API tools faq
paste
Advertisement
Guest User

FRST

a guest
Jul 22nd, 2019
1,634
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 87.15 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2019 01
  2. Ran by tanji (administrator) on DESKTOP-KTHT43L (MSI MS-7850) (22-07-2019 17:10:11)
  3. Running from C:\Users\tanji\Desktop
  4. Loaded Profiles: tanji (Available Profiles: defaultuser0 & tanji)
  5. Platform: Windows 10 Pro Version 1803 17134.885 (X64) Language: English (United States)
  6. Default browser: FF
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. () [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
  15. () [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
  16. (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  17. (BitTorrent Inc -> BitTorrent Inc.) C:\Users\tanji\AppData\Roaming\uTorrent\helper\helper.exe
  18. (BitTorrent Inc -> BitTorrent Inc.) C:\Users\tanji\AppData\Roaming\uTorrent\updates\3.5.5_45291\utorrentie.exe
  19. (BitTorrent Inc -> BitTorrent Inc.) C:\Users\tanji\AppData\Roaming\uTorrent\updates\3.5.5_45291\utorrentie.exe
  20. (BitTorrent Inc -> BitTorrent Inc.) C:\Users\tanji\AppData\Roaming\uTorrent\uTorrent.exe
  21. (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\TrayPopupE\TrayTipAgentE.exe
  22. (Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe
  23. (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
  24. (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
  25. (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
  26. (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
  27. (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
  28. (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
  29. (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
  30. (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
  31. (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
  32. (Mega Limited -> Mega Limited) C:\Users\tanji\AppData\Local\MEGAsync\MEGAsync.exe
  33. (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
  34. (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeApp.exe
  35. (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
  36. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
  37. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
  38. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
  39. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
  40. (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
  41. (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
  42. (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
  43. (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
  44. (Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
  45. (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
  46. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
  47. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
  48. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  49. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  50. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  51. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
  52. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
  53. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
  54. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
  55. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
  56. (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
  57. (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
  58. (Razer USA Ltd. -> ) C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
  59. (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
  60. (Razer USA Ltd. -> Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
  61. (Razer USA Ltd. -> Razer, Inc.) C:\Users\tanji\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
  62. (SoundSwitch -> SoundSwitch) C:\Program Files\SoundSwitch\SoundSwitch.exe
  63. (SurfRight B.V. -> SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
  64. (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  65. (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  66. (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
  67. (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
  68. (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  69. (Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
  70. (Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
  71. (Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
  72. (Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
  73. (Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
  74. (Valve -> Valve Corporation) D:\Steam\Steam.exe
  75.  
  76. ==================== Registry (Whitelisted) ===========================
  77.  
  78. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  79.  
  80. HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
  81. HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
  82. HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596664 2017-08-30] (Razer USA Ltd. -> Razer Inc.)
  83. HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\TrayPopupE\TrayTipAgentE.exe [255072 2014-11-18] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
  84. HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\tanji\AppData\Local\Microsoft\Teams\Update.exe [1780096 2019-07-16] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
  85. HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default
  86. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
  87. HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
  88. HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
  89. HKU\S-1-5-21-366640982-2835770456-1949396758-1001\...\Run: [Steam] => D:\Steam\steam.exe [3210016 2019-07-17] (Valve -> Valve Corporation)
  90. HKU\S-1-5-21-366640982-2835770456-1949396758-1001\...\Run: [SoundSwitch] => C:\Program Files\SoundSwitch\SoundSwitch.exe [1820352 2019-04-19] (SoundSwitch -> SoundSwitch)
  91. HKU\S-1-5-21-366640982-2835770456-1949396758-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [911752 2019-06-19] (Nota Inc. -> Nota Inc.)
  92. HKU\S-1-5-21-366640982-2835770456-1949396758-1001\...\Run: [uTorrent] => C:\Users\tanji\AppData\Roaming\uTorrent\uTorrent.exe [1820392 2019-07-14] (BitTorrent Inc -> BitTorrent Inc.)
  93. HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.142\Installer\chrmstp.exe [2019-07-22] (Google LLC -> Google LLC)
  94. Startup: C:\Users\tanji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-02-15]
  95. ShortcutTarget: MEGAsync.lnk -> C:\Users\tanji\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
  96.  
  97. ==================== Scheduled Tasks (Whitelisted) =============
  98.  
  99. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  100.  
  101. Task: {0C3D3536-A019-4653-A867-1024C86CE5B0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
  102. Task: {0DFBD679-F8AE-4383-84C0-78A58AC1DF97} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1100920 2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  103. Task: {16AF2AB6-ED32-41F7-910F-1F007CFC46C2} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
  104. Task: {1FC4ED8C-FAA7-4903-B445-4DBC36243069} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
  105. Task: {2A7DA15A-7ECF-40A2-9988-F159EA5ED6E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
  106. Task: {2B042650-3E89-4021-96C4-42E3272AD98F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
  107. Task: {34484C1C-68C5-4F0A-B3F8-72FEA66653B6} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe)
  108. Task: {39F7C4E6-15DD-4ED4-A9BB-1623DFF1B1F0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
  109. Task: {3F974A47-711C-4A65-88D8-834D33C6E94F} - System32\Tasks\HPCustParticipation HP DeskJet 3630 series => C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPCustPartic.exe [6438536 2017-02-08] (Hewlett Packard -> HP Inc.)
  110. Task: {44AC88A4-1890-4396-8028-EE0195AE1550} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
  111. Task: {4CED6FB6-D5C2-44DF-9327-C68C3B4AEBB0} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-09] (Adobe Inc. -> Adobe)
  112. Task: {50464D2E-48E7-4854-BF85-39FA88EFFEDA} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
  113. Task: {54458235-7251-463B-A5D1-BE6242D21B05} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
  114. Task: {5665CB02-56BF-451E-9154-0AAC1A319891} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
  115. Task: {64331F1D-CAB1-485A-835F-787C937D9AD5} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-06-19] (Nota Inc. -> Nota Inc.)
  116. Task: {798B01C0-C63C-4DE0-9C68-65B81C114A23} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6059664 2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  117. Task: {7F9C50B6-B738-46E3-88FA-81C17622BFD3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
  118. Task: {834D4316-42C9-4985-B9A8-FFF7BB017557} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2154064 2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  119. Task: {8802C82F-3436-4315-9351-1C402D4D6C42} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
  120. Task: {90E352C4-FF5D-4550-9C9B-DEA9B4820846} - System32\Tasks\AMSkipUAC => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [657472 2019-07-16] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
  121. Task: {A483AE60-9571-4736-8FEC-86E5977B10BC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [136176 2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  122. Task: {AA55B7AD-BDA1-4437-8D57-9932E2CCEC74} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
  123. Task: {AAA520A6-D6BC-4964-8CE1-0729668C0448} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6059664 2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  124. Task: {AB2660D3-D815-43FB-AC2E-51D172465517} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2154064 2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  125. Task: {B64B6FF6-8C5A-4D68-AC71-93BC3F25D4CE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
  126. Task: {BBCE7104-58C9-4D2F-AA4B-D09AB50E5CE0} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
  127. Task: {CBF8DA0B-EF59-4F2E-9E4F-7F3F562B962C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-22] (Google Inc -> Google LLC)
  128. Task: {CD49B793-FF7F-4178-9632-84E5228BA705} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045472 2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
  129. Task: {CE4D3B9B-1F8A-4715-B184-4A9B8CD10CD1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
  130. Task: {E4B325B1-FCA7-4A71-AE13-FB476E980146} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-22] (Google Inc -> Google LLC)
  131. Task: {E5A68075-52D9-4389-B190-F8B401543503} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1112576 2017-02-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
  132. Task: {E95EA945-66ED-43D1-83E8-1C22DE46ED80} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [657472 2019-07-16] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
  133. Task: {F05F395D-9083-4795-B470-1A8682E82CA2} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
  134. Task: {F17DF241-69A4-436B-93CE-968227043420} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-06-19] (Nota Inc. -> Nota Inc.)
  135. Task: {F1C8A65B-5564-48D5-A1F5-E7EBDE84986C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [136176 2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  136. Task: {F5EF8D64-35EC-473C-8117-9AFCA0B82586} - System32\Tasks\Opera scheduled Autoupdate 1547983737 => C:\Users\tanji\AppData\Local\Programs\Opera\launcher.exe [1439832 2019-01-09] (Opera Software AS -> Opera Software)
  137. Task: {FBF330CD-026C-4EEC-A250-A81111ED82EB} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
  138. Task: {FE0DAE6F-6D36-40BD-9CB8-5EC6A61AACAE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045472 2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
  139.  
  140. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  141.  
  142.  
  143. ==================== Internet (Whitelisted) ====================
  144.  
  145. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  146.  
  147. ProxyServer: [S-1-5-21-366640982-2835770456-1949396758-1001] => 192.168:80
  148. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  149. Tcpip\..\Interfaces\{38cfd92c-b2ee-4836-9d10-cb9bbab28688}: [NameServer] 8.8.8.8,8.8.4.4
  150. Tcpip\..\Interfaces\{38cfd92c-b2ee-4836-9d10-cb9bbab28688}: [DhcpNameServer] 192.168.1.1
  151.  
  152. Internet Explorer:
  153. ==================
  154. HKU\S-1-5-21-366640982-2835770456-1949396758-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-sg/?ocid=iehp
  155. SearchScopes: HKU\S-1-5-21-366640982-2835770456-1949396758-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =
  156. BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  157. BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
  158. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
  159. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
  160. Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  161. Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  162. Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  163. Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  164. Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  165. Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  166. Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  167. Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-16] (Microsoft Corporation -> Microsoft Corporation)
  168.  
  169. FireFox:
  170. ========
  171. FF DefaultProfile: g29638zw.default-1563547896261
  172. FF ProfilePath: C:\Users\tanji\AppData\Roaming\Mozilla\Firefox\Profiles\p4uh8yp9.numberwan [2019-07-22]
  173. FF Extension: (uBlock Origin) - C:\Users\tanji\AppData\Roaming\Mozilla\Firefox\Profiles\p4uh8yp9.numberwan\Extensions\uBlock0@raymondhill.net.xpi [2019-07-22]
  174. FF ProfilePath: C:\Users\tanji\AppData\Roaming\Mozilla\Firefox\Profiles\g29638zw.default-1563547896261 [2019-07-22]
  175. FF user.js: detected! => C:\Users\tanji\AppData\Roaming\Mozilla\Firefox\Profiles\g29638zw.default-1563547896261\user.js [2019-07-22]
  176. FF Extension: (ETP Search Volume Study) - C:\Users\tanji\AppData\Roaming\Mozilla\Firefox\Profiles\g29638zw.default-1563547896261\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-07-19]
  177. FF Extension: (uBlock Origin) - C:\Users\tanji\AppData\Roaming\Mozilla\Firefox\Profiles\g29638zw.default-1563547896261\Extensions\uBlock0@raymondhill.net.xpi [2019-07-19]
  178. FF Extension: (User-Agent Switcher and Manager) - C:\Users\tanji\AppData\Roaming\Mozilla\Firefox\Profiles\g29638zw.default-1563547896261\Extensions\{a6c4a591-f1b2-4f03-b3ff-767e5bedf4e7}.xpi [2019-07-22]
  179. FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
  180. FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
  181. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
  182. FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
  183. FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-19] (Oracle America, Inc. -> Oracle Corporation)
  184. FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
  185. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-07-14] (Microsoft Corporation -> Microsoft Corporation)
  186. FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
  187. FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
  188. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-22] (Google Inc -> Google LLC)
  189. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-22] (Google Inc -> Google LLC)
  190. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
  191.  
  192. Chrome:
  193. =======
  194. CHR HomePage: Default -> hxxps://www.google.com.sg/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8
  195. CHR Profile: C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default [2019-07-22]
  196. CHR Extension: (Slides) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-22]
  197. CHR Extension: (Magic Actions for YouTube™) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2019-07-22]
  198. CHR Extension: (Docs) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-22]
  199. CHR Extension: (Google Drive) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-22]
  200. CHR Extension: (YouTube) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-22]
  201. CHR Extension: (uBlock Origin) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-07-22]
  202. CHR Extension: (Adobe Acrobat) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-07-22]
  203. CHR Extension: (Sheets) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-22]
  204. CHR Extension: (Google Docs Offline) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-22]
  205. CHR Extension: (Chrome Web Store Payments) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-22]
  206. CHR Extension: (Gmail) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-22]
  207. CHR Extension: (Chrome Media Router) - C:\Users\tanji\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-22]
  208. CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
  209.  
  210. ==================== Services (Whitelisted) ====================
  211.  
  212. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  213.  
  214. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5745672 2018-05-24] (BattlEye Innovations e.K. -> )
  215. R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11153952 2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
  216. S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-06-23] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
  217. R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [139504 2019-07-22] (SurfRight B.V. -> SurfRight B.V.)
  218. R2 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab)
  219. R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
  220. R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
  221. R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
  222. S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
  223. S3 Origin Client Service; D:\Origin\OriginClientService.exe [2329392 2019-06-11] (Electronic Arts, Inc. -> Electronic Arts)
  224. R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3203888 2019-06-11] (Electronic Arts, Inc. -> Electronic Arts)
  225. R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2017-07-20] (Razer USA Ltd. -> )
  226. S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5073792 2019-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
  227. R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11969880 2019-07-03] (TeamViewer GmbH -> TeamViewer GmbH)
  228. R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
  229. R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
  230. R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
  231. R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
  232.  
  233. ===================== Drivers (Whitelisted) ======================
  234.  
  235. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  236.  
  237. R1 amsdk; C:\WINDOWS\system32\drivers\amsdk.sys [232792 2019-07-19] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
  238. S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
  239. S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [33448 2016-12-07] (CHENGDU YIWO Tech Development Co., Ltd. -> )
  240. R0 EPMVolFlt; C:\WINDOWS\System32\drivers\EPMVolFlt.sys [30320 2017-11-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
  241. R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
  242. S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
  243. R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [47008 2013-07-31] (Intel(R) Smart Connect software -> )
  244. R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48080 2018-02-12] (AnchorFree Inc -> The OpenVPN Project)
  245. R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-22] (Logitech -> Logitech)
  246. R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
  247. R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-07-22] (Malwarebytes Corporation -> Malwarebytes)
  248. S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
  249. R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [224408 2019-07-22] (Malwarebytes Corporation -> Malwarebytes)
  250. R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2019-07-22] (Malwarebytes Corporation -> Malwarebytes)
  251. R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-07-22] (Malwarebytes Corporation -> Malwarebytes)
  252. R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [116112 2019-07-22] (Malwarebytes Corporation -> Malwarebytes)
  253. R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4b310b124a4f2d9f\nvlddmkm.sys [21854352 2019-07-04] (NVIDIA Corporation -> NVIDIA Corporation)
  254. S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-06-13] (NVIDIA Corporation -> NVIDIA Corporation)
  255. R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
  256. R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
  257. R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1010656 2017-11-27] (Realtek Semiconductor Corp. -> Realtek )
  258. R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [9860816 2019-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
  259. S3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc. -> Razer Inc)
  260. R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [45752 2017-07-20] (Razer USA Ltd. -> Razer, Inc.)
  261. R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [139704 2017-08-19] (Razer USA Ltd. -> Razer, Inc.)
  262. S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
  263. R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-29] (Valve Corp. -> )
  264. R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
  265. S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
  266. S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2018-06-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
  267. S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
  268. R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [344288 2019-07-22] (Microsoft Windows -> Microsoft Corporation)
  269. R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-22] (Microsoft Windows -> Microsoft Corporation)
  270. S3 xhunter1; C:\WINDOWS\xhunter1.sys [55704 2018-09-29] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
  271. R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-06] (Intel(R) Software -> Intel Corporation)
  272. R1 YSDrv; C:\WINDOWS\system32\DRIVERS\YSDrv.sys [270608 2017-04-11] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
  273.  
  274. ==================== NetSvcs (Whitelisted) ===================
  275.  
  276. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  277.  
  278.  
  279. ==================== One month (created) ========
  280.  
  281. (If an entry is included in the fixlist, the file/folder will be moved.)
  282.  
  283. 2019-07-22 17:10 - 2019-07-22 17:11 - 000035838 _____ C:\Users\tanji\Desktop\FRST.txt
  284. 2019-07-22 16:53 - 2019-07-22 16:54 - 000000000 ____D C:\ProgramData\TempLogs
  285. 2019-07-22 16:38 - 2019-07-22 16:38 - 001151544 _____ (Google LLC) C:\Users\tanji\Downloads\installbackupandsync.exe
  286. 2019-07-22 16:38 - 2019-07-22 16:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
  287. 2019-07-22 16:38 - 2019-07-22 16:38 - 000000000 ____D C:\Program Files\Google
  288. 2019-07-22 16:32 - 2019-07-22 16:32 - 000001061 _____ C:\Users\tanji\Desktop\bleeping.txt
  289. 2019-07-22 16:17 - 2019-07-22 17:10 - 000000000 ____D C:\FRST
  290. 2019-07-22 16:16 - 2019-07-22 16:16 - 002095104 _____ (Farbar) C:\Users\tanji\Desktop\FRST64.exe
  291. 2019-07-22 16:04 - 2019-07-22 16:51 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
  292. 2019-07-22 16:04 - 2019-07-22 16:04 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
  293. 2019-07-22 16:04 - 2019-07-22 16:04 - 000224408 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
  294. 2019-07-22 16:04 - 2019-07-22 16:04 - 000116112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
  295. 2019-07-22 16:03 - 2019-07-22 16:03 - 006822192 _____ (EnigmaSoft Limited) C:\ProgramData\EsgInstallerResumeAction_e72019a90d280ba842a8e1e187887711.exe
  296. 2019-07-22 15:58 - 2019-07-22 15:58 - 006822192 _____ (EnigmaSoft Limited) C:\Users\tanji\Downloads\SpyHunter-Installer.exe
  297. 2019-07-22 15:50 - 2019-07-22 15:50 - 000001962 _____ C:\Users\Public\Desktop\HitmanPro.lnk
  298. 2019-07-22 15:50 - 2019-07-22 15:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
  299. 2019-07-22 15:46 - 2019-07-22 15:46 - 000000000 ____D C:\WINDOWS\Minidump
  300. 2019-07-22 15:41 - 2019-07-22 15:41 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
  301. 2019-07-22 15:28 - 2019-07-22 15:28 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
  302. 2019-07-22 15:27 - 2019-07-05 02:07 - 004340664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
  303. 2019-07-22 15:27 - 2019-07-04 23:13 - 001006792 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
  304. 2019-07-22 15:27 - 2019-07-04 23:13 - 001006792 _____ C:\WINDOWS\system32\vulkan-1.dll
  305. 2019-07-22 15:27 - 2019-07-04 23:13 - 000870088 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
  306. 2019-07-22 15:27 - 2019-07-04 23:13 - 000870088 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
  307. 2019-07-22 15:27 - 2019-07-04 23:13 - 000552136 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
  308. 2019-07-22 15:27 - 2019-07-04 23:13 - 000456448 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
  309. 2019-07-22 15:27 - 2019-07-04 23:13 - 000286408 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
  310. 2019-07-22 15:27 - 2019-07-04 23:13 - 000286408 _____ C:\WINDOWS\system32\vulkaninfo.exe
  311. 2019-07-22 15:27 - 2019-07-04 23:13 - 000260296 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
  312. 2019-07-22 15:27 - 2019-07-04 23:13 - 000260296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
  313. 2019-07-22 15:27 - 2019-07-04 23:12 - 011059128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
  314. 2019-07-22 15:27 - 2019-07-04 23:12 - 009492224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
  315. 2019-07-22 15:27 - 2019-07-04 23:11 - 020190592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
  316. 2019-07-22 15:27 - 2019-07-04 23:11 - 005422464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
  317. 2019-07-22 15:27 - 2019-07-04 23:11 - 004759240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
  318. 2019-07-22 15:27 - 2019-07-04 23:11 - 002040192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
  319. 2019-07-22 15:27 - 2019-07-04 23:11 - 001722056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443136.dll
  320. 2019-07-22 15:27 - 2019-07-04 23:11 - 001542016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
  321. 2019-07-22 15:27 - 2019-07-04 23:11 - 001470904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
  322. 2019-07-22 15:27 - 2019-07-04 23:11 - 001467832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443136.dll
  323. 2019-07-22 15:27 - 2019-07-04 23:11 - 001162168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
  324. 2019-07-22 15:27 - 2019-07-04 23:11 - 001134464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
  325. 2019-07-22 15:27 - 2019-07-04 23:11 - 000912072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
  326. 2019-07-22 15:27 - 2019-07-04 23:11 - 000821176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
  327. 2019-07-22 15:27 - 2019-07-04 23:11 - 000808832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
  328. 2019-07-22 15:27 - 2019-07-04 23:11 - 000675224 _____ C:\WINDOWS\system32\nvofapi64.dll
  329. 2019-07-22 15:27 - 2019-07-04 23:11 - 000654720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
  330. 2019-07-22 15:27 - 2019-07-04 23:11 - 000631712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
  331. 2019-07-22 15:27 - 2019-07-04 23:11 - 000542296 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
  332. 2019-07-22 15:27 - 2019-07-04 23:11 - 000521872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
  333. 2019-07-22 15:27 - 2019-07-04 23:10 - 040412360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
  334. 2019-07-22 15:27 - 2019-07-04 23:10 - 035270016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
  335. 2019-07-22 15:27 - 2019-07-04 23:10 - 017467592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
  336. 2019-07-22 15:15 - 2019-07-22 15:15 - 000285376 _____ (Mozilla) C:\Users\tanji\Downloads\Firefox Installer.exe
  337. 2019-07-22 15:15 - 2019-07-22 15:15 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
  338. 2019-07-22 15:15 - 2019-07-22 15:15 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
  339. 2019-07-22 15:15 - 2019-07-22 15:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  340. 2019-07-22 15:13 - 2019-07-22 15:13 - 000003418 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
  341. 2019-07-22 15:13 - 2019-07-22 15:13 - 000003294 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
  342. 2019-07-22 15:13 - 2019-07-22 15:13 - 000002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  343. 2019-07-22 15:13 - 2019-07-22 15:13 - 000002332 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  344. 2019-07-19 23:33 - 2019-07-19 23:33 - 000000718 _____ C:\Users\tanji\Desktop\Movies - Shortcut.lnk
  345. 2019-07-19 23:17 - 2019-07-19 23:17 - 000001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
  346. 2019-07-19 23:14 - 2019-07-19 23:14 - 000000000 ____D C:\ProgramData\UCheck
  347. 2019-07-19 22:38 - 2019-07-19 22:39 - 033196600 _____ C:\Users\tanji\Downloads\UCheck_portable64.exe
  348. 2019-07-19 22:29 - 2019-07-22 15:52 - 000012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
  349. 2019-07-19 22:24 - 2019-07-22 16:51 - 000000000 ____D C:\Users\tanji\AppData\LocalLow\uTorrent
  350. 2019-07-19 22:16 - 2019-07-22 15:50 - 000000000 ____D C:\Program Files\HitmanPro
  351. 2019-07-19 22:16 - 2019-07-19 22:29 - 000000000 ____D C:\ProgramData\HitmanPro
  352. 2019-07-19 22:15 - 2019-07-22 17:11 - 000103169 _____ C:\WINDOWS\ZAM.krnl.trace
  353. 2019-07-19 22:15 - 2019-07-22 16:39 - 000000000 ____D C:\Users\tanji\AppData\Local\AMSDK
  354. 2019-07-19 22:15 - 2019-07-19 22:16 - 011539456 _____ (SurfRight B.V.) C:\Users\tanji\Downloads\HitmanPro_x64.exe
  355. 2019-07-19 22:15 - 2019-07-19 22:15 - 000232792 _____ (Copyright 2018.) C:\WINDOWS\system32\Drivers\amsdk.sys
  356. 2019-07-19 22:15 - 2019-07-19 22:15 - 000003558 _____ C:\WINDOWS\System32\Tasks\AMHelper
  357. 2019-07-19 22:15 - 2019-07-19 22:15 - 000002588 _____ C:\WINDOWS\System32\Tasks\AMSkipUAC
  358. 2019-07-19 22:15 - 2019-07-19 22:15 - 000000000 ____D C:\Users\tanji\AppData\Local\Zemana
  359. 2019-07-19 22:15 - 2019-07-19 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
  360. 2019-07-19 22:15 - 2019-07-19 22:15 - 000000000 ____D C:\Program Files (x86)\Zemana
  361. 2019-07-19 22:13 - 2019-07-19 22:13 - 012664512 _____ (Zemana Ltd. ) C:\Users\tanji\Downloads\AntiMalware_Setup.exe
  362. 2019-07-19 22:10 - 2019-07-19 22:10 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\tanji\Downloads\rkill.exe
  363. 2019-07-19 19:23 - 2019-07-22 15:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
  364. 2019-07-17 20:42 - 2019-07-17 20:42 - 000000000 ____D C:\Users\tanji\AppData\Roaming\Curiolab
  365. 2019-07-16 22:11 - 2019-07-16 22:11 - 000000000 ____D C:\Users\tanji\AppData\Local\mbamtray
  366. 2019-07-16 22:11 - 2019-07-16 22:11 - 000000000 ____D C:\Users\tanji\AppData\Local\mbam
  367. 2019-07-16 22:11 - 2019-07-16 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
  368. 2019-07-16 22:11 - 2019-07-16 22:11 - 000000000 ____D C:\ProgramData\Malwarebytes
  369. 2019-07-16 22:11 - 2019-07-16 22:11 - 000000000 ____D C:\Program Files\Malwarebytes
  370. 2019-07-16 22:11 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
  371. 2019-07-16 22:11 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
  372. 2019-07-16 22:10 - 2019-07-16 22:10 - 064333800 _____ (Malwarebytes ) C:\Users\tanji\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.613-1.0.11270.exe
  373. 2019-07-16 21:56 - 2019-07-16 21:56 - 001151544 _____ (Google LLC) C:\Users\tanji\Downloads\ChromeSetup.exe
  374. 2019-07-15 14:57 - 2019-07-16 21:17 - 000000000 ____D C:\Users\tanji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
  375. 2019-07-15 14:57 - 2019-07-15 14:57 - 000000000 ____D C:\Users\tanji\AppData\Roaming\Microsoft Teams
  376. 2019-07-14 22:44 - 2019-07-14 22:44 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
  377. 2019-07-14 22:44 - 2019-07-14 22:44 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
  378. 2019-07-14 22:44 - 2019-07-14 22:44 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
  379. 2019-07-14 22:44 - 2019-07-14 22:44 - 000002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
  380. 2019-07-14 22:44 - 2019-07-14 22:44 - 000002413 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
  381. 2019-07-14 22:44 - 2019-07-14 22:44 - 000002407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
  382. 2019-07-14 22:44 - 2019-07-14 22:44 - 000002401 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
  383. 2019-07-14 22:44 - 2019-07-14 22:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
  384. 2019-07-14 22:43 - 2019-07-14 22:43 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
  385. 2019-07-14 22:39 - 2019-07-16 18:38 - 000000000 ____D C:\Program Files\Microsoft Office
  386. 2019-07-14 22:39 - 2019-07-14 22:39 - 000000000 ____D C:\Program Files\Microsoft Office 15
  387. 2019-07-12 21:28 - 2019-07-14 22:40 - 000000004 _____ C:\ProgramData\lock.dat
  388. 2019-07-12 21:28 - 2019-07-14 22:32 - 000000032 _____ C:\ProgramData\irw.atsd
  389. 2019-07-12 21:28 - 2019-07-12 21:28 - 000000008 _____ C:\ProgramData\ts.dat
  390. 2019-07-12 21:25 - 2019-07-19 22:25 - 000000258 __RSH C:\Users\tanji\ntuser.pol
  391. 2019-07-12 21:25 - 2019-07-14 22:40 - 000000000 ____D C:\ProgramData\WIFIService
  392. 2019-07-12 21:22 - 2019-07-19 22:25 - 000000258 __RSH C:\ProgramData\ntuser.pol
  393. 2019-07-12 21:21 - 2019-07-22 17:10 - 000000000 ____D C:\Users\tanji\AppData\Roaming\khocxrrgfflv
  394. 2019-07-12 21:21 - 2019-07-12 21:21 - 000825856 _____ C:\Default.xml
  395. 2019-07-12 21:21 - 2019-07-12 21:21 - 000273688 _____ C:\Users\tanji\Documents\call-of-duty-black-ops-2-36-dlcs-mp-with-bots-zombie-mode.torrent
  396. 2019-07-10 20:19 - 2019-07-04 17:40 - 021390504 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
  397. 2019-07-10 20:19 - 2019-07-04 12:56 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
  398. 2019-07-10 20:19 - 2019-07-04 12:56 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
  399. 2019-07-10 20:19 - 2019-07-04 12:56 - 007436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
  400. 2019-07-10 20:19 - 2019-07-04 12:42 - 006570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
  401. 2019-07-10 20:19 - 2019-07-04 12:37 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
  402. 2019-07-10 20:19 - 2019-07-04 12:33 - 022017536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
  403. 2019-07-10 20:19 - 2019-07-04 12:29 - 022717440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
  404. 2019-07-10 20:19 - 2019-07-04 12:25 - 019372544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
  405. 2019-07-10 20:19 - 2019-07-04 12:25 - 007589888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
  406. 2019-07-10 20:19 - 2019-06-13 18:11 - 001539896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
  407. 2019-07-10 20:19 - 2019-06-13 14:47 - 005625160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
  408. 2019-07-10 20:18 - 2019-07-04 17:45 - 001786680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
  409. 2019-07-10 20:18 - 2019-07-04 17:43 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
  410. 2019-07-10 20:18 - 2019-07-04 17:41 - 000304144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
  411. 2019-07-10 20:18 - 2019-07-04 17:40 - 001631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
  412. 2019-07-10 20:18 - 2019-07-04 17:40 - 001616840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
  413. 2019-07-10 20:18 - 2019-07-04 17:40 - 000790416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
  414. 2019-07-10 20:18 - 2019-07-04 17:22 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
  415. 2019-07-10 20:18 - 2019-07-04 17:22 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
  416. 2019-07-10 20:18 - 2019-07-04 17:21 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
  417. 2019-07-10 20:18 - 2019-07-04 17:20 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
  418. 2019-07-10 20:18 - 2019-07-04 17:19 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
  419. 2019-07-10 20:18 - 2019-07-04 17:18 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
  420. 2019-07-10 20:18 - 2019-07-04 17:18 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
  421. 2019-07-10 20:18 - 2019-07-04 16:56 - 001453416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
  422. 2019-07-10 20:18 - 2019-07-04 16:54 - 000662352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
  423. 2019-07-10 20:18 - 2019-07-04 16:51 - 020384128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
  424. 2019-07-10 20:18 - 2019-07-04 16:41 - 007990784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
  425. 2019-07-10 20:18 - 2019-07-04 16:37 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
  426. 2019-07-10 20:18 - 2019-07-04 16:36 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
  427. 2019-07-10 20:18 - 2019-07-04 13:00 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
  428. 2019-07-10 20:18 - 2019-07-04 12:58 - 001328440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
  429. 2019-07-10 20:18 - 2019-07-04 12:58 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
  430. 2019-07-10 20:18 - 2019-07-04 12:58 - 000416312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
  431. 2019-07-10 20:18 - 2019-07-04 12:58 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
  432. 2019-07-10 20:18 - 2019-07-04 12:57 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
  433. 2019-07-10 20:18 - 2019-07-04 12:57 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
  434. 2019-07-10 20:18 - 2019-07-04 12:57 - 000986128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
  435. 2019-07-10 20:18 - 2019-07-04 12:57 - 000776784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
  436. 2019-07-10 20:18 - 2019-07-04 12:57 - 000723728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
  437. 2019-07-10 20:18 - 2019-07-04 12:57 - 000708696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
  438. 2019-07-10 20:18 - 2019-07-04 12:57 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
  439. 2019-07-10 20:18 - 2019-07-04 12:57 - 000362264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
  440. 2019-07-10 20:18 - 2019-07-04 12:57 - 000209424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
  441. 2019-07-10 20:18 - 2019-07-04 12:57 - 000194360 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
  442. 2019-07-10 20:18 - 2019-07-04 12:57 - 000137656 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
  443. 2019-07-10 20:18 - 2019-07-04 12:57 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
  444. 2019-07-10 20:18 - 2019-07-04 12:57 - 000091776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
  445. 2019-07-10 20:18 - 2019-07-04 12:56 - 002810680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
  446. 2019-07-10 20:18 - 2019-07-04 12:56 - 002571640 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
  447. 2019-07-10 20:18 - 2019-07-04 12:56 - 001566520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
  448. 2019-07-10 20:18 - 2019-07-04 12:56 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
  449. 2019-07-10 20:18 - 2019-07-04 12:56 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
  450. 2019-07-10 20:18 - 2019-07-04 12:56 - 001141496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
  451. 2019-07-10 20:18 - 2019-07-04 12:56 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
  452. 2019-07-10 20:18 - 2019-07-04 12:56 - 000767536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
  453. 2019-07-10 20:18 - 2019-07-04 12:56 - 000734952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
  454. 2019-07-10 20:18 - 2019-07-04 12:56 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
  455. 2019-07-10 20:18 - 2019-07-04 12:56 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
  456. 2019-07-10 20:18 - 2019-07-04 12:56 - 000493752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
  457. 2019-07-10 20:18 - 2019-07-04 12:56 - 000115512 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
  458. 2019-07-10 20:18 - 2019-07-04 12:43 - 000832016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
  459. 2019-07-10 20:18 - 2019-07-04 12:43 - 000665440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
  460. 2019-07-10 20:18 - 2019-07-04 12:43 - 000328696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
  461. 2019-07-10 20:18 - 2019-07-04 12:43 - 000287376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
  462. 2019-07-10 20:18 - 2019-07-04 12:43 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
  463. 2019-07-10 20:18 - 2019-07-04 12:42 - 006044008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
  464. 2019-07-10 20:18 - 2019-07-04 12:42 - 002479176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
  465. 2019-07-10 20:18 - 2019-07-04 12:42 - 001980984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
  466. 2019-07-10 20:18 - 2019-07-04 12:42 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
  467. 2019-07-10 20:18 - 2019-07-04 12:42 - 000573808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
  468. 2019-07-10 20:18 - 2019-07-04 12:42 - 000356312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
  469. 2019-07-10 20:18 - 2019-07-04 12:42 - 000097272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
  470. 2019-07-10 20:18 - 2019-07-04 12:41 - 000559328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
  471. 2019-07-10 20:18 - 2019-07-04 12:26 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
  472. 2019-07-10 20:18 - 2019-07-04 12:26 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
  473. 2019-07-10 20:18 - 2019-07-04 12:26 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
  474. 2019-07-10 20:18 - 2019-07-04 12:25 - 004861440 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
  475. 2019-07-10 20:18 - 2019-07-04 12:25 - 003401216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
  476. 2019-07-10 20:18 - 2019-07-04 12:25 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
  477. 2019-07-10 20:18 - 2019-07-04 12:25 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
  478. 2019-07-10 20:18 - 2019-07-04 12:24 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
  479. 2019-07-10 20:18 - 2019-07-04 12:24 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
  480. 2019-07-10 20:18 - 2019-07-04 12:24 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
  481. 2019-07-10 20:18 - 2019-07-04 12:24 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
  482. 2019-07-10 20:18 - 2019-07-04 12:23 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
  483. 2019-07-10 20:18 - 2019-07-04 12:23 - 001217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
  484. 2019-07-10 20:18 - 2019-07-04 12:23 - 000786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
  485. 2019-07-10 20:18 - 2019-07-04 12:22 - 003707904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
  486. 2019-07-10 20:18 - 2019-07-04 12:22 - 002587648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
  487. 2019-07-10 20:18 - 2019-07-04 12:22 - 002176000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
  488. 2019-07-10 20:18 - 2019-07-04 12:22 - 001561088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
  489. 2019-07-10 20:18 - 2019-07-04 12:22 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
  490. 2019-07-10 20:18 - 2019-07-04 12:22 - 001175552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
  491. 2019-07-10 20:18 - 2019-07-04 12:22 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
  492. 2019-07-10 20:18 - 2019-07-04 12:22 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
  493. 2019-07-10 20:18 - 2019-07-04 12:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
  494. 2019-07-10 20:18 - 2019-07-04 12:21 - 005784064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
  495. 2019-07-10 20:18 - 2019-07-04 12:21 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
  496. 2019-07-10 20:18 - 2019-07-04 12:21 - 003202560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
  497. 2019-07-10 20:18 - 2019-07-04 12:21 - 002166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
  498. 2019-07-10 20:18 - 2019-07-04 12:21 - 001920000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
  499. 2019-07-10 20:18 - 2019-07-04 12:21 - 001220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
  500. 2019-07-10 20:18 - 2019-07-04 12:21 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
  501. 2019-07-10 20:18 - 2019-07-04 12:21 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
  502. 2019-07-10 20:18 - 2019-07-04 12:21 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
  503. 2019-07-10 20:18 - 2019-07-04 12:20 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
  504. 2019-07-10 20:18 - 2019-07-04 12:20 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
  505. 2019-07-10 20:18 - 2019-07-04 12:20 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
  506. 2019-07-10 20:18 - 2019-07-04 12:20 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
  507. 2019-07-10 20:18 - 2019-07-04 12:19 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
  508. 2019-07-10 20:18 - 2019-07-04 12:19 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
  509. 2019-07-10 20:18 - 2019-07-04 12:18 - 002602496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
  510. 2019-07-10 20:18 - 2019-07-04 12:18 - 001076224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
  511. 2019-07-10 20:18 - 2019-07-04 12:18 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
  512. 2019-07-10 20:18 - 2019-07-04 12:18 - 000953344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
  513. 2019-07-10 20:18 - 2019-07-04 12:18 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
  514. 2019-07-10 20:18 - 2019-07-04 12:17 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
  515. 2019-07-10 20:18 - 2019-07-04 11:01 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
  516. 2019-07-10 20:18 - 2019-06-21 16:50 - 000280584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
  517. 2019-07-10 20:18 - 2019-06-13 20:15 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
  518. 2019-07-10 20:18 - 2019-06-13 20:12 - 002871848 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
  519. 2019-07-10 20:18 - 2019-06-13 20:05 - 000810296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
  520. 2019-07-10 20:18 - 2019-06-13 20:04 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
  521. 2019-07-10 20:18 - 2019-06-13 20:00 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
  522. 2019-07-10 20:18 - 2019-06-13 19:59 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
  523. 2019-07-10 20:18 - 2019-06-13 19:58 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
  524. 2019-07-10 20:18 - 2019-06-13 19:58 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
  525. 2019-07-10 20:18 - 2019-06-13 19:56 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
  526. 2019-07-10 20:18 - 2019-06-13 19:43 - 001427984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
  527. 2019-07-10 20:18 - 2019-06-13 19:43 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
  528. 2019-07-10 20:18 - 2019-06-13 19:42 - 004038688 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
  529. 2019-07-10 20:18 - 2019-06-13 19:42 - 002266936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
  530. 2019-07-10 20:18 - 2019-06-13 19:42 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
  531. 2019-07-10 20:18 - 2019-06-13 19:42 - 000566536 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
  532. 2019-07-10 20:18 - 2019-06-13 19:41 - 001626936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
  533. 2019-07-10 20:18 - 2019-06-13 19:41 - 000830264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
  534. 2019-07-10 20:18 - 2019-06-13 19:41 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
  535. 2019-07-10 20:18 - 2019-06-13 19:41 - 000670008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
  536. 2019-07-10 20:18 - 2019-06-13 19:40 - 000749880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
  537. 2019-07-10 20:18 - 2019-06-13 19:40 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
  538. 2019-07-10 20:18 - 2019-06-13 19:40 - 000495416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
  539. 2019-07-10 20:18 - 2019-06-13 19:38 - 000766264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
  540. 2019-07-10 20:18 - 2019-06-13 19:37 - 000101192 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
  541. 2019-07-10 20:18 - 2019-06-13 19:36 - 000251000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
  542. 2019-07-10 20:18 - 2019-06-13 19:36 - 000236520 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
  543. 2019-07-10 20:18 - 2019-06-13 19:35 - 001376688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
  544. 2019-07-10 20:18 - 2019-06-13 19:34 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
  545. 2019-07-10 20:18 - 2019-06-13 19:18 - 006586880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
  546. 2019-07-10 20:18 - 2019-06-13 19:18 - 004847104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
  547. 2019-07-10 20:18 - 2019-06-13 19:17 - 012756992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
  548. 2019-07-10 20:18 - 2019-06-13 19:17 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
  549. 2019-07-10 20:18 - 2019-06-13 19:17 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
  550. 2019-07-10 20:18 - 2019-06-13 19:17 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
  551. 2019-07-10 20:18 - 2019-06-13 19:17 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
  552. 2019-07-10 20:18 - 2019-06-13 19:16 - 000767488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
  553. 2019-07-10 20:18 - 2019-06-13 19:15 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
  554. 2019-07-10 20:18 - 2019-06-13 19:15 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
  555. 2019-07-10 20:18 - 2019-06-13 19:14 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
  556. 2019-07-10 20:18 - 2019-06-13 19:14 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
  557. 2019-07-10 20:18 - 2019-06-13 19:14 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
  558. 2019-07-10 20:18 - 2019-06-13 19:14 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
  559. 2019-07-10 20:18 - 2019-06-13 19:13 - 002920448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
  560. 2019-07-10 20:18 - 2019-06-13 19:13 - 001339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
  561. 2019-07-10 20:18 - 2019-06-13 19:13 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
  562. 2019-07-10 20:18 - 2019-06-13 19:13 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
  563. 2019-07-10 20:18 - 2019-06-13 19:13 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
  564. 2019-07-10 20:18 - 2019-06-13 19:12 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
  565. 2019-07-10 20:18 - 2019-06-13 19:10 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
  566. 2019-07-10 20:18 - 2019-06-13 18:07 - 001027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
  567. 2019-07-10 20:18 - 2019-06-13 18:07 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
  568. 2019-07-10 20:18 - 2019-06-13 18:07 - 000221232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
  569. 2019-07-10 20:18 - 2019-06-13 18:05 - 003700160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
  570. 2019-07-10 20:18 - 2019-06-13 17:55 - 005657088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
  571. 2019-07-10 20:18 - 2019-06-13 17:54 - 011942912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
  572. 2019-07-10 20:18 - 2019-06-13 17:54 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
  573. 2019-07-10 20:18 - 2019-06-13 17:53 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
  574. 2019-07-10 20:18 - 2019-06-13 17:51 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
  575. 2019-07-10 20:18 - 2019-06-13 17:50 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
  576. 2019-07-10 20:18 - 2019-06-13 17:49 - 002406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
  577. 2019-07-10 20:18 - 2019-06-13 17:49 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
  578. 2019-07-10 20:18 - 2019-06-13 15:48 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
  579. 2019-07-10 20:18 - 2019-06-13 15:46 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
  580. 2019-07-10 20:18 - 2019-06-13 15:01 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
  581. 2019-07-10 20:18 - 2019-06-13 15:01 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
  582. 2019-07-10 20:18 - 2019-06-13 15:01 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
  583. 2019-07-10 20:18 - 2019-06-13 14:59 - 000785264 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
  584. 2019-07-10 20:18 - 2019-06-13 14:47 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
  585. 2019-07-10 20:18 - 2019-06-13 14:46 - 001076536 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
  586. 2019-07-10 20:18 - 2019-06-13 14:46 - 000510296 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
  587. 2019-07-10 20:18 - 2019-06-13 14:46 - 000093984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
  588. 2019-07-10 20:18 - 2019-06-13 14:45 - 002421560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
  589. 2019-07-10 20:18 - 2019-06-13 14:44 - 002769688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
  590. 2019-07-10 20:18 - 2019-06-13 14:44 - 002546704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
  591. 2019-07-10 20:18 - 2019-06-13 14:44 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
  592. 2019-07-10 20:18 - 2019-06-13 14:44 - 001033696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
  593. 2019-07-10 20:18 - 2019-06-13 14:44 - 000607112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
  594. 2019-07-10 20:18 - 2019-06-13 14:44 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
  595. 2019-07-10 20:18 - 2019-06-13 14:44 - 000130624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
  596. 2019-07-10 20:18 - 2019-06-13 14:17 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
  597. 2019-07-10 20:18 - 2019-06-13 14:16 - 001626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
  598. 2019-07-10 20:18 - 2019-06-13 14:16 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
  599. 2019-07-10 20:18 - 2019-06-13 14:15 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
  600. 2019-07-10 20:18 - 2019-06-13 14:15 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
  601. 2019-07-10 20:18 - 2019-06-13 14:15 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
  602. 2019-07-10 20:18 - 2019-06-13 14:15 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
  603. 2019-07-10 20:18 - 2019-06-13 14:15 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
  604. 2019-07-10 20:18 - 2019-06-13 14:14 - 003318784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
  605. 2019-07-10 20:18 - 2019-06-13 14:14 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
  606. 2019-07-10 20:18 - 2019-06-13 14:14 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
  607. 2019-07-10 20:18 - 2019-06-13 14:14 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
  608. 2019-07-10 20:18 - 2019-06-13 14:13 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
  609. 2019-07-10 20:18 - 2019-06-13 14:13 - 002370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
  610. 2019-07-10 20:18 - 2019-06-13 14:13 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
  611. 2019-07-10 20:18 - 2019-06-13 14:13 - 000322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
  612. 2019-07-10 20:18 - 2019-06-13 14:13 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
  613. 2019-07-10 20:18 - 2019-06-13 14:12 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
  614. 2019-07-10 20:18 - 2019-06-13 14:12 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
  615. 2019-07-10 20:18 - 2019-06-13 14:12 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
  616. 2019-07-10 20:18 - 2019-06-13 14:12 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
  617. 2019-07-10 20:18 - 2019-06-13 14:12 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
  618. 2019-07-10 20:18 - 2019-06-13 14:12 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
  619. 2019-07-10 20:18 - 2019-06-13 14:11 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
  620. 2019-07-10 20:18 - 2019-06-13 14:11 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
  621. 2019-07-10 20:18 - 2019-06-13 14:11 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
  622. 2019-07-10 20:18 - 2019-06-13 14:10 - 002912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
  623. 2019-07-10 20:18 - 2019-06-13 14:10 - 001400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
  624. 2019-07-10 20:18 - 2019-06-13 14:10 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
  625. 2019-07-10 20:18 - 2019-06-13 14:10 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
  626. 2019-07-10 20:18 - 2019-06-13 14:10 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
  627. 2019-07-10 20:18 - 2019-06-13 14:10 - 000849408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
  628. 2019-07-10 20:18 - 2019-06-13 14:10 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
  629. 2019-07-10 20:18 - 2019-06-13 14:09 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
  630. 2019-07-10 20:18 - 2019-06-13 14:09 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
  631. 2019-07-10 20:18 - 2019-06-13 14:09 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
  632. 2019-07-10 20:18 - 2019-06-13 14:08 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
  633. 2019-07-10 20:18 - 2019-06-13 13:14 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
  634. 2019-07-10 20:18 - 2019-06-13 13:08 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
  635. 2019-07-10 20:18 - 2019-06-13 13:07 - 000101192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
  636. 2019-07-10 20:18 - 2019-06-13 13:07 - 000080744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
  637. 2019-07-10 20:18 - 2019-06-13 13:06 - 002256768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
  638. 2019-07-10 20:18 - 2019-06-13 13:06 - 001130776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
  639. 2019-07-10 20:18 - 2019-06-13 13:06 - 000581600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
  640. 2019-07-10 20:18 - 2019-06-13 12:49 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
  641. 2019-07-10 20:18 - 2019-06-13 12:47 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
  642. 2019-07-10 20:18 - 2019-06-13 12:47 - 002899456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
  643. 2019-07-10 20:18 - 2019-06-13 12:47 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
  644. 2019-07-10 20:18 - 2019-06-13 12:46 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
  645. 2019-07-10 20:18 - 2019-06-13 12:46 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
  646. 2019-07-10 20:18 - 2019-06-13 12:46 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
  647. 2019-07-10 20:18 - 2019-06-13 12:45 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
  648. 2019-07-10 20:18 - 2019-06-13 12:45 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
  649. 2019-07-10 20:18 - 2019-06-13 12:44 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
  650. 2019-07-10 20:18 - 2019-06-13 12:44 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
  651. 2019-07-10 20:18 - 2019-06-13 12:44 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
  652. 2019-07-10 20:18 - 2019-06-13 12:44 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
  653. 2019-07-10 20:18 - 2019-06-13 12:44 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
  654. 2019-07-10 20:18 - 2019-06-13 12:43 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
  655. 2019-07-10 20:18 - 2019-06-13 12:43 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
  656. 2019-07-10 20:18 - 2019-06-13 12:43 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
  657. 2019-07-07 13:31 - 2019-07-07 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft Classic
  658. 2019-07-02 15:06 - 2019-07-19 23:19 - 000000000 ____D C:\Program Files (x86)\Anvsoft
  659. 2019-07-02 15:06 - 2019-07-02 15:06 - 000000000 ____D C:\Users\tanji\Documents\Any Video Converter
  660. 2019-07-02 15:06 - 2019-07-02 15:06 - 000000000 ____D C:\Users\tanji\AppData\Roaming\Anvsoft
  661. 2019-06-23 21:21 - 2019-06-23 21:21 - 000000000 ____D C:\Users\tanji\AppData\Local\Insurgency
  662. 2019-06-23 21:09 - 2019-06-23 21:10 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
  663.  
  664. ==================== One month (modified) ========
  665.  
  666. (If an entry is included in the fixlist, the file/folder will be moved.)
  667.  
  668. 2019-07-22 17:10 - 2017-05-02 17:26 - 000000000 ____D C:\Users\tanji\AppData\LocalLow\Mozilla
  669. 2019-07-22 17:09 - 2019-01-20 19:28 - 000000000 ____D C:\Users\tanji\AppData\Roaming\uTorrent
  670. 2019-07-22 16:57 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\AppReadiness
  671. 2019-07-22 16:56 - 2018-04-12 07:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  672. 2019-07-22 16:55 - 2018-05-18 20:02 - 000891742 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  673. 2019-07-22 16:55 - 2018-05-18 19:55 - 000000000 ____D C:\Users\tanji
  674. 2019-07-22 16:55 - 2018-04-12 07:36 - 000000000 ____D C:\WINDOWS\INF
  675. 2019-07-22 16:53 - 2016-10-19 16:03 - 000000000 ____D C:\ProgramData\Kaspersky Lab
  676. 2019-07-22 16:52 - 2017-06-09 16:29 - 000000000 ____D C:\ProgramData\NVIDIA
  677. 2019-07-22 16:51 - 2019-06-04 11:21 - 000000000 ____D C:\Users\tanji\AppData\Local\BitTorrentHelper
  678. 2019-07-22 16:50 - 2018-05-18 19:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  679. 2019-07-22 16:50 - 2018-05-18 19:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
  680. 2019-07-22 16:50 - 2018-01-25 19:32 - 000000000 ____D C:\Program Files (x86)\TeamViewer
  681. 2019-07-22 16:49 - 2018-01-28 22:43 - 000000000 ____D C:\Users\tanji\AppData\Roaming\vlc
  682. 2019-07-22 16:45 - 2017-12-16 20:55 - 000000000 ____D C:\Users\tanji\Desktop\Personal
  683. 2019-07-22 16:38 - 2016-10-19 15:50 - 000000000 ____D C:\Users\tanji\AppData\Local\Google
  684. 2019-07-22 16:26 - 2016-10-23 11:04 - 000000000 ____D C:\ProgramData\Package Cache
  685. 2019-07-22 16:26 - 2016-10-19 16:14 - 000000000 ____D C:\Users\tanji\AppData\Local\Blizzard Entertainment
  686. 2019-07-22 16:26 - 2016-10-19 16:14 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
  687. 2019-07-22 16:09 - 2016-11-13 00:40 - 000000000 ____D C:\ProgramData\boost_interprocess
  688. 2019-07-22 16:04 - 2018-04-12 05:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
  689. 2019-07-22 15:46 - 2017-06-09 16:29 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
  690. 2019-07-22 15:46 - 2016-10-20 06:29 - 000611534 ____N C:\WINDOWS\Minidump\072219-5031-01.dmp
  691. 2019-07-22 15:33 - 2018-04-12 07:38 - 000000000 ___HD C:\Program Files\WindowsApps
  692. 2019-07-22 15:28 - 2018-02-24 09:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
  693. 2019-07-22 15:28 - 2017-11-23 21:35 - 000000000 ____D C:\Temp
  694. 2019-07-22 15:21 - 2019-05-29 12:52 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  695. 2019-07-22 15:21 - 2019-05-29 12:52 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  696. 2019-07-22 15:21 - 2019-05-29 12:52 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  697. 2019-07-22 15:21 - 2019-05-29 12:52 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  698. 2019-07-22 15:21 - 2018-05-25 21:41 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  699. 2019-07-22 15:21 - 2018-05-25 21:41 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  700. 2019-07-22 15:21 - 2018-05-18 19:59 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  701. 2019-07-22 15:21 - 2018-05-18 19:59 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  702. 2019-07-22 15:21 - 2017-06-09 16:29 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
  703. 2019-07-22 15:20 - 2018-05-18 19:59 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  704. 2019-07-22 15:20 - 2018-05-18 19:59 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  705. 2019-07-22 15:20 - 2017-06-09 16:29 - 000000000 ____D C:\Program Files\NVIDIA Corporation
  706. 2019-07-22 15:13 - 2016-10-19 15:50 - 000000000 ____D C:\Program Files (x86)\Google
  707. 2019-07-22 13:30 - 2018-05-18 19:59 - 000004166 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3D5BBFEE-184B-4D36-A73F-C342FE170B9B}
  708. 2019-07-21 13:30 - 2016-11-09 19:35 - 000000000 ____D C:\Users\tanji\AppData\Local\Battle.net
  709. 2019-07-20 22:56 - 2016-12-08 00:02 - 000000000 ____D C:\Users\tanji\AppData\Roaming\discord
  710. 2019-07-20 17:22 - 2018-05-18 19:52 - 000411760 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  711. 2019-07-19 23:20 - 2017-07-20 16:34 - 000000000 ____D C:\Users\tanji\Desktop\PC Tools
  712. 2019-07-19 23:18 - 2017-06-12 14:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  713. 2019-07-19 23:18 - 2017-06-12 14:34 - 000000000 ____D C:\Program Files (x86)\Java
  714. 2019-07-19 23:17 - 2018-01-25 19:33 - 000000000 ____D C:\Users\tanji\AppData\Roaming\TeamViewer
  715. 2019-07-19 23:17 - 2017-06-12 14:34 - 000098288 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
  716. 2019-07-19 23:16 - 2018-09-24 23:58 - 000000000 ____D C:\Users\tanji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
  717. 2019-07-19 23:16 - 2018-09-24 23:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
  718. 2019-07-19 23:16 - 2018-09-24 23:58 - 000000000 ____D C:\Program Files\WinRAR
  719. 2019-07-18 19:50 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
  720. 2019-07-18 19:49 - 2019-04-12 20:49 - 000000000 ____D C:\Program Files (x86)\Proton Technologies
  721. 2019-07-18 19:47 - 2016-10-19 15:46 - 000000000 ___RD C:\Users\tanji\OneDrive
  722. 2019-07-17 21:18 - 2017-07-20 16:29 - 000000000 ____D C:\Users\tanji\Desktop\wallpapers
  723. 2019-07-16 23:25 - 2016-10-23 00:24 - 000000000 ____D C:\Users\tanji\Documents\MEGAsync Downloads
  724. 2019-07-16 22:26 - 2016-10-22 19:29 - 000000000 ____D C:\Users\tanji\AppData\Local\CrashDumps
  725. 2019-07-16 22:11 - 2018-04-12 07:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
  726. 2019-07-16 20:50 - 2016-12-08 00:02 - 000000000 ____D C:\Users\tanji\AppData\Local\SquirrelTemp
  727. 2019-07-16 18:39 - 2018-04-12 07:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
  728. 2019-07-14 22:33 - 2017-01-04 21:39 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
  729. 2019-07-14 17:24 - 2018-11-09 23:06 - 000000000 ____D C:\Users\tanji\AppData\Local\ModTheSpire
  730. 2019-07-12 21:22 - 2016-07-16 19:47 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
  731. 2019-07-12 12:45 - 2017-11-30 16:27 - 000000000 ___RD C:\Users\tanji\3D Objects
  732. 2019-07-12 12:45 - 2016-10-19 15:45 - 000000000 __RHD C:\Users\Public\AccountPictures
  733. 2019-07-10 20:33 - 2018-04-12 17:20 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
  734. 2019-07-10 20:33 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\TextInput
  735. 2019-07-10 20:33 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
  736. 2019-07-10 20:33 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
  737. 2019-07-10 20:33 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\system32\oobe
  738. 2019-07-10 20:33 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
  739. 2019-07-10 20:33 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\ShellComponents
  740. 2019-07-10 20:33 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\Provisioning
  741. 2019-07-10 20:33 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\bcastdvr
  742. 2019-07-10 20:33 - 2018-04-12 05:04 - 000000000 ____D C:\WINDOWS\system32\Dism
  743. 2019-07-10 20:21 - 2018-04-12 07:30 - 000000000 ____D C:\WINDOWS\CbsTemp
  744. 2019-07-10 20:18 - 2016-10-21 20:14 - 000000000 ____D C:\WINDOWS\system32\MRT
  745. 2019-07-10 20:14 - 2016-10-21 20:14 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  746. 2019-07-10 15:22 - 2016-10-23 11:11 - 000741432 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
  747. 2019-07-09 22:05 - 2018-05-18 19:59 - 000004600 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
  748. 2019-07-09 22:05 - 2018-04-12 07:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
  749. 2019-07-09 21:05 - 2019-02-01 22:19 - 000004588 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
  750. 2019-07-08 23:42 - 2017-10-02 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
  751. 2019-07-08 23:42 - 2017-10-02 23:19 - 000000000 ____D C:\Program Files (x86)\Core Temp
  752. 2019-07-08 22:35 - 2017-11-30 16:22 - 000000000 ____D C:\Users\tanji\AppData\Local\Packages
  753. 2019-07-05 02:07 - 2018-05-10 21:16 - 005085096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
  754. 2019-07-03 21:56 - 2018-05-10 21:16 - 000052446 _____ C:\WINDOWS\system32\nvinfo.pb
  755. 2019-07-03 17:10 - 2018-04-21 09:21 - 005435376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
  756. 2019-07-03 17:10 - 2018-04-21 09:21 - 002637168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
  757. 2019-07-03 17:10 - 2018-04-21 09:21 - 001767464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
  758. 2019-07-03 17:10 - 2018-04-21 09:21 - 000651248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
  759. 2019-07-03 17:10 - 2018-04-21 09:21 - 000450416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
  760. 2019-07-03 17:10 - 2018-04-21 09:21 - 000124784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
  761. 2019-07-03 17:10 - 2018-04-21 09:21 - 000082984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
  762. 2019-07-03 17:09 - 2018-04-21 09:21 - 008628422 _____ C:\WINDOWS\system32\nvcoproc.bin
  763. 2019-07-01 15:26 - 2019-01-28 22:33 - 000000000 ____D C:\Users\tanji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
  764. 2019-06-23 21:21 - 2017-05-05 01:07 - 000000000 ____D C:\Users\tanji\AppData\Local\UnrealEngine
  765.  
  766. ==================== Files in the root of some directories ================
  767.  
  768. 2019-07-22 16:03 - 2019-07-22 16:03 - 006822192 _____ (EnigmaSoft Limited) C:\ProgramData\EsgInstallerResumeAction_e72019a90d280ba842a8e1e187887711.exe
  769. 2019-07-12 21:28 - 2019-07-14 22:40 - 000000004 _____ () C:\ProgramData\lock.dat
  770. 2019-07-12 21:28 - 2019-07-12 21:28 - 000000008 _____ () C:\ProgramData\ts.dat
  771. 2017-05-18 17:51 - 2017-05-18 17:51 - 000045270 _____ () C:\Users\tanji\AppData\Roaming\room_v3.dat
  772. 2017-05-17 19:37 - 2017-05-17 19:37 - 000000038 ___SH () C:\Users\tanji\AppData\Local\1754111884ee9ab5277ca00.95260103
  773. 2018-01-17 21:14 - 2018-01-17 21:15 - 000007622 _____ () C:\Users\tanji\AppData\Local\Resmon.ResmonCfg
  774. 2017-03-14 20:14 - 2017-03-14 20:14 - 000000552 _____ () C:\Users\tanji\AppData\Local\TroubleshooterConfig.json
  775.  
  776. ==================== SigCheck ===============================
  777.  
  778. (There is no automatic fix for files that do not pass verification.)
  779.  
  780. ==================== End of FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!