עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
½עPIDǣ1736,·ǣC:\Documents and Settings\Administrator\\ר\MS-DOS.com,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ288,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\Global.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ560,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\system.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ctfmon.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\Fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\tskmgr.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\boot.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ǣREG_SZ,ֵǣC:\WINDOWS\Fonts\fonts.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autorun.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\autoruns.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\auto.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\drivers\drivers.cab.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msconfig.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ǣREG_SZ,ֵǣC:\WINDOWS\Media\rndll32.pif,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\procexp.exe,ǣDebugger,ԭǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ǣREG_SZ,ֵǣC:\WINDOWS\pchealth\helpctr\binaries\HelpHost.com,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\USER\S-1-5-21-343818398-1214440339-1417001333-500\Software\Microsoft\Windows\CurrentVersion\RunOnce,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system32\dllcache\Default.exe,ɹ־ǣɹ
ֵעPIDǣ1884,·ǣC:\WINDOWS\system32\dllcache\Recycler.{645FF040-5081-101B-9F08-00AA002F954E}\svchost.exe,ע·ǣ\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ǣ,ԭǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ǣREG_SZ,ֵǣC:\WINDOWS\system\KEYBOARD.exe,ɹ־ǣɹ
