Inactive Deep concern on being hacked by my neighbor

treetops

treetops

Posts: 3,064   +784
Perhaps physically, I noticed some unusual devices on my wifi network. Some were WPS enabled, of which can only physically be accessed? By pressing the button. So I changed the passwords. I went to walk my dog that night. I heard a about 18 year old kid yelling at his mom, he said "I'm old enough!" she said "I don't know whatever it is you need to log into." he said " then I will break into... will talk about this later". she said " Good night" I heard the door shut.

The kid used to sit outside my apartment and smoke weed. I didn't care, but I got a virus... Bitcoin miner.... Not sure if it's related. I ended up getting a job with what seems like a friend of his. I saw them together at my apartment. And his friend, my coworker has been referencing things in what seems like an attempt to annoy me.

After changing my wifi passwords. I bought some thermal paste online, at work the next day, my coworker said anyone have thermal paste? I was like are you stalking me? I just bought some why do you need it? He said oh my 360 etc, then when I offered the paste, he said I got it fixed it was dust. This has gone on for a bit to long. Over and over, references to my search habits. I almost want to call the police and maybe I should.

I looked up the number to contact the FBI about hackers and the next day he seemed to make a sly reference. Upon viewing the prison time of 5-20 years I am reluctant to doom whatever these kids are doing. They are not on my wifi network, but I seem to be cyber stalked in some manner. The computers at work have errors quite often when outputting daily driver payments... and I have seen that neighbor in our parking lot.

I have Utorrent but am willing to do whatever is asked of me. Utorrent was my only initial reluctance in asking for help here. I will update this thread with a new comment soon with the steps needed.
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-03-2020
Ran by TimeMachine (administrator) on DESKJ (03-04-2020 19:59:23)
Running from C:\Users\TimeMachine\Desktop
Loaded Profiles: TimeMachine (Available Profiles: TimeMachine)
Platform: Windows 10 Home Version 1909 18363.720 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0353065.inf_amd64_2af28622e162cc90\B353014\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0353065.inf_amd64_2af28622e162cc90\B353014\atiesrxx.exe
(ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(London Trust Media Incorporated -> ) C:\Program Files\Private Internet Access\pia-service.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.39.6001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.39.6001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11911.1001.9.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files\Realtek\WifiAutoInstall\WifiAutoInstallSrv.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [881440 2019-06-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [325704 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2019-07-17] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-1951528218-1203366226-1675654026-1001\...\Run: [Private Internet Access] => C:\Program Files\Private Internet Access\pia-client.exe [3839456 2020-02-06] (London Trust Media Incorporated -> Private Internet Access Incorporated)
HKU\S-1-5-21-1951528218-1203366226-1675654026-1001\...\Run: [Opera Browser Assistant] => C:\Users\TimeMachine\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3024920 2020-03-27] (Opera Software AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-19] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1021821E-A5C1-4D25-8071-02E841F335D6} - System32\Tasks\Opera scheduled assistant Autoupdate 1585360499 => C:\Users\TimeMachine\AppData\Local\Programs\Opera\launcher.exe [1538584 2020-03-27] (Opera Software AS -> Opera Software)
Task: {1FE028E7-A90D-45CD-8621-B3567B79934B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {33220020-6395-4755-B537-040E534E35CC} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5701072 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {33F0E068-ABAC-4C38-8158-CE328BF030F4} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13059536 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {5C49FD98-024A-42EB-9B5C-FDFC76D80B03} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-03-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {6FC9FEDD-7466-4B8B-8F37-EDB6CC77A68A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-30] (Google Inc -> Google LLC)
Task: {7FCAB8A9-0510-4F56-AAC0-F786ABCAE72E} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5701072 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {825944D1-CA7B-4DB8-BB27-6DCE83ECABCD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18233016 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {849ED783-65AE-441F-81AF-02D17540E60F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5701072 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {871F8FC5-9C71-484F-92E7-56C2D193DB07} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-03-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {962F55F6-06F7-4DBB-AF9D-3BB0D78FFA70} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-03-17] (Advanced Micro Devices, Inc.) [File not signed]
Task: {AADEBB09-6677-4811-B86D-602B0652E914} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [665848 2019-06-27] (Advanced Micro Devices INC. -> )
Task: {BA8CDA2E-6247-47B8-9BF9-51FBE058E73B} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5701072 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {C1853D54-7676-475B-B9EE-F77A6B621190} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-30] (Google Inc -> Google LLC)
Task: {C1C35D0B-FFF3-436A-9C9F-0A43B367BE31} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3942704 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {CCAA4CFC-A777-4B32-BB46-717E49FCDA5E} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13059536 2019-10-17] (Comodo Security Solutions -> COMODO)
Task: {D479298B-F618-4353-953B-5E7F15008A1D} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [1628160 2020-03-17] (Advanced Micro Devices, Inc.) [File not signed]
Task: {DCDD16D8-7D0A-4D59-BF93-8A002F672592} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-03-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {E060328C-A9F0-4592-8C04-93C05EDCB92C} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1692296 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {E63AA187-A36A-4B1A-94DE-192EA6F315D8} - System32\Tasks\Opera scheduled Autoupdate 1585360495 => C:\Users\TimeMachine\AppData\Local\Programs\Opera\launcher.exe [1538584 2020-03-27] (Opera Software AS -> Opera Software)
Task: {E76AD7D3-4723-4381-A2CE-EF9314E07DCA} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-03-17] (Advanced Micro Devices, Inc.) [File not signed]
Task: {EFDA71DF-1A92-476F-ACD0-B2A4EB165172} - System32\Tasks\Core Temp Autostart TimeMachine => C:\Program Files\Core Temp\Core Temp.exe [1011592 2019-08-30] (ALCPU -> ALCPU)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{04db5fc8-2861-4bda-8254-3cc631c85d62}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{ca8b32c1-656e-410d-87b1-9b5d06eb5072}: [DhcpNameServer] 8.8.8.8 8.8.4.4

Internet Explorer:
==================

Edge:
======
DownloadDir: C:\Users\TimeMachine\Downloads

FireFox:
========
FF DefaultProfile: j9raw7xq.default
FF ProfilePath: C:\Users\TimeMachine\AppData\Roaming\Mozilla\Firefox\Profiles\j9raw7xq.default [2019-10-13]
FF ProfilePath: C:\Users\TimeMachine\AppData\Roaming\Mozilla\Firefox\Profiles\8qd4far1.default-release [2020-04-03]
FF Homepage: Mozilla\Firefox\Profiles\8qd4far1.default-release -> hxxps://www.google.com/
FF Session Restore: Mozilla\Firefox\Profiles\8qd4far1.default-release -> is enabled.
FF Extension: (Simple Translate) - C:\Users\TimeMachine\AppData\Roaming\Mozilla\Firefox\Profiles\8qd4far1.default-release\Extensions\simple-translate@sienori.xpi [2019-10-21]
FF Extension: (SoundFixer) - C:\Users\TimeMachine\AppData\Roaming\Mozilla\Firefox\Profiles\8qd4far1.default-release\Extensions\soundfixer@unrelenting.technology.xpi [2019-10-13]
FF Extension: (Netflix 1080p) - C:\Users\TimeMachine\AppData\Roaming\Mozilla\Firefox\Profiles\8qd4far1.default-release\Extensions\{05c186b0-5b6b-4371-b731-83c4f9868af2}.xpi [2019-12-28]
FF Extension: (YouTube Converter Button) - C:\Users\TimeMachine\AppData\Roaming\Mozilla\Firefox\Profiles\8qd4far1.default-release\Extensions\{8f4bbf79-5514-4d04-a901-d5fabfe91d73}.xpi [2019-10-13]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\TimeMachine\AppData\Roaming\Mozilla\Firefox\Profiles\8qd4far1.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-03-31]
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default [2020-03-23]
CHR Extension: (Slides) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-30]
CHR Extension: (Docs) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-30]
CHR Extension: (Google Drive) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-10-30]
CHR Extension: (YouTube) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-30]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-02-16]
CHR Extension: (Sheets) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-30]
CHR Extension: (Google Docs Offline) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-16]
CHR Extension: (Avast Online Security) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-16]
CHR Extension: (AVG SafePrice | Comparison, deals, coupons) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-02-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-30]
CHR Extension: (Gmail) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-30]
CHR Extension: (Chrome Media Router) - C:\Users\TimeMachine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

Opera:
=======
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\TimeMachine\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-03-31]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\u0353065.inf_amd64_2af28622e162cc90\B353014\atiesrxx.exe [524712 2020-03-18] (Advanced Micro Devices, Inc. -> AMD)
S2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPLauncher.exe [60600 2020-03-17] (Advanced Micro Devices, Inc. -> AMD)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [413544 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [6094272 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8567960 2020-03-30] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-09-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2020-01-15] (FUTUREMARK INC -> Futuremark)
R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.39.6001.0_x64__8wekyb3d8bbwe\GamingServices.exe [21640 2020-03-15] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.39.6001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [21640 2020-03-15] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-03-10] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-03-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3445560 2020-03-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 PrivateInternetAccessService; C:\Program Files\Private Internet Access\pia-service.exe [1571840 2020-02-06] (London Trust Media Incorporated -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-12-08] (Rockstar Games, Inc. -> Rockstar Games)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [881440 2019-06-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\NisSrv.exe [3294680 2020-03-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WifiAutoInstallSrv; C:\Program Files\Realtek\WifiAutoInstall\WifiAutoInstallSrv.exe [138176 2017-11-17] (Realtek Semiconductor Corp. -> Realtek)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MsMpEng.exe [103168 2020-03-19] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALSysIO; C:\Users\TimeMachine\AppData\Local\Temp\ALSysIO64.sys [47240 2020-03-26] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== ATTENTION
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [45832 2019-10-01] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24528 2019-04-18] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\u0353065.inf_amd64_2af28622e162cc90\B353014\atikmdag.sys [65752488 2020-03-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\u0353065.inf_amd64_2af28622e162cc90\B353014\atikmpag.sys [592296 2020-03-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [32760 2019-05-30] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [138544 2019-05-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R2 AMDRyzenMasterDriver; C:\Program Files\AMD\Performance Profile Client\RyzenMaster\AMDRyzenMasterDriver.sys [70304 2017-11-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AMDRyzenMasterDriverV14; C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys [70432 2019-08-29] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [37928 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206160 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [271704 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [207192 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [64344 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16520 2020-03-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [43560 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175472 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [111144 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84096 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [849256 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [459192 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [235280 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [316840 2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_1b1c9965dc1c6f0f\gameflt.sys [71000 2019-12-12] (Microsoft Windows -> Microsoft Corporation)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2019-11-18] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-03-25] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-03-26] (Malwarebytes Inc -> Malwarebytes)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [37824 2019-08-15] (SoftEther Corporation -> SoftEther Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1154336 2019-05-21] (Realtek Semiconductor Corp. -> Realtek )
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [7937904 2017-11-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R1 SeLow; C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys [50624 2019-10-14] (SoftEther Corporation -> SoftEther Corporation)
R2 SSGDIO; C:\WINDOWS\SysWOW64\DRIVERS\ssgdio64.sys [14608 2019-11-20] (ATI Technologies, Inc -> ATI Technologies Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64864 2019-07-09] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
R3 tap-pia-0901; C:\WINDOWS\System32\drivers\tap-pia-0901.sys [39944 2020-01-27] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2020-03-09] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 Xvdd; C:\WINDOWS\System32\DriverStore\FileRepository\xvdd.inf_amd64_5ef00c58b02692b7\xvdd.sys [492376 2020-02-21] (Microsoft Windows -> Microsoft Corporation)
U4 CmdAgent; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-03 19:59 - 2020-04-03 19:59 - 000026764 _____ C:\Users\TimeMachine\Desktop\FRST.txt
2020-04-03 19:58 - 2020-04-03 19:59 - 000000000 ____D C:\FRST
2020-04-03 19:58 - 2020-04-03 19:58 - 002280448 _____ (Farbar) C:\Users\TimeMachine\Desktop\FRST64.exe
2020-04-03 19:58 - 2020-04-03 19:58 - 000000000 ____D C:\Users\TimeMachine\Desktop\FRST-OlderVersion
2020-03-31 23:55 - 2020-03-31 23:55 - 000413540 _____ C:\Users\TimeMachine\Desktop\john oliver.htm
2020-03-31 23:55 - 2020-03-31 23:55 - 000000000 ____D C:\Users\TimeMachine\Desktop\john oliver_files
2020-03-31 22:21 - 2020-04-02 19:03 - 000000000 ____D C:\Users\TimeMachine\AppData\LocalLow\IGDump
2020-03-30 21:06 - 2020-03-30 21:00 - 259911935 _____ C:\Users\TimeMachine\Desktop\20200330_205814.mp4
2020-03-30 20:28 - 2020-03-30 20:23 - 080881718 _____ C:\Users\TimeMachine\Desktop\20200330_202231.mp4
2020-03-30 19:07 - 2020-03-30 19:07 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\BattlEye
2020-03-30 14:08 - 2020-03-30 14:08 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2020-03-30 14:07 - 2020-03-30 14:39 - 000000000 ____D C:\Users\TimeMachine\Documents\Mount and Blade II Bannerlord
2020-03-30 13:20 - 2020-03-30 13:20 - 000000222 _____ C:\Users\TimeMachine\Desktop\Mount & Blade II Bannerlord.url
2020-03-29 23:26 - 2020-03-29 23:26 - 000010150 _____ C:\Users\TimeMachine\Desktop\Wet City.jfif
2020-03-29 01:56 - 2020-03-29 01:59 - 000000000 ____D C:\Users\TimeMachine\Documents\Call of Duty Modern Warfare
2020-03-29 00:42 - 2020-03-29 00:42 - 000000693 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2020-03-29 00:42 - 2020-03-29 00:42 - 000000693 _____ C:\ProgramData\Desktop\World of Warcraft.lnk
2020-03-28 22:18 - 2020-04-03 18:55 - 000000000 ____D C:\Users\TimeMachine\Downloads\opera autoupdate
2020-03-27 18:55 - 2020-03-27 18:55 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\Opera Software
2020-03-27 18:54 - 2020-04-01 00:51 - 000003776 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1585360499
2020-03-27 18:54 - 2020-04-01 00:51 - 000003510 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1585360495
2020-03-27 18:54 - 2020-03-27 18:54 - 002478664 _____ (Opera Software) C:\Users\TimeMachine\Downloads\OperaSetup(1).exe
2020-03-27 18:54 - 2020-03-27 18:54 - 000001490 _____ C:\Users\TimeMachine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk
2020-03-27 18:54 - 2020-03-27 18:54 - 000001436 _____ C:\Users\TimeMachine\Desktop\Opera Browser.lnk
2020-03-27 18:54 - 2020-03-27 18:54 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\Opera Software
2020-03-26 00:31 - 2020-03-26 00:31 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-03-23 23:16 - 2020-04-01 00:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-03-23 16:15 - 2020-03-23 16:15 - 000002004 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus FREE.lnk
2020-03-23 16:15 - 2020-03-23 16:15 - 000001992 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2020-03-23 16:15 - 2020-03-23 16:15 - 000001992 _____ C:\ProgramData\Desktop\AVG AntiVirus FREE.lnk
2020-03-23 16:15 - 2020-03-23 16:15 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\AVG
2020-03-23 16:13 - 2020-04-01 20:13 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-03-23 16:13 - 2020-03-23 16:13 - 000849256 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000459192 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000368088 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-03-23 16:13 - 2020-03-23 16:13 - 000316840 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000271704 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000235280 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000207192 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000206160 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000175472 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000111144 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000084096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000064344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000043560 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000037928 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000016520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2020-03-23 16:13 - 2020-03-23 16:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2020-03-23 16:13 - 2020-03-23 16:13 - 000000000 ____D C:\Program Files\Common Files\AVG
2020-03-23 16:10 - 2020-03-23 16:10 - 000000000 ____D C:\Program Files\AVG
2020-03-23 16:01 - 2020-03-23 16:02 - 022195736 _____ (Piriform Software Ltd) C:\Users\TimeMachine\Downloads\ccsetup564.exe
2020-03-20 21:44 - 2020-04-01 00:51 - 000002374 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2020-03-20 21:44 - 2020-03-20 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2020-03-20 21:26 - 2020-03-18 12:16 - 062867880 _____ C:\WINDOWS\system32\amd_comgr.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 052403624 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 004585920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 004095400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 001784744 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 001784744 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 001375144 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 001375144 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 001243560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 001243560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 001086184 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 001086184 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000945032 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000945032 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000761256 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 000574888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000493992 _____ C:\WINDOWS\system32\dgtrayicon.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 000491944 _____ C:\WINDOWS\system32\GameManager64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000485800 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000469416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000452008 _____ C:\WINDOWS\system32\atieah64.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 000428992 _____ C:\WINDOWS\system32\EEURestart.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 000374696 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000346024 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 000345000 _____ C:\WINDOWS\system32\clinfo.exe
2020-03-20 21:26 - 2020-03-18 12:16 - 000242088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000209320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000184744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000179080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000163240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000159680 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000158432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000153512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000138664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000136616 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000136616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000135592 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000124840 _____ C:\WINDOWS\system32\atidxx64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000121768 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000121256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000107432 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000106408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000091560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000076200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000071104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000047528 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000044456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000020632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2020-03-20 21:26 - 2020-03-18 12:16 - 000020608 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 078651304 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 001686840 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 001366192 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000941992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000769448 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000554408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000546568 _____ C:\WINDOWS\system32\amdmiracast.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000484776 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000467368 _____ C:\WINDOWS\system32\amdlogum.exe
2020-03-20 21:26 - 2020-03-18 12:15 - 000384424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000374184 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000135160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000128976 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000128952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000120064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000108056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2020-03-20 21:26 - 2020-03-18 12:15 - 000108048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2020-03-20 21:26 - 2020-03-17 14:03 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2020-03-20 21:26 - 2020-03-17 14:03 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2020-03-20 21:26 - 2020-03-17 13:59 - 000543136 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2020-03-20 21:26 - 2020-03-17 13:59 - 000543136 _____ C:\WINDOWS\system32\atiapfxx.blb
2020-03-18 21:15 - 2020-03-18 21:15 - 000000000 _____ C:\Users\TimeMachine\Desktop\602-832-6604.txt
2020-03-18 14:21 - 2020-03-18 14:21 - 000000000 _____ C:\Users\TimeMachine\Desktop\Moby ****.txt
2020-03-17 23:42 - 2020-03-17 23:42 - 000000222 _____ C:\Users\TimeMachine\Desktop\Chivalry Medieval Warfare.url
2020-03-16 17:36 - 2020-03-16 17:36 - 000000000 _____ C:\Users\TimeMachine\Desktop\Wet City.txt
2020-03-16 17:07 - 2020-03-16 17:07 - 000000000 _____ C:\Users\TimeMachine\Desktop\Dead Kennedys.txt
2020-03-16 02:20 - 2020-03-16 02:20 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\EasyAntiCheat
2020-03-16 02:17 - 2020-03-16 02:20 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-03-16 01:57 - 2020-03-16 01:57 - 000918216 _____ (gamigo AG) C:\Users\TimeMachine\Downloads\WolfteamReloadedDownloader_US.exe
2020-03-16 01:17 - 2020-03-16 01:17 - 000000000 ____D C:\Users\TimeMachine\AppData\LocalLow\Creaky Corpse Ltd
2020-03-16 01:13 - 2020-03-16 01:13 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\ZMR
2020-03-15 23:14 - 2020-03-15 23:16 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\Trend Micro
2020-03-15 23:14 - 2018-01-30 20:16 - 000036600 _____ (Riverbed Technology, Inc.) C:\WINDOWS\system32\Drivers\npf.sys
2020-03-15 23:13 - 2020-03-16 01:22 - 000000000 ____D C:\Program Files (x86)\Trend Micro
2020-03-15 23:13 - 2020-03-15 23:13 - 000942452 _____ C:\Users\TimeMachine\AppData\Local\census.cache
2020-03-15 23:13 - 2020-03-15 23:13 - 000359933 _____ C:\Users\TimeMachine\AppData\Local\ars.cache
2020-03-15 23:02 - 2020-03-15 23:02 - 000000010 _____ C:\Users\TimeMachine\AppData\Local\sponge.last.runtime.cache
2020-03-15 22:58 - 2020-03-15 23:16 - 000000000 ____D C:\ProgramData\Trend Micro
2020-03-15 22:58 - 2020-03-15 22:58 - 000000000 ____D C:\WINDOWS\Trend Micro
2020-03-15 22:57 - 2020-03-15 22:57 - 002660528 _____ (Trend Micro Inc.) C:\Users\TimeMachine\Downloads\HousecallLauncher64.exe
2020-03-15 22:57 - 2020-03-15 22:57 - 000000036 _____ C:\Users\TimeMachine\AppData\Local\housecall.guid.cache
2020-03-15 22:54 - 2020-03-15 22:55 - 000000000 ____D C:\AdwCleaner
2020-03-15 22:54 - 2020-03-15 22:54 - 008199856 _____ (Malwarebytes) C:\Users\TimeMachine\Downloads\adwcleaner_8.0.3.exe
2020-03-15 22:34 - 2020-04-03 19:54 - 000000000 ____D C:\Users\TimeMachine\AppData\LocalLow\uTorrent
2020-03-15 21:57 - 2020-03-15 21:58 - 000000000 ____D C:\Program Files\Defraggler
2020-03-15 21:57 - 2020-03-15 21:57 - 006404096 _____ (Piriform Ltd) C:\Users\TimeMachine\Downloads\dfsetup222.exe
2020-03-15 19:44 - 2020-03-25 02:23 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-03-15 10:54 - 2020-03-15 10:54 - 007094928 _____ (techPowerUp (www.techpowerup.com)) C:\Users\TimeMachine\Downloads\GPU-Z.2.30.0.exe
2020-03-15 10:00 - 2020-03-29 04:21 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\FAHClient
2020-03-15 10:00 - 2020-03-15 10:44 - 000002153 _____ C:\Users\TimeMachine\Desktop\Folding@home.lnk
2020-03-15 10:00 - 2020-03-15 10:00 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FAHClient
2020-03-15 10:00 - 2020-03-15 10:00 - 000000000 ____D C:\Program Files (x86)\FAHClient
2020-03-15 09:58 - 2020-03-15 09:58 - 031120224 _____ C:\Users\TimeMachine\Downloads\fah-installer_7.5.1_x86.exe
2020-03-14 02:54 - 2020-03-14 02:54 - 000001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Private Internet Access.lnk
2020-03-14 00:39 - 2020-03-14 00:39 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-03-14 00:39 - 2020-03-14 00:39 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-03-14 00:39 - 2020-03-14 00:39 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-03-14 00:39 - 2020-03-14 00:39 - 006520776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-03-14 00:39 - 2020-03-14 00:39 - 004563416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-03-14 00:39 - 2020-03-14 00:39 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-03-14 00:39 - 2020-03-14 00:39 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-03-14 00:39 - 2020-03-14 00:39 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-03-14 00:39 - 2020-03-14 00:39 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-03-14 00:39 - 2020-03-14 00:39 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-03-14 00:39 - 2020-03-14 00:39 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-03-14 00:07 - 2020-03-14 00:08 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\BraveSoftware
2020-03-14 00:07 - 2020-03-14 00:07 - 001298328 _____ (BraveSoftware Inc.) C:\Users\TimeMachine\Downloads\BraveBrowserSetup.exe
2020-03-11 21:07 - 2020-03-11 21:07 - 000000000 ____D C:\Users\TimeMachine\Documents\Mount&Blade With Fire and Sword
2020-03-11 21:07 - 2020-03-11 21:07 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\Mount&Blade With Fire and Sword
2020-03-11 00:39 - 2020-03-11 00:39 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 018027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 011607552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 007905784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 006436352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 006084344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 005112832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 004855808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
 
2020-03-11 00:39 - 2020-03-11 00:39 - 004622280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 004580352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 004471296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 004129648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 004048896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003971808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003819520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003728896 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003587896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 003552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003488768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003371720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003243296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 003143168 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 002956688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002875904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 002773568 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002768440 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-03-11 00:39 - 2020-03-11 00:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-03-11 00:39 - 2020-03-11 00:39 - 002740736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002715648 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 002698040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002522112 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002474496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002315680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002259872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002087376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002072664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 002021888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001999952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001985104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001972536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001867816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001823232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001770552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-03-11 00:39 - 2020-03-11 00:39 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001684992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001665416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001657120 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 001490640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001484600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
 
2020-03-11 00:39 - 2020-03-11 00:39 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 001417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001396152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-03-11 00:39 - 2020-03-11 00:39 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-03-11 00:39 - 2020-03-11 00:39 - 001282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001218632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001190912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 001108040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001054376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001031680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001007672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000983896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000945384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000935040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000929144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000908504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000877232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000833616 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000776488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000769552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000757632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000734720 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000668296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000642216 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000627216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-03-11 00:39 - 2020-03-11 00:39 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-03-11 00:39 - 2020-03-11 00:39 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000522384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000478792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-03-11 00:39 - 2020-03-11 00:39 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-03-11 00:39 - 2020-03-11 00:39 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Acx01000.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacEncoder.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000250896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacEncoder.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
 
2020-03-11 00:39 - 2020-03-11 00:39 - 000224056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000222520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000213984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000180232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000165504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000133944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000120560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000102760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-03-11 00:39 - 2020-03-11 00:39 - 000098104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000089616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000066336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000056632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000042336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-03-11 00:39 - 2020-03-11 00:39 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000030008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-03-11 00:39 - 2020-03-11 00:39 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2020-03-11 00:39 - 2020-03-11 00:39 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUserRes.dll
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-03-11 00:39 - 2020-03-11 00:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-03-11 00:36 - 2020-02-10 21:48 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-03-11 00:36 - 2020-02-10 21:37 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-03-09 21:10 - 2020-03-09 21:10 - 000000222 _____ C:\Users\TimeMachine\Desktop\Zombies Monsters Robots.url
2020-03-08 02:02 - 2020-03-08 02:02 - 000005852 _____ C:\Users\TimeMachine\Desktop\Superposition_Benchmark_v1.1_5193_1583658134841.score
2020-03-08 01:52 - 2020-03-08 01:52 - 000006025 _____ C:\Users\TimeMachine\Desktop\Superposition_Benchmark_v1.1_5169_1583657503035.score
2020-03-08 00:11 - 2020-03-08 03:49 - 001065984 _____ C:\Users\TimeMachine\AppData\Local\file__0.localstorage
2020-03-08 00:11 - 2020-03-08 00:48 - 000000000 ____D C:\Users\TimeMachine\Heaven
2020-03-08 00:10 - 2020-03-08 00:10 - 000002199 _____ C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk
2020-03-08 00:10 - 2020-03-08 00:10 - 000002199 _____ C:\ProgramData\Desktop\Heaven Benchmark 4.0.lnk
2020-03-08 00:10 - 2020-03-08 00:10 - 000000000 ____D C:\Program Files (x86)\Unigine
2020-03-08 00:08 - 2020-03-08 00:10 - 258728440 _____ (Unigine Corp. ) C:\Users\TimeMachine\Downloads\Unigine_Heaven-4.0.exe
2020-03-07 22:59 - 2020-03-07 22:59 - 000199587 _____ C:\Users\TimeMachine\Desktop\auto undervolt.3dmark-result
2020-03-07 22:43 - 2020-03-07 22:43 - 000201939 _____ C:\Users\TimeMachine\Desktop\Stock xt.3dmark-result
2020-03-07 21:43 - 2020-03-07 21:43 - 000000000 ____D C:\Users\Default\AppData\Local\D3DSCache
2020-03-07 21:43 - 2020-03-07 21:43 - 000000000 ____D C:\Users\Default\AppData\Local\AMD
2020-03-07 21:43 - 2020-03-07 21:43 - 000000000 ____D C:\Users\Default User\AppData\Local\D3DSCache
2020-03-07 21:43 - 2020-03-07 21:43 - 000000000 ____D C:\Users\Default User\AppData\Local\AMD
2020-03-07 15:52 - 2020-03-07 15:53 - 001899064 _____ (CPUID, Inc. ) C:\Users\TimeMachine\Downloads\cpu-z_1.91-en.exe
2020-03-06 22:43 - 2020-03-06 22:43 - 000000000 ____D C:\Users\TimeMachine\AppData\LocalLow\AMD
2020-03-06 22:42 - 2020-04-02 02:23 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\D3DSCache
2020-03-06 22:41 - 2020-03-06 22:42 - 000000000 ____D C:\ProgramData\AMD
2020-03-06 22:41 - 2020-03-06 22:41 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\RadeonInstaller
2020-03-06 22:37 - 2020-03-06 22:40 - 502921512 _____ (AMD Inc.) C:\Users\TimeMachine\Downloads\win10-radeon-software-adrenalin-2020-edition-20.2.2-mar5.exe
2020-03-04 19:57 - 2020-03-04 19:57 - 000000000 ____D C:\Users\TimeMachine\Desktop\DragonLance - Chronicles 01 - Dragons of Autumn Twilight
2020-03-04 19:22 - 2020-03-04 19:22 - 173874518 _____ C:\Users\TimeMachine\Downloads\Foldit-win_x86.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-03 19:54 - 2020-02-05 00:15 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\uTorrent
2020-04-03 19:54 - 2019-10-13 08:39 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-03 17:28 - 2019-10-14 07:46 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\BitTorrentHelper
2020-04-03 17:25 - 2020-02-16 22:56 - 000000097 _____ C:\Users\TimeMachine\Desktop\Tv Shows.txt
2020-04-03 17:08 - 2019-10-13 07:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-04-03 15:07 - 2019-10-13 08:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-03 15:02 - 2020-02-19 13:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-04-03 14:04 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-04-03 14:01 - 2019-12-11 09:33 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2020-04-03 14:01 - 2019-10-13 08:26 - 000003104 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2020-04-03 14:01 - 2019-08-11 04:27 - 000000000 ____D C:\Users\TimeMachine\AppData\LocalLow\Mozilla
2020-04-01 00:55 - 2019-10-14 08:25 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\vlc
2020-04-01 00:51 - 2019-12-02 15:18 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2020-04-01 00:51 - 2019-12-02 15:18 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2020-04-01 00:51 - 2019-11-17 15:22 - 000002594 _____ C:\WINDOWS\system32\Tasks\AMDAutoUpdate
2020-04-01 00:51 - 2019-10-30 02:55 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-01 00:51 - 2019-10-30 02:55 - 000003124 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-01 00:51 - 2019-10-29 01:32 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-04-01 00:51 - 2019-10-29 01:32 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-04-01 00:51 - 2019-10-20 15:14 - 000002226 _____ C:\WINDOWS\system32\Tasks\Core Temp Autostart TimeMachine
2020-04-01 00:51 - 2019-10-13 08:26 - 000002388 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2020-04-01 00:51 - 2019-10-13 08:09 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1951528218-1203366226-1675654026-1001
2020-03-30 14:07 - 2019-10-13 08:25 - 000000000 ____D C:\ProgramData\Package Cache
2020-03-30 13:20 - 2019-08-11 05:21 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-03-30 01:57 - 2019-10-29 02:04 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\Battle.net
2020-03-27 14:05 - 2019-10-19 17:30 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\CrashDumps
2020-03-26 22:51 - 2019-10-13 08:05 - 000005768 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-26 22:18 - 2019-10-13 08:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-26 00:30 - 2019-10-13 08:42 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-03-25 02:23 - 2019-10-14 08:04 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-03-24 06:47 - 2019-10-13 08:45 - 000000000 ____D C:\WINDOWS\INF
2020-03-23 20:44 - 2020-01-28 23:25 - 000000000 ____D C:\ProgramData\AVG
2020-03-23 16:15 - 2020-01-28 23:26 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\AVG
2020-03-23 16:13 - 2019-10-13 08:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-03-23 16:08 - 2019-10-29 01:32 - 000000868 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-03-23 16:08 - 2019-10-29 01:32 - 000000868 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-03-23 15:49 - 2020-01-29 02:35 - 000000000 ____D C:\Program Files (x86)\Warcraft III
2020-03-23 15:43 - 2019-10-29 02:03 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-03-21 14:20 - 2019-10-13 07:57 - 000002390 _____ C:\Users\TimeMachine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-21 14:20 - 2019-08-11 04:26 - 000000000 ___RD C:\Users\TimeMachine\OneDrive
2020-03-20 21:44 - 2019-10-13 08:24 - 000000000 ____D C:\Program Files\AMD
2020-03-20 21:43 - 2019-10-13 08:26 - 000000000 ____D C:\Program Files (x86)\AMD
2020-03-20 21:26 - 2019-08-11 05:06 - 000000000 ____D C:\AMD
2020-03-19 17:02 - 2019-10-13 08:01 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-03-19 10:21 - 2019-10-30 02:55 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-18 12:16 - 2020-03-02 09:36 - 001730984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2020-03-18 12:15 - 2020-03-02 09:36 - 000198112 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2020-03-18 12:15 - 2020-03-02 09:35 - 000167720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2020-03-17 00:40 - 2019-10-20 07:01 - 000007631 _____ C:\Users\TimeMachine\AppData\Local\Resmon.ResmonCfg
2020-03-16 21:14 - 2019-10-13 07:57 - 000000000 ____D C:\Users\TimeMachine
2020-03-16 03:12 - 2020-02-24 19:31 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-03-16 01:27 - 2019-10-30 00:39 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\Origin
2020-03-16 01:27 - 2019-10-30 00:39 - 000000000 ____D C:\ProgramData\Origin
2020-03-16 01:26 - 2019-10-30 00:40 - 000000000 ____D C:\Program Files (x86)\Origin
2020-03-16 01:26 - 2019-10-30 00:39 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\Origin
2020-03-15 23:17 - 2019-10-13 08:07 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\Packages
2020-03-15 22:28 - 2019-11-24 23:49 - 000000000 ____D C:\Users\TimeMachine\AppData\Roaming\MPC-HC
2020-03-15 22:28 - 2019-10-13 08:42 - 000000000 ____D C:\WINDOWS\Panther
2020-03-15 21:27 - 2019-08-12 09:53 - 000000000 ___RD C:\Users\TimeMachine\Desktop\OC
2020-03-15 21:24 - 2019-10-06 22:52 - 000000000 ____D C:\Users\TimeMachine\Desktop\Rarely Used
2020-03-15 20:08 - 2019-10-13 08:46 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-15 17:41 - 2020-01-30 22:42 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-03-15 10:22 - 2019-12-12 02:21 - 000052360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2020-03-15 10:22 - 2019-10-18 12:50 - 001340856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2020-03-15 10:22 - 2019-10-18 12:50 - 000149432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2020-03-15 10:22 - 2019-10-18 12:50 - 000088504 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2020-03-15 10:22 - 2019-10-18 12:50 - 000031672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2020-03-14 20:01 - 2019-11-18 16:26 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-03-14 02:54 - 2019-10-29 22:49 - 000000000 ____D C:\Program Files\Private Internet Access
2020-03-14 02:52 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-03-14 02:52 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-03-14 02:52 - 2019-10-13 08:15 - 000001010 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-03-14 02:52 - 2019-10-13 08:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-03-14 00:40 - 2019-10-13 08:42 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-03-11 01:02 - 2019-08-11 04:25 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-03-11 01:02 - 2019-08-11 04:25 - 000000000 ___RD C:\Users\TimeMachine\3D Objects
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\SystemResources
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\system32\setup
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-03-11 01:01 - 2019-10-13 08:46 - 000000000 ____D C:\Program Files\Windows Defender
2020-03-11 01:01 - 2019-10-13 08:42 - 000000000 ____D C:\WINDOWS\servicing
2020-03-11 01:01 - 2019-10-13 07:53 - 000258768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-03-11 00:42 - 2019-10-13 10:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-11 00:41 - 2019-10-13 10:26 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-03-10 23:52 - 2019-12-28 23:50 - 000002026 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-03-10 23:52 - 2019-12-28 23:50 - 000002026 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-03-10 23:52 - 2019-10-13 08:35 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\cache
2020-03-10 23:51 - 2019-10-14 08:04 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-03-09 20:43 - 2020-01-29 02:37 - 002719256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2020-03-08 03:46 - 2019-08-11 20:59 - 000000000 ____D C:\Users\TimeMachine\Documents\Shadow of the Tomb Raider
2020-03-08 03:00 - 2019-08-11 18:52 - 000000000 ____D C:\Users\TimeMachine\Documents\3DMark
2020-03-08 02:23 - 2020-01-30 22:59 - 000002599 _____ C:\Users\TimeMachine\Desktop\Super.txt
2020-03-08 02:02 - 2020-01-13 22:18 - 000000000 ____D C:\Users\TimeMachine\Superposition
2020-03-08 00:10 - 2020-01-13 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2020-03-07 15:53 - 2019-10-17 08:13 - 000000919 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2020-03-07 15:53 - 2019-10-17 08:13 - 000000919 _____ C:\ProgramData\Desktop\CPUID CPU-Z.lnk
2020-03-06 22:42 - 2019-10-13 08:07 - 000000000 ____D C:\Users\TimeMachine\AppData\Local\AMD

==================== Files in the root of some directories ========

2020-03-15 23:13 - 2020-03-15 23:13 - 000359933 _____ () C:\Users\TimeMachine\AppData\Local\ars.cache
2020-03-15 23:13 - 2020-03-15 23:13 - 000942452 _____ () C:\Users\TimeMachine\AppData\Local\census.cache
2020-02-22 02:06 - 2020-02-22 02:06 - 000000000 _____ () C:\Users\TimeMachine\AppData\Local\D27AAF.tmp
2020-03-08 00:11 - 2020-03-08 03:49 - 001065984 _____ () C:\Users\TimeMachine\AppData\Local\file__0.localstorage
2020-03-15 22:57 - 2020-03-15 22:57 - 000000036 _____ () C:\Users\TimeMachine\AppData\Local\housecall.guid.cache
2019-10-20 07:01 - 2020-03-17 00:40 - 000007631 _____ () C:\Users\TimeMachine\AppData\Local\Resmon.ResmonCfg
2020-03-15 23:02 - 2020-03-15 23:02 - 000000010 _____ () C:\Users\TimeMachine\AppData\Local\sponge.last.runtime.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-03-2020
Ran by TimeMachine (03-04-2020 20:00:04)
Running from C:\Users\TimeMachine\Desktop
Windows 10 Home Version 1909 18363.720 (X64) (2019-10-13 15:07:53)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1951528218-1203366226-1675654026-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1951528218-1203366226-1675654026-503 - Limited - Disabled)
Guest (S-1-5-21-1951528218-1203366226-1675654026-501 - Limited - Enabled)
TimeMachine (S-1-5-21-1951528218-1203366226-1675654026-1001 - Administrator - Enabled) => C:\Users\TimeMachine
WDAGUtilityAccount (S-1-5-21-1951528218-1203366226-1675654026-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: COMODO Firewall (Enabled) {3D9428CB-50D2-A37E-F90F-1D238F042427}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1951528218-1203366226-1675654026-1001\...\uTorrent) (Version: 3.5.5.45505 - BitTorrent Inc.)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.0.2.1271 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.3.1 - Advanced Micro Devices, Inc.)
APP Shop v1.0.41 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.41 - ASRock Inc.)
ASUS MultiFrame (HKLM-x32\...\{FB4D076A-DEFD-4EAF-AD63-70D5A3BC262A}) (Version: 1.1.1 - ASUS)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.1.3112 - AVG Technologies)
Balanced (HKLM-x32\...\{0EA45DD4-A825-420C-AFED-C659EFE3B84F}) (Version: 4.00.0000 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.62.35851 - Electronic Arts)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.64 - Piriform)
Core Temp 1.15.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15.1 - ALCPU)
CPUID CPU-Z 1.91 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.91 - CPUID, Inc.)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Diablo II (HKLM-x32\...\Diablo II) (Version: 0.0.0.0 - Blizzard Entertainment)
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FAHClient (HKLM-x32\...\FAHClient) (Version: 7.5.1 - Folding@home.org)
Futuremark SystemInfo (HKLM-x32\...\{A93C08EF-FEB5-49B0-BA5C-2149018683B5}) (Version: 5.26.809.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.149 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-1951528218-1203366226-1675654026-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0010 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
MorePowerTool (HKLM-x32\...\{182DC641-57F9-4391-ADD4-17B921B03743}) (Version: 1.1.1.0 - R.B.R.T Red BIOS Rebellion Team / RTG)
Mozilla Firefox 74.0 (x64 en-US) (HKLM\...\Mozilla Firefox 74.0 (x64 en-US)) (Version: 74.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 69.0.3 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NVIDIA PhysX (HKLM-x32\...\{54194F60-988C-4D03-B922-C2B00EFDA39A}) (Version: 9.10.0222 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Opera Stable 67.0.3575.115 (HKU\S-1-5-21-1951528218-1203366226-1675654026-1001\...\Opera 67.0.3575.115) (Version: 67.0.3575.115 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.65.38147 - Electronic Arts, Inc.)
Path of Diablo Launcher (HKLM-x32\...\{DE70C6E8-1803-4AF4-8F94-B39062688E21}) (Version: 1.0.0 - Path of Diablo)
Private Internet Access (HKLM\...\{33023371-7761-4F81-BBB1-0E0D0D175ACF}) (Version: 1.8.0+04193 - Private Internet Access, Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.1 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.35.510.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8730.1 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.16.196 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Tom Clancy's The Division 2 (HKLM-x32\...\Uplay Install 4932) (Version: - Ubisoft)
Unigine Superposition Benchmark 1.1 (HKLM\...\Superposition_is1) (Version: 1.1 - UNIGINE)
Uplay (HKLM-x32\...\Uplay) (Version: 102.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
WifiAutoInstall version 2.0.0.10 (HKLM\...\{BBADB2D6-0408-42D0-AAF8-B79D3E8B994C}_is1) (Version: 2.0.0.10 - Realtek, Inc.)
WinDirStat 1.1.2 (HKU\S-1-5-21-1951528218-1203366226-1675654026-1001\...\WinDirStat) (Version: - )
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)

Packages:
=========
Cinebench -> C:\Program Files\WindowsApps\MAXONComputerGmbH.Cinebench_20.0.6.0_x64__rsne5bsk8s7tj [2019-11-18] (MAXON Computer GmbH)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2019-10-18] (Microsoft Corporation)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2019-10-18] (Microsoft Corporation)
DiRT Rally 2.0 (Windows) -> C:\Program Files\WindowsApps\Mutable\CodemastersSoftwareCompan.DiRTRally2.0Windows_1.129.2193.0_x64__4cfye3zbe1gaw [2019-11-20] (Codemasters Software Company Limited)
Dishonored 2 -> C:\Program Files\WindowsApps\BethesdaSoftworks.Dishonored2-PC_1.0.9.0_x64__3275kfvn8vcwc [2019-10-21] (Bethesda Softworks)
EVERSPACE™ -> C:\Program Files\WindowsApps\ROCKFISHGames.EVERSPACE_1.2.10.2_x64__wm11qtfe9fmzj [2019-10-19] (ROCKFISH Games)
Gaming Services -> C:\Program Files\WindowsApps\Microsoft.GamingServices_1.39.6001.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation)
Gears 5 -> C:\Program Files\WindowsApps\Microsoft.HalifaxBaseGame_1.1.108.0_x64__8wekyb3d8bbwe [2019-11-08] (0)
Hulu -> C:\Program Files\WindowsApps\HuluLLC.HuluPlus_2.5.5.0_neutral__fphbd361v8tya [2019-12-09] (Hulu.)
Mail and Calendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20368.0_x64__8wekyb3d8bbwe [2019-11-18] (Microsoft Corporation) [MS Ad]
Metro Exodus (Windows) -> C:\Program Files\WindowsApps\DeepSilver.ProjectWindfall_1.0.19.0_x64__hmv7qcest37me [2019-10-20] (Koch Media GmbH)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-13] (Microsoft Corporation) [MS Ad]
Middle-earth™: Shadow of War™ -> C:\Program Files\WindowsApps\WarnerBros.Interactive.WB-Kraken_1.0.28.2_x64__ktmk1xygcecda [2019-10-19] (Warner Bros. Interactive)
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-10-13] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-12-09] (Netflix, Inc.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.183.0_x64__dt26b99r8h8gj [2019-10-17] (Realtek Semiconductor Corp)
ReCore -> C:\Program Files\WindowsApps\Microsoft.ReCore_1.1.7468.2_x64__8wekyb3d8bbwe [2019-10-19] (Microsoft Studios)
Shadow Warrior 2 Win 10 -> C:\Program Files\WindowsApps\DevolverDigital.ShadowWarrior2Win10_1.0.0.0_x64__6kzv4j18v0c96 [2019-10-19] (Devolver Digital)
Smoke and Sacrifice -> C:\Program Files\WindowsApps\CurveDigital.SmokeandSacrificePC_1.0.1.0_x64__1ezqdnbhnc70m [2019-10-19] (Curve Digital)
The Outer Worlds -> C:\Program Files\WindowsApps\PrivateDivision.TheOuterWorldsWindows10_1.1.387.0_x64__hv3d7yfbgr2rp [2019-11-18] (Private Division)
Wolfenstein II: DLC0 -> C:\Program Files\WindowsApps\BethesdaSoftworks.Theactualassets_1.0.0.0_x64__3275kfvn8vcwc [2019-10-20] (Bethesda Softworks)
Wolfenstein II: The New Colossus -> C:\Program Files\WindowsApps\BethesdaSoftworks.WolfensteinIITheNewColossus-Game_1.5.0.0_x64__3275kfvn8vcwc [2019-10-20] (Bethesda Softworks)
Xbox (Beta) -> C:\Program Files\WindowsApps\Microsoft.GamingApp_1911.1001.8.0_x64__8wekyb3d8bbwe [2019-11-18] (Microsoft Corporation) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-03-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-03-23] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-07-18 12:11 - 2019-07-18 12:11 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2020-03-17 17:01 - 2020-03-17 17:01 - 001518592 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2019-10-30 00:40 - 2020-03-16 01:26 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-10-30 00:40 - 2020-03-16 01:26 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-10-30 00:40 - 2020-03-16 01:26 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-03-16 01:26 - 2020-03-16 01:26 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-03-16 01:26 - 2020-03-16 01:26 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-03-16 01:26 - 2020-03-16 01:26 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-03-16 01:26 - 2020-03-16 01:26 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-03-16 01:26 - 2020-03-16 01:26 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-03-16 01:26 - 2020-03-16 01:26 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000413696 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000519168 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 001431040 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 001180672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000058368 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt\labs\folderlistmodel\qmlfolderlistmodelplugin.dll
2020-03-17 17:10 - 2020-03-17 17:10 - 006010880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 006345216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 001078272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 004000256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 003802624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
 
2019-07-18 12:11 - 2019-07-18 12:11 - 001083904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000376320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 092323328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 005560832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000188416 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 002888704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000287232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000329216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000312320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-07-18 12:11 - 2019-07-18 12:11 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-03-17 17:10 - 2020-03-17 17:10 - 000085504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\TimeMachine\Application Data:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\TimeMachine\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-10-13 08:46 - 2019-10-13 08:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2020-02-06 03:30 - 2020-02-06 03:30 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1951528218-1203366226-1675654026-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\TimeMachine\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\wp1880340-1440p-wallpapers.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: SoftEther Lightweight Network Protocol -> SeLow (enabled)
VPN - VPN Client: SoftEther Lightweight Network Protocol -> SeLow (enabled)
Local Area Connection: SoftEther Lightweight Network Protocol -> SeLow (enabled)
Ethernet: SoftEther Lightweight Network Protocol -> SeLow (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "IseUI"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{353419CB-272D-44C8-8E06-270BA6D7DAE9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A30D0C8A-452A-45E3-9AE8-8AA01BB87C75}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EED48A2A-2004-46D2-BF9E-54FBF8844080}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7752DE1D-70CD-4269-BB53-62F8F2B7768B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A508D89B-D3E6-4825-BE9D-9283773C8E7A}] => (Allow) E:\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe () [File not signed]
FirewallRules: [{FD2AFC1F-3467-4045-8356-E7FF7335304B}] => (Allow) E:\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe () [File not signed]
FirewallRules: [{B5DDACFB-E95D-46A9-8F1B-021CBF9C312B}] => (Allow) E:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe () [File not signed]
FirewallRules: [{C3599EF7-6F69-4D83-BDFD-36FF609F732F}] => (Allow) E:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe () [File not signed]
FirewallRules: [{6C5BB03D-543E-46DC-8371-B9FBFC18DB8B}] => (Allow) E:\Steam\steamapps\common\ZOMBI\ZOMBI.exe (Tantalus Media Pty Ltd -> ) [File not signed]
FirewallRules: [{B291DB85-AF3B-4F41-A525-FA868678D064}] => (Allow) E:\Steam\steamapps\common\ZOMBI\ZOMBI.exe (Tantalus Media Pty Ltd -> ) [File not signed]
FirewallRules: [{7E88B2D9-1FEA-4D8F-A594-EA23B278F77F}] => (Allow) E:\Steam\steamapps\common\Wolfenstein The Old Blood\WolfOldBlood_x64.exe (MachineGames) [File not signed]
FirewallRules: [{7707E289-1D62-4F51-B1AA-24A30A213195}] => (Allow) E:\Steam\steamapps\common\Wolfenstein The Old Blood\WolfOldBlood_x64.exe (MachineGames) [File not signed]
FirewallRules: [TCP Query User{D2EEA4AB-3454-4489-AF85-4B44895BF6E8}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{C80E02FE-0B05-478F-9F67-291872F952A0}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{40C8712A-B470-4614-8860-75AACC0B665B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{EA04B3DC-9E89-42AB-9AD9-350F8B9D4E8A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{ABA5529C-38C3-496B-A7F5-1408C763EDFC}C:\program files\epic games\reddeadredemption2\rdr2.exe] => (Allow) C:\program files\epic games\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{FDB21A87-EBBD-4A62-9202-CD81432AEB77}C:\program files\epic games\reddeadredemption2\rdr2.exe] => (Allow) C:\program files\epic games\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{A88B3C2A-919C-45F6-AC58-B46B3B88BE45}] => (Block) C:\program files\epic games\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{3A43D85C-B2BF-4CED-B135-5A58C79AD6EE}] => (Block) C:\program files\epic games\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{29EE8CD7-0D8E-49C3-BB04-D7D5D831D157}] => (Allow) D:\CC\steamapps\common\Mordhau\Mordhau.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{6D8E575D-55E0-4644-9434-B60EC9516FDA}] => (Allow) D:\CC\steamapps\common\Mordhau\Mordhau.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{0C92A53C-2003-4209-A737-C113B56519DF}] => (Allow) D:\CC\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark)
FirewallRules: [{F1B2DE07-5BDC-4ED5-8A96-A950218198EB}] => (Allow) D:\CC\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark)
FirewallRules: [TCP Query User{01F93F2D-2076-41B2-BB73-C569E1545840}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{2C39A3DB-403F-4979-BD77-E50BD04963EB}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{721BF7AA-8B49-4FB5-8A66-AB222A0D3544}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{0AE232FF-A7C1-4A24-A483-FFC3C9044CDF}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{EA4E19D3-EE35-42C6-84A7-955733944ACB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{5E5CCEFC-8DB0-4F86-9A5A-DBEB2E0B5DBB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{B9926C46-8751-464F-A307-DBEBEB598DB9}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{5CD8F008-CC2E-4A8F-87A3-88393113397D}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{127805D6-3255-42A7-BF3B-60DDC8A80884}] => (Allow) C:\Program Files\Unigine\Superposition Benchmark\bin\launcher.exe (UNIGINE LLC -> UNIGINE)
FirewallRules: [{C0D1A8FE-F960-4FF6-A3EB-2D47638E3DBF}] => (Allow) C:\Program Files\Unigine\Superposition Benchmark\bin\launcher.exe (UNIGINE LLC -> UNIGINE)
FirewallRules: [{D6E9E696-C838-49A5-BDBC-D0204C367F26}] => (Allow) C:\Program Files\Unigine\Superposition Benchmark\bin\superposition.exe (UNIGINE LLC -> UNIGINE)
FirewallRules: [{91BE527C-80F3-41A6-ABE2-2E70632F26E4}] => (Allow) C:\Program Files\Unigine\Superposition Benchmark\bin\superposition.exe (UNIGINE LLC -> UNIGINE)
FirewallRules: [{B2E54BD6-4A1A-4DEC-B0D6-AA1444AAA364}] => (Allow) D:\CC\steamapps\common\Metro 2033\metro2033.exe (THQ, Inc. -> 4A Games)
FirewallRules: [{4578DF7F-12E2-4894-B50C-D3496713C828}] => (Allow) D:\CC\steamapps\common\Metro 2033\metro2033.exe (THQ, Inc. -> 4A Games)
FirewallRules: [{F40D0D38-C884-482D-99EC-ABE80D10C2BC}] => (Allow) E:\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{E329EC30-640E-4076-ABB1-8F28128AA711}] => (Allow) E:\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{D59BF8CE-6768-4DF4-810F-CED0C7C37512}] => (Allow) C:\Users\TimeMachine\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{418313A5-92A1-4C4B-ADD6-00C1588A48E2}] => (Allow) C:\Users\TimeMachine\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{334A8EBA-2A40-450C-87A5-0B303AFD1B27}C:\program files (x86)\warcraft iii\x86_64\warcraft iii.exe] => (Allow) C:\program files (x86)\warcraft iii\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [UDP Query User{75524C76-BDEF-40A4-9F8A-C350A222B76D}C:\program files (x86)\warcraft iii\x86_64\warcraft iii.exe] => (Allow) C:\program files (x86)\warcraft iii\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [{DD018572-91F9-45AB-AA70-0AA2CA07EEBE}] => (Block) C:\program files (x86)\warcraft iii\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [{AD141268-494C-421F-AB36-032A2E0F213E}] => (Block) C:\program files (x86)\warcraft iii\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [{9CF8530C-C8E0-4DF3-A3F9-231172B4D273}] => (Allow) E:\Steam\steamapps\common\Hellbound Survival Mode\Hellbound.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{4537823F-4358-4CCE-AEB5-7B1AB87A513F}] => (Allow) E:\Steam\steamapps\common\Hellbound Survival Mode\Hellbound.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{3CEBBA4E-CF5B-4B71-ADFA-7315542103B3}] => (Allow) E:\Steam\steamapps\common\Hellbound Demo\Hellbound.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{13CFEAF2-B24D-4BC0-A594-812918D2778C}] => (Allow) E:\Steam\steamapps\common\Hellbound Demo\Hellbound.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{2825B933-E2DE-4640-9F5E-3566AA82E3CE}] => (Allow) E:\Steam\steamapps\common\Hellbound Demo\Hellbound\Binaries\Win64\Hellbound-Win64-Shipping.exe (Saibot Studios) [File not signed]
FirewallRules: [{734B1016-5059-4A25-8042-3FFF1D3D5CFE}] => (Allow) E:\Steam\steamapps\common\Hellbound Demo\Hellbound\Binaries\Win64\Hellbound-Win64-Shipping.exe (Saibot Studios) [File not signed]
FirewallRules: [TCP Query User{9CFC0A16-814E-42E0-AF04-6E33587DF979}C:\users\timemachine\downloads\downloader_diablo2_enus.exe] => (Allow) C:\users\timemachine\downloads\downloader_diablo2_enus.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{18B401EF-E5FA-420F-B4EB-951151F96AB0}C:\users\timemachine\downloads\downloader_diablo2_enus.exe] => (Allow) C:\users\timemachine\downloads\downloader_diablo2_enus.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{AB1DD033-89F2-4330-8956-84D8D3D7C617}] => (Block) C:\users\timemachine\downloads\downloader_diablo2_enus.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{5CD5367E-4F1F-4FC0-B4B7-72611724F529}] => (Block) C:\users\timemachine\downloads\downloader_diablo2_enus.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [TCP Query User{AB652B76-78C9-455A-BB71-77C2AC6829C8}C:\users\timemachine\downloads\downloader_diablo2_lord_of_destruction_enus.exe] => (Allow) C:\users\timemachine\downloads\downloader_diablo2_lord_of_destruction_enus.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{9F16F09B-F988-42DB-83E3-6C8E3C6553ED}C:\users\timemachine\downloads\downloader_diablo2_lord_of_destruction_enus.exe] => (Allow) C:\users\timemachine\downloads\downloader_diablo2_lord_of_destruction_enus.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{DBBAFB11-44C3-4033-A93E-4B20787816EE}] => (Block) C:\users\timemachine\downloads\downloader_diablo2_lord_of_destruction_enus.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{7F756FD7-65ED-4764-BA0A-0756B86A89BD}] => (Block) C:\users\timemachine\downloads\downloader_diablo2_lord_of_destruction_enus.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [{5D9F3E7B-6FA0-4EA3-9FF5-BCEC71F18E20}] => (Allow) E:\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{5D608EA4-4B1C-49D0-961B-F2DA364CF61F}] => (Allow) E:\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{00336F56-5C8F-4473-9B78-0C9B53616F83}] => (Allow) E:\Steam\steamapps\common\Mount and Blade\runme.exe () [File not signed]
FirewallRules: [{07C6B968-D1AF-4213-8C16-3499894F78CA}] => (Allow) E:\Steam\steamapps\common\Mount and Blade\runme.exe () [File not signed]
FirewallRules: [{A7840201-A80B-454E-AD40-08F5A97C88F5}] => (Allow) E:\Steam\steamapps\common\Mount & Blade With Fire and Sword\mb_wfas.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{562AEAD4-E53E-4FD4-BA1C-8B68D73B0982}] => (Allow) E:\Steam\steamapps\common\Mount & Blade With Fire and Sword\mb_wfas.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{CBCD37ED-D4CA-4DFC-998E-9CBCB6604B5E}] => (Allow) E:\Steam\steamapps\common\ZMR\ZMR-Launcher.exe (En Masse Entertainment -> En Masse Entertainment)
FirewallRules: [{F4E28A7A-D941-4C75-8995-BEB653B16B56}] => (Allow) E:\Steam\steamapps\common\ZMR\ZMR-Launcher.exe (En Masse Entertainment -> En Masse Entertainment)
FirewallRules: [TCP Query User{706947F6-8215-4007-B97E-D167793E47A5}C:\program files (x86)\fahclient\fahclient.exe] => (Allow) C:\program files (x86)\fahclient\fahclient.exe () [File not signed]
FirewallRules: [UDP Query User{2A940E70-C030-4E3B-AA07-26D02023A7A1}C:\program files (x86)\fahclient\fahclient.exe] => (Allow) C:\program files (x86)\fahclient\fahclient.exe () [File not signed]
FirewallRules: [{EEE885DE-842F-4AD8-8FFF-C144A2E571DC}] => (Block) C:\program files (x86)\fahclient\fahclient.exe () [File not signed]
FirewallRules: [{34BBA182-AF95-4730-B84B-8BA00F71B5B0}] => (Block) C:\program files (x86)\fahclient\fahclient.exe () [File not signed]
FirewallRules: [{DC7EC3D8-4EDD-4912-AFB7-42F4DD64E45F}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{B5AE962A-5E28-4B19-852D-305CE9464099}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{04A2AD5B-B251-4A90-AA7C-B3ED60124CF8}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{69C2B208-8534-4E67-9B3E-ED89BDA8A6BA}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{A925963E-1B13-45E5-A342-7EFDF3EA82EA}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{2F4BB0D9-10D2-4B12-A383-1A31FCE08075}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{213956EF-4741-417E-AAB8-FD0E8E2FD88A}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{50B76F90-86D6-47E7-9C26-34F64A017C31}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{E0526EDE-C85C-42B2-899D-C1AFDF2F7139}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{E6548F94-3C62-4D0E-B763-55746D74E598}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{C773E784-F927-41E4-9659-C5593F746674}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe () [File not signed]
FirewallRules: [{D519A969-938D-439C-9037-A2628E5E0823}] => (Allow) E:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe () [File not signed]
FirewallRules: [{85BB2D6F-A727-45BA-9E60-F14E14328056}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{CEC03A25-5AEC-47F3-9D72-C58146F07DAB}] => (Allow) E:\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> )
FirewallRules: [{45AE81CE-92F4-433B-B064-6EAB64E6F8B5}] => (Allow) E:\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> )
FirewallRules: [{FF064EAE-2784-487A-927E-88142A7C2EE4}] => (Allow) D:\CC\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> )
FirewallRules: [{473744DF-EE85-4C20-8604-A58BA59F50B5}] => (Allow) D:\CC\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> )
FirewallRules: [{1E484316-7C66-41E0-B4ED-694A0D341353}] => (Allow) D:\CC\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> )
FirewallRules: [{D0694CB0-D473-4738-9BFE-C0A6CD705B10}] => (Allow) D:\CC\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> )
FirewallRules: [TCP Query User{F53176E7-A29A-4B9A-8130-F2653DC768CD}E:\blizzard games\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\blizzard games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{34B4CB2C-AAE1-480F-950F-CB861E5B1A0B}E:\blizzard games\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\blizzard games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{4FF4DEC4-F47E-45BC-9222-CE370E3E60DC}] => (Block) E:\blizzard games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{7D3CFF0D-57E3-489F-8E8F-5C07970081E1}] => (Block) E:\blizzard games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{FD86EE31-69A4-45C2-B510-FD618535A488}] => (Allow) E:\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{D3F24A98-12F5-482C-8EA2-E594127CECC1}] => (Allow) E:\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]

==================== Restore Points =========================

20-03-2020 21:43:24 Radeon Installer
30-03-2020 00:36:33 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (04/03/2020 08:00:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1276,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/03/2020 05:33:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13400,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/03/2020 03:12:41 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8824,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/03/2020 02:55:28 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11328,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/03/2020 02:30:28 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3700,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/03/2020 02:12:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10028,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/02/2020 10:38:30 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5704,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/02/2020 07:58:17 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6800,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (04/03/2020 02:01:06 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\WINDOWS\system32\Rtlihvs.dll
Error Code: 126

Error: (04/01/2020 04:09:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\WINDOWS\system32\Rtlihvs.dll
Error Code: 126

Error: (03/31/2020 10:19:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\WINDOWS\system32\Rtlihvs.dll
Error Code: 126

Error: (03/30/2020 09:41:59 PM) (Source: DCOM) (EventID: 10010) (User: DESKJ)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.

Error: (03/30/2020 01:11:56 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\WINDOWS\system32\Rtlihvs.dll
Error Code: 126

Error: (03/29/2020 02:57:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Push Notifications User Service_689d0a0 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (03/28/2020 10:15:10 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\WINDOWS\system32\Rtlihvs.dll
Error Code: 126

Error: (03/28/2020 03:02:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKJ)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.


Windows Defender:
===================================
Date: 2020-03-20 22:57:59.405
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {77726810-35D9-4550-ACC1-AFFC6A294F76}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-03-02 09:57:23.828
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {D5993F60-8938-4527-BC09-019112B51357}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2020-03-14 20:01:34.939
Description:
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-03-14 11:20:18.308
Description:
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-03-14 04:08:40.159
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.311.1182.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16800.2
Error code: 0x8007043c
Error description: This service cannot be started in Safe Mode

Date: 2020-03-14 03:58:38.378
Description:
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2020-03-06 22:34:32.191
Description:
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

CodeIntegrity:
===================================

Date: 2020-04-03 14:01:34.082
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-04-03 14:01:34.079
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-04-03 14:01:34.074
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-04-03 14:01:34.071
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-04-03 14:01:34.063
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-04-02 10:20:00.561
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-04-02 10:20:00.558
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-04-02 10:20:00.553
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P3.60 07/31/2019
Motherboard: ASRock B450M Pro4
Processor: AMD Ryzen 7 3700X 8-Core Processor
Percentage of memory in use: 45%
Total physical RAM: 16315.4 MB
Available physical RAM: 8901.77 MB
Total Virtual: 18747.4 MB
Available Virtual: 7258.57 MB

==================== Drives ================================

Drive c: (Trion) (Fixed) (Total:446.5 GB) (Free:104.94 GB) NTFS
Drive d: (HardDrive) (Fixed) (Total:596.16 GB) (Free:511.03 GB) NTFS
Drive e: (4 TB) (Fixed) (Total:3726.01 GB) (Free:1776.02 GB) NTFS

\\?\Volume{ae44e576-226f-461d-abc4-9c053a52f173}\ (Recovery) (Fixed) (Total:0.52 GB) (Free:0.14 GB) NTFS
\\?\Volume{096da351-2f6d-7942-5107-31114209c06e}\ () (Fixed) (Total:57.66 GB) (Free:0 GB) NTFS
\\?\Volume{32f512e0-7f17-5bcb-ee20-8936fb4fc815}\ () (Fixed) (Total:0 GB) (Free:0 GB) NTFS
\\?\Volume{e4b599f6-25c5-7f16-f454-cc5bd8dfd2b3}\ () (Fixed) (Total:53.1 GB) (Free:0 GB) NTFS
\\?\Volume{a0743efe-f048-7663-2981-72186611d71c}\ () (Fixed) (Total:1.7 GB) (Free:0 GB) NTFS
\\?\Volume{d2e1b529-0924-5188-90a2-934f6f20e2ea}\ () (Fixed) (Total:60.69 GB) (Free:0 GB) NTFS
\\?\Volume{71253f95-d4d1-89a0-f41c-98be6da1e8d6}\ () (Fixed) (Total:13.34 GB) (Free:0 GB) NTFS
\\?\Volume{64c3d972-b60f-b8e2-6b54-03221b18ccb6}\ () (Fixed) (Total:93.89 GB) (Free:0 GB) NTFS
\\?\Volume{76af879c-ceb7-1f93-1c02-8d772133cb04}\ () (Fixed) (Total:37.12 GB) (Free:0 GB) NTFS
\\?\Volume{6211fb5e-5e52-4d7b-b3e8-1545c5676fa1}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 596.2 GB) (Disk ID: 91709170)
Partition 1: (Active) - (Size=596.2 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 447.1 GB) (Disk ID: 532B0582)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 3.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 4.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 5.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 6.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 7.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 8.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 9.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 10.

==================== End of Addition.txt =======================
 
You must log in or register to reply here.

Similar threads

midian182
Jensen Huang on generative AI: Being successful won't depend on programming skills
Replies
8
Views
183
RandomWAN
R
midian182
Elon Musk cancels Don Lemon's show on X before debut following "tense" interview
2
Replies
38
Views
583
m3tavision
m3tavision
midian182
Man says bingeing Starfield saved his family from a fire
Replies
9
Views
455
Kam7r
K

Latest posts

Back