA227B8F985116D115A9A ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
11:11:40.0771 6296 SpbCx - ok
11:11:40.0787 6296 [ 7F3921BA41FB025FD9285D795419B854 ] spectrum C:\Windows\system32\spectrum.exe
11:11:40.0802 6296 spectrum - ok
11:11:40.0802 6296 [ 217A5227E768CC42CF52B2902C7EFA8C ] Spooler C:\Windows\System32\spoolsv.exe
11:11:40.0818 6296 Spooler - ok
11:11:40.0849 6296 [ 08369AC84CDF660AD8F5EC7642C5D3E9 ] sppsvc C:\Windows\system32\sppsvc.exe
11:11:40.0881 6296 sppsvc - ok
11:11:40.0881 6296 [ ABD8CC0564249E61A76D7FA402312714 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:11:40.0896 6296 srv2 - ok
11:11:40.0896 6296 [ D4CC36C37C4418C34F11303AA83DDA5C ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:11:40.0896 6296 srvnet - ok
11:11:40.0912 6296 [ EC6EB8E7946753A3F71B92D06A52A36F ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:11:40.0912 6296 SSDPSRV - ok
11:11:40.0927 6296 [ 9FFECD197D09FF33B00D5E5B78A48146 ] ssh-agent C:\Windows\System32\OpenSSH\ssh-agent.exe
11:11:40.0927 6296 ssh-agent - ok
11:11:40.0927 6296 [ 5778543F5A5201B9661AFDA420FF0AF6 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:11:40.0927 6296 SstpSvc - ok
11:11:40.0974 6296 [ 7B95F9C1FC5CFADC7F922E76DA711A9C ] StateRepository C:\Windows\system32\windows.staterepository.dll
11:11:41.0006 6296 StateRepository - ok
11:11:41.0006 6296 [ 8BC164974B677F0D4ABFCA42ADADD14E ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:11:41.0006 6296 stexstor - ok
11:11:41.0021 6296 [ 1A9FD015C2C0C71385E770DBE8377583 ] stisvc C:\Windows\System32\wiaservc.dll
11:11:41.0021 6296 stisvc - ok
11:11:41.0037 6296 [ 0DBA29E779414EA9A28E491983FD9364 ] storahci C:\Windows\system32\drivers\storahci.sys
11:11:41.0037 6296 storahci - ok
11:11:41.0037 6296 [ 8B2A9CF83531994775A1DA620AA234FB ] storflt C:\Windows\system32\drivers\vmstorfl.sys
11:11:41.0037 6296 storflt - ok
11:11:41.0052 6296 [ C53E35BB56BA2C3682EA812003CAF82E ] stornvme C:\Windows\system32\drivers\stornvme.sys
11:11:41.0052 6296 stornvme - ok
11:11:41.0052 6296 [ 59D5626EC27D43039D76A6AA71CE5B01 ] storqosflt C:\Windows\system32\drivers\storqosflt.sys
11:11:41.0052 6296 storqosflt - ok
11:11:41.0068 6296 [ A6CB5F72AC25C2D81C99A99479FFC236 ] StorSvc C:\Windows\system32\storsvc.dll
11:11:41.0068 6296 StorSvc - ok
11:11:41.0084 6296 [ 82A7E0411D46526CA878651608CA2F89 ] storufs C:\Windows\system32\drivers\storufs.sys
11:11:41.0084 6296 storufs - ok
11:11:41.0084 6296 [ 868A36136BC87EB433CA0DC7394A8A3B ] storvsc C:\Windows\system32\drivers\storvsc.sys
11:11:41.0084 6296 storvsc - ok
11:11:41.0099 6296 [ 763995562791AD56C4DCFD5B0746317B ] svsvc C:\Windows\system32\svsvc.dll
11:11:41.0099 6296 svsvc - ok
11:11:41.0115 6296 [ 8A9C14DE49EC3FC1CF4C906C6DD6EFC1 ] swenum C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_1c567926e5b29133\swenum.sys
11:11:41.0115 6296 swenum - ok
11:11:41.0115 6296 [ 0D936D3B6AF7D118B3F8A36AF16C0846 ] swprv C:\Windows\System32\swprv.dll
11:11:41.0131 6296 swprv - ok
11:11:41.0131 6296 [ D2C18148D3C16CCED6E176C646C13EFD ] Synth3dVsc C:\Windows\System32\drivers\Synth3dVsc.sys
11:11:41.0131 6296 Synth3dVsc - ok
11:11:41.0146 6296 [ BB3C6C2020AC504829839824DE4D1CD2 ] SysMain C:\Windows\system32\sysmain.dll
11:11:41.0146 6296 SysMain - ok
11:11:41.0162 6296 [ E2F4812F664799182D39C4B30C62850C ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
11:11:41.0162 6296 SystemEventsBroker - ok
11:11:41.0177 6296 [ D79C8F7F04616ADF654FBDA9847CF3EB ] TabletInputService C:\Windows\System32\TabSvc.dll
11:11:41.0177 6296 TabletInputService - ok
11:11:41.0177 6296 [ 65AE63EC8F388BB53CBD3D9751464E04 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:11:41.0193 6296 TapiSrv - ok
11:11:41.0224 6296 [ 412793E7D5FE47F6CF2ECE0570381CBE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:11:41.0224 6296 Tcpip - ok
11:11:41.0256 6296 [ 412793E7D5FE47F6CF2ECE0570381CBE ] Tcpip6 C:\Windows\system32\drivers\tcpip.sys
11:11:41.0271 6296 Tcpip6 - ok
11:11:41.0271 6296 [ 6A6D4EE00469704BC0091AF5AC73C6DD ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:11:41.0271 6296 tcpipreg - ok
11:11:41.0287 6296 [ 9AF99FB2DA176C88C68D886046C56B01 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:11:41.0287 6296 tdx - ok
11:11:41.0287 6296 [ BACB822DEC72FECEFC809449FD3C7CD3 ] terminpt C:\Windows\System32\drivers\terminpt.sys
11:11:41.0302 6296 terminpt - ok
11:11:41.0318 6296 [ 5C47F20317F92866D5DCECA2D836BDBA ] TermService C:\Windows\System32\termsrv.dll
11:11:41.0318 6296 TermService - ok
11:11:41.0318 6296 [ 3B09BAB568BD4ED4B7A1998D47ECCF0C ] Themes C:\Windows\system32\themeservice.dll
11:11:41.0334 6296 Themes - ok
11:11:41.0334 6296 [ 00E0C9BF4808162AE2FC9E6C8BA50701 ] TieringEngineService C:\Windows\system32\TieringEngineService.exe
11:11:41.0334 6296 TieringEngineService - ok
11:11:41.0349 6296 [ AED022158618781B1816CEB14897E755 ] TimeBrokerSvc C:\Windows\System32\TimeBrokerServer.dll
11:11:41.0349 6296 TimeBrokerSvc - ok
11:11:41.0365 6296 [ 4D3FCD7D96C512EF1F75A39C57417B45 ] TokenBroker C:\Windows\System32\TokenBroker.dll
11:11:41.0381 6296 TokenBroker - ok
11:11:41.0381 6296 [ 146CF660D2014380F2FEA73501DD8E6A ] TPM C:\Windows\System32\drivers\tpm.sys
11:11:41.0396 6296 TPM - ok
11:11:41.0396 6296 [ F47972C77B03F421BE57CFEEE384D98B ] TrkWks C:\Windows\System32\trkwks.dll
11:11:41.0396 6296 TrkWks - ok
11:11:41.0412 6296 [ 0ABBA689E78D931613ADB942C43B2CF1 ] TroubleshootingSvc C:\Windows\system32\MitigationClient.dll
11:11:41.0412 6296 TroubleshootingSvc - ok
11:11:41.0412 6296 [ 8B5AFFC4987F9AE41DF15940C6EF66CB ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:11:41.0427 6296 TrustedInstaller - ok
11:11:41.0427 6296 [ 4D66CADB97981EE7390E95C5D59319F1 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:11:41.0427 6296 TsUsbFlt - ok
11:11:41.0427 6296 [ C26F638642EF8203EC7113464A0CCA55 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
11:11:41.0443 6296 TsUsbGD - ok
11:11:41.0443 6296 [ A8D4B53D386487AB9CFCFD972764941C ] tsusbhub C:\Windows\System32\drivers\tsusbhub.sys
11:11:41.0443 6296 tsusbhub - ok
11:11:41.0443 6296 [ E524022894A7499E3C06C147B0BA7FDF ] tunnel C:\Windows\system32\drivers\tunnel.sys
11:11:41.0443 6296 tunnel - ok
11:11:41.0459 6296 [ 3DD3418273A3E097E9302C672E975D08 ] tzautoupdate C:\Windows\system32\tzautoupdate.dll
11:11:41.0459 6296 tzautoupdate - ok
11:11:41.0459 6296 [ 948B18AEBDBF85B5A022AE3DD44EF7ED ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
11:11:41.0474 6296 UASPStor - ok
11:11:41.0474 6296 [ 4CFC014F7268E18414D115D2915E7636 ] UcmCx0101 C:\Windows\system32\Drivers\UcmCx.sys
11:11:41.0474 6296 UcmCx0101 - ok
11:11:41.0474 6296 [ C6ABD73AA3C86F3252E476FD34FC4D66 ] UcmTcpciCx0101 C:\Windows\system32\Drivers\UcmTcpciCx.sys
11:11:41.0490 6296 UcmTcpciCx0101 - ok
11:11:41.0490 6296 [ A10EF89D243B4A011E4A7618319B5D57 ] UcmUcsiAcpiClient C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys
11:11:41.0490 6296 UcmUcsiAcpiClient - ok
11:11:41.0490 6296 [ 777028ECD134FD8A094F4613475F099B ] UcmUcsiCx0101 C:\Windows\system32\Drivers\UcmUcsiCx.sys
11:11:41.0506 6296 UcmUcsiCx0101 - ok
11:11:41.0506 6296 [ D111694A8F376B645A9A24219B67C3B8 ] Ucx01000 C:\Windows\system32\drivers\ucx01000.sys
11:11:41.0506 6296 Ucx01000 - ok
11:11:41.0506 6296 [ F920FF63AD376001D8946FA22A8B598D ] UdeCx C:\Windows\system32\drivers\udecx.sys
11:11:41.0521 6296 UdeCx - ok
11:11:41.0521 6296 [ 0D3464F8E1D1CC638DCFBD935CBFDAEC ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:11:41.0521 6296 udfs - ok
11:11:41.0537 6296 [ B25FA421FC85C9A3F4AC81587B07A90E ] UEFI C:\Windows\System32\DriverStore\FileRepository\uefi.inf_amd64_4fcaf0fc6eaf7533\UEFI.sys
11:11:41.0537 6296 UEFI - ok
11:11:41.0537 6296 [ A9250ADFC71B9CBEE5BAD97CEE0C1EF0 ] UevAgentDriver C:\Windows\system32\drivers\UevAgentDriver.sys
11:11:41.0537 6296 UevAgentDriver - ok
11:11:41.0552 6296 [ 00EFFBF5C5E25799A2E5B49CAFDE86F4 ] UevAgentService C:\Windows\system32\AgentService.exe
11:11:41.0552 6296 UevAgentService - ok
11:11:41.0568 6296 [ 87D5D59B6AAC3ACCB6875D9666825C8E ] Ufx01000 C:\Windows\system32\drivers\ufx01000.sys
11:11:41.0568 6296 Ufx01000 - ok
11:11:41.0584 6296 [ A872BEA2A958430B9BABE0F5A6259E5A ] UfxChipidea C:\Windows\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_624eef84faf426d6\UfxChipidea.sys
11:11:41.0584 6296 UfxChipidea - ok
11:11:41.0584 6296 [ 86AD2D2C5AF22D8D13617F512EDA35B9 ] ufxsynopsys C:\Windows\System32\drivers\ufxsynopsys.sys
11:11:41.0584 6296 ufxsynopsys - ok
11:11:41.0599 6296 [ 6E08E87B46D3227C5AEC05AFD881ED83 ] umbus C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys
11:11:41.0599 6296 umbus - ok
11:11:41.0599 6296 [ 63C55C0E80F83D63EEB3BF6810DD8387 ] UmPass C:\Windows\System32\drivers\umpass.sys
11:11:41.0599 6296 UmPass - ok
11:11:41.0615 6296 [ 79C0194B9F2FF312F1E2927D42E52105 ] UmRdpService C:\Windows\System32\umrdp.dll
11:11:41.0615 6296 UmRdpService - ok
11:11:41.0631 6296 [ CBD797C153711690954BCF807FA3F257 ] UnistoreSvc C:\Windows\System32\unistore.dll
11:11:41.0646 6296 UnistoreSvc - ok
11:11:41.0662 6296 [ C7130D8E13400AE239252A82371F490C ] upnphost C:\Windows\System32\upnphost.dll
11:11:41.0662 6296 upnphost - ok
11:11:41.0662 6296 [ 9DCE4606E15FA465DE1AC453F46A85E6 ] UrsChipidea C:\Windows\System32\DriverStore\FileRepository\urschipidea.inf_amd64_86da23c455846f41\urschipidea.sys
11:11:41.0662 6296 UrsChipidea - ok
11:11:41.0677 6296 [ A7BE0A24B7F11060394A3BFAE21C783F ] UrsCx01000 C:\Windows\system32\drivers\urscx01000.sys
11:11:41.0677 6296 UrsCx01000 - ok
11:11:41.0677 6296 [ F1DE82278E0A027980B598BD70CECD6A ] UrsSynopsys C:\Windows\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_7302ce5d1420ed71\urssynopsys.sys
11:11:41.0677 6296 UrsSynopsys - ok
11:11:41.0693 6296 [ 7568EE93D647F65AC772852C9869E513 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
11:11:41.0693 6296 usbaudio - ok
11:11:41.0693 6296 [ 61DFCE1DAB6503BC75032102F150D692 ] usbaudio2 C:\Windows\System32\drivers\usbaudio2.sys
11:11:41.0693 6296 usbaudio2 - ok
11:11:41.0709 6296 [ E45B5A4D0CD7FAA616D2CF24BEAF5C99 ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
11:11:41.0709 6296 usbccgp - ok
11:11:41.0709 6296 [ 4A2A90FC52DD031BD5135BF2B6F95CDD ] usbcir C:\Windows\System32\drivers\usbcir.sys
11:11:41.0709 6296 usbcir - ok
11:11:41.0724 6296 [ A1EFF2E07889DB46C82520238D8225EF ] usbehci C:\Windows\System32\drivers\usbehci.sys
11:11:41.0724 6296 usbehci - ok
11:11:41.0724 6296 [ F6656FC6BA03CD046F5F82D968F02CC0 ] usbhub C:\Windows\System32\drivers\usbhub.sys
11:11:41.0740 6296 usbhub - ok
11:11:41.0740 6296 [ 95235AF07E459393CF5B51AE665048B1 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
11:11:41.0740 6296 USBHUB3 - ok
11:11:41.0756 6296 [ A6FF43DEE42EF4B160976D8A3BCA2143 ] usbohci C:\Windows\System32\drivers\usbohci.sys
11:11:41.0756 6296 usbohci - ok
11:11:41.0756 6296 [ 11724C8F4354F87EC7F96CBCBD18A612 ] usbprint C:\Windows\System32\drivers\usbprint.sys
11:11:41.0756 6296 usbprint - ok
11:11:41.0771 6296 [ 55CFD737A673108074914ED21F44CC0D ] usbser C:\Windows\System32\drivers\usbser.sys
11:11:41.0771 6296 usbser - ok
11:11:41.0771 6296 [ D575E148B38E2226E1DA27D0206B1006 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
11:11:41.0771 6296 USBSTOR - ok
11:11:41.0771 6296 [ 194091B0D8079A66B64A017B3E3965C1 ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
11:11:41.0787 6296 usbuhci - ok
11:11:41.0787 6296 [ 9C30C80855C05CA6DA0458AE9D67405F ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:11:41.0787 6296 usbvideo - ok
11:11:41.0802 6296 [ AB60F9F41ECFCC1F67F28C9A75481590 ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
11:11:41.0802 6296 USBXHCI - ok
11:11:41.0818 6296 [ 4AB290C4D42C77D1A395D44BF428E126 ] UserDataSvc C:\Windows\System32\userdataservice.dll
11:11:41.0834 6296 UserDataSvc - ok
11:11:41.0849 6296 [ 3CDA02F057095F94DC578E329746B74E ] UserManager C:\Windows\System32\usermgr.dll
11:11:41.0849 6296 UserManager - ok
11:11:41.0865 6296 [ 93FD6CC2D89D72E2F8143C0BF2E18785 ] UsoSvc C:\Windows\system32\usosvc.dll
11:11:41.0865 6296 UsoSvc - ok
11:11:41.0881 6296 [ DA482A04D8A194EF5041F0090A774A17 ] VacSvc C:\Windows\System32\vac.dll
11:11:41.0881 6296 VacSvc - ok
11:11:41.0896 6296 [ 03C70933698C6E3E466076DD9C3FAA18 ] VaultSvc C:\Windows\system32\lsass.exe
11:11:41.0896 6296 VaultSvc - ok
11:11:41.0896 6296 [ F8B7332117B5D5944945FA9EDEB6E2FA ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:11:41.0896 6296 vdrvroot - ok
11:11:41.0912 6296 [ 774339D0AC38E93E136329C586749A9E ] vds C:\Windows\System32\vds.exe
11:11:41.0912 6296 vds - ok
11:11:41.0927 6296 [ 0DAEB3C122959420D6CC0EEBE4AAA301 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
11:11:41.0927 6296 VerifierExt - ok
11:11:41.0943 6296 [ 4731BEDA2485437B1B93C4EBA618C69F ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
11:11:41.0943 6296 vhdmp - ok
11:11:41.0943 6296 [ 7D2E55D69166E5ADD2E85E4D91B106EA ] vhf C:\Windows\System32\drivers\vhf.sys
11:11:41.0943 6296 vhf - ok
11:11:41.0959 6296 [ FBC323E15CAE64D279DB0C406D6AE586 ] Vid C:\Windows\System32\drivers\Vid.sys
11:11:41.0959 6296 Vid - ok
11:11:41.0974 6296 [ 8350086E9500068CC3A3213DF90B2AED ] vmbus C:\Windows\system32\drivers\vmbus.sys
11:11:41.0974 6296 vmbus - ok
11:11:41.0974 6296 [ 0D36DA7B9053AA928EBB0A791FA9AD98 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
11:11:41.0974 6296 VMBusHID - ok
11:11:41.0974 6296 [ 32480E0760E0C3D21964CE3992001D5F ] vmgid C:\Windows\System32\drivers\vmgid.sys
11:11:41.0990 6296 vmgid - ok
11:11:41.0990 6296 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicguestinterface C:\Windows\System32\icsvc.dll
11:11:41.0990 6296 vmicguestinterface - ok
11:11:42.0006 6296 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicheartbeat C:\Windows\System32\icsvc.dll
11:11:42.0006 6296 vmicheartbeat - ok
11:11:42.0006 6296 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmickvpexchange C:\Windows\System32\icsvc.dll
11:11:42.0006 6296 vmickvpexchange - ok
11:11:42.0021 6296 [ E8D33D1EA66CF460A204007DFF2CC1D8 ] vmicrdv C:\Windows\System32\icsvcext.dll
11:11:42.0021 6296 vmicrdv - ok
11:11:42.0037 6296 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicshutdown C:\Windows\System32\icsvc.dll
11:11:42.0037 6296 vmicshutdown - ok
11:11:42.0037 6296 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmictimesync C:\Windows\System32\icsvc.dll
11:11:42.0037 6296 vmictimesync - ok
11:11:42.0052 6296 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicvmsession C:\Windows\System32\icsvc.dll
11:11:42.0052 6296 vmicvmsession - ok
11:11:42.0052 6296 [ E8D33D1EA66CF460A204007DFF2CC1D8 ] vmicvss C:\Windows\System32\icsvcext.dll
11:11:42.0068 6296 vmicvss - ok
11:11:42.0068 6296 [ F2509A5541AE06A8EAF74BFCB74583BD ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:11:42.0068 6296 volmgr - ok
11:11:42.0084 6296 [ 1594BC85AE1FA9C8ECD069BAE21B968C ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:11:42.0084 6296 volmgrx - ok
11:11:42.0084 6296 [ B4D173B92E4715CEC1FB8C830747852A ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:11:42.0099 6296 volsnap - ok
11:11:42.0099 6296 [ 48AC7024857127BF09088853DB43FF93 ] volume C:\Windows\system32\drivers\volume.sys
11:11:42.0099 6296 volume - ok
11:11:42.0099 6296 [ A44C0B99F31244DDD2FD9D6D1F00BFD7 ] VoodooShieldService C:\Program Files\VoodooShield\VoodooShieldService.exe
11:11:42.0115 6296 VoodooShieldService - ok
11:11:42.0115 6296 [ CF1C674D2149ECCDF3C93EECA1EA2F61 ] vpci C:\Windows\System32\drivers\vpci.sys
11:11:42.0115 6296 vpci - ok
11:11:42.0115 6296 [ 942B73A77ACB3099384A0754814EA9D9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:11:42.0131 6296 vsmraid - ok
11:11:42.0146 6296 [ C82C209DF1CFDA5C72B148DFC2FA5D1D ] VSS C:\Windows\system32\vssvc.exe
11:11:42.0146 6296 VSS - ok
11:11:42.0162 6296 [ 46C6E91F541A7B8EBDC053FDF26F99B1 ] VSScanner C:\Windows\system32\DRIVERS\vsscanner.sys
11:11:42.0162 6296 VSScanner - ok
11:11:42.0162 6296 [ A6CEC1A878536F3D5C82CFDF6E4CFCB9 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
11:11:42.0162 6296 VSTXRAID - ok
11:11:42.0177 6296 [ C347534CE40DB6D4878447302129BC73 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
11:11:42.0177 6296 vwifibus - ok
11:11:42.0177 6296 [ 489782EABA27384E116243E60EFFEEE7 ] vwififlt C:\Windows\system32\drivers\vwififlt.sys
11:11:42.0177 6296 vwififlt - ok
11:11:42.0193 6296 [ 085766D55201E4C5C431D2F008676F37 ] vwifimp C:\Windows\System32\drivers\vwifimp.sys
11:11:42.0193 6296 vwifimp - ok
11:11:42.0193 6296 [ 600A2AF8A6358F31962DDFEDA8883049 ] W32Time C:\Windows\system32\w32time.dll
11:11:42.0209 6296 W32Time - ok
11:11:42.0209 6296 [ 7D6EE86ADBCA1ED97568C8142EBB5F20 ] WaaSMedicSvc C:\Windows\System32\WaaSMedicSvc.dll
11:11:42.0209 6296 WaaSMedicSvc - ok
11:11:42.0224 6296 [ 0F428BDADB31C63BEC85FE65577BD84B ] WacomPen C:\Windows\System32\drivers\wacompen.sys
11:11:42.0224 6296 WacomPen - ok
11:11:42.0224 6296 [ 0DC4909F3D4E5272CB0A5B2BB7CA06BB ] WalletService C:\Windows\system32\WalletService.dll
11:11:42.0240 6296 WalletService - ok
11:11:42.0240 6296 [ C878ADFAEBC91078BDD67DC75761C606 ] wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:11:42.0240 6296 wanarp - ok
11:11:42.0256 6296 [ C878ADFAEBC91078BDD67DC75761C606 ] wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:11:42.0256 6296 wanarpv6 - ok
11:11:42.0256 6296 [ FA45D9FF48626207024305DADAD40AAB ] WarpJITSvc C:\Windows\System32\Windows.WARP.JITService.dll
11:11:42.0256 6296 WarpJITSvc - ok
11:11:42.0287 6296 [ CF92702DFF7F9EDD4E5519E806CB328B ] wbengine C:\Windows\system32\wbengine.exe
11:11:42.0287 6296 wbengine - ok
11:11:42.0302 6296 [ A49E17680E06B392CC6ECB47F01A6E64 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:11:42.0302 6296 WbioSrvc - ok
11:11:42.0318 6296 [ 4A41CB663563C8734572982179D92388 ] wcifs C:\Windows\system32\drivers\wcifs.sys
11:11:42.0318 6296 wcifs - ok
11:11:42.0334 6296 [ 04F65888EACA3AFD14B5504700DE8224 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
11:11:42.0334 6296 Wcmsvc - ok
11:11:42.0349 6296 [ 7CEAE2332C6036D25E01A2F61C16824C ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:11:42.0349 6296 wcncsvc - ok
11:11:42.0365 6296 [ B6F93B8B921662E81F9BA6A2AD014F86 ] wcnfs C:\Windows\system32\drivers\wcnfs.sys
11:11:42.0365 6296 wcnfs - ok
11:11:42.0365 6296 WdBoot - ok
11:11:42.0381 6296 [ 13A2F7B0EEAC7D05F1A1BC41A239FDF6 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:11:42.0396 6296 Wdf01000 - ok
11:11:42.0396 6296 WdFilter - ok
11:11:42.0396 6296 [ AA843CF3C016B79340C6FDACDA20D75D ] WdiServiceHost C:\Windows\system32\wdi.dll
11:11:42.0412 6296 WdiServiceHost - ok
11:11:42.0412 6296 [ AA843CF3C016B79340C6FDACDA20D75D ] WdiSystemHost C:\Windows\system32\wdi.dll
11:11:42.0412 6296 WdiSystemHost - ok
11:11:42.0427 6296 [ A09400A803B10A64422D8F9A6520D3A6 ] wdiwifi C:\Windows\system32\DRIVERS\wdiwifi.sys
11:11:42.0427 6296 wdiwifi - ok
11:11:42.0443 6296 [ 35ED849BBAD731509E4E8D3A015CE5FA ] WdmCompanionFilter C:\Windows\system32\drivers\WdmCompanionFilter.sys
11:11:42.0443 6296 WdmCompanionFilter - ok
11:11:42.0443 6296 WdNisDrv - ok
11:11:42.0459 6296 WdNisSvc - ok
11:11:42.0459 6296 [ 96F813A401A00A1C0477C0738DE64E3A ] WebClient C:\Windows\System32\webclnt.dll
11:11:42.0459 6296 WebClient - ok
11:11:42.0474 6296 [ D2432132ABE0F620939B667D4894A36F ] Wecsvc C:\Windows\system32\wecsvc.dll
11:11:42.0474 6296 Wecsvc - ok
11:11:42.0474 6296 [ FAF9800B056767E9F525C143C90F4F9E ] WEPHOSTSVC C:\Windows\system32\wephostsvc.dll
11:11:42.0490 6296 WEPHOSTSVC - ok
11:11:42.0490 6296 [ D9397BE33C1F8E6C29F5E72086F3F939 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:11:42.0490 6296 wercplsupport - ok
11:11:42.0506 6296 [ B0FE2D9437F92A54FDFEBB2143890A18 ] WerSvc C:\Windows\System32\WerSvc.dll
11:11:42.0506 6296 WerSvc - ok
11:11:42.0521 6296 [ C4A0E1C353C879ABF4C595A2B2C9E811 ] wfcs C:\Program Files\Malwarebytes\Windows Firewall Control\wfcs.exe
11:11:42.0521 6296 wfcs - ok
11:11:42.0521 6296 [ 5FB0717636A54C5C37082E79A6605902 ] WFDSConMgrSvc C:\Windows\System32\wfdsconmgrsvc.dll
11:11:42.0537 6296 WFDSConMgrSvc - ok
11:11:42.0537 6296 [ 97460B0FBD9A2329E13D715AAA826D80 ] WFPLWFS C:\Windows\system32\drivers\wfplwfs.sys
11:11:42.0537 6296 WFPLWFS - ok
11:11:42.0552 6296 [ 5CB480ABFD5C68B6D7CD7821F23BA7B8 ] WiaRpc C:\Windows\System32\wiarpc.dll
11:11:42.0552 6296 WiaRpc - ok
11:11:42.0552 6296 [ 1B7BFE3A11DA8E5D58BBFD811409FA43 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:11:42.0552 6296 WIMMount - ok
11:11:42.0568 6296 WinDefend - ok
11:11:42.0584 6296 [ 9FCCEAAF76F60F712C2DCEE6FC0B07A2 ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys
11:11:42.0584 6296 WindowsTrustedRT - ok
11:11:42.0584 6296 [ C696815C9B8DD3F40454A949E30ECA0B ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys
11:11:42.0584 6296 WindowsTrustedRTProxy - ok
11:11:42.0599 6296 [ F116389790D62B1099FBA5AB58CFE33F ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
11:11:42.0599 6296 WinHttpAutoProxySvc - ok
11:11:42.0615 6296 [ 9B3BD21B1FF32B20EE30FA4332D3AB6C ] WinMad C:\Windows\System32\drivers\winmad.sys
11:11:42.0615 6296 WinMad - ok
11:11:42.0631 6296 [ E7B5AC14EF3F0116D59E851A2F38DA74 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:11:42.0631 6296 Winmgmt - ok
11:11:42.0631 6296 [ E63524674B00BEF95EF1C03CEA8C0E0F ] WinNat C:\Windows\system32\drivers\winnat.sys
11:11:42.0631 6296 WinNat - ok
11:11:42.0646 6296 [ 99737333A5493750CC4CBB8C2BD323BB ] WinQuic C:\Windows\system32\drivers\winquic.sys
11:11:42.0646 6296 WinQuic - ok
11:11:42.0677 6296 [ 74E4D3C8A6EF62362187D0C6FC0DC49B ] WinRM C:\Windows\system32\WsmSvc.dll
11:11:42.0693 6296 WinRM - ok
11:11:42.0709 6296 [ 7C8733775E291E3211F918A30B425742 ] WINUSB C:\Windows\System32\drivers\WinUSB.SYS
11:11:42.0709 6296 WINUSB - ok
11:11:42.0709 6296 [ D130D6ED19268A74D6587C0D134B59EB ] WinVerbs C:\Windows\System32\drivers\winverbs.sys
11:11:42.0709 6296 WinVerbs - ok
11:11:42.0724 6296 [ B850D53C395A363648C4610AC3101D60 ] wisvc C:\Windows\system32\flightsettings.dll
11:11:42.0724 6296 wisvc - ok
11:11:42.0756 6296 [ E1E249E190D55FC8CAE9F770E2D6AD2D ] WlanSvc C:\Windows\System32\wlansvc.dll
11:11:42.0771 6296 WlanSvc - ok
11:11:42.0787 6296 [ A60DCC4F1CE38740F86B95E57B526545 ] wlidsvc C:\Windows\system32\wlidsvc.dll
11:11:42.0802 6296 wlidsvc - ok
11:11:42.0818 6296 [ 06122A4C8860167431FB9D66CCC93D18 ] wlpasvc C:\Windows\System32\lpasvc.dll
11:11:42.0834 6296 wlpasvc - ok
11:11:42.0834 6296 [ 479874582228961060B13E251FB2510D ] WManSvc C:\Windows\system32\Windows.Management.Service.dll
11:11:42.0849 6296 WManSvc - ok
11:11:42.0849 6296 [ B4ABE535AB99C02E3678AA1ED5EC56B2 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
11:11:42.0849 6296 WmiAcpi - ok
11:11:42.0865 6296 [ 72260CE9438A7A9A8A5BA101EDA4D6BD ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:11:42.0865 6296 wmiApSrv - ok
11:11:42.0881 6296 WMPNetworkSvc - ok
11:11:42.0881 6296 [ 1AAC4936E71E3895F7044DDE711C43F1 ] Wof C:\Windows\system32\drivers\Wof.sys
11:11:42.0881 6296 Wof - ok
11:11:42.0912 6296 [ EEF4A599B8A8BA3411A949F58826970B ] workfolderssvc C:\Windows\system32\workfolderssvc.dll
11:11:42.0927 6296 workfolderssvc - ok
11:11:42.0943 6296 [ 62379AA5716E01B442509D6FE366E424 ] WpcMonSvc C:\Windows\System32\WpcDesktopMonSvc.dll
11:11:42.0959 6296 WpcMonSvc - ok
11:11:42.0959 6296 [ A43EF2A9B957EC0B74721E262BB571B3 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:11:42.0974 6296 WPDBusEnum - ok
11:11:42.0974 6296 [ 58CD56BD6647BCAD784D9EB172D3132B ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
11:11:42.0974 6296 WpdUpFltr - ok
11:11:42.0990 6296 [ D516D659E846DCAB8F711597CFD961E1 ] WpnService C:\Windows\system32\WpnService.dll
11:11:42.0990 6296 WpnService - ok
11:11:42.0990 6296 [ B10C7C8714D4D279F56072EBAC17F6DD ] WpnUserService C:\Windows\System32\WpnUserService.dll
11:11:43.0006 6296 WpnUserService - ok
11:11:43.0006 6296 [ F4754B705332FFB21375D11EDD0E063E ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:11:43.0006 6296 ws2ifsl - ok
11:11:43.0021 6296 [ 31320670CC3C89B2504FCAC12D42801E ] wscsvc C:\Windows\System32\wscsvc.dll
11:11:43.0021 6296 wscsvc - ok
11:11:43.0037 6296 WSearch - ok
11:11:43.0068 6296 [ 19834D8A1275417E0E9796DFFFBD89FC ] wuauserv C:\Windows\system32\wuaueng.dll
11:11:43.0084 6296 wuauserv - ok
11:11:43.0084 6296 [ 28F033782B14D59DDBCA1E2FAE674B8A ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:11:43.0084 6296 WudfPf - ok
11:11:43.0099 6296 [ C339B551B1233A139AFD73C9DD8B50EC ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
11:11:43.0099 6296 WUDFRd - ok
11:11:43.0099 6296 [ C339B551B1233A139AFD73C9DD8B50EC ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
11:11:43.0115 6296 WUDFWpdFs - ok
11:11:43.0131 6296 [ 7E6BE7D68AFB2775B457E63BD8FDF1F5 ] WwanSvc C:\Windows\System32\wwansvc.dll
11:11:43.0146 6296 WwanSvc - ok
11:11:43.0146 6296 [ 5A185AD39FBA3409D7AD7DDCDA29DBA0 ] XblAuthManager C:\Windows\System32\XblAuthManager.dll
11:11:43.0162 6296 XblAuthManager - ok
11:11:43.0177 6296 [ 2F19D8B17B932AF9A5FAC588D6437773 ] XblGameSave C:\Windows\System32\XblGameSave.dll
11:11:43.0193 6296 XblGameSave - ok
11:11:43.0193 6296 [ 384059930ED4037232D12DBD8CB99B95 ] xboxgip C:\Windows\System32\drivers\xboxgip.sys
11:11:43.0193 6296 xboxgip - ok
11:11:43.0209 6296 [ C7135FB498E924FD4F93A35B206D1256 ] XboxGipSvc C:\Windows\System32\XboxGipSvc.dll
11:11:43.0209 6296 XboxGipSvc - ok
11:11:43.0224 6296 [ 5A495E793B14CCD532182BFEF1D06207 ] XboxNetApiSvc C:\Windows\system32\XboxNetApiSvc.dll
11:11:43.0240 6296 XboxNetApiSvc - ok
11:11:43.0240 6296 [ 4F6C56E15EDAD3E3CD7D839972F61BE0 ] xinputhid C:\Windows\System32\drivers\xinputhid.sys
11:11:43.0240 6296 xinputhid - ok
11:11:43.0256 6296 [ 7FEC6AACD1F3E34BBBBA39AD0A2A1A41 ] {0CBD4F48-3751-475D-BE88-4F271385B672} C:\Program Files\Shadow Defender\Service.exe
11:11:43.0256 6296 {0CBD4F48-3751-475D-BE88-4F271385B672} - ok
11:11:43.0271 6296 ================ Scan global ===============================
11:11:43.0287 6296 [ B21455B8FF82C98410E1ECDCDC50A67E ] C:\Windows\system32\basesrv.dll
11:11:43.0287 6296 [ 5D7E5826FF94D08CE87B197B0E99DDB4 ] C:\Windows\system32\winsrv.dll
11:11:43.0287 6296 [ 0901C559D0731D97EDAA68D36660CE90 ] C:\Windows\system32\sxssrv.dll
11:11:43.0302 6296 [ BCCC12EB2EF644E662A63A023FB83F9B ] C:\Windows\system32\services.exe
11:11:43.0302 6296 [Global] - ok
11:11:43.0302 6296 ================ Scan MBR ==================================
11:11:43.0318 6296 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:11:43.0318 6296 \Device\Harddisk0\DR0 - ok
11:11:43.0318 6296 ================ Scan VBR ==================================
11:11:43.0318 6296 [ C96FDB02881521B06F4EBB5108FE006F ] \Device\Harddisk0\DR0\Partition1
11:11:43.0318 6296 \Device\Harddisk0\DR0\Partition1 - ok
11:11:43.0318 6296 [ 5DA2AEC246F02FC0A44EB487429B73E0 ] \Device\Harddisk0\DR0\Partition2
11:11:43.0318 6296 \Device\Harddisk0\DR0\Partition2 - ok
11:11:43.0334 6296 [ 470D2383396FC80DE1EED649D77B345D ] \Device\Harddisk0\DR0\Partition3
11:11:43.0334 6296 \Device\Harddisk0\DR0\Partition3 - ok
11:11:43.0334 6296 [ 3BB75ECBFDCA59CA0063B55E58167E91 ] \Device\Harddisk0\DR0\Partition4
11:11:43.0334 6296 \Device\Harddisk0\DR0\Partition4 - ok
11:11:43.0334 6296 ============================================================
11:11:43.0334 6296 Scan finished
11:11:43.0334 6296 ============================================================
11:11:43.0349 5896 Detected object count: 1
11:11:43.0349 5896 Actual detected object count: 1
11:11:50.0521 5896 RegGuard ( HiddenService.Multi.Generic ) - skipped by user
11:11:50.0521 5896 RegGuard ( HiddenService.Multi.Generic ) - User select action: Skip
 

nasdaq

Moderator
Verified
Staff member
Hi,

I do not see any problems.

For your peace of mind run this scan.

Sophos Virus Removal Tool

Please download Sophos Virus Removal Tool and save it to your computer's Desktop.
  • Right-click the icon and select Run as administrator.[/*]
  • Click Yes to accept any security warnings that may appear.[/*]
  • Click the Next button.[/*]
  • Select 'I accept the terms in the license agreement', then click Next twice.[/*]
  • Click the Install button and wait until the installation is complete.[/*]
  • Click the Finish button. The tool created a shortcut icon on the Desktop of your computer.[/*]
  • Now, double-click the Sophos Virus Removal Tool shortcut icon to run the tool.[/*]
  • Click Yes to accept any security warnings that may appear.[/*]
  • After it updates and a "Start Scanning" button appears in the lower right:
    • Disconnect from the Internet or physically unplug your Internet cable connection.[/*]
    • Close all open programs, scheduling/updating tasks and background processes that might activate during the scan including the screensaver.[/*]
    • Temporarily disable your anti-virus and real-time anti-spyware protection.[/*]
    [/*]
  • Click the "Start Scanning" button in the lower right to start the scan.[/*]
  • After starting the scan, do not use the computer until the scan has completed.[/*]
  • When finished, if it detected anything there will be a "Start Clean-up" button, click it and allow it to finish.[/*]
  • When finished, re-enable your anti-virus/anti-malware (or reboot) and then you can reconnect to the Internet.[/*]
  • If any threats are found click Details, then View Log file (bottom left-hand corner).[/*]
  • Copy and paste its contents in your next reply and note any errors encountered.[/*]
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup.[/*]
  • Click Exit to close the program.[/*]
  • If no threats were found, please confirm that result.[/*]
Note: Whenever necessary, the log will be in the following location:

Windows Vista and above:
C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs\SophosVirusRemovalTool.log

Please post the contents of the log in your next reply and note any errors encountered.
===
 

jc135

Level 1
2020-02-22 08:28:45.739 Sophos Virus Removal Tool version 2.8.0
2020-02-22 08:28:45.739 Copyright (c) 2009-2019 Sophos Limited. All rights reserved.

2020-02-22 08:28:45.739 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2020-02-22 08:28:45.739 Windows version 6.2 SP 0.0 build 9200 SM=0x100 PT=0x1 WOW64
2020-02-22 08:28:45.739 Checking for updates...
2020-02-22 08:28:45.770 Update progress: proxy server not available
2020-02-22 08:28:47.379 Update error: failed to read remote metadata (error 4)
[V46381] SU::Handle::readRemoteMetadata + SU::Handle::readRemoteMetadata()
[V75884] SU::Metadata::readRemoteMetadata SU::Metadata::readRemoteMetadata()
[I40394] Downloading customer file from sophos:1:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:1:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E26245] Error fetching data from http://dci.sophosupd.com/update/1/6c/16c4d85f89f044ddac3c52b38fad4968.dat: WinHttpSendRequest (error 12007)
[I26245] No proxy was used.
[I40394] Downloading customer file from sophos:2:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:2:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E26245] Error fetching data from http://dci.sophosupd.net/update/1/6c/16c4d85f89f044ddac3c52b38fad4968.dat: WinHttpSendRequest (error 12007)
[I26245] No proxy was used.
[I40394] Downloading customer file from sophos:3:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:3:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E75373] Ran out of sophos aliases for this update source
[E35369] Out of update sources
[E99999] Out of sources
2020-02-22 08:28:59.020 Option all = no
2020-02-22 08:28:59.020 Option recurse = yes
2020-02-22 08:28:59.020 Option archive = no
2020-02-22 08:28:59.020 Option service = yes
2020-02-22 08:28:59.020 Option confirm = yes
2020-02-22 08:28:59.020 Option sxl = yes
2020-02-22 08:28:59.020 Option max-data-age = 35
2020-02-22 08:28:59.020 Option vdl-logging = yes
2020-02-22 08:28:59.035 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-02-22 08:28:59.035 Machine ID: 0d69f50fb1a244f494f5c93c4d7bb569
2020-02-22 08:28:59.067 Component SVRTcli.exe version 2.8.0
2020-02-22 08:28:59.067 Component control.dll version 2.8.0
2020-02-22 08:28:59.067 Component SVRTservice.exe version 2.8.0
2020-02-22 08:28:59.067 Component engine\osdp.dll version 1.44.1.2461
2020-02-22 08:28:59.067 Component engine\veex.dll version 3.77.1.2461
2020-02-22 08:28:59.067 Component engine\savi.dll version 9.0.15.2461
2020-02-22 08:28:59.098 Component rkdisk.dll version 1.5.33.1
2020-02-22 08:28:59.098 Version info: Product version 2.8.0
2020-02-22 08:28:59.098 Version info: Detection engine 3.77.1
2020-02-22 08:28:59.098 Version info: Detection data 5.72
2020-02-22 08:28:59.098 Version info: Build date 2/4/2020
2020-02-22 08:28:59.098 Version info: Data files added 178
2020-02-22 08:28:59.098 Version info: Last successful update (not yet updated)
2020-02-22 08:29:08.801 Error level 1

2020-02-22 08:29:08.801 Scan completed.
2020-02-22 08:29:08.801

------------------------------------------------------------

2020-02-22 21:12:22.986 Sophos Virus Removal Tool version 2.8.0
2020-02-22 21:12:22.986 Copyright (c) 2009-2019 Sophos Limited. All rights reserved.

2020-02-22 21:12:22.986 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2020-02-22 21:12:22.986 Windows version 6.2 SP 0.0 build 9200 SM=0x100 PT=0x1 WOW64
2020-02-22 21:12:22.987 Checking for updates...
2020-02-22 21:12:23.012 Update progress: proxy server not available
2020-02-22 21:12:35.094 Option all = no
2020-02-22 21:12:35.094 Option recurse = yes
2020-02-22 21:12:35.094 Option archive = no
2020-02-22 21:12:35.094 Option service = yes
2020-02-22 21:12:35.094 Option confirm = yes
2020-02-22 21:12:35.095 Option sxl = yes
2020-02-22 21:12:35.097 Option max-data-age = 35
2020-02-22 21:12:35.098 Option vdl-logging = yes
2020-02-22 21:12:35.105 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-02-22 21:12:35.105 Machine ID: 0d69f50fb1a244f494f5c93c4d7bb569
2020-02-22 21:12:35.106 Component SVRTcli.exe version 2.8.0
2020-02-22 21:12:35.106 Component control.dll version 2.8.0
2020-02-22 21:12:35.107 Component SVRTservice.exe version 2.8.0
2020-02-22 21:12:35.107 Component engine\osdp.dll version 1.44.1.2461
2020-02-22 21:12:35.107 Component engine\veex.dll version 3.77.1.2461
2020-02-22 21:12:35.107 Component engine\savi.dll version 9.0.15.2461
2020-02-22 21:12:35.149 Component rkdisk.dll version 1.5.33.1
2020-02-22 21:12:35.149 Version info: Product version 2.8.0
2020-02-22 21:12:35.150 Version info: Detection engine 3.77.1
2020-02-22 21:12:35.150 Version info: Detection data 5.72
2020-02-22 21:12:35.150 Version info: Build date 2/4/2020
2020-02-22 21:12:35.150 Version info: Data files added 178
2020-02-22 21:12:35.150 Version info: Last successful update (not yet updated)
2020-02-22 21:12:47.834 Downloading updates...
2020-02-22 21:12:47.839 Update progress: [I96736] sdds.svrt_v1.16: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2020-02-22 21:12:47.839 Update progress: [I95020] sdds.svrt_v1.16: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-02-22 21:12:47.839 Update progress: [I22529] sdds.svrt_v1.16: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-02-22 21:12:47.839 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2020-02-22 21:12:47.839 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2020-02-22 21:12:47.839 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2020-02-22 21:12:47.839 Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2020-02-22 21:12:47.839 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2020-02-22 21:12:47.839 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 172 ms
2020-02-22 21:12:47.839 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b6a74957ddde2a48bf61e6508caea4ecx000.xml: 2955 bytes
2020-02-22 21:12:47.839 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b6a74957ddde2a48bf61e6508caea4ecx000.xml: 62 ms
2020-02-22 21:12:47.839 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cf881d703f81f9b47f33b03f94996001x000.xml: 8673 bytes
2020-02-22 21:12:47.839 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cf881d703f81f9b47f33b03f94996001x000.xml: 62 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE575/c573bb3e0903431018dd585be82c84fcx000.xml: 590 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE575/c573bb3e0903431018dd585be82c84fcx000.xml: 109 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 598 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 79 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 601 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 93 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 601 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 78 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 601 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 110 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 601 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 125 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 601 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 78 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE570/c4215464d25d3865903108d821935879x000.xml: 601 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE570/c4215464d25d3865903108d821935879x000.xml: 78 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 601 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 94 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 601 bytes
2020-02-22 21:12:47.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 78 ms
2020-02-22 21:12:47.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE573/56cd5d78efbc0b70d3d016e9f0119b1ex000.xml: 1585 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE573/56cd5d78efbc0b70d3d016e9f0119b1ex000.xml: 78 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE574/4efddf3344c1b0588b4bb0397080b0cfx000.xml: 34878 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE574/4efddf3344c1b0588b4bb0397080b0cfx000.xml: 94 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 805b96f3cef40643f9ce43d0e0efbaa8x000.xml: 615 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 805b96f3cef40643f9ce43d0e0efbaa8x000.xml: 156 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 77a88edee8c08256d42259f4b89d887dx000.xml: 320 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 77a88edee8c08256d42259f4b89d887dx000.xml: 62 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 78 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 78 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32f2c03993b8d3414be5d9d714792de3x000.xml: 1027 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32f2c03993b8d3414be5d9d714792de3x000.xml: 78 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13ff2225063d88f220fa6841f37c8371x000.xml: 338 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13ff2225063d88f220fa6841f37c8371x000.xml: 94 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 1027 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 125 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 76f3567164278171cca28fc8121461d1x000.xml: 338 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 76f3567164278171cca28fc8121461d1x000.xml: 94 ms
2020-02-22 21:12:47.841 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 1027 bytes
2020-02-22 21:12:47.841 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 93 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 85126464fb11fca22421b7a21742a6adx000.xml: 338 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 85126464fb11fca22421b7a21742a6adx000.xml: 94 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 1027 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 78 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2302ad75630d4b58cca278062b8b5de4x000.xml: 338 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2302ad75630d4b58cca278062b8b5de4x000.xml: 78 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa6f963652fadc6cdeff28b207423ccbx000.xml: 1027 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa6f963652fadc6cdeff28b207423ccbx000.xml: 78 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2604e1b742f72c5b2358230ceb552befx000.xml: 338 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2604e1b742f72c5b2358230ceb552befx000.xml: 94 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 87666e9540b89546868b55d119c7b029x000.xml: 1027 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 87666e9540b89546868b55d119c7b029x000.xml: 78 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 332f16f3f32467ddbe44773d18577bccx000.xml: 338 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 332f16f3f32467ddbe44773d18577bccx000.xml: 94 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f22440c76fa98b33be36804ffa922b99x000.xml: 1027 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f22440c76fa98b33be36804ffa922b99x000.xml: 78 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 338 bytes
2020-02-22 21:12:47.842 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 78 ms
2020-02-22 21:12:47.842 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a13db9de3890166bfd908f854b655c37x000.xml: 1027 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a13db9de3890166bfd908f854b655c37x000.xml: 78 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 338 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 94 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0a87f328f4f1adb2c935a4fcd4d27790x000.xml: 465 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0a87f328f4f1adb2c935a4fcd4d27790x000.xml: 78 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b626d9db6d4c254c4b6cd7bfee521f95x000.xml: 338 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b626d9db6d4c254c4b6cd7bfee521f95x000.xml: 94 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3b50b8ccf7baaca054938a6669d4bb61x000.xml: 877 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3b50b8ccf7baaca054938a6669d4bb61x000.xml: 79 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1d73f9afd57dc65a0e0089c8e97d423cx000.xml: 338 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1d73f9afd57dc65a0e0089c8e97d423cx000.xml: 78 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 985d7fdf3a8062434d72516f5baed879x000.xml: 1027 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 985d7fdf3a8062434d72516f5baed879x000.xml: 62 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa703f2a2b1a92c90674ad451a16034cx000.xml: 338 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa703f2a2b1a92c90674ad451a16034cx000.xml: 62 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a6dc93ce88e29fcc86f9609dc3d74f37x000.xml: 465 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a6dc93ce88e29fcc86f9609dc3d74f37x000.xml: 94 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0760808e527eafff9b347bcba17f8b46x000.xml: 320 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0760808e527eafff9b347bcba17f8b46x000.xml: 94 ms
2020-02-22 21:12:47.843 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 198a3bca7202e71e82f60716dbaf402ax000.xml: 465 bytes
2020-02-22 21:12:47.843 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 198a3bca7202e71e82f60716dbaf402ax000.xml: 94 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ffe8b7d65ec937ec0771f7da4e9ed1d9x000.xml: 332 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ffe8b7d65ec937ec0771f7da4e9ed1d9x000.xml: 93 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 537f1f2a76e198f7c13e84cd5ee6b87bx000.xml: 877 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 537f1f2a76e198f7c13e84cd5ee6b87bx000.xml: 78 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3f4674ec6aeee0db118cbf49f040749ex000.xml: 332 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3f4674ec6aeee0db118cbf49f040749ex000.xml: 79 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e69c0f6db8c005bbc9da55cf2dffa081x000.xml: 877 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e69c0f6db8c005bbc9da55cf2dffa081x000.xml: 78 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 750071c623910596a4d134331ed35314x000.xml: 332 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 750071c623910596a4d134331ed35314x000.xml: 78 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3c5c917871c267d66375501f1e9a7e8ex000.xml: 877 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3c5c917871c267d66375501f1e9a7e8ex000.xml: 125 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 50e50924100424eafe5a483fcca72721x000.xml: 333 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 50e50924100424eafe5a483fcca72721x000.xml: 79 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 492b18b4642e3f50f74650c361918b36x000.xml: 877 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 492b18b4642e3f50f74650c361918b36x000.xml: 78 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 110c3c58177ac45dbfa8f91fc8bb5cd2x000.xml: 333 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 110c3c58177ac45dbfa8f91fc8bb5cd2x000.xml: 93 ms
2020-02-22 21:12:47.844 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 37578497f9646875bd3212e69ad91ff8x000.xml: 877 bytes
2020-02-22 21:12:47.844 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 37578497f9646875bd3212e69ad91ff8x000.xml: 79 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 229323072596cb4ed211f48fbe68bca3x000.xml: 333 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 229323072596cb4ed211f48fbe68bca3x000.xml: 93 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: af27b73d6ca76ee1c12701e778d82196x000.xml: 877 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: af27b73d6ca76ee1c12701e778d82196x000.xml: 94 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a9e89cc54c4007c1d76d85b709190fe2x000.xml: 333 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a9e89cc54c4007c1d76d85b709190fe2x000.xml: 94 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 722217d35252cfd32bd1500f37a463c0x000.xml: 877 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 722217d35252cfd32bd1500f37a463c0x000.xml: 156 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fe8b456f167b1b462b7b2395c8eb9289x000.xml: 335 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fe8b456f167b1b462b7b2395c8eb9289x000.xml: 93 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1ec3570c26f1f427f8dba782ba8d6c40x000.xml: 877 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1ec3570c26f1f427f8dba782ba8d6c40x000.xml: 94 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a794f0d85a2162a7b1a254ef57174590x000.xml: 335 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a794f0d85a2162a7b1a254ef57174590x000.xml: 94 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d054a60ac355aa71c84c9ed54748cbd7x000.xml: 877 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d054a60ac355aa71c84c9ed54748cbd7x000.xml: 94 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7555a61edd3d9e4af88482d3bfb0974fx000.xml: 335 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7555a61edd3d9e4af88482d3bfb0974fx000.xml: 78 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6a5509e820b90b461eb9fb654e0bf518x000.xml: 877 bytes
2020-02-22 21:12:47.845 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6a5509e820b90b461eb9fb654e0bf518x000.xml: 110 ms
2020-02-22 21:12:47.845 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9f777be68cf7aaecb672ef958d85c4e3x000.xml: 335 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9f777be68cf7aaecb672ef958d85c4e3x000.xml: 94 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 181c4616a1788ecdd852ebf599fb2802x000.xml: 877 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 181c4616a1788ecdd852ebf599fb2802x000.xml: 93 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1a4929fd3291a4a1bdc9cd4dd50552d9x000.xml: 335 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1a4929fd3291a4a1bdc9cd4dd50552d9x000.xml: 94 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e644f59d659ebe48a89fb931d20d6284x000.xml: 877 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e644f59d659ebe48a89fb931d20d6284x000.xml: 94 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a9a1d9f70403d87f3673e7a7398f7593x000.xml: 335 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a9a1d9f70403d87f3673e7a7398f7593x000.xml: 78 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 11310319fb8bccc01850c81491cbc202x000.xml: 877 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 11310319fb8bccc01850c81491cbc202x000.xml: 94 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b8d199bbddc5fc444620364a8334633ax000.xml: 335 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b8d199bbddc5fc444620364a8334633ax000.xml: 109 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d8b8206588b5cf386e81c6f68fd37596x000.xml: 877 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d8b8206588b5cf386e81c6f68fd37596x000.xml: 94 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1be111d13ac553b78731135dc3e8e5b8x000.xml: 335 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1be111d13ac553b78731135dc3e8e5b8x000.xml: 78 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: dd83ff33a2f3e9a893c3ee7ac9ae6aadx000.xml: 877 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: dd83ff33a2f3e9a893c3ee7ac9ae6aadx000.xml: 78 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 054c6fd9ca769f887b2beb21576fe68cx000.xml: 335 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 054c6fd9ca769f887b2beb21576fe68cx000.xml: 63 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ecb48f989ad2c67b9ec601c6ce0a72ebx000.xml: 877 bytes
2020-02-22 21:12:47.846 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ecb48f989ad2c67b9ec601c6ce0a72ebx000.xml: 63 ms
2020-02-22 21:12:47.846 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 141aea9dbb725cd084e8275adaaa9650x000.xml: 335 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 141aea9dbb725cd084e8275adaaa9650x000.xml: 78 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 59eebcca832c2186939f4f1f88144940x000.xml: 877 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 59eebcca832c2186939f4f1f88144940x000.xml: 79 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 636ffbaa61dc25440909df1926c3178fx000.xml: 335 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 636ffbaa61dc25440909df1926c3178fx000.xml: 93 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7b59cc9907b09b03ac46625c5d2ae0f0x000.xml: 877 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7b59cc9907b09b03ac46625c5d2ae0f0x000.xml: 94 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6a74c3b81e75e79799b9e0730acf9d16x000.xml: 335 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6a74c3b81e75e79799b9e0730acf9d16x000.xml: 78 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 735e04aadbda1bc741490f97811f5137x000.xml: 877 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 735e04aadbda1bc741490f97811f5137x000.xml: 94 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4c64dbf8e9c9e80a1a02e9d5f3c13800x000.xml: 335 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4c64dbf8e9c9e80a1a02e9d5f3c13800x000.xml: 109 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 435df73fca8f0199902bee23c20e35e3x000.xml: 877 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 435df73fca8f0199902bee23c20e35e3x000.xml: 94 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 25b10b2e8c9919d4697d118ef3be2185x000.xml: 335 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 25b10b2e8c9919d4697d118ef3be2185x000.xml: 94 ms
2020-02-22 21:12:47.847 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6e2c6b653db20a789e7600146f1b222cx000.xml: 877 bytes
2020-02-22 21:12:47.847 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6e2c6b653db20a789e7600146f1b222cx000.xml: 94 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3242b6346ac54e7ae8db73404546def2x000.xml: 335 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3242b6346ac54e7ae8db73404546def2x000.xml: 93 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b717bf52a979a091d972dc1161dc960bx000.xml: 877 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b717bf52a979a091d972dc1161dc960bx000.xml: 78 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0bb464630890b33d98d27da8e3e7eb3dx000.xml: 335 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0bb464630890b33d98d27da8e3e7eb3dx000.xml: 78 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1b58c9c11073db50c31edc73de95a1d6x000.xml: 877 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1b58c9c11073db50c31edc73de95a1d6x000.xml: 94 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c5638c2efc7ea72c8e7109309cc68295x000.xml: 335 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c5638c2efc7ea72c8e7109309cc68295x000.xml: 94 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 47916f684e32030affee4b5b3cebbca9x000.xml: 877 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 47916f684e32030affee4b5b3cebbca9x000.xml: 93 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cc6437be2e187b25b051bcc3183a984ex000.xml: 335 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cc6437be2e187b25b051bcc3183a984ex000.xml: 79 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 025d23ea3c264ee75cda53ffadd93a57x000.xml: 877 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 025d23ea3c264ee75cda53ffadd93a57x000.xml: 78 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1f048fded473808b7388f5e0fb4bc792x000.xml: 335 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1f048fded473808b7388f5e0fb4bc792x000.xml: 94 ms
2020-02-22 21:12:47.848 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fe5fa188e87f4b312298dad4d575773ax000.xml: 877 bytes
2020-02-22 21:12:47.848 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fe5fa188e87f4b312298dad4d575773ax000.xml: 94 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4ec334f2f2d163501157a0601af87a87x000.xml: 335 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4ec334f2f2d163501157a0601af87a87x000.xml: 94 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1e965a4264d00b420933c13d399dc1aax000.xml: 877 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1e965a4264d00b420933c13d399dc1aax000.xml: 78 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1cbaf1c2a27a0115d25751816211477ax000.xml: 335 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1cbaf1c2a27a0115d25751816211477ax000.xml: 94 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: be9862637c0ec3b510002f46e178ea8ax000.xml: 877 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: be9862637c0ec3b510002f46e178ea8ax000.xml: 78 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b2448fe4e25b9c01405a7cc01d64243fx000.xml: 335 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b2448fe4e25b9c01405a7cc01d64243fx000.xml: 78 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 669be9cf4398c4e78adf47c3cd57c858x000.xml: 877 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 669be9cf4398c4e78adf47c3cd57c858x000.xml: 78 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d366c14cf2c901873fdd142b7793e78fx000.xml: 335 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d366c14cf2c901873fdd142b7793e78fx000.xml: 78 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1df1a1334fcf7c995baea75a968155bex000.xml: 877 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1df1a1334fcf7c995baea75a968155bex000.xml: 78 ms
2020-02-22 21:12:47.849 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1c7f7deac3f4cd2d83b75dcecc4a5784x000.xml: 335 bytes
2020-02-22 21:12:47.849 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1c7f7deac3f4cd2d83b75dcecc4a5784x000.xml: 78 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: bb6013c9652ca46fd9a1142065171c4ax000.xml: 877 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: bb6013c9652ca46fd9a1142065171c4ax000.xml: 93 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c370f23b4338a6fb80957d9a52db3b6ax000.xml: 335 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c370f23b4338a6fb80957d9a52db3b6ax000.xml: 79 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 12386856cc04870f03ceb7f7fb35869ax000.xml: 877 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 12386856cc04870f03ceb7f7fb35869ax000.xml: 78 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d7711e80869b89ea51d01b147ff096b2x000.xml: 335 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d7711e80869b89ea51d01b147ff096b2x000.xml: 78 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1b4090d2eafa6bb21c12404e71a4a076x000.xml: 877 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1b4090d2eafa6bb21c12404e71a4a076x000.xml: 78 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 63d239b7df42dc31b1b2496fc9dda62bx000.xml: 335 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 63d239b7df42dc31b1b2496fc9dda62bx000.xml: 78 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: acfeff1e8e5c4b75fa98ee3420c710d4x000.xml: 877 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: acfeff1e8e5c4b75fa98ee3420c710d4x000.xml: 78 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 93fb5cd53f93b6427bd4e085439e86aex000.xml: 335 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 93fb5cd53f93b6427bd4e085439e86aex000.xml: 78 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9d4a80edf70c6c8c93d97eedda53c362x000.xml: 877 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9d4a80edf70c6c8c93d97eedda53c362x000.xml: 94 ms
2020-02-22 21:12:47.850 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 670e11cb73844b6f518a54a8708eff10x000.xml: 335 bytes
2020-02-22 21:12:47.850 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 670e11cb73844b6f518a54a8708eff10x000.xml: 78 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2aa493c2caaa082e56cb3ac59b78f0a6x000.xml: 877 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2aa493c2caaa082e56cb3ac59b78f0a6x000.xml: 94 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c4e6232f0a46fd6e42083bed7abcff86x000.xml: 335 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c4e6232f0a46fd6e42083bed7abcff86x000.xml: 78 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8d11520533a437e50d8d8017f203daa2x000.xml: 877 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8d11520533a437e50d8d8017f203daa2x000.xml: 78 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a8a98434cb6a15e9777ac716e52984aex000.xml: 335 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a8a98434cb6a15e9777ac716e52984aex000.xml: 93 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: df299c6545311fe6c5ccb6da49789201x000.xml: 877 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: df299c6545311fe6c5ccb6da49789201x000.xml: 94 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 955c7a841eea688abd335921cd0f47b7x000.xml: 335 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 955c7a841eea688abd335921cd0f47b7x000.xml: 94 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7752e326a81270297cefd50880deb57ex000.xml: 877 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7752e326a81270297cefd50880deb57ex000.xml: 94 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d8a9ba555b4d798aaf9c716e3f08da7dx000.xml: 336 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d8a9ba555b4d798aaf9c716e3f08da7dx000.xml: 78 ms
2020-02-22 21:12:47.851 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 961bedd30189403cc709389d198ed929x000.xml: 877 bytes
2020-02-22 21:12:47.851 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 961bedd30189403cc709389d198ed929x000.xml: 79 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d8d300055096878fba73cd4dffb09686x000.xml: 336 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d8d300055096878fba73cd4dffb09686x000.xml: 78 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d0d592168657a3bb31589f6f728208fbx000.xml: 877 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d0d592168657a3bb31589f6f728208fbx000.xml: 94 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3a6de5b92bddd49677d396a667d13cc3x000.xml: 336 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3a6de5b92bddd49677d396a667d13cc3x000.xml: 78 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 304d6a4234e27973578312439d631382x000.xml: 877 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 304d6a4234e27973578312439d631382x000.xml: 78 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 983611ed6501d2064f92ff9311b432d9x000.xml: 336 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 983611ed6501d2064f92ff9311b432d9x000.xml: 78 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0463211bf2f38d36e167aa5add0c6f49x000.xml: 877 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0463211bf2f38d36e167aa5add0c6f49x000.xml: 78 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5ef474b371d1b8ec2e6afcaba8b0dbbfx000.xml: 336 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5ef474b371d1b8ec2e6afcaba8b0dbbfx000.xml: 94 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9a14d819a3256611849be0d958779db5x000.xml: 877 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9a14d819a3256611849be0d958779db5x000.xml: 93 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 675d2e8b38729c0e8b80759d0c18f469x000.xml: 336 bytes
2020-02-22 21:12:47.852 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 675d2e8b38729c0e8b80759d0c18f469x000.xml: 78 ms
2020-02-22 21:12:47.852 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b60ac6d76f5f1777672d134e51f2a63fx000.xml: 877 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b60ac6d76f5f1777672d134e51f2a63fx000.xml: 94 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4db6b87f6e456435f080996ede0b8338x000.xml: 336 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4db6b87f6e456435f080996ede0b8338x000.xml: 78 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: bd208ac34fb0b2ae78cd70ee38e57941x000.xml: 877 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: bd208ac34fb0b2ae78cd70ee38e57941x000.xml: 94 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3c016946a7eb31ff37670faa6c72a024x000.xml: 336 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3c016946a7eb31ff37670faa6c72a024x000.xml: 78 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ba213ff3d402c5f912490a46cf41bbb4x000.xml: 877 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ba213ff3d402c5f912490a46cf41bbb4x000.xml: 78 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f1075f2a02a6bdc5bb54b1067a9ff72bx000.xml: 336 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f1075f2a02a6bdc5bb54b1067a9ff72bx000.xml: 78 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: edf49afab45e5a2fa071c881af991eb2x000.xml: 877 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: edf49afab45e5a2fa071c881af991eb2x000.xml: 94 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: dde6b8109c63d455cbb8321159602b88x000.xml: 336 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: dde6b8109c63d455cbb8321159602b88x000.xml: 78 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 644c2a18ab8bf911a722a833c964c223x000.xml: 877 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 644c2a18ab8bf911a722a833c964c223x000.xml: 93 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 662cb6c7026a12cfd3b6f6cd367c17cbx000.xml: 336 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 662cb6c7026a12cfd3b6f6cd367c17cbx000.xml: 78 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cf3181b834f2750ce455ee80952ad822x000.xml: 877 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cf3181b834f2750ce455ee80952ad822x000.xml: 94 ms
2020-02-22 21:12:47.853 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e49018ab59fb062758e20afcb36c9d2ex000.xml: 336 bytes
2020-02-22 21:12:47.853 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e49018ab59fb062758e20afcb36c9d2ex000.xml: 78 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 346a70d13105f48e7b38c481c505659dx000.xml: 877 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 346a70d13105f48e7b38c481c505659dx000.xml: 78 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3b01c0ed030304a074ae18d07b86baa0x000.xml: 336 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3b01c0ed030304a074ae18d07b86baa0x000.xml: 94 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7aa02df9dbb0ec22b76d86b0b99ea86ax000.xml: 877 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7aa02df9dbb0ec22b76d86b0b99ea86ax000.xml: 78 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3a209c8b7b0f7f7bda6471312365cb7cx000.xml: 336 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3a209c8b7b0f7f7bda6471312365cb7cx000.xml: 94 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0036262ab159e05545ce2f3cdb69e3d7x000.xml: 877 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0036262ab159e05545ce2f3cdb69e3d7x000.xml: 78 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1dbd23f99c6cb3c8293d6e5b1000497ex000.xml: 336 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1dbd23f99c6cb3c8293d6e5b1000497ex000.xml: 78 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0f6e3d2221518c192cbec1af6209f6a2x000.xml: 877 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0f6e3d2221518c192cbec1af6209f6a2x000.xml: 94 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: acc24fab6e9076b303e4a12260876df2x000.xml: 336 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: acc24fab6e9076b303e4a12260876df2x000.xml: 78 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 569cbda4ce0fdae681f245267b98b940x000.xml: 877 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 569cbda4ce0fdae681f245267b98b940x000.xml: 94 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9c958fd4fa9fa99e7a72dd49a0f9617bx000.xml: 336 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9c958fd4fa9fa99e7a72dd49a0f9617bx000.xml: 78 ms
2020-02-22 21:12:47.854 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cc5b0033502a0daad8dc426366e2dd2cx000.xml: 877 bytes
2020-02-22 21:12:47.854 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cc5b0033502a0daad8dc426366e2dd2cx000.xml: 93 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eaaeb9c29a76243538131dbc11af74bcx000.xml: 336 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eaaeb9c29a76243538131dbc11af74bcx000.xml: 79 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2e5132e5257dee537e03a89b72d0c332x000.xml: 877 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2e5132e5257dee537e03a89b72d0c332x000.xml: 93 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: be9f8b7f3fbfa0edb1500038d8374d70x000.xml: 336 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: be9f8b7f3fbfa0edb1500038d8374d70x000.xml: 78 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 66b7f8281bb87105e3c028bd4e1009bcx000.xml: 877 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 66b7f8281bb87105e3c028bd4e1009bcx000.xml: 78 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 458349c25295a86fb1e7246e4c3e3307x000.xml: 336 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 458349c25295a86fb1e7246e4c3e3307x000.xml: 78 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a3e4e67518100b4fec2abaee2781ad7dx000.xml: 877 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a3e4e67518100b4fec2abaee2781ad7dx000.xml: 78 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eac2a8928cee05e32697cb40f5c18cbex000.xml: 336 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eac2a8928cee05e32697cb40f5c18cbex000.xml: 78 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7c3ea12a2c32d6d89d2e2561c37a3dd2x000.xml: 877 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7c3ea12a2c32d6d89d2e2561c37a3dd2x000.xml: 78 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5e33bf6e51d32f7eacfdecaf8941f48fx000.xml: 336 bytes
2020-02-22 21:12:47.855 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5e33bf6e51d32f7eacfdecaf8941f48fx000.xml: 78 ms
2020-02-22 21:12:47.855 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 090b2001ea24552846ed745a988d8c93x000.xml: 877 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 090b2001ea24552846ed745a988d8c93x000.xml: 93 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 47823abfb67ff0d33a71a95a69e6ebcax000.xml: 336 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 47823abfb67ff0d33a71a95a69e6ebcax000.xml: 79 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 813bb6cb371af01a0a22f54b2d84c7d7x000.xml: 877 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 813bb6cb371af01a0a22f54b2d84c7d7x000.xml: 93 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f50c78ec9cbb51afd7361c5e6c0b5d8fx000.xml: 336 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f50c78ec9cbb51afd7361c5e6c0b5d8fx000.xml: 78 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 811d5c7f8e7835b6d5e1adb48d75da22x000.xml: 877 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 811d5c7f8e7835b6d5e1adb48d75da22x000.xml: 94 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cd1731d650ad9ed30d93303f1e21f653x000.xml: 336 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cd1731d650ad9ed30d93303f1e21f653x000.xml: 94 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3068c7933c9d2aac1f810425bd7df3a2x000.xml: 877 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3068c7933c9d2aac1f810425bd7df3a2x000.xml: 78 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6ef8bddc580c8af91fee917a60d814ccx000.xml: 336 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6ef8bddc580c8af91fee917a60d814ccx000.xml: 94 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: df46cc11bec24030b9fe74674fc49830x000.xml: 877 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: df46cc11bec24030b9fe74674fc49830x000.xml: 78 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4e083823a34613dd0fab91ddfd246ae8x000.xml: 336 bytes
2020-02-22 21:12:47.856 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4e083823a34613dd0fab91ddfd246ae8x000.xml: 78 ms
2020-02-22 21:12:47.856 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 597f4d3929fb611adde5be57069afd96x000.xml: 877 bytes
2020-02-22 21:12:47.857 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 597f4d3929fb611adde5be57069afd96x000.xml: 78 ms
2020-02-22 21:12:47.857 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c7b06ddb6205a5999922fb21b405696x000.xml: 336 bytes
2020-02-22 21:12:47.857 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c7b06ddb6205a5999922fb21b405696x000.xml: 79 ms
2020-02-22 21:12:47.857 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c01154dc2c9f9f8e12172448c758c6ex000.xml: 877 bytes
2020-02-22 21:12:47.857 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c01154dc2c9f9f8e12172448c758c6ex000.xml: 93 ms
2020-02-22 21:12:47.857 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7b20aa675f83906b03b4de524c4c3230x000.xml: 336 bytes
2020-02-22 21:12:47.857 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7b20aa675f83906b03b4de524c4c3230x000.xml: 94 ms
2020-02-22 21:12:47.857 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c1f2c8122004fdc56c362d8d47e44c30x000.xml: 877 bytes
2020-02-22 21:12:47.857 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c1f2c8122004fdc56c362d8d47e44c30x000.xml: 78 ms
2020-02-22 21:12:47.857 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fbfae44b651fe26c412dedd890d2c1adx000.xml: 336 bytes
2020-02-22 21:12:47.857 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fbfae44b651fe26c412dedd890d2c1adx000.xml: 94 ms
2020-02-22 21:12:47.857 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8a458594d88dabb03633082df8d7be9ax000.xml: 1027 bytes
2020-02-22 21:12:47.857 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8a458594d88dabb03633082df8d7be9ax000.xml: 78 ms
2020-02-22 21:12:47.857 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1bd211a853d5f7ed08a300ccff385213x000.xml: 336 bytes
2020-02-22 21:12:47.857 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1bd211a853d5f7ed08a300ccff385213x000.xml: 94 ms
2020-02-22 21:12:47.857 Update progress: [I49502] sdds.data0910.xml: found supplement IDE573 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2020-02-22 21:12:47.857 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE573 LATEST path=
2020-02-22 21:12:47.857 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE573 LATEST path=
2020-02-22 21:12:47.857 Update progress: [I49502] sdds.data0910.xml: found supplement IDE574 LATEST path= baseVersion= [included from product IDE573 LATEST path=]
2020-02-22 21:12:47.857 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE574 LATEST path=
2020-02-22 21:12:47.857 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE574 LATEST path=
2020-02-22 21:12:47.857 Update progress: [I49502] sdds.data0910.xml: found supplement IDE575 LATEST path= baseVersion= [included from product IDE574 LATEST path=]
2020-02-22 21:12:47.858 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE575 LATEST path=
2020-02-22 21:12:47.858 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE575 LATEST path=
2020-02-22 21:12:47.858 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-02-22 21:12:47.858 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8bf35e85dd81e1a95de6b6f6fa249353x000.xml: 64935 bytes
2020-02-22 21:12:47.858 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8bf35e85dd81e1a95de6b6f6fa249353x000.xml: 250 ms
2020-02-22 21:12:47.858 Update progress: [I19463] Product download size 183860856 bytes
2020-02-22 21:12:52.670 Update progress: [I19463] Syncing product IDE573 LATEST path=
2020-02-22 21:12:52.670 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 601221048f530b2050bdb63ac13cce40x000.xml: 27708 bytes
2020-02-22 21:12:52.670 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 601221048f530b2050bdb63ac13cce40x000.xml: 94 ms
2020-02-22 21:12:52.670 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 834e7f081706ee48aa3c9d479daa5f11x000.xml: 398 bytes
2020-02-22 21:12:52.670 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 834e7f081706ee48aa3c9d479daa5f11x000.xml: 78 ms
2020-02-22 21:12:52.670 Update progress: [I19463] Product download size 1682007 bytes
2020-02-22 21:12:53.668 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 533f13ed38e5821e02390a9da1915994x000.xml: 10647 bytes
2020-02-22 21:12:53.668 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 533f13ed38e5821e02390a9da1915994x000.xml: 78 ms
2020-02-22 21:12:53.827 Update progress: [I19463] Syncing product IDE574 LATEST path=
2020-02-22 21:12:53.827 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f1fb1f3b0cc138be66f7dfc1f37f85fex000.xml: 17536 bytes
2020-02-22 21:12:53.827 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f1fb1f3b0cc138be66f7dfc1f37f85fex000.xml: 110 ms
2020-02-22 21:12:53.827 Update progress: [I19463] Product download size 1109133 bytes
2020-02-22 21:12:54.757 Update progress: [I19463] Syncing product IDE575 LATEST path=
2020-02-22 21:12:54.757 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes
2020-02-22 21:12:54.757 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 94 ms
2020-02-22 21:12:54.914 Installing updates...
2020-02-22 21:12:55.519 Error level 1
2020-02-22 21:13:00.444 Update successful
2020-02-22 21:13:14.172 Option all = no
2020-02-22 21:13:14.172 Option recurse = yes
2020-02-22 21:13:14.172 Option archive = no
2020-02-22 21:13:14.172 Option service = yes
2020-02-22 21:13:14.172 Option confirm = yes
2020-02-22 21:13:14.172 Option sxl = yes
2020-02-22 21:13:14.175 Option max-data-age = 35
2020-02-22 21:13:14.175 Option vdl-logging = yes
2020-02-22 21:13:14.182 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-02-22 21:13:14.182 Machine ID: 0d69f50fb1a244f494f5c93c4d7bb569
2020-02-22 21:13:14.183 Component SVRTcli.exe version 2.8.0
2020-02-22 21:13:14.183 Component control.dll version 2.8.0
2020-02-22 21:13:14.184 Component SVRTservice.exe version 2.8.0
2020-02-22 21:13:14.184 Component engine\osdp.dll version 1.44.1.2461
2020-02-22 21:13:14.184 Component engine\veex.dll version 3.77.1.2461
2020-02-22 21:13:14.184 Component engine\savi.dll version 9.0.15.2461
2020-02-22 21:13:14.184 Component rkdisk.dll version 1.5.33.1
2020-02-22 21:13:14.185 Version info: Product version 2.8.0
2020-02-22 21:13:14.185 Version info: Detection engine 3.77.1
2020-02-22 21:13:14.185 Version info: Detection data 5.72
2020-02-22 21:13:14.185 Version info: Build date 2/4/2020
2020-02-22 21:13:14.185 Version info: Data files added 181
2020-02-22 21:13:14.185 Version info: Last successful update 2/22/2020 4:13:00 PM

2020-02-22 21:13:49.749 Couldn't apply option 'SXLLiveProtection' to the detection engine.
2020-02-22 21:21:55.741 Could not open C:\pagefile.sys
2020-02-22 21:22:31.736 Error level 0

2020-02-22 21:22:31.740 Scan cancelled by user.
2020-02-22 21:22:31.740

------------------------------------------------------------

2020-02-22 21:22:39.464 Sophos Virus Removal Tool version 2.8.0
2020-02-22 21:22:39.464 Copyright (c) 2009-2019 Sophos Limited. All rights reserved.

2020-02-22 21:22:39.464 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2020-02-22 21:22:39.465 Windows version 6.2 SP 0.0 build 9200 SM=0x100 PT=0x1 WOW64
2020-02-22 21:22:39.466 Checking for updates...
2020-02-22 21:22:39.486 Update progress: proxy server not available
2020-02-22 21:22:41.199 Update error: failed to read remote metadata (error 4)
[V46381] SU::Handle::readRemoteMetadata + SU::Handle::readRemoteMetadata()
[V75884] SU::Metadata::readRemoteMetadata SU::Metadata::readRemoteMetadata()
[I40394] Downloading customer file from sophos:1:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:1:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E26245] Error fetching data from http://dci.sophosupd.com/update/1/6c/16c4d85f89f044ddac3c52b38fad4968.dat: WinHttpSendRequest (error 12007)
[I26245] No proxy was used.
[I40394] Downloading customer file from sophos:2:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:2:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E26245] Error fetching data from http://dci.sophosupd.net/update/1/6c/16c4d85f89f044ddac3c52b38fad4968.dat: WinHttpSendRequest (error 12007)
[I26245] No proxy was used.
[I40394] Downloading customer file from sophos:3:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:3:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E75373] Ran out of sophos aliases for this update source
[E35369] Out of update sources
[E99999] Out of sources
2020-02-22 21:22:49.596 Option all = no
2020-02-22 21:22:49.596 Option recurse = yes
2020-02-22 21:22:49.596 Option archive = no
2020-02-22 21:22:49.596 Option service = yes
2020-02-22 21:22:49.596 Option confirm = yes
2020-02-22 21:22:49.596 Option sxl = yes
2020-02-22 21:22:49.599 Option max-data-age = 35
2020-02-22 21:22:49.599 Option vdl-logging = yes
2020-02-22 21:22:49.606 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-02-22 21:22:49.606 Machine ID: 0d69f50fb1a244f494f5c93c4d7bb569
2020-02-22 21:22:49.607 Component SVRTcli.exe version 2.8.0
2020-02-22 21:22:49.607 Component control.dll version 2.8.0
2020-02-22 21:22:49.608 Component SVRTservice.exe version 2.8.0
2020-02-22 21:22:49.608 Component engine\osdp.dll version 1.44.1.2461
2020-02-22 21:22:49.608 Component engine\veex.dll version 3.77.1.2461
2020-02-22 21:22:49.608 Component engine\savi.dll version 9.0.15.2461
2020-02-22 21:22:49.609 Component rkdisk.dll version 1.5.33.1
2020-02-22 21:22:49.609 Version info: Product version 2.8.0
2020-02-22 21:22:49.609 Version info: Detection engine 3.77.1
2020-02-22 21:22:49.609 Version info: Detection data 5.72
2020-02-22 21:22:49.609 Version info: Build date 2/4/2020
2020-02-22 21:22:49.609 Version info: Data files added 181
2020-02-22 21:22:49.609 Version info: Last successful update 2/22/2020 4:13:00 PM

2020-02-22 21:22:53.747 Couldn't apply option 'SXLLiveProtection' to the detection engine.
2020-02-22 21:24:10.151 Could not open C:\pagefile.sys
2020-02-22 21:24:55.418 Could not open C:\swapfile.sys
2020-02-22 21:24:55.461 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2020-02-22 21:24:55.462 Could not open C:\System Volume Information\{3a26dd7b-5114-11ea-b4a1-bcb1a9e8b2b1}{3808876b-c176-4e48-b7ae-04046e6cc752}
2020-02-22 21:24:55.462 Could not open C:\System Volume Information\{bcc1a1c9-51d1-11ea-b4a4-8dc8c0fe5a52}{3808876b-c176-4e48-b7ae-04046e6cc752}
2020-02-22 21:24:55.462 Could not open C:\System Volume Information\{bcc1af21-51d1-11ea-b4a4-8dc8c0fe5a52}{3808876b-c176-4e48-b7ae-04046e6cc752}
2020-02-22 21:25:23.245 Could not open C:\Users\CSO\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python.exe
2020-02-22 21:25:23.246 Could not open C:\Users\CSO\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.7.exe
2020-02-22 21:25:23.247 Could not open C:\Users\CSO\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.exe
2020-02-22 21:25:23.253 Could not open C:\Users\CSO\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2020-02-22 21:25:23.254 Could not open C:\Users\CSO\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
2020-02-22 21:25:23.255 Could not open C:\Users\CSO\AppData\Local\Microsoft\WindowsApps\python.exe
2020-02-22 21:25:23.256 Could not open C:\Users\CSO\AppData\Local\Microsoft\WindowsApps\python3.7.exe
2020-02-22 21:25:23.256 Could not open C:\Users\CSO\AppData\Local\Microsoft\WindowsApps\python3.exe
2020-02-22 21:25:33.034 Could not open C:\Users\Juko\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python.exe
2020-02-22 21:25:33.034 Could not open C:\Users\Juko\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.7.exe
2020-02-22 21:25:33.035 Could not open C:\Users\Juko\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.exe
2020-02-22 21:25:33.041 Could not open C:\Users\Juko\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2020-02-22 21:25:33.042 Could not open C:\Users\Juko\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
2020-02-22 21:25:33.043 Could not open C:\Users\Juko\AppData\Local\Microsoft\WindowsApps\python.exe
2020-02-22 21:25:33.044 Could not open C:\Users\Juko\AppData\Local\Microsoft\WindowsApps\python3.7.exe
2020-02-22 21:25:33.044 Could not open C:\Users\Juko\AppData\Local\Microsoft\WindowsApps\python3.exe
2020-02-22 21:28:48.315 Could not open C:\Windows\System32\config\BBI
2020-02-22 21:36:45.280 Could not open LOGICAL:0004:00000000
2020-02-22 21:36:45.305 Could not open E:\
2020-02-22 21:36:45.902 Error level 0

2020-02-22 21:37:41.164 Scan completed.
2020-02-22 21:37:41.164

------------------------------------------------------------


Sophos did not find anything.

A friend mentioned 'StrongHold', a rootkit of some sort. Ever heard of it ?
 

nasdaq

Moderator
Verified
Staff member
Hi.

This is what I know of stronghold.


You can run Malwarebytes and check for Rootkit.

Run the other programs suggested on the article.

If you find anything let me know.

Let me know what problem you are still experiencing with this computer.
 

jc135

Level 1
No, I don''t have that SoftStrongHold on my PC. My friend must be talking about some other thing then.

The full story is this: I have a same configured desktop PC, which I kept offline. And some how when I edited a set of html files, one of them got a huge multipage section erased. Now any sane person would reason that since it was never online, it must be user created error. The only symptom of any unusuallness is that a Windows setup DVD would boot with cmd window that popped up and disappears quickly. before the keyboard selection dialog shows. Now the other thing is that the door to my bedroom is unlocked. And I have heard of bios rootkits. And I am conjuring up ways that it could be infected. Because I would never have made that error, because It involves highlighting that huge section and deleting it. The section deleted was the entire meat of the web page, leaving only the introduction and conclusion sections.

Now on this PC which I surf with, I keep the SSD with me, since it small enough to pocket. And when booted with the Windows setup DVD, no cmd windows shows. Since I keep the SSD on me whereever I go, this one stands the least chance of malicious modification.

Not willing to take any chances, I setup a laptop given to me with the same configuration. This laptop has been in my bedroom all same time too. So it could have been maliciously modified also . The same cmd window appears and disappears with a Windows setup. I havent begun using this laptop yet. But will start to use it and see if anything usual happens.
 
Last edited:

nasdaq

Moderator
Verified
Staff member
Hi

This does not look like malware to me.

Try the suggested fix on this page.

If you still need help on this issues I suggest you start a new topic in this Windows 10 Forum

Or at Bleepingcomputer.com

This is not caused by malware and not my forte.
 
Status
Not open for further replies.