Adware Keeps Coming Back

Status
Not open for further replies.

Zachary Pollen

New Member
Thread author
Jul 21, 2020
3
Hi, I have recently been having new tabs opening by themselves in google chrome. I have downloaded adwcleaner, and it finds the adware and tells me to restart my pc. I do this, and it works, until i turn my PC off at night and go back on in the morning and it is back! this has happened multiple times now. I have established that it is not a chrome extension, it is definetly adware. When i run an adwcleaner scan it says that that adware is called 'PUP,Optional.Legacy'. Does anyone have any tips?

Thank you, Zachary.
 

nasdaq

Moderator
Verified
Staff Member
Nov 5, 2019
1,425
Hello, Welcome to MalwareTips.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

If the problem persists and Chrome is Synced with other Devices reset it.



Execute the suggested fix.

Restart the computer normally.
===========

If the problem is not solved run this program.

Download the Farbar Recovery Scan Tool (FRST).
Choose the 32 or 64 bit version for your system.
and save it to a folder on your computer's Desktop.
Ensure that you are in an Administrator Account
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

How to attach a file to your reply:
In the Reply section in the bottom of the topic Click the "more reply Options" button.
[img=[URL]http://deeprybka.trojaner-board.de/eset/eng/attachlogs.png[/URL]]

Attach the file(s). A 2 Steps process.
Reply to this topic.
Select the "Choose a File" navigate to the location of the File.
Click the file you wish to Attach. <- Step 1.
Click Attach this file. <- Step 2.
Click the Add reply button.

Please post the logs for my review.

Wait for further instructions

p.s.
This program is updated often.
If it's identified as suspicious by your Anti-Virus program trust it if Downloaded from the link I provided.
You should restore the program from the Quarantine folder.
====
 
  • Like
Reactions: [correlate]

Zachary Pollen

New Member
Thread author
Jul 21, 2020
3
Thank you nasdaq. FRST.txt is pasted below and i have attached addition.txt.


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2020
Ran by Zachary (administrator) on DESKTOP-1FFLBL2 (Apple Inc. iMac13,1) (22-07-2020 08:58:37)
Running from C:\Users\Zachary\Downloads
Loaded Profiles: Zachary
Platform: Windows 10 Home Single Language Version 1903 18362.959 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\Hub.exe
(Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe
(Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2007.1001.9.0_x64__8wekyb3d8bbwe\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.43.13001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.43.13001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.320.6242.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.320.6242.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.320.6242.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRAgent.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apple_KbdMgr] => C:\Program Files\Boot Camp\Bootcamp.exe [2842984 2019-11-20] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools First\MMERefresh.exe [117760 2019-05-04] (Avid Technology, Inc.) [File not signed]
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1676064 2020-02-09] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302392 2020-05-20] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [109160 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-05] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [76600 2020-05-06] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [llk51d445sd] => C:\Program Files (x86)\ivjr\690129673.exe [484864 2020-07-19] (Zinuara) [File not signed]
HKLM\...\RunOnce: [kqqs5ejfmev] => C:\Program Files (x86)\ivjr\807908995.exe [484864 2020-07-19] (Zinuara) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [Discord] => C:\Users\Zachary\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3376416 2020-07-09] (Valve -> Valve Corporation)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [671091104E27E85D38E67EDDCFC07D3274B7414B._service_run] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [TabletDriver] => C:\Users\Zachary\Desktop\tablet\Huion Tablet\x64\TabletDriverCore.exe [330984 2019-10-22] (Shenzhen Huion Animation Technology Co.,LTD -> )
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [utweb] => C:\Users\Zachary\AppData\Roaming\uTorrent Web\utweb.exe [5491328 2020-05-07] (Jenkins Win Client Build CA -> BitTorrent Inc.) [File not signed]
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31867792 2020-05-19] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [WallpaperEngine] => "C:\Users\Zachary\Desktop\Wallpaper.engine.v1.0.981\Wallpaper.engine.v1.0.981\Wallpaper.engine.v1.0.981\Wallpaper Engine\wallpaper32.exe" -silent
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-05-07] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-05-07] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [Windscribe] => C:\Program Files (x86)\Windscribe\Windscribe.exe [10106544 2019-01-19] (Windscribe Limited -> Windscribe Limited)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [Amazon Music Helper] => C:\Users\Zachary\AppData\Local\Amazon Music\Amazon Music Helper.exe [2107848 2020-05-23] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [Amazon Music] => C:\Users\Zachary\AppData\Local\Amazon Music\Amazon Music.exe [20373448 2020-05-23] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [Opera Browser Assistant] => C:\Users\Zachary\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3105304 2020-07-15] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\Run: [6429998] => C:\Users\Zachary\AppData\Roaming\2dp5sbql5ve\kf3gd3dafde.exe [2029058 2020-07-19] () [File not signed]
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\MountPoints2: {6a5c0c18-5482-11ea-a75e-ec358636252d} - "V:\setup.exe"
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\...\MountPoints2: {7ba31905-7e4c-11ea-a798-ec358636252d} - "V:\Setup.exe"
HKLM\...\Print\Monitors\HP BB11 Status Monitor: C:\WINDOWS\system32\hpinkstsBB11LM.dll [329576 2012-04-02] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\Installer\chrmstp.exe [2020-07-21] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\83.1.4977.117\Installer\chrmstp.exe [2020-07-19] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\...\Authentication\Credential Providers: [{97E1814E-5601-41c8-9971-10C319EF61CC}] -> C:\WINDOWS\system32\SRCredentialProvider.dll [2020-06-20] (Splashtop Inc. -> Splashtop Inc.)
AppInit_DLLs: C:\PROGRA~1\VIRTUA~1\VIRTUA~4.DLL => No File
AppInit_DLLs-x32: C:\PROGRA~1\VIRTUA~1\VIRTUA~3.DLL => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Link.lnk [2019-10-17]
ShortcutTarget: Avid Link.lnk -> C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Huion Tablet.lnk [2019-12-25]
ShortcutTarget: Huion Tablet.lnk -> C:\Users\Zachary\Desktop\tablet\Huion Tablet\Huion Tablet.exe (Shenzhen Huion Animation Technology Co.,LTD -> )
Startup: C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2019-10-17]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2020-02-07]
ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon Inc. -> Canon INC.)
Startup: C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LiveWallpaper - Shortcut.lnk [2019-11-17]
ShortcutTarget: LiveWallpaper - Shortcut.lnk -> C:\Users\Zachary\Desktop\DesktopHut Live Wallpapers App\LiveWallpaper.exe (No File)
Startup: C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Reallusion Hub.lnk [2019-11-29]
ShortcutTarget: Reallusion Hub.lnk -> C:\Program Files (x86)\Common Files\Reallusion\LiveUpdate\Reallusion Hub.exe (Reallusion Inc. -> Reallusion Inc.)
BootExecute: autocheck autochk * aswBoot.exe /M:1dc419d45 /dir:"C:\Program Files\Avast Software\Avast"
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01A7F81F-78CC-4D77-9C33-E94550F444BA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0CD22F23-4805-416E-A6E4-0C41464C1C0A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E0478D4-16BB-4E5B-AFB7-C858B4130F4B} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\SysInfo => C:\Users\Zachary\AppData\Roaming\\syshost\\sihost.exe <==== ATTENTION
Task: {173B1E81-225C-44D1-AD70-E143F648A37B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1BBB9747-F3B1-4041-BD0C-A1815957F73C} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Zachary\Downloads\adwcleaner_8.0.6.exe [8420016 2020-07-19] (Malwarebytes Inc -> Malwarebytes)
Task: {1DB755FB-B4B6-4BAD-8251-0FF83FEF35FA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22395C1A-7CD6-4889-B1B4-428A93D37EA0} - System32\Tasks\Opera scheduled assistant Autoupdate 1569688930 => C:\Users\Zachary\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-06-18] (Opera Software AS -> Opera Software)
Task: {23AC33A8-8EFA-4288-84B7-9C1D4B2A0E4B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {25EBE2FA-E4F7-4810-8115-64E58716B319} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2E3DE65D-1A20-43B8-A204-6C608F27A10C} - System32\Tasks\Minecraft Education Edition Automatic Updater => C:\Program Files (x86)\Microsoft Studios\Minecraft Education Edition\MinecraftEducationUpdater.exe [5813248 2020-02-03] (Microsoft Studios) [File not signed]
Task: {303B3BEB-98AD-4780-BB83-4EA0FC8E616F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {3327B530-9210-4733-AA79-0DFA57F336F6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4571056 2020-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {3FE77ECD-F342-46D8-B823-E0E35F429045} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {403AC21E-8931-45AF-BBC3-FDB88B0FDD1A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {42746B68-7F9B-40B7-9B94-BB2997D2284A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A1191DF-5C90-4D70-8DD1-6373EF7E79B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4A901179-508E-4676-A21B-A8914E95C2BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {522BE5A4-1AC0-45A4-8C21-0D21127F4381} - System32\Tasks\Opera GX scheduled Autoupdate 1595177490 => C:\Users\Zachary\AppData\Local\Programs\Opera GX\launcher.exe [1459224 2020-07-15] (Opera Software AS -> Opera Software)
Task: {52C79247-C297-458E-9C12-C9D2847C48FC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123752 2020-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {53A0B19A-79F8-4814-A8B5-67FD1A80D2F1} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-07-19] (Avast Software s.r.o. -> Avast Software)
Task: {54266DFE-08FF-4FB1-A0FB-E7292AB1790E} - System32\Tasks\Opera scheduled Autoupdate 1569688923 => C:\Users\Zachary\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-06-18] (Opera Software AS -> Opera Software)
Task: {5E307789-C3D2-4E27-AC40-1D84FC2E413D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
Task: {665BB539-9319-4D3A-B1E3-801986DBFDE6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-29] (Google Inc -> Google LLC)
Task: {75F430EA-8D6D-4383-BC7E-68A55FE04FE5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\AdwCleaner_onReboot" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\BlueStacksHelper" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\Minecarft Education Weekly Updater" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\Minecraft Education Edition Automatic Updater" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(21): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(22): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(23): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-2389937495-2013339128-1002434076-1001" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(24): schtasks.exe -> /Change /TN "\Opera GX scheduled Autoupdate 1595177490" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(25): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1569688930" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(26): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1583672145" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(27): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1569688923" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(28): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1583672142" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(29): schtasks.exe -> /Change /TN "\ProtonVPN Update" /ENABLE
Task: {7901A4D1-0DD1-4B76-BB5D-25196D8B07B8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(30): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {82CDE808-E591-4820-8455-EEC64162781C} - System32\Tasks\ProtonVPN Update => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [60736 2020-03-11] (ProtonVPN AG -> )
Task: {87E5C102-72CE-41C0-9BC7-45EAE1D35713} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4571056 2020-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {968757CC-5AC6-4160-8202-1BA4B2EF7F7C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9A1670E3-626C-40A7-B267-2361184B92CF} - System32\Tasks\Minecarft Education Weekly Updater => C:\Program Files (x86)\Microsoft Studios\Minecraft Education Edition\MinecraftEducationUpdater.exe [5813248 2020-02-03] (Microsoft Studios) [File not signed]
Task: {9B51AFED-860E-4245-A2EF-A5AE58B96650} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F34D02B-C93F-4871-B296-7B574511D80C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A8D4902E-59AA-4BAA-9D78-F7ED13718AF0} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
Task: {B0A7BBF4-BC79-4026-BD69-E29334CEA4D6} - System32\Tasks\Opera scheduled Autoupdate 1583672142 => C:\Users\Zachary\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-06-18] (Opera Software AS -> Opera Software)
Task: {BBF47AA1-7089-40E9-998B-FFA866CF6606} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BDDA8DB9-FDEF-407E-B487-1E9022B7D863} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123752 2020-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {BFB45A1C-F8C1-4C6E-85C4-4D5ADE56300E} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2124576 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
Task: {CBF395DF-1B35-4406-8CFE-271B41D09561} - System32\Tasks\Opera scheduled assistant Autoupdate 1583672145 => C:\Users\Zachary\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-06-18] (Opera Software AS -> Opera Software)
Task: {CDCCD5B7-69C9-4609-AD23-1F11F46A2C6C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DB104844-C3A5-4171-A2A5-DE29A6F72D1A} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3339872 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
Task: {E0DCBE60-406D-434B-A8D7-8CA962C09C49} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [752136 2020-06-18] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {E914F7A1-125F-4340-989F-C376C0C1D182} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2124576 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
Task: {E9823CAF-E282-40B5-916F-EA3A1C3BB60A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F0F1B0D2-BAC7-4F65-B60F-7FE8ACAAEF26} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5A2273B-2A69-495F-BBFE-C510D03AC3C7} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F671F52F-1FB9-4298-9B13-9EFFC57A3789} - System32\Tasks\Microsoft\Windows\PLA\CPU => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1507328 2020-05-13] (Microsoft Windows -> Microsoft Corporation)
Task: {F97C3E7C-22EB-46EF-810B-16F0FE4402E7} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-19] => Proxy is enabled.
ProxyServer: [S-1-5-19] => 127.0.0.1:8080
ProxyEnable: [S-1-5-20] => Proxy is enabled.
ProxyServer: [S-1-5-20] => 127.0.0.1:8080
ProxyServer: [S-1-5-21-2389937495-2013339128-1002434076-1001] => 127.0.0.1:8003
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{50be4066-e930-4fdf-91ca-877e7d275718}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{50be4066-e930-4fdf-91ca-877e7d275718}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{8b94758e-bc3c-43fa-afd7-1d1ca3cbe1d9}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{a7fb7fc2-5d7e-48f4-90b4-50fa4a01b20c}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://uk.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=bgy_iorusko0_19_43_ssg02&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dgb%26pa%3Dwingy%26cd%3D2XzuyEtN2Y1L1Qzu0E0EtAyDzzyCtAyCtB0DtB0CtD0E0D0BtN0D0Tzu0StBzzyDyCtN1L2XzuyEtFyDyCtFtDtFyCzztN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2SyEyCzytDyEtCtC0FtGtBtDtB0BtGtCyCtA0FtGtD0AyC0BtGzy0FtDtAyE0AtAzztB0BtCtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StA1RyDyEzy1P1R1RtGyC1R1R1RtGyE1SyE1QtGzzyD1PzytGtCyE1Rzy1OtCzy1O1RyB1R1P2QtN0A0LzutDtN1B2Z1V1T1S1NzutByEtDyEzztN1Q2Z1B1P1RzutCyDyBtBtBtDyDtAtBtB%26cr%3D583307986%26a%3Dbgy_iorusko0_19_43_ssg02%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
SearchScopes: HKU\S-1-5-21-2389937495-2013339128-1002434076-1001 -> DefaultScope {518b33ae-375d-712d-6742-d1fe0400268d} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-29] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-07-17] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-29] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-07-17] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-11] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
DownloadDir: C:\Users\Zachary\Downloads
Edge Profile: C:\Users\Zachary\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-19]
Edge Notifications: Default -> hxxps://app.houseparty.com
Edge HomePage: Default -> hxxp://google.com/
Edge DefaultSearchURL: Default -> hxxps://www.bing.com/search?FORM=U523DF&PC=U523&q={searchTerms}
Edge DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?FORM=U523DF&PC=U523&query={searchTerms}
Edge Extension: (Microsoft Rewards) - C:\Users\Zachary\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fbgcedjacmlbgleddnoacbnijgmiolem [2020-05-20]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-07-17] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-01-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-07-19] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.7.915.0\npAvastBrowserUpdate3.dll [2020-07-19] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Users\Zachary\Desktop\Stuff i dont need but i need\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Users\Zachary\Desktop\Stuff i dont need but i need\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2389937495-2013339128-1002434076-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Zachary\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-03-09] (Unity Technologies SF -> Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default [2020-07-22]
CHR Notifications: Default -> hxxps://app.houseparty.com; hxxps://aternos.org; hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://meet.google.com; hxxps://web.skype.com; hxxps://web.whatsapp.com; hxxps://www.instagram.com; hxxps://www.reddit.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://google.com/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Slides) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-29]
CHR Extension: (Docs) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-29]
CHR Extension: (Google Drive) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-29]
CHR Extension: (YouTube) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-29]
CHR Extension: (Honey) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2020-07-08]
CHR Extension: (Sheets) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-29]
CHR Extension: (Video Player) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdebnehfojpoccpaocfbelbclfnpbmij [2019-07-29]
CHR Extension: (Google Docs Offline) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-21]
CHR Extension: (Video Adblocker for Youtube™ Extension) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2020-01-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-29]
CHR Extension: (Chrome Media Router) - C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-22]
CHR Profile: C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-04-14]
CHR Profile: C:\Users\Zachary\AppData\Local\Google\Chrome\User Data\System Profile [2020-04-14]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej]
CHR HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKU\S-1-5-21-2389937495-2013339128-1002434076-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce]
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.)
S2 AppleOSSMgr; C:\Windows\system32\AppleOSSMgr.exe [247144 2019-11-20] (Apple Inc. -> )
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6514072 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [356824 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193688 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\83.1.4977.117\elevation_service.exe [1310024 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R2 AvidHubService; C:\Program Files\Avid\Cloud Client Services\Hub.exe [2299208 2017-11-09] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 AvidTransportClient; C:\Program Files\Avid\Cloud Client Services\TransportClient.exe [7067464 2017-11-09] (Avid Technology, Inc. -> Avid Technology, Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8628736 2020-06-06] (BattlEye Innovations e.K. -> )
S2 BootCampService; C:\WINDOWS\system32\BootCampService.exe [92008 2019-11-20] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10574712 2020-07-02] (Microsoft Corporation -> Microsoft Corporation)
S2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [9824672 2019-09-30] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S2 DigiRefresh; C:\Program Files\Avid\Pro Tools First\MMERefresh.exe [117760 2019-05-04] (Avid Technology, Inc.) [File not signed]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools First\digisptiservice64.exe [197632 2019-05-04] (Avid Technology, Inc.) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2020-06-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 GameInput; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [37808 2020-07-12] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_2.43.13001.0_x64__8wekyb3d8bbwe\GamingServices.exe [46000 2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_2.43.13001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [46000 2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7461816 2020-07-02] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [946256 2020-07-17] (McAfee, LLC -> McAfee, LLC)
S3 Minecraft Education Updater; C:\Program Files (x86)\Microsoft Studios\Minecraft Education Edition\MinecraftEducationUpdater.exe [5813248 2020-02-03] (Microsoft Studios) [File not signed]
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [101696 2020-03-11] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [60736 2020-03-11] (ProtonVPN AG -> )
S2 RemoteMouseService; C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe [11264 2019-07-25] () [File not signed]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1705088 2020-05-12] (Rockstar Games, Inc. -> Rockstar Games)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Uncheater\ucldr_battlegrounds_gl.exe [6995800 2020-06-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2019-01-19] (Windscribe Limited -> Windscribe Limited)
S2 AdobeUpdateService; "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe" [X]
S2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation
S2 VirtualDesktop.Service.exe; "C:\Program Files\Virtual Desktop\VirtualDesktop.Service.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AppleBtBc; C:\WINDOWS\System32\drivers\AppleBtBc.sys [38912 2015-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleSPIDevice; C:\WINDOWS\System32\drivers\AppleSPIDevice.sys [27136 2015-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 AppleSPIKeyboard; C:\WINDOWS\System32\drivers\AppleSPIKeyboard.sys [26336 2015-10-01] (L&RE AppleInternal -> Apple Inc.)
S3 AppleSPITrackpad; C:\WINDOWS\System32\drivers\AppleSPITrackpad.sys [46592 2015-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 AppleSSD; C:\WINDOWS\System32\drivers\AppleSSD.sys [94944 2016-03-04] (L&RE AppleInternal -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205880 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [514448 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [466232 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216816 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [323272 2020-07-19] (Avast Software s.r.o. -> AVAST Software)
S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [313112 2019-08-01] (Bluestack Systems, Inc. -> Bluestack System Inc.)
R2 CamMask; C:\WINDOWS\System32\drivers\cmvcamdrv64.sys [954072 2013-12-23] (SageTech -> )
R3 CirrusFilter; C:\WINDOWS\system32\DRIVERS\CS420x64.sys [18432 2016-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Cirrus Logic)
R3 gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_ad5ce1f12ff43d18\gameflt.sys [71528 2020-06-16] (Microsoft Windows -> Microsoft Corporation)
S3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [35832 2016-03-02] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
S3 iaLPSS_I2C; C:\WINDOWS\System32\drivers\iaLPSS_I2C.sys [120312 2016-03-02] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
S3 iaLPSS_SPI; C:\WINDOWS\System32\drivers\iaLPSS_SPI.sys [101880 2016-03-02] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
S3 iaLPSS_UART; C:\WINDOWS\System32\drivers\iaLPSS_UART.sys [143600 2016-03-02] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 KeyMagic; C:\WINDOWS\System32\drivers\KeyMagic.sys [43200 2019-11-12] (WDKTestCert build,131521240660386684 -> Apple Inc.)
R3 Larmkanal; C:\WINDOWS\System32\drivers\Larmkanal.sys [33144 2015-04-23] (ADORIASOFT LLC -> Adoriasoft LLC)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2020-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 Phosgene; C:\WINDOWS\system32\DRIVERS\Phosgene.sys [34168 2015-08-28] (ADORIASOFT LLC -> Adoriasoft LLC)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 SensorsAlsDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2019-08-13] (Snap Inc. -> Windows (R) Win 7 DDK provider)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2020-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 vdvad_WaveExtensible; C:\WINDOWS\System32\drivers\vdvad.sys [41072 2019-03-14] (Virtual Desktop, Inc. -> Virtual Desktop)
R3 vdvge; C:\WINDOWS\System32\drivers\vdvge.sys [77864 2018-11-13] (Virtual Desktop, Inc. -> Virtual Desktop, Inc.)
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [45408 2019-07-02] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [47496 2019-07-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [344288 2019-07-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-29] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2740480 2020-06-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2016-06-15] (Splitmedialabs Limited -> SplitmediaLabs Limited)
R3 Xvdd; C:\WINDOWS\System32\DriverStore\FileRepository\xvdd.inf_amd64_276a87e8580345f1\xvdd.sys [510824 2020-07-16] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

Error(1) reading file: "C:\Users\Zachary\Downloads\FaceRig Pro 1 957 Full Version 7C kuyhAa_3454383085.exe"
Error(1) reading file: "C:\Users\Zachary\AppData\Roaming\yhgtrfed.exe"
Error(1) reading file: "C:\Users\Zachary\AppData\Roaming\rtfvdc.exe"
Error(1) reading file: "C:\Users\Zachary\AppData\Roaming\rtbvfdcred.exe"
Error(1) reading file: "C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\OdingEU1.exe"
Error(1) reading file: "C:\Users\Zachary\34"
Error(1) reading file: "C:\ProgramData\fhtxcgdl.ncb.scr"
Error(1) reading file: "C:\ProgramData\4bgawmxz.rzr.scr"
2020-07-22 08:58 - 2020-07-22 09:01 - 000054966 _____ C:\Users\Zachary\Downloads\FRST.txt
2020-07-22 08:56 - 2020-07-22 09:00 - 000000000 ____D C:\FRST
2020-07-22 08:55 - 2020-07-22 08:55 - 002293760 _____ (Farbar) C:\Users\Zachary\Downloads\FRST64.exe
2020-07-21 16:02 - 2020-07-21 16:03 - 000000000 ____D C:\Users\Zachary\AppData\LocalLow\3098htrhpen8ifg0
2020-07-21 11:03 - 2020-07-22 09:02 - 000002352 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-07-21 10:00 - 2020-07-21 10:01 - 000037226 _____ C:\Users\Zachary\Documents\curbbbb.prproj
2020-07-21 08:50 - 2020-07-21 08:50 - 000000000 _____ C:\Users\Zachary\AppData\Roaming\unp45775923.tmp
2020-07-20 20:44 - 2020-07-20 21:00 - 012584960 ____H C:\Users\Zachary\Downloads\.55b71f499125de4733a8aa3cd922988a1fe7b2fb.parts
2020-07-20 20:34 - 2020-07-20 21:00 - 000000000 ____D C:\Users\Zachary\Downloads\Dark.Waters.2019.1080p.10bit.BluRay.6CH.x265.HEVC-PSA
2020-07-20 14:03 - 2020-07-22 07:58 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\h0his1jf2ej
2020-07-20 11:48 - 2020-07-20 11:48 - 000152494 _____ C:\Users\Zachary\Downloads\Circle Facecam - ItsJackCole.rar
2020-07-20 11:46 - 2020-07-20 11:46 - 000017457 _____ C:\Users\Zachary\Downloads\overlay-images.zip
2020-07-20 10:08 - 2020-07-20 10:35 - 632065647 _____ C:\Users\Zachary\Downloads\Webcam Border Pack.zip
2020-07-19 20:01 - 2020-07-19 20:01 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2020-07-19 19:54 - 2020-07-19 19:56 - 000000000 ____D C:\AdwCleaner
2020-07-19 19:54 - 2020-07-19 19:54 - 008420016 _____ (Malwarebytes) C:\Users\Zachary\Downloads\adwcleaner_8.0.6.exe
2020-07-19 19:54 - 2020-07-19 19:54 - 002012560 _____ (Malwarebytes) C:\Users\Zachary\Downloads\MBSetup.exe
2020-07-19 19:44 - 2020-07-19 19:45 - 000178692 _____ C:\TDSSKiller.3.1.0.28_19.07.2020_19.44.06_log.txt
2020-07-19 19:13 - 2020-07-19 19:11 - 000000036 _____ C:\WINDOWS\system32\Drivers\etc\hosts.txt
2020-07-19 19:11 - 2020-07-19 19:11 - 000000036 _____ C:\Users\Zachary\Documents\hosts.txt
2020-07-19 17:51 - 2020-07-22 09:02 - 000003538 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1595177490
2020-07-19 17:51 - 2020-07-19 17:51 - 000001440 _____ C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera GX Browser.lnk
2020-07-19 17:50 - 2020-07-19 17:50 - 003833464 _____ (Opera Software) C:\Users\Zachary\Downloads\OperaGXSetup.exe
2020-07-19 17:32 - 2020-07-19 17:32 - 000000000 ___HD C:\$AV_ASW
2020-07-19 17:24 - 2020-07-19 17:24 - 000003856 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-07-19 17:24 - 2020-07-19 17:24 - 000003272 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-07-19 17:24 - 2020-07-19 17:24 - 000002582 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-07-19 17:24 - 2020-07-19 17:24 - 000000000 ____D C:\Users\Zachary\AppData\Local\AVAST Software
2020-07-19 17:21 - 2020-07-19 17:21 - 000003454 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2020-07-19 17:21 - 2020-07-19 17:21 - 000003330 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2020-07-19 17:21 - 2020-07-19 17:21 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2020-07-19 17:16 - 2020-07-19 17:16 - 000002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-07-19 17:16 - 2020-07-19 17:16 - 000002120 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-07-19 17:16 - 2020-07-19 17:16 - 000002120 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-07-19 17:16 - 2020-07-19 17:16 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\Avast Software
2020-07-19 17:12 - 2020-07-22 09:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-07-19 17:12 - 2020-07-22 08:06 - 000016824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-07-19 17:12 - 2020-07-21 08:54 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-07-19 17:12 - 2020-07-19 17:12 - 000323272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-07-19 17:12 - 2020-07-19 17:12 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-07-19 17:12 - 2020-07-19 17:11 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000514448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000466232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000335976 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-07-19 17:12 - 2020-07-19 17:11 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000216816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000205880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-07-19 17:12 - 2020-07-19 17:11 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-07-19 17:10 - 2020-07-19 17:10 - 000000000 ____D C:\Program Files\Avast Software
2020-07-19 17:09 - 2020-07-19 17:12 - 000000000 ____D C:\Program Files (x86)\ILG_BROWSERINC31
2020-07-19 17:09 - 2020-07-19 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kobo
2020-07-19 17:09 - 2020-07-19 17:09 - 000000000 ____D C:\Program Files (x86)\Kobo
2020-07-19 17:07 - 2020-07-19 17:31 - 000000000 ____D C:\Program Files\5J8VHKCHTM
2020-07-19 17:07 - 2020-07-19 17:07 - 000232168 _____ (AVAST Software) C:\Users\Zachary\Downloads\avast_free_antivirus_setup_online (2).exe
2020-07-19 17:07 - 2020-07-19 17:07 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\4drmr5mqlah
2020-07-19 17:06 - 2020-07-19 17:32 - 000000000 ____D C:\Program Files (x86)\bximah
2020-07-19 17:06 - 2020-07-19 17:31 - 000000000 ____D C:\Program Files\ND0B06FA65
2020-07-19 17:06 - 2020-07-19 17:09 - 000000000 ____D C:\Program Files (x86)\MaskVPN
2020-07-19 17:06 - 2020-07-19 17:06 - 000000900 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ln10000g6_6BrRRRr0W5er.lnk
2020-07-19 17:06 - 2020-07-19 17:06 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\2dp5sbql5ve
2020-07-19 17:06 - 2020-07-19 17:06 - 000000000 ____D C:\Program Files (x86)\ln10000g6_6BrRRRr0W5er
2020-07-19 17:06 - 2020-07-19 17:06 - 000000000 ____D C:\Program Files (x86)\ivjr
2020-07-19 17:02 - 2020-07-19 17:02 - 000142336 _____ C:\Users\Zachary\AppData\Local\installer.dat
2020-07-19 17:01 - 2020-07-19 17:33 - 000000000 ____D C:\Users\Zachary\AppData\Local\inetinfoservice
2020-07-19 08:12 - 2020-07-19 08:12 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-07-18 22:08 - 2020-07-18 22:17 - 000002894 _____ C:\Users\Zachary\Documents\test.apfx
2020-07-18 22:08 - 2020-07-18 22:08 - 000000000 ____D C:\Users\Zachary\Documents\test_files
2020-07-18 22:04 - 2020-07-18 22:04 - 028255165 _____ C:\Users\Zachary\Downloads\Aponu.org_AnimaShooter.Capture.3.8.12.5.zip
2020-07-18 22:01 - 2020-07-20 11:01 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\SysHost
2020-07-18 22:00 - 2020-07-18 22:01 - 000685013 _____ C:\Users\Zachary\Downloads\AnimaShooter Capture 3.8.12.9.zip
2020-07-18 21:59 - 2020-07-18 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnimaShooter
2020-07-18 21:59 - 2020-07-18 21:59 - 000000000 ____D C:\Users\Zachary\AppData\Local\AnimaShooterCapture
2020-07-18 21:57 - 2020-07-18 21:58 - 025536761 _____ (Animation Technologies ) C:\Users\Zachary\Downloads\AnimaShooter_Capture_3_Setup.exe
2020-07-18 21:56 - 2020-07-18 21:56 - 000000000 ____D C:\ProgramData\Riate
2020-07-18 21:55 - 2020-07-18 21:55 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\Kyper
2020-07-18 21:55 - 2020-07-18 21:55 - 000000000 ____D C:\Program Files (x86)\Hutrgv214e
2020-07-18 21:54 - 2020-07-18 21:54 - 004551661 _____ C:\Users\Zachary\Downloads\Dragonframe-421-Crack-Free-Serial-Number-Torrent-Download.zip
2020-07-18 21:51 - 2020-07-18 21:51 - 003776336 _____ (Lateke ) C:\Users\Zachary\Downloads\Dragonframe 4.2.1 file file Full Version _4038083561.exe
2020-07-18 21:51 - 2020-07-18 21:51 - 003776336 _____ (Lateke ) C:\Users\Zachary\Downloads\Dragonframe 4.2.1 file file Full Version _4038083561 (1).exe
2020-07-18 21:51 - 2020-07-18 21:51 - 001185968 _____ (Igor Pavlov) C:\Users\Zachary\Downloads\Dragonframe 4.2.1 file file Full Version
2020-07-18 21:39 - 2020-07-18 21:39 - 000000000 ____D C:\ProgramData\Canon
2020-07-18 21:37 - 2020-07-18 21:37 - 001549686 _____ C:\Users\Zachary\Downloads\EOSWebcamUtilityBeta-WIN0.9.0.zip
2020-07-18 21:29 - 2020-07-18 21:29 - 000000000 ____D C:\Users\Zachary\Dragonframe
2020-07-18 21:28 - 2020-07-18 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragonframe 4
2020-07-18 21:28 - 2020-07-18 21:28 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\DZED
2020-07-18 21:28 - 2020-07-18 21:28 - 000000000 ____D C:\ProgramData\DZED
2020-07-18 21:28 - 2020-07-18 21:28 - 000000000 ____D C:\Program Files\DZED
2020-07-18 21:27 - 2020-07-18 21:27 - 064636768 _____ (DZED Systems LLC) C:\Users\Zachary\Downloads\Dragonframe_4.1.3-Setup.exe
2020-07-18 21:27 - 2020-07-18 21:27 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\DZED Systems LLC
2020-07-18 14:51 - 2020-07-18 15:29 - 000000000 ____D C:\Users\Zachary\Downloads\Aquaman (2018) [BluRay] [1080p] [YTS.AM]
2020-07-16 18:48 - 2020-07-16 18:48 - 000004286 _____ C:\Users\Zachary\Downloads\cur1054.cur
2020-07-16 09:45 - 2020-07-16 09:45 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-16 09:45 - 2020-07-16 09:45 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-16 09:45 - 2020-07-16 09:45 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-16 09:45 - 2020-07-16 09:45 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftWebDriver.exe
2020-07-16 09:45 - 2020-07-16 09:45 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000394040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftWebDriver.exe
2020-07-16 09:45 - 2020-07-16 09:45 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-16 09:45 - 2020-07-16 09:45 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-16 09:45 - 2020-07-16 09:45 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-16 09:45 - 2020-07-16 09:45 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-16 09:45 - 2020-07-16 09:45 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-16 09:45 - 2020-07-16 09:45 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-16 09:44 - 2020-07-16 09:45 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-16 09:44 - 2020-07-16 09:44 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-16 09:44 - 2020-07-16 09:44 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-16 09:44 - 2020-07-16 09:44 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-16 09:44 - 2020-07-16 09:44 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-16 09:44 - 2020-07-16 09:44 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-16 09:44 - 2020-07-16 09:44 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-16 09:44 - 2020-07-16 09:44 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-16 09:44 - 2020-07-16 09:44 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-16 09:44 - 2020-07-16 09:44 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-16 09:44 - 2020-07-16 09:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-16 09:43 - 2020-07-16 09:43 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-16 09:43 - 2020-07-16 09:43 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-16 09:43 - 2020-07-16 09:43 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-16 09:43 - 2020-07-16 09:43 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-16 09:43 - 2020-07-16 09:43 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-16 09:43 - 2020-07-16 09:43 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-16 09:43 - 2020-07-16 09:43 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-16 09:43 - 2020-07-16 09:43 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-16 09:23 - 2020-07-16 09:23 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-16 09:23 - 2020-07-16 09:23 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-11 20:27 - 2020-07-11 20:27 - 034497593 _____ C:\Users\Zachary\Desktop\UpIsNotJump Reads Out My Comment!.mp4
2020-07-09 20:07 - 2020-07-09 20:08 - 027210576 _____ (Insecure.org) C:\Users\Zachary\Downloads\nmap-7.31-setup.exe
2020-07-09 20:06 - 2020-07-09 20:06 - 000905509 _____ C:\Users\Zachary\Downloads\ipscan-win32-3.0-beta1 (1).exe
2020-07-09 20:04 - 2020-07-09 20:04 - 000905509 _____ C:\Users\Zachary\Downloads\ipscan-win32-3.0-beta1.exe
2020-07-09 17:33 - 2020-07-09 17:34 - 000000000 ____D C:\Users\Zachary\Desktop\PC Specialist Parts
2020-07-09 11:11 - 2020-07-09 11:11 - 000091689 _____ C:\Users\Zachary\Downloads\Zachary Frankel-Pollen - generate-expressions-set A-1.pdf
2020-07-08 14:58 - 2020-07-08 14:58 - 010181840 _____ C:\Users\Zachary\Downloads\save (1).mp4
2020-07-08 11:15 - 2020-07-08 11:30 - 1580343201 _____ C:\Users\Zachary\Downloads\Baby Driver 2017 (1080p x265 10bit S68 Joy).mkv
2020-07-06 15:20 - 2020-07-06 15:20 - 000000000 ____D C:\Users\Zachary\Documents\steamvr
2020-07-06 15:20 - 2020-07-06 15:20 - 000000000 ____D C:\Users\Zachary\AppData\Local\SteamVR
2020-07-06 15:03 - 2020-07-06 15:03 - 000000000 ____D C:\Users\Zachary\AppData\Local\openvr
2020-07-06 14:32 - 2020-07-06 14:32 - 000000222 _____ C:\Users\Zachary\Desktop\SteamVR.url
2020-07-04 22:45 - 2020-07-04 22:45 - 010398565 _____ C:\Users\Zachary\Downloads\drive-download-20200704T214455Z-001.zip
2020-07-04 15:05 - 2020-07-04 15:05 - 000082244 _____ C:\Users\Zachary\Downloads\parcelforce.zip
2020-07-03 12:23 - 2020-07-03 12:23 - 002507008 _____ C:\Users\Zachary\Downloads\Detroit Become Human Downloader.rar
2020-07-01 20:26 - 2020-07-01 20:27 - 000000000 ____D C:\Users\Zachary\Downloads\Greed (2019) [1080p] [BluRay] [5.1] [YTS.MX]
2020-07-01 12:36 - 2020-07-01 12:36 - 002375750 _____ C:\Users\Zachary\Downloads\13_Science_Level_2_Biology (1) (1).pdf
2020-07-01 12:33 - 2020-07-01 12:33 - 002370528 _____ C:\Users\Zachary\Downloads\13_Science_Level_2_Biology (1).pdf
2020-06-29 16:04 - 2020-06-29 16:04 - 000005671 _____ C:\Users\Zachary\Downloads\1050_IMG_6930 Click - Copy (2).pdf
2020-06-29 16:03 - 2020-06-29 16:03 - 000006698 _____ C:\Users\Zachary\Downloads\1050_IMG_6930 Click - Copy-converted.pdf
2020-06-29 16:02 - 2020-06-29 16:02 - 000005671 _____ C:\Users\Zachary\Downloads\1050_IMG_6930 Click - Copy.pdf
2020-06-29 16:02 - 2020-06-29 16:02 - 000005671 _____ C:\Users\Zachary\Downloads\1050_IMG_6930 Click - Copy (1).pdf
2020-06-29 16:02 - 2020-06-29 16:02 - 000005344 _____ C:\Users\Zachary\Downloads\jpg2pdf.pdf
2020-06-29 15:54 - 2020-06-29 15:54 - 000149772 _____ C:\Users\Zachary\Downloads\1050_IMG_6930 Click.jpeg
2020-06-29 10:34 - 2020-06-29 10:51 - 000000020 _____ C:\Users\Zachary\Desktop\Minecraft Server Address.txt
2020-06-28 18:55 - 2020-06-28 19:22 - 000000000 ____D C:\Users\Zachary\Downloads\Radioactive (2019) [1080p] [WEBRip] [5.1] [YTS.MX]
2020-06-27 16:24 - 2020-06-27 16:24 - 015208921 _____ C:\Users\Zachary\Downloads\save.mov
2020-06-26 17:59 - 2020-06-26 17:59 - 000000000 ____D C:\Users\Zachary\AppData\LocalLow\Trickshot Labs
2020-06-26 17:48 - 2020-06-26 17:49 - 062633547 _____ C:\Users\Zachary\Downloads\Stick_With_It_v0_1_2.zip
2020-06-25 20:12 - 2020-06-25 20:12 - 000001490 _____ C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2020-06-25 20:07 - 2020-06-25 20:10 - 115070776 _____ (NVIDIA Corporation) C:\Users\Zachary\Downloads\GeForceNOW-release.exe
2020-06-25 12:02 - 2020-06-25 12:02 - 339788573 _____ C:\Users\Zachary\Downloads\Red Dead Redemption 2 Setup.rar
2020-06-24 15:35 - 2020-06-24 15:35 - 019111480 _____ C:\Users\Zachary\Downloads\save.mp4
2020-06-24 08:34 - 2020-06-24 08:34 - 000001281 _____ C:\Users\Zachary\Desktop\Amazon Music.lnk
2020-06-24 08:34 - 2020-06-24 08:34 - 000001184 _____ C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music.lnk
2020-06-24 08:34 - 2020-06-24 08:34 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2020-06-24 08:33 - 2020-07-22 08:06 - 000000000 ____D C:\Users\Zachary\Downloads\opera autoupdate
2020-06-24 08:33 - 2020-06-24 08:34 - 000000000 ____D C:\Users\Zachary\AppData\Local\Amazon Music
2020-06-24 08:32 - 2020-06-24 08:33 - 078253360 _____ (Amazon.com Services LLC) C:\Users\Zachary\Downloads\AmazonMusicInstaller.exe
2020-06-23 20:57 - 2020-06-23 20:57 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\.emacs.d

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-22 09:03 - 2020-03-31 20:39 - 000002838 _____ C:\WINDOWS\system32\Tasks\ProtonVPN Update
2020-07-22 09:03 - 2020-03-08 13:55 - 000003874 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1583672145
2020-07-22 09:03 - 2020-03-08 13:55 - 000003616 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1583672142
2020-07-22 09:03 - 2019-09-28 17:42 - 000003616 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1569688923
2020-07-22 09:02 - 2020-06-12 08:47 - 000003060 _____ C:\WINDOWS\system32\Tasks\Minecarft Education Weekly Updater
2020-07-22 09:02 - 2020-06-12 08:47 - 000002750 _____ C:\WINDOWS\system32\Tasks\Minecraft Education Edition Automatic Updater
2020-07-22 09:02 - 2020-04-20 20:20 - 000003406 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-22 09:02 - 2020-04-20 20:20 - 000003182 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-22 09:02 - 2020-01-25 21:00 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-07-22 09:02 - 2020-01-25 21:00 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-07-22 09:02 - 2019-11-17 20:43 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-22 09:02 - 2019-10-06 18:36 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-07-22 09:02 - 2019-09-28 17:42 - 000003874 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1569688930
2020-07-22 09:02 - 2019-09-06 20:59 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-09-06 20:59 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-22 09:02 - 2019-08-13 17:02 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-07-22 09:02 - 2019-08-13 17:02 - 000003124 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-07-22 09:02 - 2019-08-13 17:02 - 000002966 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2020-07-22 09:02 - 2019-08-13 17:02 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2389937495-2013339128-1002434076-1001
2020-07-22 08:57 - 2019-07-29 15:16 - 000000000 ____D C:\ProgramData\NVIDIA
2020-07-22 08:57 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-22 08:51 - 2019-08-13 16:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-22 08:06 - 2020-03-09 17:31 - 000000000 ____D C:\Users\Zachary\opera autoupdate
2020-07-22 08:04 - 2020-03-22 10:47 - 000000000 ____D C:\ProgramData\AVAST Software
2020-07-22 08:01 - 2020-05-28 15:58 - 000000000 ___RD C:\Users\Zachary\iCloudDrive
2020-07-22 07:51 - 2019-08-13 17:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-21 22:28 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-07-21 18:13 - 2019-09-06 21:00 - 000000000 ____D C:\Users\Zachary\AppData\Local\CrashDumps
2020-07-21 11:03 - 2019-08-30 15:15 - 000000000 ____D C:\ProgramData\PACE
2020-07-21 10:16 - 2019-09-03 18:21 - 000000000 ____D C:\Users\Zachary\Documents\Adobe Premiere Pro Auto-Save
2020-07-21 10:05 - 2019-10-06 18:36 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-07-21 10:05 - 2019-10-06 18:36 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-07-21 10:00 - 2019-12-02 18:37 - 000000000 ____D C:\Users\Zachary\Documents\Adobe Premiere Pro Captured Video
2020-07-21 10:00 - 2019-10-19 12:58 - 000000000 ____D C:\Users\Zachary\Documents\Adobe Premiere Pro Video Previews
2020-07-21 10:00 - 2019-09-29 12:34 - 000000000 ____D C:\Users\Zachary\Documents\Adobe Premiere Pro Captured Audio
2020-07-21 10:00 - 2019-09-03 19:24 - 000000000 ____D C:\Users\Zachary\Documents\Adobe Premiere Pro Audio Previews
2020-07-21 10:00 - 2019-09-03 18:29 - 000000000 ____D C:\Users\Zachary\Documents\Motion Graphics Template Media
2020-07-21 08:56 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-20 22:30 - 2020-01-28 19:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-07-20 21:06 - 2019-09-28 17:41 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\uTorrent Web
2020-07-20 21:00 - 2020-01-07 17:46 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\vlc
2020-07-20 20:34 - 2020-02-20 11:11 - 000000000 ____D C:\Users\Zachary\AppData\Local\BitTorrentHelper
2020-07-20 20:22 - 2020-04-11 11:43 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\Sky Go
2020-07-20 16:03 - 2019-07-29 15:56 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\obs-studio
2020-07-20 13:42 - 2019-09-06 16:36 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\discordptb
2020-07-20 13:37 - 2019-07-31 11:42 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\slobs-client
2020-07-20 12:07 - 2019-07-29 09:21 - 000000000 ___RD C:\Users\Zachary\Desktop\Stuff i dont need but i need
2020-07-20 08:38 - 2019-08-13 16:58 - 000840852 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-20 08:38 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-07-19 17:59 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-07-19 17:52 - 2019-09-28 17:42 - 000000000 ____D C:\Users\Zachary\AppData\Local\Opera Software
2020-07-19 17:50 - 2019-09-28 17:41 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\Opera Software
2020-07-19 17:12 - 2019-10-17 21:08 - 000000000 ____D C:\Program Files (x86)\CodeMeter
2020-07-19 17:12 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-07-19 08:12 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-18 22:23 - 2020-02-07 20:11 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\canon
2020-07-18 21:47 - 2020-02-07 20:12 - 000000000 ____D C:\Users\Zachary\AppData\Local\Canon_INC
2020-07-18 21:39 - 2020-01-22 18:45 - 000000000 ____D C:\Program Files (x86)\Canon
2020-07-18 21:29 - 2019-08-13 16:47 - 000000000 ____D C:\Users\Zachary
2020-07-17 09:05 - 2020-04-20 20:21 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-16 20:44 - 2019-08-31 11:29 - 000000000 ____D C:\Games
2020-07-16 18:48 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Cursors
2020-07-16 11:42 - 2019-07-29 05:13 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-16 11:42 - 2019-07-29 05:13 - 000000000 ___RD C:\Users\Zachary\3D Objects
2020-07-16 11:38 - 2019-08-13 16:38 - 000479728 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-16 11:35 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-16 11:35 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-16 11:35 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-16 11:35 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-16 11:35 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-16 11:35 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-16 09:51 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-16 09:08 - 2020-06-06 10:16 - 001523640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2020-07-16 09:08 - 2020-06-06 10:16 - 000157624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2020-07-16 09:08 - 2020-06-06 10:16 - 000137144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2020-07-16 09:08 - 2020-06-06 10:16 - 000135096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2020-07-16 09:08 - 2020-06-06 10:16 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2020-07-16 09:08 - 2020-06-06 10:16 - 000033712 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2020-07-14 18:18 - 2020-06-02 19:48 - 000000000 ____D C:\Users\Zachary\Desktop\SFM Animations
2020-07-14 16:39 - 2020-03-28 09:55 - 000000000 ____D C:\Program Files (x86)\Steam
2020-07-10 09:57 - 2019-10-09 18:13 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-07-09 17:27 - 2020-04-08 17:49 - 000000000 ____D C:\Users\Zachary\Desktop\Text Documents
2020-07-08 17:03 - 2019-11-17 20:42 - 000002144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-07-06 14:46 - 2019-10-06 12:24 - 000000000 ____D C:\Users\Zachary\AppData\Roaming\.minecraft
2020-07-01 08:32 - 2019-07-29 15:10 - 000000000 ____D C:\Users\Zachary\AppData\Local\PlaceholderTileLogoFolder
2020-06-29 20:03 - 2020-06-03 09:00 - 000000000 ____D C:\Users\Zachary\Desktop\drive-download-20200603T075936Z-001
2020-06-28 13:53 - 2020-05-28 15:58 - 000000000 ____D C:\Users\Zachary\AppData\Local\Apple Inc
2020-06-28 08:59 - 2019-08-13 16:47 - 000002381 _____ C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-28 08:59 - 2019-07-29 05:16 - 000000000 ___RD C:\Users\Zachary\OneDrive
2020-06-26 21:55 - 2020-05-28 15:58 - 000000000 ____D C:\Users\Zachary\Documents\Outlook Files
2020-06-26 21:54 - 2020-05-28 15:58 - 000000000 ____D C:\Users\Zachary\AppData\Local\390EF4C5-286D-4F63-9098-32BF582A0A14.aplzod
2020-06-25 20:13 - 2019-07-29 15:15 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-06-25 20:12 - 2019-09-06 21:01 - 000000000 ____D C:\Users\Zachary\AppData\Local\NVIDIA Corporation
2020-06-24 06:22 - 2020-06-06 10:16 - 000197048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-06-24 04:45 - 2020-06-06 10:16 - 000158136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-06-22 17:43 - 2020-03-08 13:55 - 000001417 _____ C:\Users\Zachary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk

==================== Files in the root of some directories ========

2019-08-08 17:08 - 2019-08-08 17:08 - 000000132 _____ () C:\Users\Zachary\AppData\Roaming\Adobe IllExport Filter CS6 Prefs
2020-01-10 21:34 - 2020-01-10 21:34 - 000000027 _____ () C:\Users\Zachary\AppData\Roaming\ansi_write.txt
2019-10-17 21:36 - 2019-10-17 21:36 - 000000861 _____ () C:\Users\Zachary\AppData\Roaming\Avid_CCS_Service_Stop.log
2019-12-13 21:05 - 2019-12-23 10:28 - 000049450 _____ () C:\Users\Zachary\AppData\Roaming\rtgvfed.exe
2020-04-17 15:25 - 2020-04-17 15:25 - 000167424 ___SH () C:\Users\Zachary\AppData\Roaming\trz836A.tmp
2020-01-10 21:34 - 2020-01-10 21:34 - 000000094 _____ () C:\Users\Zachary\AppData\Roaming\unicode_write.txt
2020-07-21 08:50 - 2020-07-21 08:50 - 000000000 _____ () C:\Users\Zachary\AppData\Roaming\unp45775923.tmp
2020-07-19 17:02 - 2020-07-19 17:02 - 000142336 _____ () C:\Users\Zachary\AppData\Local\installer.dat
2019-07-29 10:14 - 2019-08-28 11:48 - 000003485 _____ () C:\Users\Zachary\AppData\Local\oobelibMkey.log
2019-12-13 20:17 - 2019-12-13 20:17 - 000000017 _____ () C:\Users\Zachary\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
 

Attachments

  • Addition.txt
    67.5 KB · Views: 7

nasdaq

Moderator
Verified
Staff Member
Nov 5, 2019
1,425
Hi,

Please download the attached Fixlist.txt file to the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the FRST.txt log you have submitted.

Run FRST and click Fix only once and wait.

The Computer will restart when the fix is completed.

It will create a log (Fixlog.txt) please post it to your reply.
===

Please post the Fixlog.txt and let me know what problem persists.
 

Attachments

  • fixlist.txt
    4.3 KB · Views: 13

Zachary Pollen

New Member
Thread author
Jul 21, 2020
3
I think i might be adware free! I have no ads popping up now. Thanks a lot!
 

Attachments

  • Fixlog.txt
    10.9 KB · Views: 9
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top