API tools faq
paste
Advertisement
Guest User

FRST.txt

a guest
Mar 7th, 2025
150
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 54.69 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-03-2025
  2. Ran by User (administrator) on SUFIYAN (Micro-Star International Co., Ltd. MS-7D75) (07-03-2025 14:28:46)
  3. Running from C:\Users\User\Desktop\FRST64.exe
  4. Loaded Profiles: User
  5. Platform: Microsoft Windows 11 Pro Version 24H2 26100.3194 (X64) Language: English (United Kingdom)
  6. Default browser: Chrome
  7. Boot Mode: Normal
  8.  
  9. ==================== Processes (Whitelisted) =================
  10.  
  11. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  12.  
  13. (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.1301.30.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\133.0.3065.92\msedgewebview2.exe <6>
  14. (DriverStore\FileRepository\u0401611.inf_amd64_fdc4605155615ab7\B399690\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0401611.inf_amd64_fdc4605155615ab7\B399690\atieclxx.exe
  15. (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <55>
  16. (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
  17. (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\osk.exe
  18. (explorer.exe ->) (Open-Shell) [File not signed] C:\Program Files\Open-Shell\StartMenu.exe
  19. (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  20. (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0401611.inf_amd64_fdc4605155615ab7\B399690\atiesrxx.exe
  21. (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray_service.exe
  22. (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
  23. (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
  24. (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
  25. (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
  26. (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe
  27. (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
  28. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
  29. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
  30. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
  31. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
  32. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
  33. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
  34.  
  35. ==================== Registry (Whitelisted) ===================
  36.  
  37. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  38.  
  39. HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [267776 2025-01-04] (Open-Shell) [File not signed]
  40. HKU\S-1-5-21-3909807573-460586846-2225813105-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4088392 2025-02-27] (Microsoft Corporation -> Microsoft Corporation)
  41. HKU\S-1-5-21-3909807573-460586846-2225813105-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [5007376 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  42. HKU\S-1-5-21-3909807573-460586846-2225813105-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4435552 2025-01-28] (Valve Corp. -> Valve Corporation)
  43. HKU\S-1-5-21-3909807573-460586846-2225813105-1001\...\Run: [Discord] => C:\Users\User\AppData\Local\Discord\Update.exe [1516408 2025-02-24] (Discord Inc. -> Discord Inc.)
  44. HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2024-09-06] (Adobe Inc. -> Adobe Systems Inc)
  45. HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\133.0.6943.143\Installer\chrmstp.exe [2025-03-04] (Google LLC -> Google LLC)
  46.  
  47. ==================== Scheduled Tasks (Whitelisted) =================
  48.  
  49. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  50.  
  51. Task: {8D6B6E79-798B-4A1D-AA76-A33344796C7F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2024-12-18] (Adobe Inc. -> Adobe Inc.)
  52. Task: {7DF77240-83C6-4D2F-A9BC-942822A03D58} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{1FCD8634-940C-4ED6-959C-136C1CFB90AC} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
  53. Task: {87E15338-B97B-4DAE-B822-1E23ABEC1EAE} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312440 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  54. Task: {2B47B327-E22A-421B-A32D-D8B104250E18} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312440 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  55. Task: {A1CDB3DA-FBD6-4AFF-BE83-47306725D080} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28752616 2025-02-08] (Microsoft Corporation -> Microsoft Corporation)
  56. Task: {04EB03D1-675D-4C19-9C64-10C71A272DE5} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [67248 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  57. Task: {D3D0CA5C-D227-428A-8F1B-3E92CBBC3E5A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28752616 2025-02-08] (Microsoft Corporation -> Microsoft Corporation)
  58. Task: {818B7A35-3CFB-43BC-80DD-1C661DA19B8F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312440 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  59. Task: {99254C5E-935D-43C6-A267-A11CA0A75889} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312440 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  60. Task: {9BE71DD0-2C3B-4361-8313-8A57E06E7367} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [194672 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  61. Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
  62. Task: {EA2EF216-A5B8-4293-9501-E3F912755897} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
  63. Task: {D4A836EE-DA98-485F-9F11-9CA8CB59B128} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
  64. Task: {6A37EE4D-EB70-429A-A690-33B649F98662} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
  65. Task: {8D1B1C20-02D4-4349-85BC-11713283487B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
  66. Task: {AA1995C1-ADFF-4FEF-931F-87670EAC079E} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4222504 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  67. Task: {994F000E-5799-413A-8B81-78A6FFD35796} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3909807573-460586846-2225813105-1000 => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File)
  68. Task: {68774294-5734-4F0F-81AA-2D775155BCE2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3909807573-460586846-2225813105-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4222504 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  69. Task: {6C84A3D1-5919-416C-902A-E7F81AA85D79} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3909807573-460586846-2225813105-1001 => C:\Program Files\Microsoft OneDrive\25.020.0202.0001\OneDriveLauncher.exe [669200 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  70.  
  71. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  72.  
  73.  
  74. ==================== Internet (Whitelisted) ====================
  75.  
  76. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  77.  
  78. Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
  79. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  80. Tcpip\..\Interfaces\{0ab6649b-e5fd-408f-8de3-49628ca35583}: [DhcpNameServer] 192.168.1.1
  81. Tcpip\..\Interfaces\{0ab6649b-e5fd-408f-8de3-49628ca35583}: [DhcpDomain] communityfibre.co.uk
  82.  
  83. Edge:
  84. =======
  85. Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-01]
  86. Edge Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  87. Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-02-28]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
  88.  
  89. FireFox:
  90. ========
  91. FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
  92. FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
  93. FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
  94. FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  95. FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
  96. FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-09-06] (Adobe Inc. -> Adobe Systems Inc.)
  97. FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  98. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  99.  
  100. Chrome:
  101. =======
  102. CHR DefaultProfile: Default
  103. CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2025-03-07]
  104. CHR HomePage: Default -> hxxp://www.google.com/
  105. CHR StartupUrls: Default -> "search.mpc.am"
  106. CHR NewTab: Default -> Not-active:"chrome-extension://jpfpebmajhhopeonhlcgidhclcccjcik/override.html"
  107. CHR Session Restore: Default -> is enabled.
  108. CHR Extension: (Easy Auto Refresh) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  109. CHR Extension: (Turn Off the Lights) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  110. CHR Extension: (Honey: Automatic Coupons & Rewards) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2025-03-07]hxxps://clients2.google.com/service/update2/crx
  111. CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  112. CHR Extension: (OpenVideo – ad-free streaming) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dadggmdmhmfkpglkfpkjdmlendbkehoh [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  113. CHR Extension: (Dark Theme v3) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\djlgdeklopcjagknhlchbdjekgpgenad [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  114. CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  115. CHR Extension: (Gyazo - Share new screenshots. Instantly.) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffdaeeijbbijklfcpahbghahojgfgebo [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  116. CHR Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  117. CHR Extension: (Vysor) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  118. CHR Extension: (Hola VPN - Your Website Unblocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  119. CHR Extension: (Pixlr Express) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmjpdlmjopaeginhldhiokeidchjid [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  120. CHR Extension: (Speed Dial 2 New tab) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2025-03-07]hxxp://clients2.google.com/service/update2/crx
  121. CHR Extension: (Stream Cleaner) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lehcglgkjkamolcflammloedahjocbbg [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  122. CHR Extension: (Fakespot Fake Amazon Reviews and eBay Sellers) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nakplnnackehceedgkgkokbgbmfghain [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  123. CHR Extension: (Chrome Web Store Payments) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  124. CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-03-06]
  125. CHR Extension: (RoPro - Enhance Your Roblox Experience) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\adbacgifemdbhdkfppmeilbgppmhaobf [2025-03-02]hxxps://clients2.google.com/service/update2/crx
  126. CHR Extension: (Roblox Wallpaper) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ankmhnbjbelldifhhpfajidadjcammkg [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  127. CHR Extension: (Roblox with extras! - RoBox) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfllfglbkmnbkcibbjoghimalbileaic [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  128. CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  129. CHR Extension: (Return YouTube Dislike) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gebbhagfogifgggkldgodflihgfeippi [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  130. CHR Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  131. CHR Extension: (Roblox+) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jfbnmfgkohlfclfnplnlenbalpppohkm [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  132. CHR Extension: (SponsorBlock for YouTube - Skip Sponsorships) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mnjggcdmjocbbbhaepdhchncahnbgone [2025-03-05]hxxps://clients2.google.com/service/update2/crx
  133. CHR Extension: (Chrome Web Store Payments) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  134. CHR Extension: (Enhancer for YouTube™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2025-02-28]hxxps://clients2.google.com/service/update2/crx
  135. CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2025-03-07]
  136. CHR HKU\S-1-5-21-3909807573-460586846-2225813105-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
  137. CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
  138.  
  139. ==================== Services (Whitelisted) ===================
  140.  
  141. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  142.  
  143. R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2024-12-18] (Adobe Inc. -> Adobe Inc.)
  144. S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3318400 2025-02-28] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
  145. R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13617384 2025-02-08] (Microsoft Corporation -> Microsoft Corporation)
  146. S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.020.0202.0001\FileSyncHelper.exe [3532816 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  147. R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray_service.exe [9903656 2024-04-18] (Logitech Inc -> Logitech, Inc.)
  148. R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
  149. R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
  150. S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.020.0202.0001\OneDriveUpdaterService.exe [3879952 2025-02-28] (Microsoft Corporation -> Microsoft Corporation)
  151. S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559304 2025-02-28] (Microsoft Windows Publisher -> Microsoft Corporation)
  152. R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
  153. R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
  154.  
  155. ===================== Drivers (Whitelisted) ===================
  156.  
  157. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  158.  
  159. R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [56416 2024-03-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
  160. R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-15] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
  161. R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0401611.inf_amd64_fdc4605155615ab7\B399690\amdkmdag.sys [100084648 2024-03-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
  162. S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [9055040 2025-02-28] (Activision Publishing Inc -> Activision Blizzard, Inc.)
  163. R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-03-06] (Microsoft Windows -> Microsoft Corporation)
  164. R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray.sys [98864 2024-04-18] (Logitech Inc -> Logitech, Inc.)
  165. R3 MTKBTFilterx64; C:\WINDOWS\System32\drivers\mtkbtfilterx.sys [345056 2022-06-26] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
  166. R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1587680 2022-06-26] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
  167. S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_feec7a9662e785f0\rtcx21x64.sys [539648 2024-03-28] (Microsoft Windows -> Realtek)
  168. S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
  169. R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-06] (Microsoft Windows -> Microsoft Corporation)
  170. R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-06] (Microsoft Windows -> Microsoft Corporation)
  171.  
  172. ==================== NetSvcs (Whitelisted) ===================
  173.  
  174. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  175.  
  176.  
  177. ==================== One month (created) (Whitelisted) =========
  178.  
  179. (If an entry is included in the fixlist, the file/folder will be moved.)
  180.  
  181. 2025-03-07 14:28 - 2025-03-07 14:29 - 000023360 _____ C:\Users\User\Desktop\FRST.txt
  182. 2025-03-07 14:27 - 2025-03-07 14:28 - 000000000 ____D C:\FRST
  183. 2025-03-07 14:27 - 2025-03-07 14:27 - 002404352 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
  184. 2025-03-07 14:13 - 2025-03-07 14:13 - 000000000 ____D C:\Users\User\Downloads\Autoruns
  185. 2025-03-07 14:12 - 2025-03-07 14:12 - 002932380 _____ C:\Users\User\Downloads\Autoruns.zip
  186. 2025-03-07 14:11 - 2025-03-07 14:15 - 000000000 ____D C:\ProgramData\HitmanPro
  187. 2025-03-07 14:11 - 2025-03-07 14:11 - 000000000 ____D C:\Program Files\HitmanPro
  188. 2025-03-07 14:10 - 2025-03-07 14:11 - 014290976 _____ (Sophos B.V.) C:\Users\User\Downloads\HitmanPro_x64.exe
  189. 2025-03-04 18:18 - 2025-03-04 18:18 - 005646913 _____ C:\Users\User\Downloads\cc 5.mp4
  190. 2025-03-02 15:26 - 2025-03-02 15:26 - 000003851 _____ C:\Users\User\Downloads\Susta1nz_cEkhpz.zip
  191. 2025-03-02 12:55 - 2025-03-02 12:55 - 000000000 ____D C:\Users\User\AppData\Local\NVIDIA
  192. 2025-03-01 13:06 - 2025-03-01 13:06 - 000000222 _____ C:\Users\User\Desktop\Quake Live.url
  193. 2025-03-01 13:06 - 2025-03-01 13:06 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
  194. 2025-03-01 12:53 - 2025-03-06 21:50 - 000002238 _____ C:\Users\User\Desktop\Discord.lnk
  195. 2025-03-01 12:52 - 2025-03-06 22:44 - 000000000 ____D C:\Users\User\AppData\Roaming\discord
  196. 2025-03-01 12:52 - 2025-03-06 21:50 - 000000000 ____D C:\Users\User\AppData\Local\Discord
  197. 2025-03-01 12:52 - 2025-03-02 13:52 - 000000000 ____D C:\Users\User\AppData\Local\Steam
  198. 2025-03-01 12:52 - 2025-03-01 12:53 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
  199. 2025-03-01 12:52 - 2025-03-01 12:53 - 000000000 ____D C:\Users\User\AppData\Local\SquirrelTemp
  200. 2025-03-01 04:48 - 2025-03-01 04:48 - 000000000 ____D C:\Users\User\AppData\Local\OneDrive
  201. 2025-03-01 04:40 - 2025-03-01 04:40 - 000000000 ____D C:\Program Files (x86)\MSI
  202. 2025-03-01 04:34 - 2025-03-01 04:35 - 000000000 ____D C:\WINDOWS\system32\MRT
  203. 2025-02-28 22:46 - 2025-03-03 19:39 - 000000000 ____D C:\Users\User\Desktop\Recordings
  204. 2025-02-28 22:45 - 2025-03-03 21:01 - 000000000 ____D C:\Users\User\AppData\Roaming\obs-studio
  205. 2025-02-28 22:45 - 2025-02-28 22:45 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk
  206. 2025-02-28 22:45 - 2025-02-28 22:45 - 000000000 ____D C:\ProgramData\obs-studio-hook
  207. 2025-02-28 22:45 - 2025-02-28 22:45 - 000000000 ____D C:\ProgramData\obs-studio
  208. 2025-02-28 22:45 - 2025-02-28 22:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
  209. 2025-02-28 22:45 - 2025-02-28 22:45 - 000000000 ____D C:\Program Files\obs-studio
  210. 2025-02-28 22:44 - 2025-02-28 22:44 - 000000000 ____D C:\Users\User\AppData\Local\Bytedance
  211. 2025-02-28 22:42 - 2025-02-28 22:42 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CapCut
  212. 2025-02-28 22:41 - 2025-02-28 22:41 - 000000000 ____D C:\Users\User\AppData\Roaming\NVIDIA
  213. 2025-02-28 22:41 - 2025-02-28 22:41 - 000000000 ____D C:\Users\User\AppData\Local\VEDetector
  214. 2025-02-28 22:40 - 2025-03-03 19:26 - 000000000 ____D C:\Users\User\AppData\Local\CapCut
  215. 2025-02-28 22:40 - 2025-02-28 22:42 - 000001356 _____ C:\Users\User\Desktop\CapCut.lnk
  216. 2025-02-28 22:40 - 2025-02-28 22:40 - 000000000 ____D C:\Users\User\AppData\Roaming\mssdk
  217. 2025-02-28 22:25 - 2025-02-28 22:25 - 000000000 ____D C:\Users\User\AppData\Roaming\com.adobe.dunamis
  218. 2025-02-28 22:25 - 2025-02-28 22:25 - 000000000 ____D C:\Users\User\AppData\LocalLow\Adobe
  219. 2025-02-28 22:25 - 2025-02-28 22:25 - 000000000 ____D C:\Users\User\AppData\Local\SolidDocuments
  220. 2025-02-28 22:25 - 2025-02-28 22:25 - 000000000 ____D C:\Users\User\AppData\Local\Adobe
  221. 2025-02-28 22:25 - 2025-02-28 22:25 - 000000000 ____D C:\Users\User\.ms-ad
  222. 2025-02-28 22:21 - 2025-02-28 23:16 - 000023251 _____ C:\Users\User\Downloads\Fisch Macro V12.ahk
  223. 2025-02-28 22:21 - 2025-02-28 22:21 - 000000000 ____D C:\WINDOWS\ShellNew
  224. 2025-02-28 22:21 - 2025-02-28 22:21 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\HTML Help
  225. 2025-02-28 22:21 - 2025-02-28 22:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
  226. 2025-02-28 22:21 - 2025-02-28 22:21 - 000000000 ____D C:\Program Files\AutoHotkey
  227. 2025-02-28 22:16 - 2025-02-28 22:16 - 000000000 ____D C:\ProgramData\Package Cache
  228. 2025-02-28 22:16 - 2025-02-28 22:16 - 000000000 ____D C:\Program Files\dotnet
  229. 2025-02-28 22:13 - 2025-03-02 11:53 - 000000000 ____D C:\Program Files\Microsoft OneDrive
  230. 2025-02-28 22:13 - 2025-02-28 22:13 - 000003546 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3909807573-460586846-2225813105-1001
  231. 2025-02-28 22:13 - 2025-02-28 22:13 - 000000000 ____D C:\WINDOWS\system32\%userprofile%
  232. 2025-02-28 19:09 - 2025-02-28 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty
  233. 2025-02-28 19:08 - 2025-03-06 16:41 - 000001390 _____ C:\Users\User\Desktop\Roblox Player.lnk
  234. 2025-02-28 19:07 - 2025-03-06 17:32 - 000000000 ____D C:\Users\User\AppData\Local\Roblox
  235. 2025-02-28 19:07 - 2025-03-06 16:41 - 000001218 _____ C:\Users\User\Desktop\Roblox Studio.lnk
  236. 2025-02-28 19:07 - 2025-03-06 16:41 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
  237. 2025-02-28 18:56 - 2025-03-04 18:18 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
  238. 2025-02-28 18:55 - 2025-02-28 18:55 - 000000000 ____D C:\Users\User\AppData\Local\PeerDistRepub
  239. 2025-02-28 18:50 - 2025-03-04 18:00 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
  240. 2025-02-28 18:50 - 2025-02-28 22:25 - 000000000 ____D C:\ProgramData\Adobe
  241. 2025-02-28 18:50 - 2025-02-28 19:09 - 000000000 ____D C:\Program Files (x86)\Call of Duty
  242. 2025-02-28 18:50 - 2025-02-28 18:53 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
  243. 2025-02-28 18:50 - 2025-02-28 18:53 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
  244. 2025-02-28 18:50 - 2025-02-28 18:50 - 000000000 ____D C:\Program Files\Common Files\Adobe
  245. 2025-02-28 18:50 - 2025-02-28 18:50 - 000000000 ____D C:\Program Files\Adobe
  246. 2025-02-28 18:49 - 2025-03-02 12:26 - 000000000 ____D C:\Users\User\AppData\Local\Battle.net
  247. 2025-02-28 18:49 - 2025-02-28 18:49 - 000000936 _____ C:\Users\Public\Desktop\Battle.net.lnk
  248. 2025-02-28 18:49 - 2025-02-28 18:49 - 000000000 ____D C:\Users\User\AppData\Roaming\Battle.net
  249. 2025-02-28 18:49 - 2025-02-28 18:49 - 000000000 ____D C:\Users\User\AppData\Local\CEF
  250. 2025-02-28 18:49 - 2025-02-28 18:49 - 000000000 ____D C:\Users\User\AppData\Local\Blizzard Entertainment
  251. 2025-02-28 18:49 - 2025-02-28 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
  252. 2025-02-28 18:49 - 2025-02-28 18:49 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
  253. 2025-02-28 18:49 - 2025-02-28 18:49 - 000000000 ____D C:\Program Files (x86)\Battle.net
  254. 2025-02-28 18:48 - 2025-03-06 22:43 - 000000000 ____D C:\Program Files (x86)\Steam
  255. 2025-02-28 18:48 - 2025-02-28 18:50 - 000000000 ____D C:\ProgramData\Battle.net_components
  256. 2025-02-28 18:48 - 2025-02-28 18:48 - 000001032 _____ C:\Users\Public\Desktop\Steam.lnk
  257. 2025-02-28 18:48 - 2025-02-28 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
  258. 2025-02-28 18:48 - 2025-02-28 18:48 - 000000000 ____D C:\ProgramData\Battle.net
  259. 2025-02-28 18:46 - 2025-02-28 18:50 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo
  260. 2025-02-28 18:44 - 2025-02-28 18:48 - 000000000 ____D C:\Users\User\Desktop\Wedding Stuff
  261. 2025-02-28 18:43 - 2025-03-01 00:13 - 000000000 ____D C:\Users\User\AppData\Local\PlaceholderTileLogoFolder
  262. 2025-02-28 18:43 - 2025-02-28 18:43 - 000000000 ____D C:\Users\User\AppData\Local\Comms
  263. 2025-02-28 18:39 - 2025-02-28 18:39 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Word
  264. 2025-02-28 18:39 - 2025-02-28 18:39 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Office
  265. 2025-02-28 18:39 - 2025-02-28 18:39 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\AddIns
  266. 2025-02-28 18:30 - 2025-03-07 14:29 - 000000000 ____D C:\Users\User\AppData\Local\OpenShell
  267. 2025-02-28 18:30 - 2025-02-28 22:13 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
  268. 2025-02-28 18:30 - 2025-02-28 22:13 - 000002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  269. 2025-02-28 18:30 - 2025-02-28 22:13 - 000000000 ___RD C:\Users\Default\OneDrive
  270. 2025-02-28 18:30 - 2025-02-28 18:30 - 000003604 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3909807573-460586846-2225813105-1000
  271. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
  272. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
  273. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
  274. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes (new).lnk
  275. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
  276. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002413 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
  277. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002407 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook (classic).lnk
  278. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002401 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
  279. 2025-02-28 18:30 - 2025-02-28 18:30 - 000002393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
  280. 2025-02-28 18:30 - 2025-02-28 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
  281. 2025-02-28 18:30 - 2025-02-28 18:30 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
  282. 2025-02-28 18:30 - 2025-02-28 18:29 - 000002068 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\startscreen.lnk
  283. 2025-02-28 18:29 - 2025-02-28 18:30 - 000000000 ____D C:\Program Files\Microsoft Office
  284. 2025-02-28 18:29 - 2025-02-28 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
  285. 2025-02-28 18:29 - 2025-02-28 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open-Shell
  286. 2025-02-28 18:29 - 2025-02-28 18:29 - 000000000 ____D C:\Program Files\Open-Shell
  287. 2025-02-28 18:29 - 2025-02-28 18:29 - 000000000 ____D C:\Program Files\Microsoft Office 15
  288. 2025-02-28 18:28 - 2025-02-28 18:28 - 000000000 ____D C:\Program Files\VideoLAN
  289. 2025-02-28 18:27 - 2025-02-28 18:27 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
  290. 2025-02-28 18:25 - 2025-03-04 21:45 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  291. 2025-02-28 18:25 - 2025-03-04 21:45 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  292. 2025-02-28 18:25 - 2025-02-28 18:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
  293. 2025-02-28 18:25 - 2025-02-28 18:25 - 000000000 ____D C:\Users\User\AppData\Local\Google
  294. 2025-02-28 18:25 - 2025-02-28 18:25 - 000000000 ____D C:\Program Files\Google
  295. 2025-02-28 18:25 - 2025-02-28 18:25 - 000000000 ____D C:\Program Files (x86)\Google
  296. 2025-02-28 18:24 - 2025-02-28 22:13 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3909807573-460586846-2225813105-1001
  297. 2025-02-28 18:24 - 2025-02-28 18:24 - 000000000 ___RD C:\Users\User\OneDrive
  298. 2025-02-28 18:23 - 2025-02-28 18:23 - 000000000 ____D C:\Users\User\AppData\Local\Publishers
  299. 2025-02-28 18:23 - 2025-02-28 18:23 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
  300. 2025-02-28 18:22 - 2025-03-06 21:50 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
  301. 2025-02-28 18:22 - 2025-03-02 15:48 - 000000000 ____D C:\Users\User\AppData\Local\Packages
  302. 2025-02-28 18:22 - 2025-03-02 12:55 - 000000000 ____D C:\Users\User\AppData\Local\AMD
  303. 2025-02-28 18:22 - 2025-02-28 22:25 - 000000000 ____D C:\Users\User\AppData\Roaming\Adobe
  304. 2025-02-28 18:22 - 2025-02-28 18:39 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Spelling
  305. 2025-02-28 18:22 - 2025-02-28 18:31 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows
  306. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000020 ___SH C:\Users\User\ntuser.ini
  307. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 __RHD C:\Users\Public\AccountPictures
  308. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ___SD C:\Users\User\AppData\Roaming\Microsoft\SystemCertificates
  309. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ___SD C:\Users\User\AppData\Roaming\Microsoft\Protect
  310. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ___SD C:\Users\User\AppData\Roaming\Microsoft\Crypto
  311. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ___SD C:\Users\User\AppData\Roaming\Microsoft\Credentials
  312. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Vault
  313. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Network
  314. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ____D C:\Users\User\AppData\LocalLow\NVIDIA
  315. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ____D C:\Users\User\AppData\Local\VirtualStore
  316. 2025-02-28 18:22 - 2025-02-28 18:22 - 000000000 ____D C:\Users\User\AppData\Local\ConnectedDevicesPlatform
  317. 2025-02-28 18:09 - 2025-03-06 18:41 - 000000000 ____D C:\WINDOWS\CbsTemp
  318. 2025-02-28 18:08 - 2025-02-28 18:08 - 000000998 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
  319. 2025-02-28 18:07 - 2025-02-28 18:07 - 000027617 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
  320. 2025-02-28 18:07 - 2025-02-28 18:07 - 000027617 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
  321. 2025-02-28 18:03 - 2025-02-28 18:03 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
  322. 2025-02-28 18:03 - 2025-02-28 18:03 - 000000000 ____D C:\WINDOWS\system32\NV
  323. 2025-02-28 18:02 - 2025-02-28 18:02 - 000000000 ____D C:\WINDOWS\system32\AMD
  324. 2025-02-28 18:02 - 2025-02-28 18:02 - 000000000 ____D C:\Program Files\AMD
  325. 2025-02-28 18:02 - 2024-03-26 06:16 - 000608272 _____ C:\WINDOWS\system32\GameManager64.dll
  326. 2025-02-28 18:02 - 2024-03-26 06:16 - 000503832 _____ C:\WINDOWS\system32\EEURestart.exe
  327. 2025-02-28 18:02 - 2024-03-26 06:16 - 000462976 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
  328. 2025-02-28 18:02 - 2024-03-26 06:16 - 000196112 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
  329. 2025-02-28 18:02 - 2024-03-26 06:16 - 000184336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
  330. 2025-02-28 18:02 - 2024-03-26 06:16 - 000148496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
  331. 2025-02-28 18:02 - 2024-03-26 06:15 - 002129424 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
  332. 2025-02-28 18:02 - 2024-03-26 06:15 - 001639440 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
  333. 2025-02-28 18:02 - 2024-03-26 06:15 - 001639440 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
  334. 2025-02-28 18:02 - 2024-03-26 06:15 - 000998928 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
  335. 2025-02-28 18:02 - 2024-03-26 06:15 - 000537104 _____ C:\WINDOWS\system32\atieah64.exe
  336. 2025-02-28 18:02 - 2024-03-26 06:15 - 000473104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
  337. 2025-02-28 18:02 - 2024-03-26 06:15 - 000405920 _____ C:\WINDOWS\SysWOW64\atieah32.exe
  338. 2025-02-28 18:02 - 2024-03-26 06:15 - 000266664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
  339. 2025-02-28 18:02 - 2024-03-26 06:15 - 000228880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
  340. 2025-02-28 18:02 - 2024-03-26 06:15 - 000142248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
  341. 2025-02-28 18:02 - 2024-03-26 06:15 - 000138664 _____ C:\WINDOWS\system32\amdxc64.dll
  342. 2025-02-28 18:02 - 2024-03-26 06:15 - 000118176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
  343. 2025-02-28 18:02 - 2024-03-26 06:15 - 000114600 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
  344. 2025-02-28 18:02 - 2024-03-26 06:15 - 000074768 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
  345. 2025-02-28 18:02 - 2024-03-26 06:14 - 011526160 _____ C:\WINDOWS\system32\amdsmi.exe
  346. 2025-02-28 18:02 - 2024-03-26 06:14 - 002255272 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
  347. 2025-02-28 18:02 - 2024-03-26 06:14 - 001338384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
  348. 2025-02-28 18:02 - 2024-03-26 06:14 - 001254312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
  349. 2025-02-28 18:02 - 2024-03-26 06:14 - 001059232 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
  350. 2025-02-28 18:02 - 2024-03-26 06:14 - 001055248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
  351. 2025-02-28 18:02 - 2024-03-26 06:14 - 000569872 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
  352. 2025-02-28 18:02 - 2024-03-26 06:13 - 007559296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
  353. 2025-02-28 18:02 - 2024-03-26 06:13 - 007339136 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
  354. 2025-02-28 18:02 - 2024-03-26 06:13 - 000801304 _____ C:\WINDOWS\system32\Rapidfire64.dll
  355. 2025-02-28 18:02 - 2024-03-26 06:13 - 000678416 _____ C:\WINDOWS\SysWOW64\Rapidfire.dll
  356. 2025-02-28 18:02 - 2024-03-26 06:13 - 000621320 _____ C:\WINDOWS\system32\amdfendrsr.etz
  357. 2025-02-28 18:02 - 2024-03-26 06:13 - 000543144 _____ C:\WINDOWS\system32\dgtrayicon.exe
  358. 2025-02-28 18:02 - 2024-03-26 06:13 - 000471160 _____ C:\WINDOWS\system32\amdlogum.exe
  359. 2025-02-28 18:02 - 2024-03-26 06:13 - 000433680 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
  360. 2025-02-28 18:02 - 2024-03-26 06:13 - 000374880 _____ C:\WINDOWS\system32\amdfendr.stz
  361. 2025-02-28 18:02 - 2024-03-26 06:13 - 000374880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendr.sys
  362. 2025-02-28 18:02 - 2024-03-26 06:13 - 000056416 _____ C:\WINDOWS\system32\amdfendrmgr.stz
  363. 2025-02-28 18:02 - 2024-03-26 06:13 - 000056416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendrmgr.sys
  364. 2025-02-28 18:02 - 2024-03-26 06:13 - 000051320 _____ C:\WINDOWS\system32\RapidFireServer64.dll
  365. 2025-02-28 18:02 - 2024-03-26 06:13 - 000048144 _____ C:\WINDOWS\SysWOW64\RapidFireServer.dll
  366. 2025-02-28 18:02 - 2024-03-26 06:12 - 105442424 _____ C:\WINDOWS\system32\amd_comgr_2.dll
  367. 2025-02-28 18:02 - 2024-03-26 06:12 - 105432704 _____ C:\WINDOWS\system32\amd_comgr.dll
  368. 2025-02-28 18:02 - 2024-03-26 06:12 - 088636032 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
  369. 2025-02-28 18:02 - 2024-03-26 06:12 - 000360576 _____ C:\WINDOWS\system32\clinfo.exe
  370. 2025-02-28 18:02 - 2024-03-26 06:12 - 000176656 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
  371. 2025-02-28 18:02 - 2024-03-26 06:12 - 000145528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
  372. 2025-02-28 18:02 - 2024-03-26 06:11 - 021762168 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
  373. 2025-02-28 18:02 - 2024-03-26 06:11 - 018723344 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64_6.dll
  374. 2025-02-28 18:02 - 2024-03-26 06:11 - 000572032 _____ C:\WINDOWS\system32\amdmiracast.dll
  375. 2025-02-28 18:02 - 2024-03-26 06:11 - 000177672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
  376. 2025-02-28 18:02 - 2024-03-26 06:11 - 000167240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
  377. 2025-02-28 18:02 - 2024-03-26 06:11 - 000167136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
  378. 2025-02-28 18:02 - 2024-03-26 06:11 - 000158856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
  379. 2025-02-28 18:02 - 2024-03-26 06:11 - 000152224 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
  380. 2025-02-28 18:02 - 2024-03-26 06:11 - 000138312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
  381. 2025-02-28 18:02 - 2024-03-26 06:11 - 000138216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
  382. 2025-02-28 18:02 - 2024-03-26 06:11 - 000132384 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
  383. 2025-02-28 18:02 - 2024-03-26 05:33 - 105651024 _____ C:\WINDOWS\system32\amdxc64.so
  384. 2025-02-28 18:02 - 2024-03-26 05:33 - 000154384 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin
  385. 2025-02-28 18:02 - 2024-03-26 05:33 - 000138832 _____ C:\WINDOWS\system32\samu_krnl_isv_ci.sbin
  386. 2025-02-28 18:02 - 2024-03-26 05:33 - 000128048 _____ C:\WINDOWS\system32\kapp_ci.sbin
  387. 2025-02-28 18:02 - 2024-03-26 05:33 - 000121168 _____ C:\WINDOWS\system32\kapp_si.sbin
  388. 2025-02-28 18:02 - 2024-03-26 05:33 - 000012214 _____ C:\WINDOWS\system32\amdfendr.ctz
  389. 2025-02-28 18:02 - 2024-03-26 05:33 - 000002883 _____ C:\WINDOWS\system32\amdfendr.itz
  390. 2025-02-28 18:01 - 2025-03-06 22:44 - 000000000 ____D C:\ProgramData\NVIDIA
  391. 2025-02-28 18:01 - 2025-03-01 07:10 - 000791266 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  392. 2025-02-28 18:01 - 2025-02-28 22:58 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
  393. 2025-02-28 18:01 - 2025-02-28 18:01 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
  394. 2025-02-28 18:01 - 2025-02-28 18:01 - 000000000 ____D C:\Program Files\NVIDIA Corporation
  395. 2025-02-28 18:01 - 2024-09-16 01:28 - 025312776 _____ C:\WINDOWS\system32\nvidia-pcc.exe
  396. 2025-02-28 18:01 - 2024-09-16 01:28 - 002040680 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
  397. 2025-02-28 18:01 - 2024-09-16 01:28 - 002040680 _____ C:\WINDOWS\system32\vulkaninfo.exe
  398. 2025-02-28 18:01 - 2024-09-16 01:28 - 001583976 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
  399. 2025-02-28 18:01 - 2024-09-16 01:28 - 001583976 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
  400. 2025-02-28 18:01 - 2024-09-16 01:28 - 001446760 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
  401. 2025-02-28 18:01 - 2024-09-16 01:28 - 001446760 _____ C:\WINDOWS\system32\vulkan-1.dll
  402. 2025-02-28 18:01 - 2024-09-16 01:28 - 001296744 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
  403. 2025-02-28 18:01 - 2024-09-16 01:28 - 001296744 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
  404. 2025-02-28 18:01 - 2024-09-16 01:28 - 000477704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
  405. 2025-02-28 18:01 - 2024-09-16 01:28 - 000374816 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
  406. 2025-02-28 18:01 - 2024-09-16 01:25 - 001547400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
  407. 2025-02-28 18:01 - 2024-09-16 01:25 - 001202808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
  408. 2025-02-28 18:01 - 2024-09-16 01:25 - 001078928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
  409. 2025-02-28 18:01 - 2024-09-16 01:25 - 000856696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
  410. 2025-02-28 18:01 - 2024-09-16 01:25 - 000669840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
  411. 2025-02-28 18:01 - 2024-09-16 01:25 - 000505992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
  412. 2025-02-28 18:01 - 2024-09-16 01:24 - 016200352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
  413. 2025-02-28 18:01 - 2024-09-16 01:24 - 014270096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
  414. 2025-02-28 18:01 - 2024-09-16 01:24 - 006914168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
  415. 2025-02-28 18:01 - 2024-09-16 01:24 - 005348872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
  416. 2025-02-28 18:01 - 2024-09-16 01:24 - 003788432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
  417. 2025-02-28 18:01 - 2024-09-16 01:24 - 002178696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
  418. 2025-02-28 18:01 - 2024-09-16 01:24 - 001629296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
  419. 2025-02-28 18:01 - 2024-09-16 01:24 - 001034248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
  420. 2025-02-28 18:01 - 2024-09-16 01:24 - 000796792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
  421. 2025-02-28 18:01 - 2024-09-16 01:24 - 000461984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
  422. 2025-02-28 18:01 - 2024-09-16 01:24 - 000131656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
  423. 2025-02-28 18:01 - 2024-09-16 01:23 - 005910024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
  424. 2025-02-28 18:01 - 2024-09-16 01:23 - 000853136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
  425. 2025-02-28 18:01 - 2024-09-16 01:22 - 007133144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
  426. 2025-02-28 18:01 - 2024-09-16 01:22 - 006212848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
  427. 2025-02-28 18:01 - 2024-09-16 00:53 - 000127247 _____ C:\WINDOWS\system32\nvinfo.pb
  428. 2025-02-28 17:54 - 2025-02-28 22:14 - 000000000 ____D C:\ProgramData\Packages
  429. 2025-02-28 17:54 - 2025-02-28 17:54 - 000000000 _SHDL C:\Documents and Settings
  430. 2025-02-28 17:54 - 2025-02-28 17:54 - 000000000 ____D C:\WINDOWS\CSC
  431. 2025-02-28 17:53 - 2025-03-01 07:03 - 000001460 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
  432. 2025-02-28 17:53 - 2025-02-28 17:54 - 000003612 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{007883D1-A823-4B29-9180-96A65D8132D7}
  433. 2025-02-28 17:53 - 2025-02-28 17:54 - 000003488 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{948626C0-11EF-4EDE-B758-43F8478A76F4}
  434. 2025-02-28 17:53 - 2025-02-28 17:54 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
  435. 2025-02-28 17:53 - 2025-02-28 17:53 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
  436. 2025-02-28 17:52 - 2025-03-06 16:56 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
  437. 2025-02-28 17:52 - 2025-03-01 07:03 - 000476112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  438. 2025-02-28 17:52 - 2025-03-01 07:03 - 000012288 ___SH C:\DumpStack.log.tmp
  439. 2025-02-28 17:52 - 2025-03-01 07:03 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
  440. 2025-02-28 17:52 - 2025-03-01 07:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  441. 2025-02-28 17:52 - 2025-02-28 18:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
  442. 2025-02-28 17:52 - 2025-02-28 17:54 - 000000000 ___DC C:\WINDOWS\Panther
  443. 2025-02-28 17:52 - 2025-02-28 17:52 - 000000000 ____D C:\WINDOWS\system32\config\BFS
  444. 2025-02-28 17:52 - 2025-02-28 17:52 - 000000000 ____D C:\WINDOWS\ServiceProfiles
  445. 2025-02-28 17:51 - 2025-02-28 17:51 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
  446.  
  447. ==================== One month (modified) ==================
  448.  
  449. (If an entry is included in the fixlist, the file/folder will be moved.)
  450.  
  451. 2025-03-07 14:29 - 2024-04-01 07:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  452. 2025-03-07 14:14 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\SystemTemp
  453. 2025-03-06 21:50 - 2024-04-01 07:26 - 000000000 ___HD C:\Program Files\WindowsApps
  454. 2025-03-06 21:50 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\AppReadiness
  455. 2025-03-01 13:08 - 2024-04-01 07:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
  456. 2025-03-01 07:10 - 2024-04-01 07:24 - 000000000 ____D C:\WINDOWS\INF
  457. 2025-03-01 07:03 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\ServiceState
  458. 2025-03-01 04:53 - 2024-04-01 07:21 - 000262144 _____ C:\WINDOWS\system32\config\BBI
  459. 2025-03-01 04:44 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
  460. 2025-02-28 23:02 - 2024-04-01 07:26 - 000000000 ___RD C:\Program Files\Windows Defender
  461. 2025-02-28 22:37 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\appcompat
  462. 2025-02-28 22:13 - 2024-04-01 07:21 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
  463. 2025-02-28 18:37 - 2024-04-01 07:26 - 000000000 ____D C:\ProgramData\USOPrivate
  464. 2025-02-28 18:14 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\spool
  465. 2025-02-28 18:11 - 2024-04-01 16:16 - 000000000 ___SD C:\WINDOWS\system32\AppV
  466. 2025-02-28 18:11 - 2024-04-01 16:16 - 000000000 ____D C:\WINDOWS\InboxApps
  467. 2025-02-28 18:11 - 2024-04-01 16:16 - 000000000 ____D C:\Program Files\Windows Photo Viewer
  468. 2025-02-28 18:11 - 2024-04-01 16:16 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
  469. 2025-02-28 18:11 - 2024-04-01 16:16 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
  470. 2025-02-28 18:11 - 2024-04-01 16:15 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
  471. 2025-02-28 18:11 - 2024-04-01 16:15 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
  472. 2025-02-28 18:11 - 2024-04-01 16:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
  473. 2025-02-28 18:11 - 2024-04-01 16:12 - 000000000 ____D C:\WINDOWS\en-GB
  474. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
  475. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
  476. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ___SD C:\WINDOWS\system32\F12
  477. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
  478. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\UUS
  479. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
  480. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
  481. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
  482. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
  483. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
  484. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\SystemResources
  485. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\SystemApps
  486. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
  487. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
  488. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\Sysprep
  489. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
  490. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
  491. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\setup
  492. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
  493. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
  494. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\oobe
  495. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
  496. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
  497. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\Dism
  498. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
  499. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
  500. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
  501. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\ShellComponents
  502. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\Provisioning
  503. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
  504. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\IME
  505. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\BrowserCore
  506. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\bcastdvr
  507. 2025-02-28 18:11 - 2024-04-01 07:26 - 000000000 ____D C:\Program Files\Common Files\System
  508. 2025-02-28 18:11 - 2024-04-01 07:21 - 000000000 ____D C:\WINDOWS\servicing
  509. 2025-02-28 18:10 - 2024-04-01 07:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
  510. 2025-02-28 18:10 - 2024-04-01 07:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
  511. 2025-02-28 17:56 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker
  512. 2025-02-28 17:54 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
  513. 2025-02-28 17:52 - 2024-04-01 07:26 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
  514. 2025-02-28 17:52 - 2024-04-01 07:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
  515.  
  516. ==================== SigCheck ============================
  517.  
  518. (There is no automatic fix for files that do not pass verification.)
  519.  
  520. ==================== End of FRST.txt ========================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!