Solved Help posting my logs

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-04-2022
Ran by cajun (administrator) on DESKTOP-OJ8GSJA (Micro-Star International Co., Ltd MS-7C02) (01-05-2022 07:10:08)
Running from C:\Users\cajun\Downloads
Loaded Profiles: cajun
Platform: Microsoft Windows 10 Home Version 21H2 19044.1645 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
(C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngineProcess.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(DriverStore\FileRepository\u0378260.inf_amd64_40abed5fb3813c91\B378199\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0378260.inf_amd64_40abed5fb3813c91\B378199\atieclxx.exe
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <22>
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0378260.inf_amd64_40abed5fb3813c91\B378199\atiesrxx.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_eb52bf0d4dccfcf3\RtkAudUService64.exe <2>
(svchost.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.2101.28.0_x64__8wekyb3d8bbwe\Time.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControlEngine.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_eb52bf0d4dccfcf3\RtkAudUService64.exe [3479488 2022-04-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-3241116569-3882218771-2667572644-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-14] (Valve Corp. -> Valve Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07E05F1C-D2B5-444D-BCD2-3301E71BB804} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56368 2022-03-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {256FCBC9-C760-4972-B1A0-538145BAE841} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1147440 2022-03-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {5F3571BC-299D-489C-87C1-3E9E6CCE8D82} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6121CD2F-A69D-4506-9706-FE29BA8EDA0B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {71FB9777-4B61-4DC6-BDF6-B72DDCCA2417} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {7F5F8AA0-8081-4303-B8D8-706D7EC72984} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {87AF7E41-85CB-4604-AA87-3311A79E7C09} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1147440 2022-03-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {97C7F2A6-7E59-47CB-A493-81D65A98CEC1} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe [2011440 2022-03-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {A806E509-B830-43E6-860F-68501A140355} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1147440 2022-03-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {B69F7FCA-4A5F-4C85-AF19-F0D1F7656DB0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56368 2022-03-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {C239B3B4-6DAB-4AC1-BCB2-0C945A04B14A} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [329216 2022-03-31] (Advanced Micro Devices, Inc.) [File not signed]
Task: {C7C3EACB-C3A5-484C-AB0B-46498849CF0F} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2022-03-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CF996A33-9C89-4787-9C5B-8B13CCFF348B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {E07DA18E-C9F7-42B1-8433-CB2A18A9C098} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [660016 2022-03-31] (Advanced Micro Devices Inc. -> AMD)
Task: {F3B7ED8F-7877-4BD1-89FF-67EA96F0505E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.2.65
Tcpip\..\Interfaces\{b4271c83-15ef-45e4-8a73-ccb575d5781f}: [DhcpNameServer] 192.168.0.1 205.171.2.65

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\cajun\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-24]
Edge HomePage: Default -> hxxp://www.google.com/
Edge StartupUrls: Default -> "hxxp://www.google.com/"

FireFox:
========
FF DefaultProfile: yt0fsl7r.default
FF ProfilePath: C:\Users\cajun\AppData\Roaming\Mozilla\Firefox\Profiles\yt0fsl7r.default [2022-04-04]
FF ProfilePath: C:\Users\cajun\AppData\Roaming\Mozilla\Firefox\Profiles\8wn3s1r9.default-release [2022-05-01]
FF Notifications: Mozilla\Firefox\Profiles\8wn3s1r9.default-release -> hxxps://www.textnow.com

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [506416 2022-03-31] (Advanced Micro Devices Inc. -> AMD)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-04-13] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 LightKeeperService; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8347832 2022-04-29] (Malwarebytes Inc -> Malwarebytes)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [150840 2021-06-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe [39760 2021-05-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [33728 2021-12-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [27256 2022-01-27] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [43336 2022-03-08] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_edd3335a4253bf6d\amdsafd.sys [109520 2021-11-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0378260.inf_amd64_40abed5fb3813c91\B378199\amdkmdag.sys [90154048 2022-04-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 I2cHkBurn; C:\Windows\system32\drivers\I2cHkBurn.sys [38544 2018-12-13] (Feature Integration Technology Inc -> FINTEK Corp.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyHidFilter; C:\Windows\system32\drivers\LGJoyHidFilter.sys [57368 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-05-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-04-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239560 2022-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\MSI Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [29576 2021-11-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [95632 2022-04-19] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49600 2022-04-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [443664 2022-04-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-17] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-05-01 07:10 - 2022-05-01 07:10 - 000018168 _____ C:\Users\cajun\Downloads\FRST.txt
2022-05-01 07:09 - 2022-05-01 07:10 - 000000000 ____D C:\FRST
2022-05-01 07:08 - 2022-05-01 07:08 - 002366976 _____ (Farbar) C:\Users\cajun\Downloads\FRST64.exe
2022-05-01 06:41 - 2022-05-01 06:41 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2022-04-29 02:02 - 2022-04-29 02:02 - 002443448 _____ (Malwarebytes) C:\Users\cajun\Downloads\MBSetup-130589.130589-consumer.exe
2022-04-26 16:17 - 2022-04-26 16:17 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-04-26 16:17 - 2022-04-26 16:17 - 000000000 ____D C:\Program Files\PCHealthCheck
2022-04-21 16:42 - 2022-04-21 16:42 - 002650810 _____ C:\Users\cajun\Downloads\ProcessExplorer(1).zip
2022-04-19 23:34 - 2022-04-19 23:34 - 000036208 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP152.SYS
2022-04-19 23:33 - 2022-04-19 23:33 - 000000000 ____D C:\Users\cajun\Downloads\ProcessExplorer
2022-04-19 23:32 - 2022-04-19 23:32 - 003862520 _____ C:\Users\cajun\Downloads\Autoruns.zip
2022-04-19 23:32 - 2022-04-19 23:32 - 002650810 _____ C:\Users\cajun\Downloads\ProcessExplorer.zip
2022-04-19 23:23 - 2022-04-19 23:23 - 000001288 _____ C:\Users\cajun\Downloads\MalwareAnalysis Procmon.PMF
2022-04-19 21:23 - 2022-04-19 21:23 - 000000000 ____D C:\Users\cajun\AppData\LocalLow\AMD
2022-04-19 14:00 - 2022-04-19 23:16 - 000095632 ____H (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCMON24.SYS
2022-04-19 14:00 - 2022-04-19 14:00 - 000000000 ____D C:\Users\cajun\Downloads\ProcessMonitor
2022-04-19 13:59 - 2022-04-19 13:59 - 003419233 _____ C:\Users\cajun\Downloads\ProcessMonitor.zip
2022-04-19 11:18 - 2022-04-29 16:31 - 000000000 ____D C:\Users\cajun\AppData\Local\D3DSCache
2022-04-19 11:18 - 2022-04-19 11:18 - 000002622 _____ C:\Windows\system32\Tasks\AMDRyzenMasterSDKTask
2022-04-19 11:18 - 2022-04-19 11:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2022-04-19 11:18 - 2022-04-19 11:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2022-04-19 11:17 - 2022-04-19 11:20 - 000000000 ____D C:\ProgramData\AMD
2022-04-19 11:16 - 2022-04-19 11:16 - 000000000 ____D C:\AMD
2022-04-19 11:12 - 2022-04-19 11:12 - 000001930 _____ C:\Users\cajun\Desktop\amd-software-adrenalin-edition-22.4.1-win10-win11-april5 - Shortcut.lnk
2022-04-19 10:57 - 2022-04-19 11:06 - 565060088 _____ (AMD Inc.) C:\Users\cajun\Downloads\amd-software-adrenalin-edition-22.4.1-win10-win11-april5.exe
2022-04-17 22:39 - 2022-04-17 22:39 - 000000000 ___HD C:\Program Files (x86)\Temp
2022-04-17 22:39 - 2022-04-11 23:33 - 006189504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2022-04-17 22:39 - 2022-04-11 23:17 - 050822203 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2022-04-17 22:39 - 2021-05-17 09:50 - 002875968 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2022-04-17 22:37 - 2022-04-17 22:39 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-04-17 22:37 - 2022-04-17 22:39 - 000000000 ____D C:\Program Files (x86)\Realtek
2022-04-17 22:37 - 2021-10-19 21:45 - 001156664 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2022-04-17 22:35 - 2022-04-17 22:35 - 000003176 _____ C:\Windows\system32\Tasks\MSI Task Host - LEDKeeper2_Host
2022-04-17 22:35 - 2022-04-17 22:35 - 000000000 ____D C:\Program Files\ENE
2022-04-17 22:35 - 2022-04-17 22:35 - 000000000 ____D C:\Program Files (x86)\ENE
2022-04-17 22:35 - 2020-05-12 01:28 - 000020992 _____ C:\Windows\system32\Drivers\ene.sys
2022-04-17 22:35 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2022-04-17 22:32 - 2018-12-13 16:02 - 000137360 _____ (TODO: <公司名稱>) C:\Windows\system32\FintekIcon1.dll
2022-04-17 22:32 - 2018-12-13 16:02 - 000038544 _____ (FINTEK Corp.) C:\Windows\system32\Drivers\I2cHkBurn.sys
2022-04-17 22:30 - 2022-04-17 22:30 - 000000000 ____D C:\Users\cajun\AppData\Local\Downloaded Installations
2022-04-17 22:30 - 2021-04-28 13:22 - 000015696 _____ (Windows (R) Win 7 DDK provider) C:\Windows\acpimof.dll
2022-04-17 05:11 - 2022-04-17 05:12 - 000000000 ____D C:\MSI
2022-04-17 05:11 - 2022-04-17 05:11 - 000000000 ____D C:\Program Files (x86)\MSI
2022-04-17 05:10 - 2022-04-17 22:31 - 000000000 ____D C:\ProgramData\MSI
2022-04-16 16:33 - 2022-04-16 16:33 - 000000000 ___HD C:\$WinREAgent
2022-04-16 10:36 - 2022-04-16 10:36 - 000000000 ____D C:\Users\cajun\AppData\Local\ElevatedDiagnostics
2022-04-14 15:38 - 2022-04-14 15:38 - 000000016 _____ C:\ProgramData\mntemp
2022-04-13 20:17 - 2022-04-13 20:17 - 000000223 _____ C:\Users\cajun\Desktop\Lost Ark.url
2022-04-13 08:41 - 2022-04-13 08:41 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-04-11 12:13 - 2022-04-11 12:13 - 1166140438 _____ C:\Windows\MEMORY.DMP
2022-04-11 12:13 - 2022-04-11 12:13 - 002084948 _____ C:\Windows\Minidump\041122-5937-01.dmp
2022-04-11 12:13 - 2022-04-11 12:13 - 000000000 ____D C:\Windows\Minidump
2022-04-09 15:58 - 2022-04-09 15:58 - 000000000 ____D C:\ProgramData\LogiShrd
2022-04-08 16:46 - 2022-04-08 16:46 - 000055738 _____ C:\Users\cajun\Downloads\[Resolved] The Application-Specific Permission Settings Error.html
2022-04-08 16:46 - 2022-04-08 16:46 - 000000000 ____D C:\Users\cajun\Downloads\[Resolved] The Application-Specific Permission Settings Error_files
2022-04-07 13:28 - 2022-04-07 13:28 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-04-07 13:28 - 2022-04-07 13:28 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-04-07 13:27 - 2022-04-07 13:27 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-04-05 13:04 - 2022-04-05 13:04 - 000000000 ____D C:\Users\cajun\Tracing
2022-04-05 13:02 - 2022-04-05 13:03 - 087077376 _____ (Skype Technologies S.A.) C:\Users\cajun\Downloads\Skype-8.82.0.403.exe
2022-04-04 20:56 - 2022-04-14 15:38 - 000000000 ____D C:\Users\cajun\AppData\Local\Persona
2022-04-04 20:55 - 2022-04-17 06:21 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2022-04-04 20:55 - 2022-04-14 15:37 - 000000000 ____D C:\Users\cajun\AppData\Roaming\EasyAntiCheat
2022-04-04 20:55 - 2022-04-04 20:55 - 000000000 ____D C:\Users\cajun\AppData\Roaming\AGS
2022-04-04 20:55 - 2022-04-04 20:55 - 000000000 ____D C:\Users\cajun\AppData\Local\AGS
2022-04-04 17:43 - 2022-04-19 10:24 - 000000000 ____D C:\Users\cajun\AppData\Local\CrashDumps
2022-04-04 14:52 - 2022-04-29 02:05 - 000239560 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-04-04 14:52 - 2022-04-29 02:05 - 000103888 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2022-04-04 14:52 - 2022-04-29 02:05 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-04-04 14:52 - 2022-04-29 02:05 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-04-04 14:52 - 2022-04-29 02:04 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2022-04-04 14:48 - 2022-04-04 14:48 - 002443448 _____ (Malwarebytes) C:\Users\cajun\Downloads\MBSetup.exe
2022-04-04 14:26 - 2022-04-04 13:09 - 000101368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys
2022-04-04 14:25 - 2022-03-31 14:40 - 002927488 _____ (AMD Inc.) C:\Windows\SysWOW64\AMDBugReportTool.exe
2022-04-04 14:10 - 2022-04-04 14:09 - 478353880 _____ (AMD Inc.) C:\Users\cajun\Documents\radeon-software-adrenalin-2020-21.10.2-win10-win11-64bit-oct25.exe
2022-04-04 14:02 - 2022-04-04 14:09 - 478353880 _____ (AMD Inc.) C:\Users\cajun\Downloads\radeon-software-adrenalin-2020-21.10.2-win10-win11-64bit-oct25.exe
2022-04-04 13:11 - 2022-04-04 13:11 - 001963584 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-04-04 13:11 - 2022-04-04 13:11 - 001963584 _____ C:\Windows\system32\vulkaninfo.exe
2022-04-04 13:11 - 2022-04-04 13:11 - 001521272 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-04-04 13:11 - 2022-04-04 13:11 - 001521272 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-04-04 13:11 - 2022-04-04 13:11 - 001434208 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 001434208 _____ C:\Windows\system32\vulkan-1.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 001145784 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 001145784 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000789592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000667792 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000188032 _____ C:\Windows\system32\mantle64.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000171152 _____ C:\Windows\system32\mantleaxl64.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000148056 _____ C:\Windows\SysWOW64\mantle32.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000133720 _____ C:\Windows\SysWOW64\mantleaxl32.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000084608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000068184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000040568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2022-04-04 13:11 - 2022-04-04 13:11 - 000036440 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2022-04-04 13:10 - 2022-04-19 11:14 - 001525272 _____ C:\Windows\ntbtlog.txt
2022-04-04 13:10 - 2022-04-19 11:14 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2022-04-04 13:10 - 2022-04-04 13:10 - 090032216 _____ C:\Windows\system32\amd_comgr.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 074244680 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 001873984 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 001528904 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiacm64.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 001407616 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 001407616 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000884352 _____ (AMD) C:\Windows\system32\atieclxx.exe
2022-04-04 13:10 - 2022-04-04 13:10 - 000551552 _____ C:\Windows\system32\GameManager64.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000518216 _____ C:\Windows\system32\atieah64.exe
2022-04-04 13:10 - 2022-04-04 13:10 - 000493144 _____ C:\Windows\system32\dgtrayicon.exe
2022-04-04 13:10 - 2022-04-04 13:10 - 000484952 _____ C:\Windows\system32\EEURestart.exe
2022-04-04 13:10 - 2022-04-04 13:10 - 000462480 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000412816 _____ C:\Windows\SysWOW64\GameManager32.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000387200 _____ C:\Windows\SysWOW64\atieah32.exe
2022-04-04 13:10 - 2022-04-04 13:10 - 000336984 _____ C:\Windows\system32\clinfo.exe
2022-04-04 13:10 - 2022-04-04 13:10 - 000254608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000213648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000195568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000171080 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000161072 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000159304 _____ (AMD) C:\Windows\system32\atimuixx.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000144000 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000134784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000132168 _____ C:\Windows\system32\atidxx64.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000130632 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000124544 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000107152 _____ C:\Windows\SysWOW64\atidxx32.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000106568 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000063048 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000022064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2022-04-04 13:10 - 2022-04-04 13:10 - 000020984 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 069195384 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000932472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000759952 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000552064 _____ C:\Windows\system32\amdgfxinfo64.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000460408 _____ C:\Windows\system32\amdlogum.exe
2022-04-04 13:09 - 2022-04-04 13:09 - 000415352 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000203784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000170304 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000126024 _____ C:\Windows\system32\amdxc64.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000102016 _____ C:\Windows\SysWOW64\amdxc32.dll
2022-04-04 13:09 - 2022-04-04 13:09 - 000001491 _____ C:\Users\cajun\Desktop\amd-software-adrenalin-edition-22.3.2-minimalsetup-220323_web - Shortcut.lnk
2022-04-04 13:08 - 2022-04-04 13:08 - 001691528 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 001369840 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 000539240 _____ C:\Windows\system32\amdmiracast.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 000151624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 000141288 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 000141280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 000127704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 000112640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 000112624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2022-04-04 13:08 - 2022-04-04 13:08 - 000001595 _____ C:\Users\cajun\Desktop\Display Driver Uninstaller - Shortcut.lnk
2022-04-04 13:07 - 2022-04-04 13:08 - 000000000 ____D C:\Users\cajun\Downloads\[Guru3D.com]-DDU
2022-04-04 13:06 - 2022-04-04 13:06 - 001261730 _____ C:\Users\cajun\Downloads\[Guru3D.com]-DDU.zip
2022-04-04 01:12 - 2022-04-12 14:48 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-04-04 01:11 - 2022-04-12 14:48 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-04-04 01:11 - 2022-04-04 01:11 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2022-04-04 01:10 - 2022-04-04 01:10 - 000333880 _____ (Mozilla) C:\Users\cajun\Downloads\Firefox Installer.exe
2022-04-03 17:15 - 2022-04-03 17:45 - 2113929216 _____ C:\Users\cajun\Downloads\pmagic_2022_03_28.iso
2022-04-03 15:43 - 2022-04-03 15:43 - 000000000 _____ C:\Users\cajun\Downloads\pmagic_pxe_2020_02_23.tar.gz
2022-04-03 15:28 - 2022-04-03 15:39 - 821035008 _____ C:\Users\cajun\Downloads\pmagic_2020_02_23.iso
2022-04-03 14:42 - 2022-04-03 14:42 - 000000000 ____D C:\Users\cajun\AppData\Local\Rufus
2022-04-03 10:17 - 2022-04-03 10:17 - 016719872 _____ C:\Users\cajun\Downloads\dban-2.3.0_i586(1).iso
2022-04-03 08:50 - 2022-05-01 06:22 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-04-03 08:50 - 2022-05-01 06:21 - 000000000 ____D C:\Users\cajun\AppData\LocalLow\Mozilla
2022-04-03 08:50 - 2022-04-13 06:51 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-04-03 08:50 - 2022-04-13 06:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-04-03 08:50 - 2022-04-03 08:50 - 000000000 ____D C:\Users\cajun\AppData\Roaming\Mozilla
2022-04-03 08:50 - 2022-04-03 08:50 - 000000000 ____D C:\Users\cajun\AppData\Local\Mozilla
2022-04-03 08:25 - 2022-04-03 08:25 - 016719872 _____ C:\Users\cajun\Downloads\dban-2.3.0_i586.iso
2022-04-03 07:34 - 2022-04-03 07:34 - 000000000 ____D C:\Users\cajun\AppData\Local\mbam
2022-04-03 07:32 - 2022-04-29 02:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-04-03 07:32 - 2022-04-29 02:02 - 000000000 ____D C:\Program Files\Malwarebytes
2022-04-03 07:26 - 2022-04-03 07:26 - 000000112 ___SH C:\bootTel.dat
2022-04-03 02:56 - 2022-04-04 02:37 - 000000223 _____ C:\Users\cajun\Desktop\New World.url
2022-04-02 19:18 - 2022-04-04 03:58 - 000000000 ____D C:\Users\cajun\Downloads\DDU v18.0.4.9
2022-04-02 16:36 - 2022-04-02 16:36 - 000000000 ____D C:\ProgramData\Propagation
2022-04-02 11:54 - 2022-04-02 11:54 - 000000000 ____D C:\Users\cajun\Downloads\chipset
2022-04-02 11:52 - 2022-04-02 11:53 - 052758846 _____ C:\Users\cajun\Downloads\amd_chipset_drivers_am4_tr4.zip
2022-04-02 07:32 - 2022-04-02 07:32 - 000000000 ____D C:\Users\cajun\AppData\Local\Logitech
2022-04-02 07:30 - 2022-04-02 07:31 - 000000000 ____D C:\Program Files\Logitech Gaming Software
2022-04-02 07:30 - 2022-04-02 07:30 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2022-04-02 07:30 - 2022-04-02 07:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2022-04-02 07:28 - 2022-04-02 07:29 - 125871888 _____ (Logitech Inc.) C:\Users\cajun\Downloads\LGS_9.02.65_x64_Logitech.exe
2022-04-02 07:23 - 2022-04-02 07:23 - 000000000 ____D C:\Users\cajun\AppData\Roaming\Logitech
2022-04-02 07:23 - 2022-04-02 07:23 - 000000000 ____D C:\Users\cajun\AppData\Roaming\Logishrd
2022-04-02 07:00 - 2022-04-02 07:00 - 000000000 ____D C:\Users\cajun\Documents\My Games
2022-04-02 07:00 - 2022-04-02 07:00 - 000000000 ____D C:\ProgramData\Codemasters
2022-04-02 06:56 - 2022-04-19 11:20 - 000003304 _____ C:\Windows\system32\Tasks\StartCNBM
2022-04-02 06:56 - 2022-04-19 11:20 - 000003194 _____ C:\Windows\system32\Tasks\StartAUEP
2022-04-02 06:55 - 2022-05-01 06:19 - 000003118 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2022-04-02 06:55 - 2022-05-01 06:19 - 000003078 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2022-04-02 06:55 - 2022-04-19 11:18 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2022-04-02 06:55 - 2022-04-19 11:18 - 000003160 _____ C:\Windows\system32\Tasks\StartCN
2022-04-02 06:55 - 2022-04-19 11:18 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR
2022-04-02 06:44 - 2022-04-17 22:35 - 000000000 ____D C:\ProgramData\Package Cache
2022-04-02 06:44 - 2022-04-02 06:57 - 000000000 ____D C:\Users\cajun\AppData\Local\cache
2022-04-02 06:44 - 2022-04-02 06:44 - 000000000 ____D C:\Users\cajun\AppData\Roaming\AMD
2022-04-02 06:44 - 2022-04-02 06:44 - 000000000 ____D C:\Users\cajun\AppData\Local\setup
2022-04-02 06:44 - 2022-04-02 06:44 - 000000000 ____D C:\Program Files (x86)\AMD
2022-04-02 06:43 - 2022-04-26 11:53 - 000000000 ____D C:\Users\cajun\AppData\Local\AMD_Common
2022-04-02 06:43 - 2022-04-02 06:43 - 000000000 ____D C:\Users\cajun\AppData\Local\AMDSoftwareInstaller
2022-04-02 06:41 - 2022-04-02 06:42 - 039548016 _____ (AMD Inc.) C:\Users\cajun\Downloads\amd-software-adrenalin-edition-22.3.2-minimalsetup-220323_web.exe
2022-04-02 06:21 - 2022-04-02 06:21 - 000000000 ____D C:\Windows\SystemTemp
2022-04-02 02:36 - 2022-04-05 01:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-04-02 02:31 - 2022-04-02 02:31 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-04-02 02:31 - 2022-04-02 02:31 - 002254336 _____ C:\Windows\system32\dwmscene.dll
2022-04-02 02:31 - 2022-04-02 02:31 - 000523776 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-04-02 02:31 - 2022-04-02 02:31 - 000464384 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-04-02 02:31 - 2022-04-02 02:31 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-04-02 02:31 - 2022-04-02 02:31 - 000272896 _____ C:\Windows\system32\TpmTool.exe
2022-04-02 02:31 - 2022-04-02 02:31 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2022-04-02 02:31 - 2022-04-02 02:31 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-04-02 02:25 - 2022-04-13 08:38 - 000000000 ____D C:\Windows\system32\MRT
2022-04-01 17:43 - 2022-04-01 17:43 - 000000396 _____ C:\Users\cajun\Downloads\List.txt
2022-04-01 17:42 - 2022-04-01 17:42 - 000000393 _____ C:\Users\cajun\Downloads\gpedit-enabler.bat
2022-04-01 17:32 - 2022-04-01 17:32 - 000001570 _____ C:\Users\cajun\Downloads\Enable Local Group Policy Editor_pcguide4u.com.rar
2022-04-01 17:18 - 2022-04-01 17:18 - 000000017 _____ C:\Users\cajun\AppData\Local\resmon.resmoncfg
2022-04-01 14:41 - 2022-04-01 12:58 - 000000000 ____D C:\Windows\Panther
2022-04-01 13:42 - 2022-04-01 13:42 - 000000000 _SHDL C:\Documents and Settings
2022-04-01 13:41 - 2022-05-01 05:53 - 000008192 ___SH C:\DumpStack.log.tmp
2022-04-01 13:41 - 2022-05-01 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-04-01 13:41 - 2022-05-01 02:51 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-04-01 13:41 - 2022-04-29 21:56 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-01 13:41 - 2022-04-17 21:22 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-04-01 13:41 - 2022-04-13 09:11 - 000257824 _____ C:\Windows\system32\FNTCACHE.DAT
2022-04-01 13:41 - 2022-04-09 23:50 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-01 13:41 - 2022-04-09 23:50 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-04-01 13:41 - 2022-04-01 13:41 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2022-04-01 13:41 - 2022-04-01 13:41 - 000000000 ____D C:\Windows\ServiceProfiles
2022-04-01 12:41 - 2022-04-13 20:17 - 000000000 ____D C:\Users\cajun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-04-01 12:41 - 2022-04-01 12:41 - 000000223 _____ C:\Users\cajun\Desktop\F1 2021.url
2022-04-01 12:33 - 2022-04-01 12:33 - 000000000 ____D C:\Users\cajun\AppData\Local\Steam
2022-04-01 12:33 - 2022-04-01 12:33 - 000000000 ____D C:\Users\cajun\AppData\Local\CEF
2022-04-01 12:28 - 2022-05-01 02:54 - 000000000 ____D C:\Program Files (x86)\Steam
2022-04-01 12:28 - 2022-04-01 12:28 - 002296488 _____ C:\Users\cajun\Downloads\SteamSetup.exe
2022-04-01 12:28 - 2022-04-01 12:28 - 000001036 _____ C:\Users\Public\Desktop\Steam.lnk
2022-04-01 12:28 - 2022-04-01 12:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-04-01 12:12 - 2022-04-01 12:12 - 000000000 ____D C:\Users\cajun\AppData\Local\OneDrive
2022-04-01 12:03 - 2022-04-01 12:03 - 000000000 ____D C:\Users\cajun\AppData\Local\Comms
2022-04-01 11:54 - 2022-04-19 21:23 - 000000000 ____D C:\Users\cajun\AppData\Local\AMD
2022-04-01 11:54 - 2022-04-19 11:20 - 000000000 ____D C:\Program Files\AMD
2022-04-01 11:54 - 2022-04-19 11:18 - 000000000 ____D C:\Windows\system32\AMD
2022-04-01 11:51 - 2022-04-20 14:09 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3241116569-3882218771-2667572644-1001
2022-04-01 11:51 - 2022-04-01 11:51 - 000000000 ___HD C:\OneDriveTemp
2022-04-01 11:49 - 2022-05-01 06:00 - 000795738 _____ C:\Windows\system32\PerfStringBackup.INI
2022-04-01 11:49 - 2022-04-20 14:09 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3241116569-3882218771-2667572644-1001
2022-04-01 11:49 - 2022-04-18 14:09 - 000000000 ____D C:\Users\cajun\AppData\Local\PlaceholderTileLogoFolder
2022-04-01 11:49 - 2022-04-03 08:40 - 000000000 ___RD C:\Users\cajun\OneDrive
2022-04-01 11:49 - 2022-04-01 11:49 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-04-01 11:47 - 2022-04-19 11:18 - 000000000 ____D C:\Users\cajun\AppData\Local\Packages
2022-04-01 11:47 - 2022-04-17 05:10 - 000000000 ____D C:\ProgramData\Packages
2022-04-01 11:47 - 2022-04-01 12:11 - 000000000 ____D C:\Users\cajun\AppData\Local\ConnectedDevicesPlatform
2022-04-01 11:47 - 2022-04-01 11:48 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-04-01 11:47 - 2022-04-01 11:47 - 000000000 ___RD C:\Users\cajun\3D Objects
2022-04-01 11:47 - 2022-04-01 11:47 - 000000000 ____D C:\Users\cajun\AppData\Roaming\Adobe
2022-04-01 11:47 - 2022-04-01 11:47 - 000000000 ____D C:\Users\cajun\AppData\Local\VirtualStore
2022-04-01 11:47 - 2022-04-01 11:47 - 000000000 ____D C:\Users\cajun\AppData\Local\Publishers
2022-04-01 11:46 - 2022-04-20 14:09 - 000002383 _____ C:\Users\cajun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-04-01 11:46 - 2022-04-17 06:25 - 000000000 ____D C:\Users\cajun
2022-04-01 11:46 - 2022-04-01 11:46 - 000000020 ___SH C:\Users\cajun\ntuser.ini
 
If an entry is included in the fixlist, the file/folder will be moved.)

2022-05-01 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-05-01 06:00 - 2019-12-07 04:13 - 000000000 ____D C:\Windows\INF
2022-05-01 02:54 - 2019-12-07 04:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-04-30 08:33 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-30 08:33 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\AppReadiness
2022-04-27 03:20 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\NDF
2022-04-22 01:02 - 2019-12-07 04:03 - 000000000 ____D C:\Windows\CbsTemp
2022-04-17 06:23 - 2019-12-07 04:52 - 000000000 ____D C:\Program Files\Windows Portable Devices
2022-04-17 06:23 - 2019-12-07 04:52 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-04-17 06:23 - 2019-12-07 04:52 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2022-04-17 06:23 - 2019-12-07 04:52 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2022-04-17 06:23 - 2019-12-07 04:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-04-17 06:23 - 2019-12-07 04:52 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2022-04-17 06:23 - 2019-12-07 04:50 - 000000000 ____D C:\Windows\system32\OpenSSH
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ___SD C:\Windows\system32\UNP
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ___SD C:\Windows\system32\F12
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ___SD C:\Windows\system32\dsc
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ___RD C:\Windows\PrintDialog
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\MUI
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\InstallShield
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\InputMethod
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\IME
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\downlevel
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SystemResources
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\Sysprep
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\setup
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\oobe
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\MUI
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\migwiz
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\Licenses
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\InputMethod
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\IME
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\downlevel
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\Dism
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\Com
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\ShellComponents
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\IME
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\DiagTrack
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\bcastdvr
2022-04-17 06:23 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-04-17 06:23 - 2019-12-07 04:03 - 000000000 ____D C:\Windows\servicing
2022-04-17 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\Containers
2022-04-17 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\Branding
2022-04-17 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\appcompat
2022-04-17 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-04-17 06:19 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\registration
2022-04-07 13:30 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\Provisioning
2022-04-07 13:30 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-04-04 23:28 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\LiveKernelReports
2022-04-04 14:52 - 2019-12-07 04:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-04-04 03:58 - 2019-12-07 04:14 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2022-04-04 03:58 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2022-04-04 03:58 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\Keywords
2022-04-04 03:58 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\DDFs
2022-04-04 03:58 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\L2Schemas
2022-04-04 03:57 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2022-04-04 03:56 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\SystemApps
2022-04-02 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\lv-LV
2022-04-02 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\lt-LT
2022-04-02 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\et-EE
2022-04-02 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\es-MX
2022-04-02 06:21 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\appraiser
2022-04-01 17:43 - 2021-10-06 08:53 - 000704000 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2022-04-01 17:43 - 2021-10-06 08:53 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2022-04-01 17:43 - 2021-10-06 08:53 - 000542208 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2022-04-01 17:43 - 2021-10-06 08:53 - 000470016 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2022-04-01 17:43 - 2021-10-06 08:53 - 000404992 _____ (Microsoft Corporation) C:\Windows\system32\AppIdPolicyEngineApi.dll
2022-04-01 17:43 - 2021-10-06 08:53 - 000207360 _____ (Microsoft Corporation) C:\Windows\system32\appmgmts.dll
2022-04-01 17:43 - 2021-10-06 08:53 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\AuditPolicyGPInterop.dll
2022-04-01 17:43 - 2021-10-06 08:53 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2022-04-01 17:43 - 2021-10-06 08:53 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2022-04-01 17:43 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\security
2022-04-01 17:43 - 2019-12-07 04:10 - 000223744 _____ (Microsoft Corporation) C:\Windows\system32\AuditNativeSnapIn.dll
2022-04-01 17:43 - 2019-12-07 04:10 - 000147439 _____ C:\Windows\system32\gpedit.msc
2022-04-01 17:43 - 2019-12-07 04:10 - 000120458 _____ C:\Windows\system32\secpol.msc
2022-04-01 17:43 - 2019-12-07 04:10 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\auditpolmsg.dll
2022-04-01 17:43 - 2019-12-07 04:10 - 000043566 _____ C:\Windows\system32\rsop.msc
2022-04-01 17:43 - 2019-12-07 04:10 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\SrpUxNativeSnapIn.dll
2022-04-01 17:17 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-04-01 14:41 - 2019-12-07 04:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2022-04-01 13:41 - 2019-12-07 04:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2022-04-01 12:04 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\ServiceState
2022-04-01 11:46 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2022-04-01 11:46 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\USOPrivate
2022-04-01 11:44 - 2019-12-07 04:50 - 000000000 ____D C:\Windows\system32\FxsTmp
2022-04-01 11:44 - 2019-12-07 04:14 - 000000000 ____D C:\Windows\system32\spool

==================== Files in the root of some directories ========

2022-04-01 17:18 - 2022-04-01 17:18 - 000000017 _____ () C:\Users\cajun\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-04-2022
Ran by cajun (01-05-2022 07:10:51)
Running from C:\Users\cajun\Downloads
Microsoft Windows 10 Home Version 21H2 19044.1645 (X64) (2022-04-01 18:42:44)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3241116569-3882218771-2667572644-500 - Administrator - Disabled)
cajun (S-1-5-21-3241116569-3882218771-2667572644-1001 - Administrator - Enabled) => C:\Users\cajun
DefaultAccount (S-1-5-21-3241116569-3882218771-2667572644-503 - Limited - Disabled)
Guest (S-1-5-21-3241116569-3882218771-2667572644-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3241116569-3882218771-2667572644-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 4.03.03.431 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.7.0.1851 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.4.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{0fd12917-eb35-466f-b411-02c45a8a505d}) (Version: 4.03.03.431 - Advanced Micro Devices, Inc.) Hidden
Branding64 (HKLM\...\{2AF42320-5ECF-4BCA-B756-8F3677262D55}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{97f3a665-a91b-4def-91e2-97fec9f22bfa}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden
Kinect for Windows Speech Recognition Language Pack (de-DE) (HKLM-x32\...\{898AA67F-99B8-4C7F-9611-B11F98EF6E78}) (Version: 11.0.7413.611 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-ES) (HKLM-x32\...\{F49AF755-A5C3-4252-A190-5772B2669C3B}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-MX) (HKLM-x32\...\{E8F3B154-03CE-4120-8B9D-9E83ED5F3AD7}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (fr-CA) (HKLM-x32\...\{7D179500-CA0C-4456-B624-C15876B15F39}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (it-IT) (HKLM-x32\...\{969D900A-3481-4A77-B888-D24160D4D727}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (ja-JP) (HKLM-x32\...\{EDA8693D-9E82-4FD1-98C8-0DC4F9141E0F}) (Version: 11.0.7400.336 - Microsoft Corporation)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Malwarebytes version 4.5.8.191 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.8.191 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 101.0.1210.32 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3241116569-3882218771-2667572644-1001\...\OneDriveSetup.exe) (Version: 22.065.0412.0004 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (pt-BR) (HKLM-x32\...\{F6B5EB21-0ABF-487C-B9A9-D9DB259C4403}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (ru-RU) (HKLM-x32\...\{9419B7EA-6A4B-4A57-8E2A-3BDD4676118F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (zh-CN) (HKLM-x32\...\{BAD2A75A-1708-47BA-A498-20890D2C78A7}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 99.0.1 (x64 en-US)) (Version: 99.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 98.0.2 - Mozilla)
MSI Center SDK (HKLM-x32\...\{15289038-41BE-48F8-B8B9-0B1021D3089E}}_is1) (Version: 3.2022.0302.01 - MSI)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9336.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.053.1001.2021 - Realtek)
RyzenMasterSDK (HKLM\...\{B7D0F804-60AB-4B4C-9172-B079540FC992}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)

Packages:
=========
AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.21.50009.0_x64__0a9344xs7nr4m [2022-04-19] (Advanced Micro Devices Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.27.1.0_x64__6rarf9sa4v8jt [2022-04-20] (Disney)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.3171.0_x64__8wekyb3d8bbwe [2022-04-17] (Microsoft Studios) [MS Ad]
MSI Center -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_1.0.41.0_x64__kzh8wxbdkxb8p [2022-04-17] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-04-18] (Microsoft Corporation)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.35.271.0_x64__dt26b99r8h8gj [2022-04-17] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0 [2022-04-29] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-04-03] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2022-04-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-04-03] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-03-31 15:12 - 2022-03-31 15:12 - 018143744 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\avcodec-58.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2022-02-15 21:49 - 2022-02-15 21:49 - 000912896 _____ () [File not signed] C:\Program Files\AMD\Performance Profile Client\aws-cpp-sdk-core.dll
2022-02-15 21:49 - 2022-02-15 21:49 - 003109888 _____ () [File not signed] C:\Program Files\AMD\Performance Profile Client\aws-cpp-sdk-s3.dll
2022-03-31 13:31 - 2022-03-31 13:31 - 000683520 _____ (Advanced Micro Devices) [File not signed] C:\Program Files\AMD\CNext\CNext\Device.dll
2022-03-31 13:31 - 2022-03-31 13:31 - 000065024 _____ (Advanced Micro Devices) [File not signed] C:\Program Files\AMD\CNext\CNext\Platform.dll
2022-03-31 10:34 - 2022-03-31 10:34 - 000683520 _____ (Advanced Micro Devices) [File not signed] C:\Program Files\AMD\Performance Profile Client\Device.dll
2022-03-31 10:34 - 2022-03-31 10:34 - 000065024 _____ (Advanced Micro Devices) [File not signed] C:\Program Files\AMD\Performance Profile Client\Platform.dll
2022-03-31 15:11 - 2022-03-31 15:11 - 001751552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2022-04-17 22:35 - 2018-11-15 14:08 - 002200784 _____ (Dexin Corp -> MICRO-STAR INTERNATIONAL) [File not signed] C:\Program Files (x86)\MSI\MSI Center\Mystic Light\IcMSIDll.dll
2017-09-05 00:15 - 2017-09-05 00:15 - 004396032 _____ (Microsoft Corporation) [File not signed] C:\Program Files\AMD\CNext\CNext\D3DCOMPILER_47.dll
2022-04-17 22:35 - 2018-08-31 07:26 - 000053760 _____ (MS) [File not signed] C:\Program Files (x86)\MSI\MSI Center\Mystic Light\MsIo32_Galax.dll
2018-04-06 13:29 - 2018-04-06 13:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 13:29 - 2018-04-06 13:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000057856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000031232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000415232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 001455104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 001227776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 006947328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000740352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000123392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 001110528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000326656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 003798528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000440832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000054784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 004255744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000171520 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 001128448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000206336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000334336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000133120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000396800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 102854656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 005611008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000210432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 002877440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000056832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000290816 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000336896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000134144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000106496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000045568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-04-21 04:43 - 2021-04-21 04:43 - 000093184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
2022-04-17 22:35 - 2016-10-04 04:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Lib\SDKDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 04:14 - 2019-12-07 04:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3241116569-3882218771-2667572644-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\cajun\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1 - 205.171.2.65
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-3241116569-3882218771-2667572644-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_6B20F9ABE6E903A48ECFBF1CD1C202D1"
HKU\S-1-5-21-3241116569-3882218771-2667572644-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3241116569-3882218771-2667572644-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E46A6EB3-862D-47AE-951E-E4A0DF0BF246}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{22C31887-870C-4FEB-9A42-10C6893CCF2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DE3B339B-4FE4-48B2-BACC-F1040F894DB1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{410B703D-5FC2-4521-A052-2DEA0B56A19E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{506B0634-7939-417A-83D9-DA2F2842A3AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{FE03D868-3143-4A46-A4B9-FF172365A3B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{EA9AAC8B-B72A-4627-B81E-5E07E12AF00E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{993FD2E5-CCFC-4B5E-85DC-F0E671EA5109}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{620F6D73-DB21-4876-9E4E-0093C4490E0A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B584E3F5-3594-4737-9B40-C36D4F29C819}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{14ED9E88-87F3-402D-B2FB-74198B337544}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\New World\NewWorldLauncher.exe (Amazon.com Services LLC -> Epic Games, Inc)
FirewallRules: [{01E70C50-2265-436E-8622-921FB70178A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\New World\NewWorldLauncher.exe (Amazon.com Services LLC -> Epic Games, Inc)
FirewallRules: [TCP Query User{5ED9FFE5-E550-496B-A7F7-49A75A49B215}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe (Amazon.com Services LLC -> Amazon.com, Inc.)
FirewallRules: [UDP Query User{54DDE716-8EDD-4289-B4FE-A867BFA1D6E4}C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\new world\bin64\newworld.exe (Amazon.com Services LLC -> Amazon.com, Inc.)
FirewallRules: [TCP Query User{C096579D-B498-4A48-AA36-2367E736C90F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{B2574C4B-DC40-49DD-911C-D62528F8B2C0}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EA04071C-2891-4401-B631-7B6BC89F81E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{F9C29EAE-D35E-4406-8669-592BEC333901}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lost Ark\Binaries\Win64\Launch_Game.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{01522716-05F9-4E39-ACC1-D189F9F5D633}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A7244586-E055-406F-91C0-75FA206660F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AA0B2534-8727-43D7-A713-D8CADF5E970C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CF89EF1B-28B1-4F87-A72B-1DFBF3E9DC01}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AB8D3F12-59BF-4F02-9002-A251D86B2793}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C2D4FAD6-418A-450E-A78B-052A455D398F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F7117A15-9D9B-4A40-81F2-7FF0C660EFE3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F33D1CAE-90BD-4CFC-86E3-B6151C29FD87}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DCEABEDA-8207-4627-B12B-34DCA4DF3389}] => (Allow) LPort=32682
FirewallRules: [{9694CDA2-ACCB-4356-98B3-E8AF837BEF55}] => (Allow) LPort=26822

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================
 
Pplication errors:
==================
Error: (04/30/2022 03:43:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program F1_2021_dx12.exe version 1.0.87.4931 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1ac4

Start Time: 01d85cd2d619cd29

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe

Report Id: b2f38a68-d2c2-4dca-9cdc-fbb6f246ad42

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (04/29/2022 04:42:53 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program F1_2021_dx12.exe version 1.0.87.4931 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 17f0

Start Time: 01d85ba7c463d7ab

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe

Report Id: cab9d855-8e3a-4734-b5b0-c6e643fcd0b5

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (04/28/2022 03:59:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program F1_2021_dx12.exe version 1.0.87.4931 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 83c

Start Time: 01d85b3f2419185c

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe

Report Id: 8074bd4a-d04f-4fd7-a37b-bd7bf1afe9fd

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (04/26/2022 07:52:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program F1_2021_dx12.exe version 1.0.87.4931 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 570

Start Time: 01d859ce994987a7

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe

Report Id: 4d2a90dc-2f36-4849-a0dd-cb75439dc2ed

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (04/26/2022 03:03:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program F1_2021_dx12.exe version 1.0.87.4931 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: f04

Start Time: 01d8593b9c43bd72

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe

Report Id: f7dab533-e3d0-4925-bd5e-0ed85b66a560

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (04/25/2022 02:45:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program F1_2021_dx12.exe version 1.0.87.4931 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 180c

Start Time: 01d858d3ae506882

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe

Report Id: 0506ab10-30cf-44f8-b826-1629c0b81fae

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (04/25/2022 04:37:16 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (04/24/2022 11:18:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program F1_2021_dx12.exe version 1.0.87.4931 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 366c

Start Time: 01d858591c545c70

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Steam\steamapps\common\F1 2021\F1_2021_dx12.exe

Report Id: 03bf8adf-96ee-4efe-8568-f44332ee83a4

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle


System errors:
=============
Error: (04/30/2022 02:16:56 PM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (04/30/2022 12:44:20 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1115" attempting to start the service SecurityHealthService with arguments "Unavailable" in order to run the server:
{8C9C0DB7-2CBA-40F1-AFE0-C55740DD91A0}

Error: (04/20/2022 05:09:52 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013.

Error: (04/19/2022 11:20:33 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1115" attempting to start the service SecurityHealthService with arguments "Unavailable" in order to run the server:
{8C9C0DB7-2CBA-40F1-AFE0-C55740DD91A0}

Error: (04/19/2022 11:20:28 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OJ8GSJA)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.

Error: (04/19/2022 11:20:14 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The AMD User Experience Program Data Uploader service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

Error: (04/19/2022 11:15:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AMDRyzenMasterDriver service failed to start due to the following error:
The filename, directory name, or volume label syntax is incorrect.

Error: (04/19/2022 11:14:38 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-OJ8GSJA)
Description: DCOM got error "1084" attempting to start the service WSearch with arguments "Unavailable" in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Windows Defender:
================
Date: 2022-04-30 00:16:10
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-04-29 02:30:45
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-04-26 22:27:00
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-04-24 22:30:06
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-04-22 22:58:34
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:

Date: 2022-04-27 03:30:43
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.363.950.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19200.5
Error code: 0x80240438
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2022-04-19 11:13:11
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

CodeIntegrity:
===============
Date: 2022-04-04 14:52:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. 1.H7 01/18/2022
Motherboard: Micro-Star International Co., Ltd B450 TOMAHAWK (MS-7C02)
Processor: AMD Ryzen 5 3600 6-Core Processor
Percentage of memory in use: 34%
Total physical RAM: 16309.58 MB
Available physical RAM: 10652.09 MB
Total Virtual: 19509.58 MB
Available Virtual: 10751.03 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:953.26 GB) (Free:553.46 GB) NTFS

\\?\Volume{63469c5c-170f-4105-8769-e137b5176ab2}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{3983401d-5cc5-47d6-940d-c1eb7de28e40}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: C5792D0E)

Partition: GPT.

==================== End of Addition.txt =======================
 
Not really any performance issues,I have just been seeing a lot of warnings in my event viewer and I'm just curiuos if my pc is being monitored.
 
So far, I don't see anything suspicious there. Pretty much every computer will have some entries in Event Viewer. As long, as there are nor visible issues, there is no reason to worry.
Couple more scans...

redtarget.gif
Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2
  • Close all the running programs
  • Double click on downloaded setup.exe file to install the program.
  • Click on Start Scan button.
  • Click on another Start Scan button.
  • Wait until the Status box shows Scan Finished
  • Click on Remove Selected.
  • Wait until the Status box shows Deleting Finished.
  • Click on Report and copy/paste the content of the Notepad into your next reply.
  • RKreport.txt could also be found on your desktop.
  • If more than one log is produced post all logs.
redtarget.gif
Please download Malwarebytes to your desktop.
  • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  • Then click Finish.
  • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  • Restart your computer when prompted to do so.
  • The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.
redtarget.gif
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8/10 users right-click and select Run As Administrator
  • The tool will start to update the database if one is required.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Logfile button.
  • A window will open which lists the logs of your scans.
  • Click on the Scan tab.
  • Double-click the most recent scan which will be at the top of the list....the log will appear.
  • Review the results...see note below
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
  • To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
  • Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
  • A copy of all logfiles are saved to C:\AdwCleaner.
-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.
 
I ran all the scans and they all came back clean, I'm just paranoid of big brothers prying eyes,have came to distrust our government as I have aged and would just wanting peace of mind.I can post the logs if you still want me to.Also want to thank you for this service you are performing,it is much appreciated.
 
You must log in or register to reply here.

Similar threads

E
I have been taken over by a software called Astanda using XML to Log everything and roaming to an SQL server.
Replies
0
Views
483
eriksnyman1
E
losdavos
Malware removal help, please and thank you!
Replies
1
Views
836
losdavos
losdavos
Z
Logitech thinks the computer mouse needs an AI upgrade
Replies
16
Views
160
Dimitrios
Dimitrios

Latest posts

Back