Inactive-A Help with FRST Log Please

[IIEleven11]

Hi, recently I was infected with a rootkit and several thousand dollars was promptly seperated from me. I have since dealt with the proper authorities and my bank. The issue is I still have reason to believe my PC is infected. I spend a lot of time at it and am a computer science major. I'm fairly familiar with how they work and I'm noticing strange proxy settings randomly turned on, I see remote PC settings turned on, remote pc log files I will find "hidden" in my documents, and its been running slower then usual. (I used to average 250 down 11 up on my wifi and now I'm lucky if I ever hit 100/5. Along with general system sluggishness) I am using my PC at home only. I have no need or reason to connect to anything remotely and I do not use a proxy service. After malwarebytes found the intial rootkit I formatted my PC and HDD and rebuilt windows from the ground up twice. I also obtained a few pcap's after the first format and after the second format. I'm not well enough informed to use them with any shred of effectiveness though. And yes I've felt the need to format and rebuild windows twice so far and I'm starting to lean towards wanting to do it again.

Malwarebytes comes back clean, Roguekiller comes back clean, windows defender comes back clean, malwarebytes antirootkit comes back clean. The only one that hits on anything is spybot, and I dont know if those are false positives or not. I have run FRST and will post the logs below along with a screenshot of what spybots anti rootkit hit on.

A little bit more about the intiial rootkit, I cant for the life of me remmeber what malwarebytes named or classified it as I just remember seeing rootkit and getting a package from amazon I didnt order. So I was somewhat seeing red, a bit frantic. But what it did was gained access to my gmail account. Put filters on my gmail account for my banking company and amazon. Then proceeded to my stored logins and sign into anything they could, bought themselves an apple watch and wire transferred the rest of the money of the period of two days. Because of the filters, I recieved no notifications anything was happening. It was the weekend so all I could do is sit and watch until monday. Luckily banks are insured and I was able to pull the persons phone number and possible address to give to the authorities. I do not know the outcome in regards to that though. So if anyone can please help it'd be much appreciated, thank you. I will post FRST and ADDiTION.TXT in two replies as theyre too long.

 

[IIEleven11]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-09-2020
Ran by jakem (30-09-2020 15:04:45)
Running from C:\Users\jakem\Downloads
Windows 10 Home Version 2004 19041.508 (X64) (2020-09-25 01:32:30)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1154741852-3201556293-3969415838-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1154741852-3201556293-3969415838-503 - Limited - Disabled)
Guest (S-1-5-21-1154741852-3201556293-3969415838-501 - Limited - Disabled)
jakem (S-1-5-21-1154741852-3201556293-3969415838-1001 - Administrator - Enabled) => C:\Users\jakem
skate (S-1-5-21-1154741852-3201556293-3969415838-1002 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1154741852-3201556293-3969415838-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}
FW: COMODO Firewall (Enabled) {3D87FB90-B561-70B4-3B0B-BCEFE7656ABC}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (HKLM-x32\...\{23170F69-40C1-2701-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.0.468 - Adobe Inc.)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_3) (Version: 24.3 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2_4) (Version: 21.2.4.323 - Adobe Inc.)
Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 13.7.0 - IObit)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.13 - ASUSTeK Computer Inc.)
Application Verifier x64 External Package (HKLM\...\{10CA1677-8F02-3131-F25C-780BAB52E468}) (Version: 10.1.18362.1 - Microsoft) Hidden
Autorun Angel 1.0.55 (HKLM-x32\...\{210F3CE3-C716-416C-99AE-7151A0968BF2}_is1) (Version: - NictaTech Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 85.1.14.84 - Brave Software Inc)
Child of Light (HKLM-x32\...\Uplay Install 609) (Version: - Ubisoft)
COMODO Internet Security Premium (HKLM\...\{0E9AFD45-C3BA-41D1-B54B-495A22CB3409}) (Version: 12.2.2.7036 - COMODO Security Solutions Inc.) Hidden
COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 12.2.2.7036 - COMODO Security Solutions Inc.)
CORSAIR iCUE Software (HKLM-x32\...\{229E0F5D-0FE7-4468-B856-DDF1B089345F}) (Version: 3.33.246 - Corsair)
DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Discord) (Version: 0.0.308 - Discord Inc.)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
icecap_collection_neutral (HKLM-x32\...\{EEF3770F-1EEF-4AA4-94E7-4B1DEBEED8B6}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{1E36C98F-0653-495C-B28E-433A6740ADB0}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{60C5BEEB-0865-45D8-AB7F-7F2E916EBEE4}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{7525DBB9-50C3-4924-BA87-CD21910F3DA3}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.6.472587.185 - Comodo)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
Kits Configuration Installer (HKLM-x32\...\{63AAA877-5536-9481-2385-28A082100D78}) (Version: 10.1.18362.1 - Microsoft) Hidden
LibreOffice 7.0.1.2 (HKLM\...\{B98796CE-B0AD-498E-81E4-986FA3BB20B9}) (Version: 7.0.1.2 - The Document Foundation)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: - Logitech)
Microsoft 365 Apps for enterprise - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.13127.20508 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.63 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft Network Monitor 3.4 (HKLM\...\{8C5B5A11-CBF8-451B-B201-77FAB0D0B77D}) (Version: 3.4.2350.0 - Microsoft Corporation)
Microsoft Network Monitor: NetworkMonitor Parsers 3.4 (HKLM\...\{963E5FEB-1367-46B9-851D-A957F1A3747F}) (Version: 3.4.2350.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM\...\{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32\...\{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29016 (HKLM-x32\...\{1aaa01ad-3069-4288-9c6f-37a140a8f6c7}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.7.3066.826 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 81.0 (x64 en-US) (HKLM\...\Mozilla Firefox 81.0 (x64 en-US)) (Version: 81.0 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSI Development Tools (HKLM-x32\...\{DB4DB790-64DD-1902-4BF2-833B3B6DBCA1}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
NordPass (HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\285d85e1-fc76-5a0e-ba2d-20241a7fe9d2) (Version: 2.10.2 - NordPass Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29066181 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29066181 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.48 - NVIDIA Corporation)
NVIDIA Graphics Driver 456.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.55 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20378 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden
ohm_lib (HKLM-x32\...\{74A6FE5F-E688-4B09-B67B-046BCD22253D}) (Version: 1.0.0 - Microsoft)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3.1 r3321 - Rainmeter)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
RogueKiller version 14.7.3.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.7.3.0 - Adlice Software)
SDK ARM Additions (HKLM-x32\...\{73681F86-CD86-4208-572F-959B45430B04}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{67EE3804-9642-62BA-EBF1-B1561FB4ECBE}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.2.1 - ShareX Team)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.8.68.0 - Safer-Networking Ltd.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Stardock Object Desktop (HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Object Desktop Manager) (Version: 4.01 - Stardock Software, Inc.)
Stardock Tiles (HKLM-x32\...\Tiles) (Version: 1.20 - Stardock Software, Inc.)
Stardock WindowBlinds™ (HKLM-x32\...\Stardock WindowBlinds™) (Version: 10.84 - Stardock Software, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TailExpert (HKLM-x32\...\{873CAA28-E28D-4378-A057-52F54DED7AB9}) (Version: 1.0.0 - Neware)
Unity Hub 2.4.0 (HKLM\...\{Unity Technologies - Hub}) (Version: 2.4.0 - Unity Technologies Inc.)
Universal CRT Extension SDK (HKLM-x32\...\{13952D7A-B7B3-F4F8-5F29-5CD18E8168B7}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{74CBC330-ED16-31B9-E8BE-0C6A8E67DE32}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{847D4DAF-0182-265B-324F-406462E8A90D}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{54FE4D23-11A2-F1C4-76E9-79C8FB40A4A1}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{9F7B0D96-881D-8850-C303-43F3A08E6902}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{6F54BF87-2EE6-FA6D-431D-33A665992D49}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{9807AE60-E138-4CB1-BD3C-679F23121DA0}) (Version: 14.27.29016 - Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32\...\f452b6de) (Version: 16.7.30517.126 - Microsoft Corporation)
VKTabletDriver (HKLM\...\DC6C14C4-4F50-4976-9A7D-191E107219FD_is1) (Version: 2.0.0.6 - Shenzhen Hezon Lito Technology Co.,Ltd.)
VS Immersive Activate Helper (HKLM-x32\...\{A71406B5-E487-4B01-8E59-D466841350F5}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{C7E8A4F2-EF09-42A8-B892-69D5ED99D965}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{CC46F5AE-F0CA-400C-A557-A95D742D4EE0}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{95E79BBC-97FD-4FEB-91B5-CC0231324812}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{804E218D-A59D-48B9-AD2A-13BF6F1C9DA0}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{3A735826-F946-4348-8DE2-0B9FF750F77D}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{EF1AD9BC-8273-4B78-ACB6-A35DF4CE4447}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{5F1382AE-D96A-4E32-989C-0A3C8C35CC23}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{87B66F22-97AC-4420-841B-2305F921B39F}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{760FF3F5-A7F3-4079-92DD-9AEB0344D13E}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{EC04CD66-C03A-470D-B0D2-4BBC87F6382D}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsi (HKLM-x32\...\{178ED1EA-BAFA-489D-873D-F5FB72EA69B9}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
WinAppDeploy (HKLM-x32\...\{8E3AE0EF-D067-700C-BDB4-10D5552155DC}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Windows Driver Package - VeiKk (WinUsb) USBDevice (03/27/2018 1.0.0.1) (HKLM\...\49CDB6956EA98C2483A3AA1DE55B32E48F35A45D) (Version: 03/27/2018 1.0.0.1 - VeiKk)
Windows SDK AddOn (HKLM-x32\...\{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.18362.1 (HKLM-x32\...\{126dedf0-cc0e-4b48-9ece-806b0e437195}) (Version: 10.1.18362.1 - Microsoft Corporation)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{E67F1F03-FB4A-3D61-8999-E6A4C4B26F34}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{7EF010FF-7800-28BA-FF49-2D219EC7BA82}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{36AE12FB-4349-6EAA-B6E4-5F4E06FA8AE8}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{6B03A6A4-643C-57CE-CA6F-4E19BF47497A}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{918A448F-59E8-FBF5-B087-D3F07160C7E0}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{66483041-F590-EC46-4AF0-EE39C62FB680}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{9C61E6D2-C43E-6746-B519-6185558C4A24}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{6B37CC5B-78DF-5050-2215-68479716A587}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{250D5341-0879-4016-399C-BBCD87B80E95}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-09-25] (Adobe Systems Incorporated)
File Viewer Plus -> C:\Program Files\WindowsApps\SharpenedProductions.FileViewerPlus_3.3.2.0_x86__xkt78gamzntbr [2020-09-30] (Sharpened Productions)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-09-24] (NVIDIA Corp.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{75f92b33-bbaa-b4b4-04ac-a7c07959e5a66}\InprocServer32 -> 0xE4E6EACDE493D601BE6F964AA294D601020000001400000000000000 => No File
CustomCLSID: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0xEA70518FE392D601632DE8CDE493D601030000000C00000000000000 => No File
CustomCLSID: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-25] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-25] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-25] (Adobe Inc. -> )
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-25] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2020-06-01] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2020-06-01] (IObit Information Technology -> IObit)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2020-06-01] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_f9c8e6e099a4a13d\nvshext.dll [2020-09-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\jakem\Documents\Stardock\Tiles\Shortcuts\Gaming\keyrateOFF.bat.lnk -> C:\keyrateOFF.bat ()
Shortcut: C:\Users\jakem\Documents\Stardock\Tiles\Shortcuts\Gaming\KeyrateON.bat.lnk -> C:\KeyrateON.bat ()
ShortcutWithArgument: C:\Users\jakem\Documents\Stardock\Tiles\Shortcuts\Programmer\Developer Command Prompt for VS 2019.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Tools\VsDevCmd.bat"

==================== Loaded Modules (Whitelisted) =============

2020-09-24 18:43 - 2020-09-24 18:43 - 000053248 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.01\cpuutil.dll
2020-09-24 18:44 - 2020-09-24 18:43 - 000062464 _____ () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Exeio.dll
2020-09-24 18:44 - 2020-09-24 18:43 - 001772544 _____ () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Vender.dll
2020-09-30 09:09 - 2020-09-30 05:36 - 002772480 _____ () [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\ffmpeg.dll
2020-09-30 09:09 - 2020-09-30 05:36 - 000379904 _____ () [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\libegl.dll
2020-09-30 09:09 - 2020-09-30 05:36 - 007863296 _____ () [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\libglesv2.dll
2020-09-30 09:09 - 2020-09-30 05:36 - 000147456 _____ () [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\resources\app.asar.unpacked\dist\main\keytar.node
2020-09-22 13:06 - 2019-08-15 18:13 - 001265664 _____ () [File not signed] K:\DisplayFusion\runtimes\win-x64\native\e_sqlite3.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000147456 _____ () [File not signed] K:\NEWAISUITE\AI Suite III\AssistFunc.dll
2020-09-27 02:29 - 2017-11-24 08:48 - 000743424 _____ () [File not signed] K:\NEWAISUITE\AI Suite III\DIP4\EPU.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000108544 _____ (ASUS) [File not signed] K:\NEWAISUITE\AI Suite III\AsAcpi.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000108544 _____ (ASUS) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\asacpi.dll
2020-09-27 02:29 - 2017-11-24 08:47 - 000108544 _____ (ASUS) [File not signed] K:\NEWAISUITE\AI Suite III\DIP4\DIPAwayMode\asacpi.dll
2020-09-30 13:47 - 2020-09-30 13:47 - 000046888 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.01\PEbiosinterface32.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\asacpiEx.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\AsMultiLang.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\asacpiEx.dll
2020-09-27 02:29 - 2017-11-24 08:47 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\DIP4\AsMultiLang.dll
2020-09-27 02:29 - 2017-11-24 08:47 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\DIP4\DIPAwayMode\asacpiEx.dll
2020-09-24 18:44 - 2020-09-24 18:43 - 000106496 _____ (ASUSTek Computer Inc.,) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\EIO.DLL
2020-07-29 11:46 - 2020-07-29 11:46 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000076288 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qgifd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000097280 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qicnsd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000077312 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qicod.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000432640 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qjpegd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000058880 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qsvgd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000058880 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qtgad.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000574976 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qtiffd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000058368 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qwbmpd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000844800 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\imageformats\qwebpd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 002932736 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\platforms\qwindowsd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 009541632 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\Qt5Cored.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 010430464 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\Qt5Guid.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000557056 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\Qt5Svgd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 008565248 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\Qt5Widgetsd.dll
2020-09-27 02:28 - 2017-10-29 19:15 - 000299520 _____ (The Qt Company Ltd) [File not signed] K:\NEWAISUITE\AI Suite III\AsPowerBar\Qt5Xmld.dll
2020-09-24 18:44 - 2020-09-24 18:43 - 000193536 _____ (TODO: <Company name>) [File not signed] [File is in use] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\AsusGpuTweak.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\Software\Classes\exefile: <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-09-24] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-09-24] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\sharepoint.com -> hxxps://everettccedu-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2020-09-24 19:21 - 2020-09-28 19:59 - 000000709 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

 

[IIEleven11]

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\WINDOWS\system32\WBEM;C:\WINDOWS\system32\WBEM;C:\WINDOWS\system32\WBEM;C:\WINDOWS\system32\WBEM;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Users\jakem\AppData\Local\Microsoft\WindowsApps;C:\Windows\System32\;C:\Program Files\Microsoft Network Monitor 3\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jakem\AppData\Local\DisplayFusion\Wallpaper_1.png
DNS Servers: 156.154.70.22 - 156.154.71.22
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: COMODO Internet Security Firewall Driver -> inspect (enabled)
Ethernet: Microsoft Network Monitor 3 Driver -> ms_netmon (enabled)
Wi-Fi: Microsoft Network Monitor 3 Driver -> ms_netmon (enabled)
Wi-Fi: COMODO Internet Security Firewall Driver -> inspect (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Everything"
HKLM\...\StartupApproved\Run: => "TabletDriverCenter"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerProgramData"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{FBE1E96A-9E9A-4847-A5B2-907468C01BD9}C:\users\jakem\appdata\local\programs\nordpass\nordpass.exe] => (Allow) C:\users\jakem\appdata\local\programs\nordpass\nordpass.exe (NordPass Team) [File not signed]
FirewallRules: [UDP Query User{6A8892A6-7983-4592-905A-005143EB9F98}C:\users\jakem\appdata\local\programs\nordpass\nordpass.exe] => (Allow) C:\users\jakem\appdata\local\programs\nordpass\nordpass.exe (NordPass Team) [File not signed]
FirewallRules: [TCP Query User{ED0012D4-F5C0-438D-A155-000307BBD9A3}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Allow) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [UDP Query User{AB3787D4-5A9A-4BEA-8B4F-DFBBEE9E1FC7}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Allow) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [TCP Query User{A581CD08-EB96-4237-B86D-8E36C099BBC7}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{BCF1C48B-C18E-4602-BCDF-F76E42A290E2}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [TCP Query User{D8A832E5-4825-42AE-941C-9D703BCF3F39}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{BFE05B06-CC30-4F9D-BE8F-36D20EEFC247}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/30/2020 02:19:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iCUE.exe, version: 3.33.246.0, time stamp: 0x5f4d33d3
Faulting module name: MappingsActualizer.dll, version: 3.33.246.0, time stamp: 0x5f4d33c1
Exception code: 0xc0000005
Fault offset: 0x0001bed3
Faulting process id: 0x2914
Faulting application start time: 0x01d6976f5c4a4519
Faulting application path: C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
Faulting module path: C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\modules\MappingsActualizer.dll
Report Id: f52c4e2e-daa5-41a4-a299-2813d7296ddd
Faulting package full name:
Faulting package-relative application ID:

Error: (09/30/2020 01:51:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iCUE.exe, version: 3.33.246.0, time stamp: 0x5f4d33d3
Faulting module name: MappingsActualizer.dll, version: 3.33.246.0, time stamp: 0x5f4d33c1
Exception code: 0xc0000005
Fault offset: 0x0001bed3
Faulting process id: 0x1ae4
Faulting application start time: 0x01d6976b855e3974
Faulting application path: C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
Faulting module path: C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\modules\MappingsActualizer.dll
Report Id: 975d1f25-93a3-400b-a256-78729ffb84b0
Faulting package full name:
Faulting package-relative application ID:

Error: (09/30/2020 01:48:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iCUE.exe, version: 3.33.246.0, time stamp: 0x5f4d33d3
Faulting module name: MappingsActualizer.dll, version: 3.33.246.0, time stamp: 0x5f4d33c1
Exception code: 0xc0000005
Fault offset: 0x0001bed3
Faulting process id: 0x2678
Faulting application start time: 0x01d6976b1728da24
Faulting application path: C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
Faulting module path: C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\modules\MappingsActualizer.dll
Report Id: 5869bd77-0802-431f-8504-66862e4a60e9
Faulting package full name:
Faulting package-relative application ID:

Error: (09/30/2020 01:39:02 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Failed to create restore point (Process = msiexec.exe; Description = CIS Installer; Error = Unknown error.).

Error: (09/30/2020 09:01:36 AM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhostw (4120,R,98) WebCacheLocal: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Users\jakem\AppData\Local\Microsoft\Windows\WebCache\V0100017.log.

Error: (09/30/2020 06:54:16 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (09/30/2020 06:54:16 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (09/30/2020 02:21:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TabletDriverCenter.exe, version: 2.0.0.1, time stamp: 0x5db6f365
Faulting module name: TabletDriverCenter.exe, version: 2.0.0.1, time stamp: 0x5db6f365
Exception code: 0xc0000005
Fault offset: 0x0000000000007d94
Faulting process id: 0xa80
Faulting application start time: 0x01d69700381bb325
Faulting application path: C:\Program Files\VKTablet\TabletDriverCenter.exe
Faulting module path: C:\Program Files\VKTablet\TabletDriverCenter.exe
Report Id: 3cd51eae-28ff-4a2a-ad59-f9b0c2a459d0
Faulting package full name:
Faulting package-relative application ID:


System errors:
=============
Error: (09/30/2020 02:03:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Spybot Security Center Integration Service service failed to start due to the following error:
Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Error: (09/30/2020 02:03:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Spybot Security Center Integration Service service failed to start due to the following error:
Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Error: (09/30/2020 01:47:45 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The jhi_service service depends on the iphlpsvc service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (09/30/2020 01:39:12 PM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv6 TCP/IP interface with index 7 failed to bind to its provider.

Error: (09/30/2020 01:39:12 PM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv4 TCP/IP interface with index 7 failed to bind to its provider.

Error: (09/30/2020 09:01:35 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The jhi_service service depends on the iphlpsvc service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (09/30/2020 06:54:15 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6GB1ASE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (09/30/2020 06:54:15 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-6GB1ASE)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.


Windows Defender:
===================================
Date: 2020-09-30 13:34:43.3310000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

PUA:Win32/FusionCore threat description - Microsoft Security Intelligence

Name: PUA:Win32/FusionCore
ID: 229442
Severity: Low
Category: Potentially Unwanted Software
Path: file:_C:\Users\jakem\AppData\Local\Temp\fusion.dll
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\jakem\AppData\Local\Temp\7ZipSfx.000\cmdinstall.exe
Security intelligence Version: AV: 1.323.2234.0, AS: 1.323.2234.0, NIS: 1.323.2234.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-09-30 13:34:42.5980000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/FusionCore.C&threatid=266656&enterprise=0

Name: PUA:Win32/FusionCore.C
ID: 266656
Severity: Low
Category: Potentially Unwanted Software
Path: behavior:_pid:1612:23859280252400; file:_C:\Users\jakem\AppData\Local\Temp\7ZipSfx.000\cmdinstall.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.323.2234.0, AS: 1.323.2234.0, NIS: 1.323.2234.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-09-30 13:34:42.5720000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/FusionCore.C&threatid=266656&enterprise=0

Name: PUA:Win32/FusionCore.C
ID: 266656
Severity: Low
Category: Potentially Unwanted Software
Path: behavior:_pid:1612:23859280252400; file:_C:\Users\jakem\AppData\Local\Temp\7ZipSfx.000\cmdinstall.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.323.2234.0, AS: 1.323.2234.0, NIS: 1.323.2234.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-09-30 13:34:42.2220000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/FusionCore.C&threatid=266656&enterprise=0

Name: PUA:Win32/FusionCore.C
ID: 266656
Severity: Low
Category: Potentially Unwanted Software
Path: behavior:_pid:1612:23859280252400; process:_pid:1612,ProcessStart:132459716753477351
Detection Origin: Unknown
Detection Type: Concrete
Detection Source: Unknown
Process Name: C:\Users\jakem\AppData\Local\Temp\7ZipSfx.000\cmdinstall.exe
Security intelligence Version: AV: 1.323.2234.0, AS: 1.323.2234.0, NIS: 1.323.2234.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-09-30 13:34:42.1950000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/FusionCore.C&threatid=266656&enterprise=0

Name: PUA:Win32/FusionCore.C
ID: 266656
Severity: Low
Category: Potentially Unwanted Software
Path: behavior:_pid:1612:23859280252400; process:_pid:1612,ProcessStart:132459716753477351
Detection Origin: Unknown
Detection Type: Concrete
Detection Source: Unknown
Process Name: Unknown
Security intelligence Version: AV: 1.323.2234.0, AS: 1.323.2234.0, NIS: 1.323.2234.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

CodeIntegrity:
===================================

Date: 2020-09-30 15:04:52.2010000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-30 14:54:02.0710000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-30 14:42:00.8820000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-30 14:31:04.8640000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-30 14:20:41.5510000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-30 14:09:27.8990000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-30 14:03:31.2460000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-30 14:03:29.5370000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1301 03/14/2018
Motherboard: ASUSTeK COMPUTER INC. MAXIMUS IX HERO
Processor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Percentage of memory in use: 39%
Total physical RAM: 16315.51 MB
Available physical RAM: 9825.63 MB
Total Virtual: 22315.51 MB
Available Virtual: 13505.3 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.28 GB) (Free:141.55 GB) NTFS
Drive k: (File Bunker) (Fixed) (Total:931.51 GB) (Free:920.89 GB) NTFS

\\?\Volume{f7ef0c7a-9546-4e71-ae1b-6f716770968c}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{756a6384-1e64-47c0-a9b1-a3803c4077f9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 558EC8DD)

Partition: GPT.

==========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: 835197F5)

Partition: GPT.

==================== End of Addition.txt =======================

 

[IIEleven11]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-09-2020
Ran by jakem (administrator) on DESKTOP-6GB1ASE (30-09-2020 15:02:31)
Running from C:\Users\jakem\Downloads
Loaded Profiles: jakem
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Users\jakem\Downloads\Sc2ReplayStats.com.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) K:\NEWAISUITE\AI Suite III\AsPowerBar\AsPowerBar.exe
(ASUSTeK Computer Inc. -> ) K:\NEWAISUITE\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) K:\NEWAISUITE\AI Suite III\AISuite3.exe
(Binary Fortress Software Ltd -> Binary Fortress Software) K:\DisplayFusion\DisplayFusion.exe
(Binary Fortress Software Ltd -> Binary Fortress Software) K:\DisplayFusion\DisplayFusionHookApp32.exe
(Binary Fortress Software Ltd -> Binary Fortress Software) K:\DisplayFusion\DisplayFusionHookApp64.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2>
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Discord Inc. -> Discord Inc.) C:\Users\jakem\AppData\Local\Discord\app-0.0.308\Discord.exe <6>
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\RealTimeProtector.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(NordPass Team) [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\NordPass.exe <3>
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdci.inf_amd64_f9c8e6e099a4a13d\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDRootAlyzer.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(ShareX Team) [File not signed] C:\Program Files\ShareX\ShareX.exe
(Shenzhen Hezon Lito Technology Co., Ltd. -> VEIKK) C:\Program Files\VKTablet\TabletDriverCenter.exe
(Stardock Corporation -> Stardock Software) C:\Program Files (x86)\Stardock\Tiles\Tiles32Help.exe
(Stardock Corporation -> Stardock Software) C:\Program Files (x86)\Stardock\Tiles\Tiles64.exe
(TEFINCOM S.A. -> ) C:\Users\jakem\AppData\Local\Programs\nordpass\resources\nordpass-background-app.exe
(voidtools -> voidtools) K:\Everything\Everything.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TabletDriverCenter] => C:\Program Files\VKTablet\TabletDriverCenter.exe [2926208 2019-10-28] (Shenzhen Hezon Lito Technology Co., Ltd. -> VEIKK)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13177008 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [410152 2020-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6787856 2019-03-19] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM\...\Policies\Explorer: [AllowOnlineTips] 0
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\...\Policies\Explorer: [NoPublishingWizard] 1
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <==== ATTENTION
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [SC2ReplayStats] => C:\Users\jakem\Downloads\Sc2ReplayStats.com.exe [116224 2017-12-03] () [File not signed]
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [Tiles] => C:\Program Files (x86)\Stardock\Tiles\Tiles64.exe [1286120 2015-07-17] (Stardock Corporation -> Stardock Software)
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [DisplayFusion] => K:\DisplayFusion\DisplayFusion.exe [7776192 2020-06-24] (Binary Fortress Software Ltd -> Binary Fortress Software)
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [LGHUB] => "C:\Program Files\LGHUB\lghub.exe" --background
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [electron.app.NordPass] => C:\Users\jakem\AppData\Local\Programs\nordpass\NordPass.exe [110795264 2020-09-30] (NordPass Team) [File not signed]
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65488 2020-09-11] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\85.1.14.84\Installer\chrmstp.exe [2020-09-30] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk.disabled [2020-09-30]
ShortcutTarget: Rainmeter.lnk.disabled -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter)
Startup: C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2020-09-25]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [File not signed]
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01A8D9A9-4E53-4F82-8BAE-BB72782EEBCD} - \NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {0F7C7DDD-F147-4E05-ADF8-52540B0FFA69} - \ASC_PerformanceMonitor -> No File <==== ATTENTION
Task: {126FF657-CFD7-46D0-8BB6-C34DE7A2FD03} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5754352 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
Task: {1289D659-D4BB-42E5-B403-6E21AB4DE7A9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {19173AA2-8F6F-4BFF-A4A5-748DFBBBEEF7} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5754352 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
Task: {1C04EAB7-5A86-41FC-AE14-735621B2200D} - System32\Tasks\Microsoft\VisualStudio\Updates\UpdateConfiguration_S-1-5-21-1154741852-3201556293-3969415838-1001 => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXConfigurationUpdater.exe [23464 2020-09-25] (Microsoft Corporation -> Microsoft)
Task: {1EF1B32E-5752-45E8-A759-2660734A5FB6} - \NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {2106D3DD-40A2-4F6B-86CA-F927CD6DB202} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5754352 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
Task: {28369C60-4153-4512-A631-8127F1F95DC4} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5754352 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
Task: {2C2025C1-2700-4369-BDD9-B1A9D2B8BDC4} - System32\Tasks\Microsoft\Windows\PLA\New Data Collector Set => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {2E182709-2E7B-4A8F-9649-F1B11D1D530A} - \Adobe Acrobat Update Task -> No File <==== ATTENTION
Task: {31BAE579-8200-4305-971B-0B395260673F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5057448 2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {32E5FE59-27EE-4DF7-9BF8-946B54D3FD96} - System32\Tasks\ASUS\ASUS AISuiteIII => K:\NEWAISUITE\AI Suite III\AISuite3.exe [2096088 2018-01-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {342D3D61-DB0F-4F6C-B255-C9BA99C70E5C} - \NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {3BD549BA-19E0-48CE-A51A-6EA254D326E2} - \BraveSoftwareUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {40697F97-649A-409F-A717-C3EE849224FD} - \NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {4486AF33-1946-476C-8621-EE641B11C7B2} - \NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {4591C174-DADD-48E3-BE81-77EE4995A568} - \Uninstaller_SkipUac_jakem -> No File <==== ATTENTION
Task: {4E70D7E8-0111-4B1D-A709-8CA43ACE60D6} - System32\Tasks\ASUS\ASUS DIPAwayMode => K:\NEWAISUITE\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1448408 2017-11-24] (ASUSTeK Computer Inc. -> )
Task: {4F60AAAC-E6C8-4B72-AD3F-FBA72DF5F555} - System32\Tasks\ASUS\GpuFanHelper => K:\NEWAISUITE\AI Suite III\DIP4\GpuFanHelper.exe [4417496 2017-11-24] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {53667791-87FA-4DF8-A0D4-8E43905714EC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7338347E-EA3D-4CFE-8D89-C6975AD2067E} - \ASC_SkipUac_jakem -> No File <==== ATTENTION
Task: {788CC737-0F48-4985-8DA1-F7C21B5A01B2} - \Microsoft\VisualStudio\VSIX Auto Update -> No File <==== ATTENTION
Task: {7F29E1EA-EE85-4B92-8B1F-8D1C572D861C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145768 2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {834DAA5D-4104-4067-A3F0-F0A81BE69085} - \NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {8587E843-8297-4775-929C-B228F3C7338C} - \NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {A5634B26-1A8F-443D-B950-5D40C69889CE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22767488 2020-09-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {A89DC0A9-B1DF-4656-95BB-03C2E4711020} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B41B6C95-3C10-46DC-BFA0-BE98B9C3401A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145768 2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {B4BCEBB3-D927-42E4-A9D2-0C3903B5DDEE} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5754352 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
Task: {B586D9A1-23C0-490E-92E0-837AED4B38C6} - \NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {BCD3C544-B54C-4C00-83C8-2B2342F8AF9B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5057448 2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {C3C013A7-37E9-4366-B57C-D8ED5760E3F9} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13177008 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C7C1DF1E-B368-4D05-A743-49F0E5E93E50} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [664784 2020-09-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {CDA85B6E-6238-4858-BCBC-0B5601D2F12A} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13177008 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
Task: {D87104C4-190D-4A60-9023-91CC8E33C3DF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22767488 2020-09-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {DC778AE3-A89D-451D-8EAB-15332E3918E2} - \BraveSoftwareUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {E8269F6F-81CB-4952-B573-90F26ED8AE08} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_7e148e9c120d86df\lib\IntelPTTEKRecertification.exe [925152 2019-04-23] (Intel(R) Trust Services -> Intel(R) Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0f770de1-673e-4ad0-84b2-c2e3a4221863}: [NameServer] 156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{0f770de1-673e-4ad0-84b2-c2e3a4221863}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{67aa089f-e39e-4098-927d-a6845d3c6437}: [NameServer] 156.154.70.22,156.154.71.22
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
======
DownloadDir: C:\Users\jakem\Downloads
Edge Profile: C:\Users\jakem\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-30]

FireFox:
========
FF DefaultProfile: ofwkckpe.default
FF ProfilePath: C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\ofwkckpe.default [2020-09-27]
FF user.js: detected! => C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\ofwkckpe.default\user.js [2020-09-30]
FF ProfilePath: C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414 [2020-09-30]
FF user.js: detected! => C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\user.js [2020-09-30]
FF NetworkProxy: Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414 -> type", 0
FF Extension: (Dark Reader) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\addon@darkreader.org.xpi [2020-09-30]
FF Extension: (To Google Translate) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2020-09-30]
FF Extension: (NordPass® Password Manager & Digital Vault) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\nordpass@nordpass.com.xpi [2020-09-30]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-09-11]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-09-25] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-09-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-09-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-09-30] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-09-30] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-09-25] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S3 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-09-25] (Adobe Inc. -> Adobe Inc.)
R2 AdvancedSystemCareService13; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1293072 2020-09-30] (IObit Information Technology -> IObit)
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2020-09-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2020-09-24] (ASUSTeK Computer Inc. -> ) [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe [1340376 2020-09-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-30] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-30] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8853384 2020-09-21] (Microsoft Corporation -> Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11326384 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11326384 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675496 2020-02-27] (Comodo Security Solutions, Inc. -> COMODO)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [605096 2020-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421928 2020-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [56872 2020-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 Everything; K:\Everything\Everything.exe [2142536 2020-08-31] (voidtools -> voidtools)
R2 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [294200 2020-09-15] (NVIDIA Corporation -> NVIDIA)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11139720 2020-09-24] (Logitech Inc -> Logitech, Inc.)
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13610040 2020-09-15] (Adlice -> )
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2747312 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4583240 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WindowBlinds; C:\Program Files (x86)\Stardock\WindowBlinds\WBSrv.exe [86528 2019-05-03] (Stardock Corporation -> Stardock Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_f9c8e6e099a4a13d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_f9c8e6e099a4a13d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [45432 2019-07-15] (IObit Information Technology -> IObit)
R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [46008 2019-07-15] (IObit Information Technology -> IObit)
R2 ASInsHelp; C:\WINDOWS\SysWow64\drivers\AsInsHelp64.sys [11832 2008-01-04] (ASUSTeK Computer Inc. -> )
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2020-09-24] (ASUSTeK Computer Inc. -> )
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2020-01-27] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [39056 2020-01-08] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844176 2020-01-08] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47072 2020-01-08] (Comodo Security Solutions, Inc. -> COMODO)
R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudio64.sys [60328 2020-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2020-09-30] (CPUID -> CPUID)
R3 cpuz149; C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [44320 2020-09-30] (CPUID S.A.R.L.U. -> CPUID)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-09-27] (Martin Malik - REALiX -> REALiX(tm))
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [129208 2020-01-08] (Comodo Security Solutions, Inc. -> COMODO)
R3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [32520 2018-07-04] (IObit Information Technology -> IObit)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-12-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 IUFileFilter; C:\Users\jakem\IOBIT\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [43896 2020-07-31] (IObit Information Technology -> IObit)
S3 IUProcessFilter; C:\Users\jakem\IOBIT\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2020-07-31] (IObit Information Technology -> IObit)
S3 IURegistryFilter; C:\Users\jakem\IOBIT\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [51128 2020-07-31] (IObit Information Technology -> IObit)
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\66043\driver_cpu_temperature\logi_core_temp.sys [25448 2020-09-24] (Logitech Inc. -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2020-09-20] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-09-20] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2020-09-20] (Logitech Inc -> Logitech)
U0 Spybot3ELAM; C:\WINDOWS\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows (R) Win 7 DDK provider)
S3 VkDevice; C:\WINDOWS\System32\drivers\VkDevice.sys [29592 2019-11-29] (Shenzhen Hezon Lito Technology Co., Ltd. -> VEIKK)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-09-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-09-29] (Microsoft Windows -> Microsoft Corporation)
U4 HomeGroupProvider; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

[IIEleven11]

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-09-30 15:02 - 2020-09-30 15:03 - 000031305 _____ C:\Users\jakem\Downloads\FRST.txt
2020-09-30 14:18 - 2020-09-30 14:18 - 000000000 ____D C:\Users\jakem\Documents\ProcAlyzer Dumps
2020-09-30 14:16 - 2020-09-30 14:29 - 000000000 ____D C:\Users\jakem\AppData\Local\Neware
2020-09-30 14:11 - 2020-09-30 14:11 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TailExpert
2020-09-30 14:11 - 2020-09-30 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TailExpert
2020-09-30 14:11 - 2020-09-30 14:11 - 000000000 ____D C:\Program Files (x86)\TailExpert
2020-09-30 14:09 - 2020-09-30 14:09 - 021227008 _____ C:\Users\jakem\Downloads\TailExpertProfessional.msi
2020-09-30 14:05 - 2020-09-30 14:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2020-09-30 14:04 - 2020-09-30 14:04 - 000000000 ____D C:\Users\jakem\AppData\Local\Safer-Networking Ltd
2020-09-30 14:03 - 2020-09-30 14:25 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2020-09-30 14:03 - 2020-09-30 14:05 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-09-30 14:03 - 2020-09-30 14:03 - 000001482 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2020-09-30 14:03 - 2020-09-30 14:03 - 000001470 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2020-09-30 14:03 - 2020-09-30 14:03 - 000001470 _____ C:\ProgramData\Desktop\Spybot-S&D Start Center.lnk
2020-09-30 14:03 - 2020-09-30 14:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2020-09-30 14:03 - 2019-06-21 08:34 - 000019904 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Spybot3ELAM.sys
2020-09-30 14:03 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2020-09-30 13:43 - 2020-09-30 13:47 - 000002152 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2020-09-30 13:39 - 2020-09-30 14:57 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2020-09-30 13:39 - 2020-09-30 13:39 - 000002154 _____ C:\Users\Public\Desktop\COMODO Internet Security Premium.lnk
2020-09-30 13:39 - 2020-09-30 13:39 - 000002154 _____ C:\ProgramData\Desktop\COMODO Internet Security Premium.lnk
2020-09-30 13:39 - 2020-09-30 13:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\COMODO
2020-09-30 13:39 - 2020-09-30 13:39 - 000000000 ____D C:\Program Files\COMODO
2020-09-30 13:39 - 2020-01-27 15:36 - 000017576 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdboot.sys
2020-09-30 13:38 - 2020-09-30 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2020-09-30 13:38 - 2020-09-30 13:38 - 000000000 ____D C:\Program Files (x86)\COMODO
2020-09-30 13:38 - 2019-01-29 01:42 - 000254440 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2020-09-30 13:38 - 2019-01-29 01:42 - 000205024 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2020-09-30 13:38 - 2018-08-29 15:55 - 000063256 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2020-09-30 13:34 - 2020-09-30 13:38 - 000000000 ____D C:\ProgramData\Comodo
2020-09-30 13:34 - 2020-09-30 13:34 - 000000000 ____D C:\ProgramData\Shared Space
2020-09-30 13:28 - 2020-09-30 13:48 - 000000000 ____D C:\Users\jakem\AppData\Local\DisplayFusion
2020-09-30 13:20 - 2020-09-30 13:20 - 002299392 _____ (Farbar) C:\Users\jakem\Downloads\FRST64.exe
2020-09-30 13:13 - 2020-09-30 13:13 - 000000258 __RSH C:\ProgramData\ntuser.pol
2020-09-30 13:10 - 2020-09-30 13:10 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000147439 _____ C:\WINDOWS\system32\gpedit.msc
2020-09-30 13:10 - 2020-09-30 13:10 - 000120458 _____ C:\WINDOWS\system32\secpol.msc
2020-09-30 13:10 - 2020-09-30 13:10 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2020-09-30 13:10 - 2020-09-30 13:10 - 000043566 _____ C:\WINDOWS\system32\rsop.msc
2020-09-30 13:10 - 2020-09-30 13:10 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2020-09-30 13:05 - 2020-09-30 13:05 - 000000000 ____D C:\Users\Public\File Viewer Plus
2020-09-30 09:45 - 2020-09-30 10:23 - 000000000 ____D C:\Program Files\Rainmeter
2020-09-30 09:45 - 2020-09-30 09:46 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Rainmeter
2020-09-30 09:45 - 2020-09-30 09:45 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2020-09-30 09:45 - 2020-09-30 09:45 - 000000000 ____D C:\Users\jakem\Documents\Rainmeter
2020-09-30 06:53 - 2020-09-30 06:53 - 000071551 _____ C:\Users\jakem\Desktop\Manag eye Graph EVCC.ai
2020-09-30 05:20 - 2020-09-30 05:20 - 000014201 _____ C:\Users\jakem\Desktop\Manag eye Graph EVCC.dwg
2020-09-30 05:19 - 2020-09-30 05:19 - 000164912 _____ C:\Users\jakem\Desktop\Manag eye Graph EVCC.ait
2020-09-30 04:34 - 2020-09-30 04:34 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2020-09-30 01:18 - 2020-09-30 01:18 - 000466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000000000 ____D C:\Program Files (x86)\OpenAL
2020-09-30 01:18 - 2020-09-30 01:18 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2020-09-30 01:03 - 2020-09-30 11:15 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-09-30 01:03 - 2020-09-30 11:08 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-09-30 01:03 - 2020-09-30 11:08 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-09-30 00:50 - 2020-09-30 01:24 - 000003424 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA.bak
2020-09-30 00:50 - 2020-09-30 01:24 - 000003200 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore.bak
2020-09-30 00:50 - 2020-09-30 00:50 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2020-09-30 00:50 - 2020-09-30 00:50 - 000000000 ____D C:\Users\jakem\AppData\Local\BraveSoftware
2020-09-30 00:50 - 2020-09-30 00:50 - 000000000 ____D C:\Program Files\BraveSoftware
2020-09-30 00:50 - 2020-09-30 00:50 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2020-09-30 00:27 - 2020-09-30 00:27 - 000000000 ____D C:\Users\jakem\Desktop\Old Firefox Data
2020-09-29 20:05 - 2020-09-29 20:05 - 000056840 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2020-09-29 20:04 - 2020-09-29 20:04 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\PCGameBoost
2020-09-29 18:59 - 2020-09-29 21:25 - 000000000 ____D C:\Program Files (x86)\nxlog
2020-09-29 17:59 - 2020-09-30 13:47 - 000008192 ___SH C:\DumpStack.log.tmp
2020-09-29 17:59 - 2020-09-29 17:59 - 002035204 _____ C:\WINDOWS\Minidump\092920-8343-01.dmp
2020-09-29 17:59 - 2020-09-29 17:59 - 000000000 ____D C:\WINDOWS\Minidump
2020-09-29 15:47 - 2020-09-29 15:47 - 000000000 ____D C:\Users\jakem\AppData\Local\Steam
2020-09-29 15:46 - 2020-09-29 15:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-09-29 04:58 - 2020-09-29 04:58 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\6574A274.sys
2020-09-29 04:57 - 2020-09-29 05:18 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-09-29 04:33 - 2020-09-29 04:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-09-29 04:33 - 2020-09-29 04:33 - 000000000 ____D C:\Program Files\Malwarebytes
2020-09-29 04:19 - 2020-09-29 04:19 - 000000017 _____ C:\Users\jakem\AppData\Local\resmon.resmoncfg
2020-09-29 01:42 - 2020-09-25 15:29 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-09-29 01:42 - 2020-09-25 15:29 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-09-29 01:42 - 2020-09-25 15:29 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-09-29 01:42 - 2020-09-25 15:29 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-09-29 01:42 - 2020-09-25 15:29 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-09-29 01:42 - 2020-09-25 15:29 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-09-29 01:42 - 2020-09-25 15:29 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-09-29 01:42 - 2020-09-25 15:29 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-09-29 01:42 - 2020-09-25 15:29 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-09-29 01:42 - 2020-09-25 15:29 - 000349936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-09-29 01:42 - 2020-09-25 15:27 - 001022872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-09-29 01:42 - 2020-09-25 15:27 - 000815856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-09-29 01:42 - 2020-09-25 15:27 - 000674200 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-09-29 01:42 - 2020-09-25 15:27 - 000540912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-09-29 01:42 - 2020-09-25 15:26 - 032460528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2020-09-29 01:42 - 2020-09-25 15:26 - 002097560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-09-29 01:42 - 2020-09-25 15:26 - 001585048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-09-29 01:42 - 2020-09-25 15:26 - 001506200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-09-29 01:42 - 2020-09-25 15:26 - 001160600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-09-29 01:42 - 2020-09-25 15:26 - 000811248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-09-29 01:42 - 2020-09-25 15:26 - 000670104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-09-29 01:42 - 2020-09-25 15:26 - 000656792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-09-29 01:42 - 2020-09-25 15:26 - 000586480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-09-29 01:42 - 2020-09-25 15:26 - 000555928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-09-29 01:42 - 2020-09-25 15:25 - 007705328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-09-29 01:42 - 2020-09-25 15:25 - 006859160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-09-29 01:42 - 2020-09-25 15:25 - 004174744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-09-29 01:42 - 2020-09-25 15:25 - 002509208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-09-29 01:42 - 2020-09-25 15:25 - 000850840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-09-29 01:42 - 2020-09-25 15:25 - 000444656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-09-29 01:42 - 2020-09-25 15:24 - 006992200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-09-29 01:42 - 2020-09-25 15:24 - 005964512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-09-29 01:42 - 2020-09-24 16:02 - 000080940 _____ C:\WINDOWS\system32\nvinfo.pb
2020-09-28 23:00 - 2020-09-28 23:00 - 000000000 ____D C:\Users\jakem\Documents\Custom Office Templates
2020-09-28 20:47 - 2020-09-28 20:47 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task.bak
2020-09-28 20:47 - 2020-09-28 20:47 - 000002116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2020-09-28 20:47 - 2020-09-28 20:47 - 000002105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2020-09-28 20:47 - 2020-09-28 20:47 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-09-28 12:25 - 2020-09-30 14:38 - 000000000 ____D C:\Users\jakem\AppData\Roaming\NordPass
2020-09-28 12:25 - 2020-09-29 14:29 - 000000000 ____D C:\Users\jakem\AppData\Local\nordpass-updater
2020-09-28 12:25 - 2020-09-28 12:25 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NordSec
2020-09-28 10:14 - 2020-09-28 10:14 - 101568512 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2020-09-28 10:14 - 2020-09-28 10:14 - 000634880 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2020-09-28 10:14 - 2020-09-28 10:14 - 000073728 _____ C:\WINDOWS\system32\config\SAM.iobit
2020-09-28 10:14 - 2020-09-28 10:14 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2020-09-28 10:14 - 2020-09-28 10:14 - 000003114 _____ C:\WINDOWS\system32\Tasks\ASC_PerformanceMonitor.bak
2020-09-28 10:10 - 2020-09-30 13:25 - 000000000 ____D C:\ProgramData\PCGameBoost
2020-09-28 10:10 - 2020-09-30 13:24 - 000000000 ____D C:\Program Files (x86)\PCGameBoost
2020-09-28 10:10 - 2020-09-28 10:10 - 000000000 ____D C:\Users\jakem\AppData\Roaming\PCGameBoost
2020-09-28 10:10 - 2020-07-28 11:16 - 000278072 _____ C:\WINDOWS\SysWOW64\D3DX8Wrapper.dll
2020-09-28 10:10 - 2019-09-12 09:59 - 000178960 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2020-09-28 10:10 - 2016-03-22 11:02 - 000036824 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2020-09-28 09:10 - 2020-09-30 14:46 - 000000000 ____D C:\Users\jakem\Documents\Outlook Files
2020-09-28 09:01 - 2020-09-28 09:01 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2020-09-28 05:51 - 2020-09-28 05:51 - 000002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002422 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002401 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-09-28 05:50 - 2020-09-28 05:50 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-09-28 05:47 - 2020-09-28 05:50 - 000000000 ____D C:\Program Files\Microsoft Office
2020-09-28 05:47 - 2020-09-28 05:47 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-09-28 05:31 - 2020-09-28 05:31 - 000000000 ____D C:\Users\jakem\AppData\Local\VSIXInstaller
2020-09-27 19:05 - 2020-09-30 10:41 - 000000000 ___RD C:\Users\jakem\Creative Cloud Files
2020-09-27 18:43 - 2020-09-27 18:43 - 000002940 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_jakem.bak
2020-09-27 18:16 - 2020-09-27 18:16 - 000001490 _____ C:\Users\jakem\Documents\WifiInfoView.cfg
2020-09-27 18:09 - 2020-09-15 12:06 - 000336248 _____ (NirSoft) C:\Users\jakem\Documents\WifiInfoView.exe
2020-09-27 18:09 - 2020-09-15 12:06 - 000054342 _____ C:\Users\jakem\Documents\WifiInfoView.chm
2020-09-27 17:58 - 2020-09-27 18:16 - 000001510 _____ C:\Users\jakem\Documents\WifiChannelMonitor.cfg
2020-09-27 17:56 - 2020-09-28 19:25 - 000000000 ____D C:\Users\jakem\Documents\Network Monitor 3
2020-09-27 17:55 - 2020-09-27 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Network Monitor 3.4
2020-09-27 17:55 - 2020-09-27 17:55 - 000000000 ____D C:\Program Files\Microsoft Network Monitor 3
2020-09-27 17:41 - 2020-09-27 14:40 - 001071480 _____ (NirSoft) C:\Users\jakem\Documents\WifiChannelMonitor.exe
2020-09-27 17:41 - 2020-09-27 14:40 - 000020924 _____ C:\Users\jakem\Documents\WifiChannelMonitor.chm
2020-09-27 17:37 - 2020-09-27 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autorun Angel
2020-09-27 17:37 - 2020-09-27 17:37 - 000000000 ____D C:\Program Files (x86)\Autorun Angel
2020-09-27 13:52 - 2020-09-30 01:27 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-09-27 13:48 - 2020-09-27 13:48 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2020-09-27 13:48 - 2020-09-27 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VKTabletDriver
2020-09-27 13:48 - 2020-09-27 13:48 - 000000000 ____D C:\Program Files\VKTablet
2020-09-27 13:48 - 2019-10-28 20:35 - 000130688 _____ (VEIKK) C:\WINDOWS\system32\WinTab32.dll
2020-09-27 13:32 - 2020-09-30 13:47 - 000000000 ____D C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}
2020-09-27 13:32 - 2020-09-27 13:36 - 000000000 ____D C:\Users\jakem\AppData\Roaming\instinfo
2020-09-27 13:32 - 2020-09-27 13:32 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2020-09-27 13:24 - 2020-09-30 00:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2020-09-27 13:24 - 2020-09-28 19:42 - 000000000 ____D C:\Program Files (x86)\IObit
2020-09-27 13:24 - 2020-09-27 17:39 - 000002350 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_jakem.bak
2020-09-27 13:24 - 2020-09-27 13:24 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2020-09-27 13:24 - 2020-09-27 13:24 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2020-09-27 13:10 - 2019-10-28 20:35 - 000115840 _____ (VEIKK) C:\WINDOWS\SysWOW64\WinTab32.dll
2020-09-27 13:06 - 2020-09-27 13:06 - 019724624 _____ (Shenzhen Hezon Lito Technology Co.,Ltd. ) C:\Users\jakem\Downloads\VKTablet.exe
2020-09-27 06:27 - 2020-09-27 06:27 - 000000000 ____D C:\Users\jakem\Documents\Stardock
2020-09-27 06:10 - 2020-09-27 06:10 - 000003656 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2020-09-27 06:02 - 2020-09-27 06:02 - 000000000 ___HD C:\$SysReset
2020-09-27 06:01 - 2020-09-27 06:01 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Macromedia
2020-09-27 01:36 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2020-09-27 01:36 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2020-09-27 01:36 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2020-09-27 01:36 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2020-09-27 01:36 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2020-09-27 01:36 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2020-09-27 01:36 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2020-09-27 01:36 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2020-09-27 01:36 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2020-09-27 01:36 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2020-09-27 01:36 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2020-09-27 01:36 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2020-09-27 01:36 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2020-09-27 01:36 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2020-09-27 01:36 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2020-09-27 01:36 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2020-09-27 01:36 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2020-09-27 01:36 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2020-09-27 01:36 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2020-09-27 01:36 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2020-09-27 01:36 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2020-09-27 01:36 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2020-09-27 01:36 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2020-09-27 01:36 - 2008-10-10 04:52 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2020-09-27 01:36 - 2008-10-10 04:52 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2020-09-27 01:36 - 2008-10-10 04:52 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2020-09-27 01:36 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2020-09-27 01:36 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2020-09-27 01:36 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2020-09-27 01:36 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2020-09-27 01:36 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2020-09-27 01:36 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2020-09-27 01:36 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2020-09-27 01:36 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2020-09-27 01:36 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2020-09-27 01:36 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2020-09-27 01:36 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2020-09-27 01:36 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2020-09-27 01:36 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2020-09-27 01:36 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2020-09-27 01:36 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2020-09-27 01:36 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2020-09-27 01:36 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2020-09-27 01:36 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2020-09-27 01:36 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2020-09-27 01:36 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2020-09-27 01:36 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2020-09-27 01:36 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2020-09-27 01:36 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2020-09-27 01:36 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2020-09-27 01:36 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2020-09-27 01:36 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2020-09-27 01:36 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2020-09-27 01:36 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2020-09-27 01:36 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2020-09-27 01:36 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2020-09-27 01:36 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2020-09-27 01:36 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2020-09-27 01:36 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2020-09-27 01:36 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2020-09-27 01:36 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2020-09-27 01:36 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2020-09-27 01:36 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2020-09-27 01:36 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2020-09-27 01:36 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2020-09-27 01:36 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2020-09-27 01:36 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2020-09-27 01:36 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2020-09-27 01:36 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2020-09-27 01:36 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2020-09-27 01:36 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2020-09-27 01:36 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2020-09-27 01:36 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2020-09-27 01:36 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2020-09-27 01:36 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2020-09-27 01:35 - 2020-09-28 12:07 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-09-27 01:35 - 2020-09-27 01:36 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-09-27 01:35 - 2020-09-27 01:35 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2020-09-27 01:35 - 2020-09-27 01:35 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2020-09-27 01:35 - 2020-09-27 01:35 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-09-27 01:35 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2020-09-27 01:35 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2020-09-27 01:35 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2020-09-27 01:35 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2020-09-27 01:35 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2020-09-27 01:35 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2020-09-27 01:35 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2020-09-27 01:35 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2020-09-27 01:35 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2020-09-26 22:45 - 2020-09-26 22:45 - 000000000 ____D C:\Users\jakem\AppData\Roaming\PVS-Studio-Java
2020-09-26 22:40 - 2020-09-29 17:59 - 1104669416 _____ C:\WINDOWS\MEMORY.DMP
2020-09-26 21:13 - 2020-09-29 04:48 - 000000000 ____D C:\Users\jakem\AppData\Local\ElevatedDiagnostics
2020-09-26 21:13 - 2020-09-26 21:13 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2020-09-26 21:09 - 2020-09-26 21:09 - 000000000 ____D C:\ProgramData\FNET
2020-09-26 21:06 - 2020-09-26 21:07 - 000000000 ____D C:\Users\jakem\RAMCACHE
2020-09-26 21:06 - 2020-09-26 21:06 - 000000000 ____D C:\Users\jakem\AppData\Roaming\AsRamdisk
2020-09-26 21:06 - 2008-01-04 13:34 - 000011832 _____ C:\WINDOWS\SysWOW64\Drivers\AsInsHelp64.sys
2020-09-26 21:04 - 2020-09-26 21:04 - 000000000 ____D C:\Users\jakem\RamDisk
2020-09-26 21:02 - 2015-06-09 16:46 - 000192512 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\SysWOW64\Drivers\UpdateHelper.dll
2020-09-26 20:56 - 2020-09-26 20:56 - 000000000 ____D C:\Program Files (x86)\7-Zip
2020-09-26 14:03 - 2020-09-30 13:47 - 105644032 _____ C:\WINDOWS\system32\config\SOFTWARE
2020-09-26 14:03 - 2020-09-30 13:47 - 014155776 _____ C:\WINDOWS\system32\config\SYSTEM
2020-09-26 14:03 - 2020-09-30 13:47 - 001048576 _____ C:\WINDOWS\system32\config\DEFAULT
2020-09-26 14:03 - 2020-09-30 13:47 - 000139264 _____ C:\WINDOWS\system32\config\SAM
2020-09-26 14:03 - 2020-09-30 13:47 - 000040960 _____ C:\WINDOWS\system32\config\SECURITY
2020-09-26 05:31 - 2020-09-30 15:02 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\Mozilla
2020-09-26 02:45 - 2020-09-26 02:45 - 000000000 ____D C:\Users\jakem\AppData\Roaming\NuGet
2020-09-26 02:45 - 2020-09-26 02:45 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\Temp
2020-09-26 01:12 - 2020-09-26 01:12 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk

 

[IIEleven11]

2020-09-26 01:03 - 2020-09-26 01:03 - 000000000 ____D C:\Users\jakem\Documents\HUD Desktop
2020-09-26 00:46 - 2020-09-27 06:28 - 000000000 ____D C:\ProgramData\Stardock
2020-09-26 00:46 - 2020-09-26 00:48 - 000000000 ____D C:\Users\jakem\Downloads\Stardock
2020-09-26 00:46 - 2020-09-26 00:48 - 000000000 ____D C:\Users\jakem\AppData\Local\Stardock
2020-09-26 00:46 - 2020-09-26 00:48 - 000000000 ____D C:\Program Files (x86)\Stardock
2020-09-26 00:46 - 2020-09-26 00:46 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Stardock
2020-09-25 21:36 - 2020-09-25 21:36 - 000000000 ____D C:\Users\jakem\AppData\Local\IsolatedStorage
2020-09-25 21:35 - 2020-09-25 21:35 - 000000000 ____D C:\Users\jakem\Viasfora
2020-09-25 21:33 - 2020-09-29 21:38 - 000000000 ____D C:\Users\jakem\AppData\Roaming\VisualAssist
2020-09-25 21:33 - 2020-09-25 21:33 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Meowtrix
2020-09-25 21:33 - 2020-09-25 21:33 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Embarcadero
2020-09-25 21:33 - 2020-09-25 21:33 - 000000000 ____D C:\Users\jakem\AppData\Local\CodeMaid
2020-09-25 18:08 - 2020-09-29 21:37 - 000000000 ____D C:\Users\jakem\AppData\Local\.IdentityService
2020-09-25 18:08 - 2020-09-25 18:08 - 000000000 ____D C:\Users\jakem\AppData\Local\unityhub-updater
2020-09-25 18:08 - 2020-09-25 18:08 - 000000000 ____D C:\Program Files\Unity Hub
2020-09-25 18:08 - 2020-09-25 18:08 - 000000000 ____D C:\Program Files\Android
2020-09-25 18:08 - 2020-09-25 18:08 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity
2020-09-25 18:07 - 2020-09-25 18:07 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2020-09-25 18:07 - 2020-09-25 18:07 - 000000000 ____D C:\Program Files\Application Verifier
2020-09-25 18:07 - 2020-09-25 18:07 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\3082
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\2052
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1055
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1049
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1046
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1045
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1042
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1041
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1040
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1036
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1033
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1031
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1029
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1028
2020-09-25 18:02 - 2020-09-25 18:02 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2020-09-25 18:02 - 2020-09-25 18:02 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2020-09-25 18:01 - 2020-09-25 18:08 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2020-09-25 18:01 - 2020-09-25 18:03 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-09-25 18:01 - 2020-09-25 18:01 - 000001799 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2020-09-25 18:01 - 2020-09-25 18:01 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-09-25 18:01 - 2020-09-25 18:01 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-09-25 17:59 - 2020-09-25 18:09 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Visual Studio Setup
2020-09-25 17:59 - 2020-09-25 17:59 - 000001359 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2020-09-25 17:59 - 2020-09-25 17:59 - 000000000 ____D C:\Users\jakem\AppData\Roaming\vstelemetry
2020-09-25 17:59 - 2020-09-25 17:59 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft Visual Studio
2020-09-25 17:59 - 2020-09-25 17:59 - 000000000 ____D C:\Users\jakem\AppData\Local\ServiceHub
2020-09-25 17:58 - 2020-09-25 17:59 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2020-09-25 17:58 - 2020-09-25 17:58 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2020-09-25 16:22 - 2020-09-30 14:19 - 000000000 ____D C:\Users\jakem\AppData\Local\CrashDumps
2020-09-25 16:17 - 2020-09-25 16:17 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk
2020-09-25 16:09 - 2020-09-25 16:09 - 000000000 ____D C:\Users\jakem\AppData\Local\UXP
2020-09-25 16:02 - 2020-09-28 20:24 - 000000000 __RHD C:\Users\jakem\jtmottola@students.everettcc.edu Creative Cloud Files
2020-09-25 15:59 - 2020-09-25 15:59 - 000001368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2020-09-25 15:58 - 2020-09-28 20:53 - 000000000 ____D C:\ProgramData\Adobe
2020-09-25 15:58 - 2020-09-28 20:46 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-09-25 15:58 - 2020-09-25 16:17 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-09-25 15:58 - 2020-09-25 16:16 - 000000000 ____D C:\Program Files\Adobe
2020-09-25 15:57 - 2020-09-28 20:53 - 000000000 ____D C:\Users\jakem\AppData\Local\Adobe
2020-09-25 15:46 - 2020-09-27 13:48 - 000000000 ____D C:\Users\jakem\AppData\Roaming\VKTablet
2020-09-25 15:43 - 2020-09-30 13:47 - 000000000 ____D C:\Users\jakem\Documents\ShareX
2020-09-25 15:43 - 2020-09-25 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2020-09-25 15:43 - 2020-09-25 15:43 - 000000000 ____D C:\Program Files\ShareX
2020-09-25 15:34 - 2019-11-29 16:46 - 000029592 _____ (VEIKK) C:\WINDOWS\system32\Drivers\VkDevice.sys
2020-09-25 14:50 - 2020-09-26 13:51 - 000000000 ____D C:\ProgramData\JAM Software
2020-09-25 14:49 - 2020-09-26 13:51 - 000000023 _____ C:\WINDOWS\ODBCINST.INI
2020-09-25 14:49 - 2020-09-26 13:51 - 000000000 ____D C:\Users\jakem\AppData\Roaming\JAM Software
2020-09-25 14:32 - 2020-09-25 14:32 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Geek Uninstaller
2020-09-25 14:32 - 2020-09-25 14:32 - 000000000 ____D C:\ProgramData\Tech Tool Store
2020-09-25 14:07 - 2020-09-15 00:50 - 000068408 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2020-09-25 14:07 - 2020-09-15 00:50 - 000057144 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2020-09-25 02:10 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2020-09-25 02:10 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2020-09-25 02:10 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2020-09-25 02:10 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2020-09-25 02:10 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2020-09-25 02:10 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2020-09-25 02:10 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2020-09-25 02:10 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2020-09-25 02:10 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2020-09-25 02:10 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2020-09-25 02:10 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2020-09-25 02:10 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2020-09-25 02:10 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2020-09-25 02:10 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2020-09-25 02:10 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2020-09-25 02:10 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2020-09-25 02:10 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2020-09-25 02:10 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2020-09-25 02:10 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2020-09-25 02:10 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2020-09-25 02:10 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2020-09-25 02:10 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2020-09-25 02:10 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2020-09-25 02:10 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2020-09-25 02:10 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2020-09-25 02:10 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2020-09-25 02:10 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2020-09-25 02:10 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2020-09-25 02:10 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2020-09-25 02:10 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2020-09-25 02:10 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2020-09-25 02:10 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2020-09-25 02:10 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2020-09-25 02:10 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2020-09-25 02:10 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2020-09-25 02:10 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2020-09-25 02:10 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2020-09-25 02:10 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2020-09-25 02:10 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2020-09-25 02:10 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2020-09-25 02:10 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2020-09-25 02:10 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2020-09-25 02:10 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2020-09-25 02:10 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2020-09-25 02:10 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2020-09-25 02:10 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2020-09-25 02:10 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2020-09-25 02:10 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2020-09-25 02:10 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2020-09-25 02:10 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2020-09-25 02:10 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2020-09-25 02:10 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2020-09-25 02:10 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2020-09-25 02:10 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2020-09-25 02:10 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2020-09-25 02:10 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2020-09-25 02:10 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2020-09-25 02:10 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2020-09-25 02:10 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2020-09-25 02:10 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2020-09-25 02:10 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2020-09-25 02:10 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2020-09-25 02:10 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2020-09-25 02:10 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2020-09-25 02:10 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2020-09-25 02:10 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2020-09-25 02:10 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2020-09-25 02:10 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2020-09-25 02:10 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2020-09-25 02:10 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2020-09-25 02:10 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2020-09-25 02:10 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2020-09-25 02:10 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2020-09-25 02:10 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2020-09-25 02:10 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2020-09-25 02:10 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2020-09-25 02:10 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2020-09-25 02:10 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2020-09-25 02:10 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2020-09-25 02:10 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2020-09-25 02:10 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2020-09-25 02:10 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2020-09-25 02:10 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2020-09-25 02:10 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2020-09-25 02:02 - 2020-09-25 05:16 - 000000000 ____D C:\Users\jakem\AppData\Local\Ubisoft Game Launcher
2020-09-25 02:01 - 2020-09-25 02:01 - 000000000 ____D C:\ProgramData\Ubisoft
2020-09-24 22:17 - 2020-09-24 22:17 - 000000000 ____D C:\Users\jakem\AppData\Roaming\NVIDIA
2020-09-24 22:17 - 2020-09-24 22:17 - 000000000 ____D C:\Users\jakem\AppData\Roaming\LibreOffice
2020-09-24 22:14 - 2020-09-24 19:04 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-09-24 22:11 - 2020-09-24 22:11 - 000166056 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-09-24 22:11 - 2020-09-24 22:11 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Sun
2020-09-24 22:11 - 2020-09-24 22:11 - 000000000 ____D C:\ProgramData\Oracle
2020-09-24 22:11 - 2020-09-24 22:11 - 000000000 ____D C:\Program Files (x86)\Java
2020-09-24 22:01 - 2020-09-24 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.0
2020-09-24 20:32 - 2020-09-24 20:32 - 000000000 ____D C:\Users\jakem\AppData\Local\cache
2020-09-24 20:17 - 2020-09-26 05:32 - 000000000 ____D C:\Users\jakem\AppData\Local\Google
2020-09-24 20:17 - 2020-09-26 05:32 - 000000000 ____D C:\Program Files (x86)\Google
2020-09-24 19:46 - 2020-09-24 19:46 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Corsair
2020-09-24 19:46 - 2020-09-24 19:46 - 000000000 ____D C:\Users\jakem\AppData\Local\Corsair
2020-09-24 19:46 - 2017-12-26 01:58 - 000034064 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2020-09-24 19:38 - 2020-09-30 13:05 - 000000000 ____D C:\Users\jakem\AppData\Local\PlaceholderTileLogoFolder
2020-09-24 19:35 - 2020-09-29 04:14 - 000000000 ____D C:\Users\jakem\AppData\Local\D3DSCache
2020-09-24 19:28 - 2020-09-24 19:28 - 000000000 __SHD C:\Users\jakem\AppData\Roaming\Common
2020-09-24 19:28 - 2020-09-24 19:28 - 000000000 ____D C:\Users\jakem\AppData\Local\Binary_Fortress_Software
2020-09-24 19:28 - 2020-09-24 19:28 - 000000000 ____D C:\ProgramData\Binary Fortress Software
2020-09-24 19:27 - 2020-09-30 13:47 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Everything
2020-09-24 19:27 - 2020-09-30 13:47 - 000000000 ____D C:\Users\jakem\AppData\Local\Everything
2020-09-24 19:27 - 2020-09-27 01:59 - 000000000 ____D C:\ProgramData\GRETECH
2020-09-24 19:27 - 2020-09-24 19:27 - 000000000 ____D C:\Users\jakem\AppData\Roaming\GRETECH
2020-09-24 19:24 - 2020-09-25 18:08 - 000001882 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity Hub.lnk
2020-09-24 19:24 - 2020-09-24 19:24 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-09-24 19:24 - 2020-09-24 18:41 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-09-24 19:24 - 2020-09-23 22:21 - 000002055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2020-09-24 19:24 - 2020-09-21 15:33 - 000000357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Q-Dir.lnk
2020-09-24 19:23 - 2020-09-30 13:50 - 000000000 ____D C:\Users\jakem\AppData\Local\LGHUB
2020-09-24 19:23 - 2020-09-30 13:24 - 000000000 ____D C:\Users\jakem\AppData\Roaming\IObit
2020-09-24 19:23 - 2020-09-30 13:24 - 000000000 ____D C:\ProgramData\ProductData
2020-09-24 19:23 - 2020-09-27 17:39 - 000000000 ____D C:\ProgramData\IObit
2020-09-24 19:23 - 2020-09-26 01:05 - 000000000 ____D C:\Users\jakem\AppData\Roaming\LGHUB
2020-09-24 19:23 - 2020-09-25 16:23 - 000000000 ____D C:\Program Files\LGHUB
2020-09-24 19:23 - 2020-09-24 19:27 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Q-Dir
2020-09-24 19:23 - 2020-09-24 19:23 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-09-24 19:23 - 2020-09-24 19:23 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2020-09-24 19:23 - 2020-09-24 19:23 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2020-09-24 19:23 - 2020-09-24 19:23 - 000000000 ____D C:\WINDOWS\Setup
2020-09-24 19:23 - 2020-09-24 19:23 - 000000000 ____D C:\WINDOWS\OCR
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\winrm
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\slmgr
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\0409
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\DigitalLocker
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\Users\jakem\AppData\Local\Comms
2020-09-24 19:22 - 2020-08-08 01:23 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-09-24 19:22 - 2020-08-08 01:23 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-24 19:21 - 2020-09-30 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-09-24 19:21 - 2020-09-30 14:11 - 000000000 ___RD C:\Program Files (x86)
2020-09-24 19:21 - 2020-09-30 13:44 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2020-09-24 19:21 - 2020-09-30 13:39 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-09-24 19:21 - 2020-09-30 13:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-09-24 19:21 - 2020-09-30 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-24 19:21 - 2020-09-30 13:10 - 000000000 ____D C:\WINDOWS\security
2020-09-24 19:21 - 2020-09-30 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-09-24 19:21 - 2020-09-30 13:05 - 000000000 ___HD C:\Program Files\WindowsApps
2020-09-24 19:21 - 2020-09-28 05:50 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-09-24 19:21 - 2020-09-27 13:44 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-09-24 19:21 - 2020-09-27 13:23 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-09-24 19:21 - 2020-09-26 14:04 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2020-09-24 19:21 - 2020-09-25 04:09 - 000000000 ____D C:\WINDOWS\appcompat
2020-09-24 19:21 - 2020-09-24 19:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-09-24 19:21 - 2020-09-24 19:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-09-24 19:21 - 2020-09-24 19:23 - 000000000 ____D C:\ProgramData\LGHUB
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\system32\dsc
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\setup
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\MUI
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\Com
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\IME
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\Help
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files\Windows NT
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files\Common Files\System
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files (x86)\Windows NT
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 __RSD C:\WINDOWS\Media
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\system32\Nui
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Web
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\WaaS
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Vss
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\tracing
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\TAPI
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SystemApps
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\winevt
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ti-et
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ta-in
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\si-lk
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ras
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\my-mm
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Keywords
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\IME
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\icsxml
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ias
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\DriverState
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\downlevel
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\DDFs
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\am-et
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\System
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SKB
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\schemas
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SchCache
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Resources
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\rescache
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Registration
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\PLA
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Performance
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\ModemLogs
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\L2Schemas
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\InputMethod
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\IdentityCRL
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Globalization
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Cursors
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Containers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Branding
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\ProgramData\USOShared
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\Windows Security
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\Common Files\Services
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2020-09-24 19:21 - 2020-09-24 19:20 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2020-09-24 19:21 - 2020-09-24 19:20 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2020-09-24 19:21 - 2020-09-24 19:20 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2020-09-24 19:21 - 2020-09-24 19:20 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2020-09-24 19:21 - 2020-09-24 19:20 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-09-24 19:21 - 2020-09-24 19:20 - 000020339 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-09-24 19:21 - 2020-09-24 19:20 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2020-09-24 19:21 - 2020-09-24 19:20 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2020-09-24 19:21 - 2020-09-24 19:20 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2020-09-24 19:21 - 2020-09-24 19:20 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2020-09-24 19:21 - 2020-09-24 19:20 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2020-09-24 19:21 - 2020-09-24 19:20 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2020-09-24 19:21 - 2020-09-24 19:20 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2020-09-24 19:21 - 2020-09-24 19:20 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2020-09-24 19:21 - 2020-09-24 19:20 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2020-09-24 19:21 - 2020-09-24 19:20 - 000000219 _____ C:\WINDOWS\system.ini
2020-09-24 19:21 - 2020-09-24 19:20 - 000000092 _____ C:\WINDOWS\win.ini
2020-09-24 19:21 - 2020-09-24 19:05 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-09-24 19:21 - 2020-09-24 19:04 - 000000000 ____D C:\Program Files\Windows Defender

 

[IIEleven11]

2020-09-24 19:21 - 2020-09-24 18:32 - 000000000 ____D C:\WINDOWS\system32\spool
2020-09-24 19:21 - 2020-09-24 18:32 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-24 19:21 - 2020-09-24 18:32 - 000000000 ____D C:\ProgramData\USOPrivate
2020-09-24 19:21 - 2020-09-24 18:30 - 000000000 __RHD C:\Users\Public\Libraries
2020-09-24 19:21 - 2020-09-24 18:26 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-24 19:21 - 2020-09-24 18:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-24 19:21 - 2020-09-24 18:26 - 000000000 ____D C:\WINDOWS\ServiceState
2020-09-24 19:20 - 2020-09-30 13:39 - 000000000 ____D C:\WINDOWS\INF
2020-09-24 19:18 - 2020-09-30 13:47 - 000032768 _____ C:\WINDOWS\system32\config\BBI
2020-09-24 19:18 - 2020-09-30 13:10 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-24 19:18 - 2020-09-26 14:03 - 083361792 _____ C:\WINDOWS\system32\config\software.rcbak
2020-09-24 19:18 - 2020-09-26 14:03 - 013107200 _____ C:\WINDOWS\system32\config\system.rcbak
2020-09-24 19:18 - 2020-09-26 14:03 - 002097152 _____ C:\WINDOWS\system32\config\default.rcbak
2020-09-24 19:18 - 2020-09-26 14:03 - 000131072 _____ C:\WINDOWS\system32\config\sam.rcbak
2020-09-24 19:18 - 2020-09-26 14:03 - 000032768 _____ C:\WINDOWS\system32\config\security.rcbak
2020-09-24 19:18 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\SMI
2020-09-24 19:18 - 2020-09-24 19:07 - 000000000 ____D C:\WINDOWS\servicing
2020-09-24 19:18 - 2020-09-24 18:30 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-09-24 19:07 - 2020-09-28 20:53 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Adobe
2020-09-24 19:07 - 2020-09-24 19:07 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Blizzard Entertainment
2020-09-24 19:06 - 2020-09-24 19:07 - 000000000 ____D C:\ProgramData\Corsair
2020-09-24 19:06 - 2020-09-24 19:06 - 000000000 ____D C:\Program Files (x86)\Corsair
2020-09-24 19:04 - 2020-09-24 19:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-24 19:04 - 2020-09-24 19:04 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-24 19:01 - 2020-09-30 15:01 - 000000000 ____D C:\Users\jakem\AppData\Roaming\discord
2020-09-24 19:01 - 2020-09-28 09:02 - 000000000 ____D C:\Users\jakem\AppData\Local\SquirrelTemp
2020-09-24 19:01 - 2020-09-24 19:01 - 000000000 ____D C:\Users\jakem\AppData\Local\Discord
2020-09-24 18:51 - 2020-09-30 11:45 - 000000000 ____D C:\Program Files (x86)\StarCraft II
2020-09-24 18:51 - 2020-09-24 19:07 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2020-09-24 18:50 - 2020-09-30 13:48 - 000000000 ____D C:\ProgramData\NVIDIA
2020-09-24 18:50 - 2020-09-30 11:45 - 000000000 ____D C:\Users\jakem\AppData\Local\Battle.net
2020-09-24 18:50 - 2020-09-30 01:38 - 000000000 ____D C:\Users\jakem\AppData\Local\NVIDIA
2020-09-24 18:50 - 2020-09-29 15:47 - 000003458 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}.bak
2020-09-24 18:50 - 2020-09-29 15:47 - 000003044 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}.bak
2020-09-24 18:50 - 2020-09-29 15:47 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}.bak
2020-09-24 18:50 - 2020-09-29 15:47 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}.bak
2020-09-24 18:50 - 2020-09-29 15:47 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}.bak
2020-09-24 18:50 - 2020-09-29 15:47 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}.bak
2020-09-24 18:50 - 2020-09-29 01:36 - 000000000 ____D C:\Users\jakem\AppData\Local\NVIDIA Corporation
2020-09-24 18:50 - 2020-09-28 09:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-09-24 18:50 - 2020-09-26 13:56 - 000003256 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}.bak
2020-09-24 18:50 - 2020-09-26 13:56 - 000002804 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}.bak
2020-09-24 18:50 - 2020-09-25 14:07 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-24 18:50 - 2020-09-25 14:07 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-24 18:50 - 2020-09-24 18:51 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Battle.net
2020-09-24 18:50 - 2020-09-24 18:50 - 000000000 ____D C:\Users\jakem\AppData\Local\CEF
2020-09-24 18:50 - 2020-09-15 21:49 - 002795320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-09-24 18:50 - 2020-09-15 21:49 - 002152936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-09-24 18:50 - 2020-09-15 21:49 - 001294648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-09-24 18:50 - 2020-09-15 21:42 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-09-24 18:50 - 2020-08-10 08:20 - 000169272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2020-09-24 18:50 - 2020-08-10 08:20 - 000145208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2020-09-24 18:50 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2020-09-24 18:50 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2020-09-24 18:50 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2020-09-24 18:50 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2020-09-24 18:49 - 2020-09-25 14:07 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-09-24 18:49 - 2020-09-24 19:07 - 000000000 ____D C:\Users\jakem\AppData\Local\Blizzard Entertainment
2020-09-24 18:49 - 2020-09-24 18:51 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-09-24 18:48 - 2020-09-24 18:48 - 000000000 ____D C:\ProgramData\Battle.net
2020-09-24 18:47 - 2020-09-24 18:47 - 000000000 ____D C:\Users\jakem\Downloads\Sc2ReplayStats
2020-09-24 18:46 - 2020-09-28 20:15 - 000000000 ____D C:\Users\jakem\AppData\Local\Mailbird
2020-09-24 18:45 - 2020-09-24 18:45 - 000000000 ____D C:\Users\jakem\AppData\Local\OneDrive
2020-09-24 18:44 - 2020-09-27 02:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2020-09-24 18:44 - 2020-09-27 01:57 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-09-24 18:44 - 2020-09-25 18:07 - 000000000 ____D C:\ProgramData\Package Cache
2020-09-24 18:43 - 2020-09-27 02:30 - 000000000 ____D C:\ProgramData\ASUS
2020-09-24 18:43 - 2020-09-27 01:57 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-09-24 18:43 - 2020-09-24 18:43 - 000028672 ____N (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2020-09-24 18:43 - 2020-09-24 18:43 - 000015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2020-09-24 18:41 - 2020-09-24 18:51 - 000000000 ____D C:\ProgramData\Mozilla
2020-09-24 18:41 - 2020-09-24 18:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-09-24 18:41 - 2020-09-24 18:41 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Mozilla
2020-09-24 18:41 - 2020-09-24 18:41 - 000000000 ____D C:\Users\jakem\AppData\Local\Mozilla
2020-09-24 18:41 - 2020-09-24 18:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-09-24 18:40 - 2020-09-24 18:40 - 000000000 ____D C:\Users\jakem\AppData\Local\MicrosoftEdge
2020-09-24 18:38 - 2020-09-30 13:05 - 000000000 ____D C:\Users\jakem\AppData\Local\Packages
2020-09-24 18:38 - 2020-09-30 13:05 - 000000000 ____D C:\ProgramData\Packages
2020-09-24 18:38 - 2020-09-29 19:04 - 000000000 ____D C:\Users\jakem\AppData\Local\VirtualStore
2020-09-24 18:38 - 2020-09-28 09:10 - 000000000 ____D C:\Users\jakem\AppData\Local\ConnectedDevicesPlatform
2020-09-24 18:38 - 2020-09-24 18:38 - 000000020 ___SH C:\Users\jakem\ntuser.ini
2020-09-24 18:33 - 2020-09-30 11:15 - 000795738 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-24 18:30 - 2020-09-24 18:30 - 000000000 _SHDL C:\Users\Default User
2020-09-24 18:30 - 2020-09-24 18:30 - 000000000 _SHDL C:\Users\All Users
2020-09-24 18:29 - 2020-09-20 23:55 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-09-24 18:26 - 2020-09-30 13:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-24 18:26 - 2020-09-29 21:28 - 000000000 ____D C:\Users\jakem
2020-09-24 18:26 - 2020-09-29 14:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-09-24 18:26 - 2020-09-29 01:45 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-09-24 18:26 - 2020-09-24 18:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-09-24 18:25 - 2020-09-30 12:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-09-24 18:25 - 2020-09-29 01:35 - 000652704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-24 15:01 - 2020-09-30 15:02 - 000000000 ____D C:\FRST
2020-09-24 14:32 - 2020-09-27 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChrisPC DNS Switch
2020-09-24 13:18 - 2020-09-27 01:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2020-09-24 12:23 - 2020-09-28 20:22 - 000000000 ____D C:\AISuite3_Win7-8-8-1_Z87-DELUXE-1
2020-09-24 07:01 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM
2020-09-24 07:01 - 2020-09-24 07:01 - 000002047 _____ C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2020-09-24 07:01 - 2020-09-24 07:01 - 000000000 _____ C:\end
2020-09-24 07:00 - 2020-09-24 07:00 - 000000000 ____D C:\Users\jakem\gom player
2020-09-24 06:59 - 2020-09-24 06:59 - 000000286 _____ C:\nsispromotion_log.txt
2020-09-24 05:17 - 2020-09-24 06:22 - 000000000 ____D C:\Users\jakem\Downloads\Video
2020-09-24 05:17 - 2020-09-24 05:17 - 000000000 ____D C:\Users\jakem\Downloads\Compressed
2020-09-24 03:05 - 2020-09-24 03:05 - 000000000 ____D C:\Quarantine
2020-09-23 22:21 - 2020-09-28 10:10 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\IObit
2020-09-23 22:21 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2020-09-23 22:21 - 2020-09-23 22:21 - 000000000 ____D C:\Users\jakem\IOBIT
2020-09-23 21:43 - 2020-09-10 16:08 - 008651616 ____N (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw04.sys
2020-09-23 21:20 - 2020-09-10 16:08 - 002074564 _____ C:\WINDOWS\system32\Drivers\Netwfw04.dat
2020-09-23 21:20 - 2020-09-10 16:08 - 001067872 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter04.dll
2020-09-23 03:20 - 2020-09-23 03:20 - 000000000 ____D C:\Users\jakem\Downloads\tmp
2020-09-23 03:18 - 2017-12-03 18:29 - 000116224 _____ () C:\Users\jakem\Downloads\Sc2ReplayStats.com.exe
2020-09-23 03:18 - 2017-02-13 03:20 - 000061440 _____ (JacksonSoft) C:\Users\jakem\Downloads\JacksonSoft.CustomTabControl.dll
2020-09-23 02:10 - 2020-04-13 15:24 - 000010752 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vmulti.sys
2020-09-23 02:10 - 2020-04-13 15:24 - 000007680 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\hidkmdf.sys
2020-09-22 13:06 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
2020-09-22 13:06 - 2020-09-22 13:06 - 000000000 ____D C:\Users\jakem\Documents\DisplayFusion Backups
2020-09-22 10:04 - 2020-09-22 10:04 - 000000000 ____D C:\Users\jakem\source
2020-09-22 10:04 - 2020-09-22 10:04 - 000000000 ____D C:\Users\jakem\.templateengine
2020-09-22 09:48 - 2020-09-22 10:04 - 000000000 ____D C:\Users\jakem\Documents\Visual Studio 2019
2020-09-22 05:00 - 2020-09-22 05:00 - 000000000 ____D C:\Users\jakem\Documents\My Games
2020-09-22 03:37 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winaero Tweaker
2020-09-22 03:25 - 2020-09-22 03:25 - 000000000 ____D C:\Users\jakem\Documents\FrameView
2020-09-21 23:48 - 2020-09-26 00:48 - 000000000 ____D C:\Users\Public\Documents\Stardock
2020-09-21 23:48 - 2020-09-26 00:48 - 000000000 ____D C:\ProgramData\Documents\Stardock
2020-09-21 23:43 - 2020-09-27 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2020-09-21 23:43 - 2020-09-26 00:46 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stardock
2020-09-21 23:17 - 2020-09-24 18:30 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yamicsoft
2020-09-21 23:11 - 2020-09-27 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Game Booster
2020-09-21 22:57 - 2020-09-29 19:26 - 000000000 ____D C:\Users\jakem\Downloads\Tech tool store tools
2020-09-21 18:53 - 2020-09-25 01:15 - 000000000 ____D C:\Users\jakem\Scelight Replay Backup
2020-09-21 18:25 - 2020-09-21 18:32 - 000000000 ____D C:\Users\jakem\Documents\New folder
2020-09-21 18:17 - 2020-09-21 18:17 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\Sun
2020-09-21 18:17 - 2020-09-21 18:17 - 000000000 ____D C:\Users\jakem\.Scelight
2020-09-21 18:16 - 2020-09-24 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-09-21 18:15 - 2020-09-28 20:53 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\Adobe
2020-09-21 17:09 - 2020-09-25 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2019 Tools for Unity
2020-09-21 16:59 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2020-09-21 16:57 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2020-09-21 16:57 - 2020-09-21 16:57 - 000000000 ____D C:\Users\jakem\.dotnet
2020-09-21 16:09 - 2020-07-30 05:49 - 000126941 _____ C:\Users\jakem\Documents\signed2.pdf
2020-09-21 16:09 - 2020-07-29 21:01 - 000031322 _____ C:\Users\jakem\Documents\Mottola JT 28-8872 IWRP IEAP.pdf
2020-09-21 16:09 - 2020-06-15 15:59 - 000003392 _____ C:\Users\jakem\Documents\Rule of 1 gas Buildnotes.txt
2020-09-21 15:33 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q-Dir
2020-09-21 15:30 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everything
2020-09-21 15:29 - 2020-09-21 15:37 - 000000038 _____ C:\keyrateOFF.bat
2020-09-21 15:29 - 2020-09-21 15:36 - 000000037 _____ C:\KeyrateON.bat
2020-09-21 15:29 - 2020-02-25 04:31 - 000003072 _____ C:\keyrate.exe
2020-09-21 15:23 - 2020-09-21 15:23 - 000000000 ____D C:\Users\jakem\Documents\Adobe
2020-09-21 14:27 - 2020-09-24 18:29 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-09-21 13:17 - 2020-09-21 13:17 - 005681152 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2020-09-21 13:17 - 2020-09-21 13:17 - 004468736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2020-09-21 13:17 - 2020-09-21 13:17 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-09-21 05:51 - 2020-09-28 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mailbird
2020-09-21 05:09 - 2020-09-21 05:10 - 000000000 ____D C:\Users\jakem\.zenmap
2020-09-21 04:44 - 2020-09-26 01:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-09-21 04:36 - 2020-09-28 20:24 - 000000000 ___RD C:\Users\jakem\Creative Cloud Files (archived) (1)
2020-09-21 04:32 - 2020-09-30 10:41 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-09-21 04:32 - 2020-09-30 10:41 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-09-21 01:37 - 2020-09-26 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-09-21 00:27 - 2020-09-30 14:11 - 000000000 ____D C:\Temp
2020-09-21 00:20 - 2020-09-24 19:01 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-09-21 00:16 - 2019-12-06 21:25 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2020-09-21 00:16 - 2019-12-06 19:45 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2020-09-21 00:16 - 2019-12-06 17:00 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2020-09-21 00:16 - 2019-12-06 16:47 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2020-09-21 00:16 - 2019-12-06 16:36 - 018011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2020-09-21 00:16 - 2019-12-06 16:35 - 000374784 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2020-09-21 00:16 - 2019-12-06 16:35 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2020-09-21 00:16 - 2019-12-06 16:34 - 000417792 _____ C:\WINDOWS\system32\d3dconfig.exe
2020-09-21 00:16 - 2019-12-06 16:34 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2020-09-21 00:16 - 2019-12-06 16:33 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2020-09-21 00:16 - 2019-12-06 16:32 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2020-09-21 00:16 - 2019-12-06 16:31 - 001379328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2020-09-21 00:16 - 2019-12-06 16:30 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2020-09-21 00:16 - 2019-12-06 16:29 - 013957632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2020-09-21 00:16 - 2019-12-06 16:29 - 001985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2020-09-21 00:16 - 2019-12-06 16:29 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2020-09-21 00:16 - 2019-12-06 16:28 - 001152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2020-09-21 00:16 - 2019-12-06 16:28 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2020-09-21 00:16 - 2019-12-06 16:27 - 004826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2020-09-21 00:16 - 2019-12-06 16:27 - 000347136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2020-09-21 00:16 - 2019-12-06 16:26 - 004795392 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2020-09-21 00:16 - 2019-12-06 16:26 - 000365056 _____ C:\WINDOWS\SysWOW64\d3dconfig.exe
2020-09-21 00:16 - 2019-12-06 16:26 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2020-09-21 00:16 - 2019-12-06 16:26 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2020-09-21 00:16 - 2019-12-06 16:26 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2020-09-21 00:16 - 2019-12-06 16:24 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2020-09-21 00:16 - 2019-12-06 16:23 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2020-09-21 00:16 - 2019-12-06 16:23 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2020-09-21 00:16 - 2019-12-06 16:23 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2020-09-21 00:16 - 2019-12-06 16:22 - 003578880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2020-09-21 00:16 - 2019-12-06 16:22 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2020-09-21 00:16 - 2019-12-06 16:22 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2020-09-21 00:16 - 2019-12-06 16:21 - 003592704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2020-09-21 00:16 - 2019-12-06 16:20 - 001411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2020-09-21 00:16 - 2019-12-06 16:19 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2020-09-21 00:16 - 2019-12-06 16:19 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2020-09-21 00:16 - 2019-12-06 15:44 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DirectML.Debug.dll
2020-09-21 00:12 - 2020-03-11 12:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-09-20 23:59 - 2020-09-15 10:43 - 005520280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-09-20 23:59 - 2020-09-14 17:01 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-09-20 23:59 - 2020-09-14 17:01 - 000038632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-09-20 23:57 - 2020-09-20 23:57 - 000000000 ____D C:\Users\jakem\ansel
2020-09-20 23:56 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-09-20 23:56 - 2020-09-20 23:56 - 032610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 026272768 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 023441408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 019869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 018766848 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 018075136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 007611904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 006417408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004892672 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004820992 ____N (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004783344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004304384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004274688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003992576 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003868672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003659264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003547784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003334656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 002687488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 002519512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 002452856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 002338184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 002136744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 001980728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001956032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001812368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001770040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001719096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 001542752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001541224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001506608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001438432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001411072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001337344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001314608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-09-20 23:56 - 2020-09-20 23:56 - 001301584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001260200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 001253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001183256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001128544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 001117344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001061376 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 001014864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000961192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000946712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000920896 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000801544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000759792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000680664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 000676680 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000665264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000538120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000530440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\glmf32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000500968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000412688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glmf32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000377344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000367416 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000360024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2020-09-20 23:56 - 2020-09-20 23:56 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000217920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000117056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000095032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-20 23:56 - 2020-09-20 23:56 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000009277 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-09-20 23:56 - 2020-09-20 23:56 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragres.dll
2020-09-20 23:56 - 2020-03-06 03:03 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2020-09-20 23:56 - 2020-03-04 05:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-09-20 23:56 - 2020-03-04 05:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-09-20 23:55 - 2020-09-20 23:56 - 005993968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 014754304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 010847552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 009034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 008897200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 008006248 ____N (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 007979416 ____N (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 007633360 ____N (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 006357032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 006197760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 006193664 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005870496 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005776544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005729280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005430480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 004747776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 004727296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 004629328 ____N (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 004592136 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 004523008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 004009064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003913728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003875840 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003819528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003815424 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 003806720 ____N (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003779384 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 003749376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003587584 ____N (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003505952 ____N (Microsoft Corporation) C:\WINDOWS\system32\combase.dll

 

[IIEleven11]

2020-09-20 23:55 - 2020-09-20 23:55 - 003505952 ____N (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003436544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003303936 ____N (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003181056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003082240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003062784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002991416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 002975744 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002951680 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 002918736 ____N (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002851128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 002806152 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002772992 ____N (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002757120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 002647040 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002635640 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002631168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002606592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002587448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002541056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002451456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002433024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002422784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002319216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002265328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002259968 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002248192 ____N (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002206208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002178048 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002131032 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002103704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002102784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002023704 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001978656 ____N (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001951232 ____N (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001924608 ____N (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001868672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001866240 ____N (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001856312 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001834496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001805192 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-09-20 23:55 - 2020-09-20 23:55 - 001777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001751432 ____N (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001720832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001711104 ____N (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001701368 ____N (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001695208 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001693208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001681408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001654824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001649664 ____N (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001640888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001617088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001548288 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001538656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001514496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001504768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001498624 ____N (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001488384 ____N (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001485824 ____N (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001473024 ____N (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001472824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 001449792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001449472 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001426944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001400208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-09-20 23:55 - 2020-09-20 23:55 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001378568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001337176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001329664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001296384 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001279288 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001277440 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001209344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001209096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001198288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001191592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001181200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001145344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001140928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001126488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001094472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001092392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001089344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001068112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001046528 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001028288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001027344 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001021952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001008696 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001003320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000978760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000976680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000969216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000943408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000934912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000914216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000913776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000907440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000903992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000894768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000890944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000887304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000843376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000827912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000809280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000799544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000794624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000775776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000763840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000757192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000755576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000750976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000725608 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000705560 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000702792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000702776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000688960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000647480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000639928 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000635824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000603464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000602440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-09-20 23:55 - 2020-09-20 23:55 - 000602184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000585696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000573752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000546464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000531448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000528352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000502592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-20 23:55 - 2020-09-20 23:55 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000495848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000491520 _____ (Microsoft

 

[IIEleven11]

Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000472376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000455480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000454960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000428672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000420920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000420456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000403768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000374072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000373560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000361472 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000337768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msquic.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000303168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnputil.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000286024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000269624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000259888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000249664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000240136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000239432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000230392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000230376 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000223040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000212760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000196768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000190792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000185672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000185664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000183112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000169456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000167880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000160064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000159048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000155952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000153400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000152376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000147256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000138936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000133736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000132928 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000132728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlgpclnt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000119608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000118072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000116024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-09-20 23:55 - 2020-09-20 23:55 - 000110504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000109992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000099640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000092952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000091448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000070976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000069752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000069728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000069432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000068928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000064008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.SystemId.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000060744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000059448 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000056648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.SystemId.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-09-20 23:55 - 2020-09-20 23:55 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000042320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-09-20 23:55 - 2020-09-20 23:55 - 000030024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\midimap.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-09-20 23:55 - 2020-09-20 23:55 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000019776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\midimap.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000018432 _____ (Microsoft

 

[IIEleven11]

Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000017216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000016704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-20 23:52 - 2020-08-24 20:42 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-20 23:52 - 2020-08-24 20:36 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-20 23:51 - 2020-09-24 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2020-09-20 23:51 - 2020-09-20 23:51 - 000000000 ___HD C:\$WinREAgent
2020-09-20 23:47 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2020-09-20 23:42 - 2020-09-25 15:44 - 000000000 ____D C:\Users\jakem\Documents\StarCraft II
2020-09-20 23:41 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2020-09-20 23:39 - 2020-09-20 23:39 - 000066808 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2020-09-20 23:39 - 2020-09-20 23:39 - 000038136 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2020-09-20 23:39 - 2020-09-20 23:39 - 000026672 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2020-09-20 23:35 - 2020-09-28 09:13 - 000000000 ___RD C:\Users\jakem\OneDrive
2020-09-20 23:35 - 2020-09-20 23:35 - 000000000 ___HD C:\Users\jakem\MicrosoftEdgeBackups
2020-09-20 23:34 - 2020-09-24 18:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-09-20 23:34 - 2020-09-24 18:38 - 000000000 ___RD C:\Users\jakem\3D Objects
2020-09-20 23:33 - 2020-06-26 01:00 - 000724280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\UcmCxUcsiNvppc.sys
2020-09-20 23:30 - 2020-09-20 23:30 - 000000000 _SHDL C:\Documents and Settings
2020-09-11 09:30 - 2020-09-11 09:30 - 000065488 _____ (Adobe Systems Inc) C:\WINDOWS\system32\AdobePDF.dll
2020-09-11 09:30 - 2020-09-11 09:30 - 000036304 _____ (Adobe Systems Inc.) C:\WINDOWS\system32\AdobePDFUI.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)


==================== Files in the root of some directories ========

2020-09-28 20:58 - 2020-09-28 20:58 - 000000000 _____ () C:\Users\jakem\AppData\Local\oobelibMkey.log
2020-09-29 04:19 - 2020-09-29 04:19 - 000000017 _____ () C:\Users\jakem\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

 

[Broni]

Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

==================================

Was your router ever reset?

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

• Close all the running programs
• Double click on downloaded setup.exe file to install the program.
• Click on Start Scan button.
• Click on another Start Scan button.
• Wait until the Status box shows Scan Finished
• Click on Remove Selected.
• Wait until the Status box shows Deleting Finished.
• Click on Report and copy/paste the content of the Notepad into your next reply.
• RKreport.txt could also be found on your desktop.
• If more than one log is produced post all logs.

Please download Malwarebytes to your desktop.

• Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
• Then click Finish.
• Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
• If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
• When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
• Restart your computer when prompted to do so.
• The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.

Please download AdwCleaner by Xplode and save to your Desktop.

• Double click on AdwCleaner.exe to run the tool.
  Vista/Windows 7/8/10 users right-click and select Run As Administrator
• The tool will start to update the database if one is required.
• Click on the Scan button.
• AdwCleaner will begin...be patient as the scan may take some time to complete.
• After the scan has finished, click on the Logfile button.
• A window will open which lists the logs of your scans.
• Click on the Scan tab.
• Double-click the most recent scan which will be at the top of the list....the log will appear.
• Review the results...see note below
• After reviewing the log, click on the Clean button.
• Press OK when asked to close all programs and follow the onscreen prompts.
• Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
• After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
• To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
• Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
• A copy of all logfiles are saved to C:\AdwCleaner.

-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.

Download Malwarebytes Anti-Rootkit: http://downloads.malwarebytes.org/file/mbar to your desktop.

Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
* Double click on downloaded file. OK self extracting prompt.
* MBAR will start. Click "Next" to continue.
* Click in the following screen "Update" to obtain the latest malware definitions.
* Once the update is complete select "Next" and click "Scan".
* When the scan is finished and no malware has been found select "Exit".
* If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
* Open the MBAR folder located on your Desktop and paste the content of the following files in your next reply:

"mbar-log-{date} (xx-xx-xx).txt"
"system-log.txt"[/b]

 

[IIEleven11]

Thank you for helping me. Router reset, as in just a hard reset by unplugging and replugging back in? We changed the password and since that has happened it's been unplugged multiple times in an attempt to reset a poor connection. Other then that I havent done anything else to the router. Here are log files. I just went along with whatever was suggested by each program to remove. I know IOBIT is a PUP but I like their uninstaller. I went ahead and removed it anyways though. MBAR Anti Rootkit came back clean on the first try.
I just wanted to mention, I have run all of these programs since the infection. Multiple times pre and post system resets. So while I know it found some PUPs I'm fairly certain that either its hiding somewhere else, somewhere these things cannot detect or my PC is slowed down for some other reason. But I know I'm not the expert so I will defer to your call, thats just my thoughts on it. Thanks again Logs are as follows-
--------------------------------------------------------------------------------------------------------------------------
RogueKiller log-
-----------------------------------------------------------------------------------------------------------
RogueKiller Anti-Malware V14.7.3.0 (x64) [Sep 15 2020] (Premium) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.19041) 64 bits
Started in : Normal mode
User : jakem [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20200929_120615, Driver : Loaded
Mode : Standard Scan, Delete -- Date : 2020/10/01 16:58:22 (Duration : 00:07:57)
Switches : -minimize

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Delete ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[PUP.AutoIt.Gen (Potentially Malicious)] RainRGB.exe -- %_jakem_appdata%\Rainmeter\Addons\RainRGB\RainRGB.exe -> Deleted

--------------------------------------------------------------------------------------------------------------------------

Malwarebytes log
--------------------------------------------------------------------------------------------------------------------------
Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 10/1/20
Scan Time: 5:04 PM
Log File: 75dd857c-0441-11eb-895e-88d7f63c68f0.json

-Software Information-
Version: 4.2.1.89
Components Version: 1.0.1045
Update Package Version: 1.0.30632
License: Trial

-System Information-
OS: Windows 10 (Build 19041.508)
CPU: x64
File System: NTFS
User: ARTFFCT011\jakem

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 305749
Threats Detected: 15
Threats Quarantined: 15
Time Elapsed: 3 min, 5 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 1
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Quarantined, 3835, 380352, , , , , 83DCB31162E4DE2DDA1BFD4C0FE10CC2, 01A8E526637B46B07E58F8FF01E0770F7E7E5A479BBEDC942303C80BB6E57465

Module: 1
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Quarantined, 3835, 380352, , , , , 83DCB31162E4DE2DDA1BFD4C0FE10CC2, 01A8E526637B46B07E58F8FF01E0770F7E7E5A479BBEDC942303C80BB6E57465

Registry Key: 8
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ASC_PerformanceMonitor, Delete-on-Reboot, 3835, 398206, , , , , ,
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0F7C7DDD-F147-4E05-ADF8-52540B0FFA69}, Delete-on-Reboot, 3835, 398206, , , , , ,
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{0F7C7DDD-F147-4E05-ADF8-52540B0FFA69}, Delete-on-Reboot, 3835, 398206, , , , , ,
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IOBIT_MONITOR_SERVER, Delete-on-Reboot, 3835, 580520, 1.0.30632, , ame, , ,
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\AdvancedSystemCareService13, Delete-on-Reboot, 3835, 380352, 1.0.30632, , ame, , ,
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ASC_SkipUac_jakem, Delete-on-Reboot, 3835, 396386, , , , , ,
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{7338347E-EA3D-4CFE-8D89-C6975AD2067E}, Delete-on-Reboot, 3835, 396386, , , , , ,
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{7338347E-EA3D-4CFE-8D89-C6975AD2067E}, Delete-on-Reboot, 3835, 396386, , , , , ,

Registry Value: 1
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IOBIT_MONITOR_SERVER|IMAGEPATH, Delete-on-Reboot, 3835, 580520, 1.0.30632, , ame, , ,

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 4
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\MONITOR.EXE, Delete-on-Reboot, 3835, 398206, 1.0.30632, , ame, , EE6EDF771698A5EA143E4E1B0998D5DD, A8BF55C4089FA4F1A460E56E8EA5AC447A98E0C972D5AEF80F4265B31D954F35
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\DRIVERS\MONITOR_WIN10_X64.SYS, Delete-on-Reboot, 3835, 580520, , , , , 988DABDCF990B134B0AC1E00512C30C4, E4A7DA2CF59A4A21FC42B611DF1D59CAE75051925A7DDF42BF216CC1A026EADB
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Delete-on-Reboot, 3835, 380352, , , , , 83DCB31162E4DE2DDA1BFD4C0FE10CC2, 01A8E526637B46B07E58F8FF01E0770F7E7E5A479BBEDC942303C80BB6E57465
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASC.EXE, Delete-on-Reboot, 3835, 396386, 1.0.30632, , ame, , 00CE61F8F3D73808B066DFD04C4DEA48, 53331DD684728254D7AA795EF88C0E048BFD1488DAE9768EC64E472B1E0548CE

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)
--------------------------------------------------------------------------------------------------------------------------

Adware CleanerCX log
--------------------------------------------------------------------------------------------------------------------------
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-01-2020
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 4
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare

***** [ Files ] *****

Deleted C:\END
Deleted C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\invalidprefs.js

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Advanced SystemCare_is1

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3639 octets] - [01/10/2020 16:55:55]
AdwCleaner[C00].txt - [3093 octets] - [01/10/2020 17:00:26]
AdwCleaner[S01].txt - [1851 octets] - [01/10/2020 17:03:40]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
--------------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------------------------------------------------
Mbar Log
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001
www.malwarebytes.org

Database version:
main: v2020.10.01.15
rootkit: v2020.10.01.15

Windows 10 x64 NTFS
Internet Explorer 11.508.19041.0
jakem :: ARTFFCT011 [administrator]

10/1/2020 5:08:09 PM
mbar-log-2020-10-01 (17-08-09).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 207682
Time elapsed: 4 minute(s), 3 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
--------------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------------------------------------------------

MBAR System Log
--------------------------------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001

(c) Malwarebytes Corporation 2011-2012

OS version: 10.0.9200 Windows 10 x64

Account is Administrative

Internet Explorer version: 11.508.19041.0

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, K:\ DRIVE_FIXED
CPU speed: 3.600000 GHz
Memory total: 17108054016, free: 13146853376

Downloaded database version: v2020.10.01.15
Downloaded database version: v2020.10.01.15
Downloaded database version: v2018.01.20.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
10/01/2020 17:08:07
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kd.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\System32\drivers\CLFS.SYS
\SystemRoot\System32\drivers\tm.sys
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\System32\drivers\FLTMGR.SYS
\SystemRoot\System32\drivers\msrpc.sys
\SystemRoot\System32\drivers\ksecdd.sys
\SystemRoot\System32\drivers\clipsp.sys
\SystemRoot\System32\drivers\cmimcext.sys
\SystemRoot\System32\drivers\werkernel.sys
\SystemRoot\System32\drivers\ntosext.sys
\SystemRoot\system32\CI.dll
\SystemRoot\System32\drivers\cng.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\WppRecorder.sys
\SystemRoot\system32\drivers\SleepStudyHelper.sys
\SystemRoot\System32\Drivers\acpiex.sys
\SystemRoot\system32\drivers\SgrmAgent.sys
\SystemRoot\System32\drivers\ACPI.sys
\SystemRoot\System32\drivers\WMILIB.SYS
\SystemRoot\System32\drivers\intelpep.sys
\SystemRoot\system32\drivers\WindowsTrustedRT.sys
\SystemRoot\System32\drivers\IntelTA.sys
\SystemRoot\System32\drivers\WindowsTrustedRTProxy.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\drivers\msisadrv.sys
\SystemRoot\System32\drivers\pci.sys
\SystemRoot\System32\drivers\vdrvroot.sys
\SystemRoot\system32\drivers\pdc.sys
\SystemRoot\system32\drivers\CEA.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\System32\drivers\spaceport.sys
\SystemRoot\System32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\System32\drivers\iaStorAVC.sys
\SystemRoot\System32\drivers\storport.sys
\SystemRoot\System32\drivers\stornvme.sys
\SystemRoot\System32\drivers\EhStorClass.sys
\SystemRoot\System32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Wof.sys
\SystemRoot\System32\Drivers\mbamswissarmy.sys
\SystemRoot\System32\Drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\System32\drivers\wfplwfs.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\System32\drivers\volume.sys
\SystemRoot\System32\drivers\volsnap.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\system32\drivers\iorate.sys
\SystemRoot\System32\drivers\disk.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\drivers\cdrom.sys
\SystemRoot\system32\drivers\filecrypt.sys
\SystemRoot\system32\drivers\tbs.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_62ba5773ba05edee\BasicDisplay.sys
\SystemRoot\System32\DriverStore\FileRepository\basicrender.inf_amd64_49a8589f00d970d9\BasicRender.sys
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\CimFS.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afunix.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\nm3.sys
\SystemRoot\System32\drivers\vwififlt.sys
\SystemRoot\System32\drivers\pacer.sys
\SystemRoot\System32\drivers\ndiscap.sys
\SystemRoot\system32\drivers\netbios.sys
\SystemRoot\System32\drivers\Vid.sys
\SystemRoot\System32\drivers\winhvr.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\drivers\npsvctrig.sys
\SystemRoot\System32\drivers\mssmbios.sys
\??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS
\SystemRoot\System32\drivers\gpuenergydrv.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\system32\drivers\bam.sys
\SystemRoot\SysWow64\drivers\AsIO.sys
\SystemRoot\system32\DRIVERS\ahcache.sys
\SystemRoot\System32\DriverStore\FileRepository\compositebus.inf_amd64_7500cffa210c6946\CompositeBus.sys
\SystemRoot\System32\drivers\kdnic.sys
\SystemRoot\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys
\SystemRoot\System32\DriverStore\FileRepository\nvhdci.inf_amd64_f9c8e6e099a4a13d\nvlddmkm.sys
\SystemRoot\System32\drivers\HDAudBus.sys
\SystemRoot\System32\drivers\portcls.sys
\SystemRoot\System32\drivers\drmk.sys
\SystemRoot\System32\drivers\ks.sys
\SystemRoot\System32\drivers\USBXHCI.SYS
\SystemRoot\system32\drivers\ucx01000.sys
\SystemRoot\System32\DriverStore\FileRepository\heci.inf_amd64_870c9b4c63d95b2d\x64\TeeDriverW10x64.sys
\SystemRoot\System32\drivers\Netwtw04.sys
\SystemRoot\system32\DRIVERS\wdiwifi.sys
\SystemRoot\System32\drivers\vwifibus.sys
\SystemRoot\System32\drivers\Smb_driver_Intel.sys
\SystemRoot\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_f6c146a8872514f7\e1d68x64.sys
\SystemRoot\System32\drivers\wmiacpi.sys
\SystemRoot\System32\drivers\intelppm.sys
\SystemRoot\System32\drivers\acpipagr.sys
\SystemRoot\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys
\SystemRoot\system32\drivers\nvvad64v.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\drivers\NvModuleTracker.sys
\SystemRoot\System32\drivers\nvvhci.sys
\SystemRoot\System32\drivers\NdisVirtualBus.sys
\SystemRoot\System32\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys
\SystemRoot\System32\drivers\CorsairVBusDriver.sys
\SystemRoot\system32\drivers\logi_joy_bus_enum.sys
\SystemRoot\system32\drivers\logi_joy_xlcore.sys
\SystemRoot\System32\drivers\rdpbus.sys
\SystemRoot\System32\drivers\HIDCLASS.SYS
\SystemRoot\System32\drivers\HIDPARSE.SYS
\SystemRoot\system32\drivers\nvhda64v.sys
\SystemRoot\System32\drivers\UsbHub3.sys
\SystemRoot\System32\drivers\USBD.SYS
\SystemRoot\System32\drivers\HdAudio.sys
\SystemRoot\System32\drivers\kbdhid.sys
\SystemRoot\System32\drivers\kbdclass.sys
\SystemRoot\System32\drivers\USBSTOR.SYS
\SystemRoot\System32\drivers\usbccgp.sys
\SystemRoot\System32\drivers\hidusb.sys
\SystemRoot\System32\drivers\mouhid.sys
\SystemRoot\System32\drivers\mouclass.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\Drivers\dump_dumpstorport.sys
\SystemRoot\System32\drivers\dump_stornvme.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32kbase.sys
\SystemRoot\System32\win32kfull.sys
\SystemRoot\System32\DriverStore\FileRepository\ibtusb.inf_amd64_4d9e3f3539995c76\ibtusb.sys
\SystemRoot\System32\drivers\BTHUSB.sys
\SystemRoot\System32\drivers\BTHport.sys
\SystemRoot\system32\drivers\usbaudio.sys
\SystemRoot\system32\DRIVERS\CorsairGamingAudio64.sys
\SystemRoot\System32\drivers\dxgmms2.sys
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\drivers\monitor.sys
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\wcifs.sys
\SystemRoot\system32\DRIVERS\WUDFRd.sys
\SystemRoot\System32\drivers\WpdUpFltr.sys
\SystemRoot\system32\drivers\cldflt.sys
\SystemRoot\system32\drivers\storqosflt.sys
\SystemRoot\System32\Drivers\MbamChameleon.sys
\SystemRoot\system32\drivers\bindflt.sys
\SystemRoot\system32\drivers\lltdio.sys
\SystemRoot\system32\drivers\mslldp.sys
\SystemRoot\system32\drivers\rspndr.sys
\SystemRoot\system32\drivers\ndisuio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\drivers\msquic.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\System32\drivers\condrv.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\drivers\vwifimp.sys
\??\C:\WINDOWS\SysWow64\drivers\AsInsHelp64.sys
\??\C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys
\??\C:\ProgramData\LGHUB\depots\66043\driver_cpu_temperature\logi_core_temp.sys
\SystemRoot\system32\drivers\mmcss.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\drivers\Ndu.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys
\SystemRoot\system32\DRIVERS\mwac.sys
\??\C:\WINDOWS\system32\drivers\mbae64.sys
\SystemRoot\system32\DRIVERS\farflt.sys
\??\C:\WINDOWS\system32\DRIVERS\mbam.sys
\??\C:\WINDOWS\system32\drivers\IOMap64.sys
\SystemRoot\System32\drivers\CorsairVHidDriver.sys
\??\C:\WINDOWS\system32\drivers\743339CC.sys
----------- End -----------
Done!

Scan started
Database versions:
main: v2020.10.01.15
rootkit: v2020.10.01.15

<<<2>>>
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xffffe0899e4160a0, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffe0899e3638d0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffe0899e4160a0, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\
DevicePointer: 0xffffe0899e355de0, DeviceName: Unknown, DriverName: \Driver\EhStorClass\
DevicePointer: 0xffffe0899d13b050, DeviceName: \Device\0000003b\, DriverName: \Driver\stornvme\
------------ End ----------
Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffe0899e3cd060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffe0899e3528d0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffe0899e3cd060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffffe08999f6c9a0, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xffffe0899d09a050, DeviceName: \Device\00000038\, DriverName: \Driver\iaStorAVC\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
This drive is a GPT Drive.
MBR Signature: 55AA
Disk Signature: 558EC8DD

GPT Protective MBR Partition information:

Partition 0 type is EFI-GPT (0xee)
Partition is NOT ACTIVE.
Partition starts at LBA: 1 Numsec = 4294967295

Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

GPT Partition information:

GPT Header Signature 4546492050415254
GPT Header Revision 65536 Size 92 CRC 2003921994
GPT Header CurrentLba = 1 BackupLba 1953525167
GPT Header FirstUsableLba 34 LastUsableLba 1953525134
GPT Header Guid 35016e09-6c6e-42d0-9b56-fb1ddcaae618
GPT Header Contains 128 partition entries starting at LBA 2
GPT Header Partition entry size = 128

Backup GPT header Signature 4546492050415254
Backup GPT header Revision 65536 Size 92 CRC 2003921994
Backup GPT header CurrentLba = 1953525167 BackupLba 1
Backup GPT header FirstUsableLba 34 LastUsableLba 1953525134
Backup GPT header Guid 35016e09-6c6e-42d0-9b56-fb1ddcaae618
Backup GPT header Contains 128 partition entries starting at LBA 1953525135
Backup GPT header Partition entry size = 128

Partition 0 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Partition ID a4ae45ef-a3e6-4e10-b73-b84065ace196
FirstLBA 2048 Last LBA 1953523711
Attributes 0
Partition Name

Disk Size: 1000204886016 bytes
Sector size: 512 bytes

Done!
Drive 1
This is a System drive
Scanning MBR on drive 1...
Inspecting partition table:
This drive is a GPT Drive.
MBR Signature: 55AA
Disk Signature: 835197F5

GPT Protective MBR Partition information:

Partition 0 type is EFI-GPT (0xee)
Partition is NOT ACTIVE.
Partition starts at LBA: 1 Numsec = 4294967295

Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

GPT Partition information:

GPT Header Signature 4546492050415254
GPT Header Revision 65536 Size 92 CRC 1694169504
GPT Header CurrentLba = 1 BackupLba 488397167
GPT Header FirstUsableLba 34 LastUsableLba 488397134
GPT Header Guid b83eb784-7ce5-4155-82e6-b22fbf9dcc8e
GPT Header Contains 128 partition entries starting at LBA 2
GPT Header Partition entry size = 128

Backup GPT header Signature 4546492050415254
Backup GPT header Revision 65536 Size 92 CRC 1694169504
Backup GPT header CurrentLba = 488397167 BackupLba 1
Backup GPT header FirstUsableLba 34 LastUsableLba 488397134
Backup GPT header Guid b83eb784-7ce5-4155-82e6-b22fbf9dcc8e
Backup GPT header Contains 128 partition entries starting at LBA 488397135
Backup GPT header Partition entry size = 128

Partition 0 Type c12a7328-f81f-11d2-ba4b-0a0c93ec93b
Partition ID 756a6384-1e64-47c0-a9b1-a3803c4077f9
FirstLBA 2048 Last LBA 206847
Attributes 0
Partition Name EFI system partition

GPT Partition 0 is bootable
Partition 1 Type e3c9e316-b5c-4db8-817d-f92df0215ae
Partition ID 4d03a166-673f-4ec4-92e3-ba8b87c597aa
FirstLBA 206848 Last LBA 239615
Attributes 0
Partition Name Microsoft reserved partition

Partition 2 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Partition ID b9018e84-9ff2-4706-b3be-e7327ed8834c
FirstLBA 239616 Last LBA 487359116
Attributes 0
Partition Name Basic data partition

Partition 3 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
Partition ID f7ef0c7a-9546-4e71-ae1b-6f716770968c
FirstLBA 487360512 Last LBA 488394751
Attributes 1
Partition Name

Disk Size: 250059350016 bytes
Sector size: 512 bytes

Done!
Physical Sector Size: 512
Drive: 2, DevicePointer: 0xffffe0899f9aa060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffe0899fda1040, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffe0899f9aa060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\disk\
DevicePointer: 0xffffe0899f8ee630, DeviceName: \Device\0000004c\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 2
Scanning MBR on drive 2...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 63CDF82C

Partition information:

Partition 0 type is Other (0xc)
Partition is ACTIVE.
Partition starts at LBA: 2048 Numsec = 60086272
Partition is bootable
Partition file system is FAT32

Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition is not bootable

Disk Size: 30765219840 bytes
Sector size: 512 bytes

Done!
Scan finished
=======================================


Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-I.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-I.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-r.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-2-I.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-2-0-2048-I.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-2-r.mbam...
Removal finished

-------------------------------------------------------------------------------------------------------------------------------

 

[Broni]

Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

• Double click to run it.
• Press Scan button.
• Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.

 

[IIEleven11]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-10-2020xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Ran by jakem (administrator) on ARTFFCT011 (04-10-2020 01:29:39)
Running from C:\Users\jakem\Downloads
Loaded Profiles: jakem
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Users\jakem\Downloads\Sc2ReplayStats.com.exe
(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) K:\NEWAISUITE\AI Suite III\AsPowerBar\AsPowerBar.exe
(ASUSTeK Computer Inc. -> ) K:\NEWAISUITE\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) K:\NEWAISUITE\AI Suite III\AISuite3.exe
(Binary Fortress Software Ltd -> Binary Fortress Software) K:\DisplayFusion\DisplayFusion.exe
(Binary Fortress Software Ltd -> Binary Fortress Software) K:\DisplayFusion\DisplayFusionHookApp32.exe
(Binary Fortress Software Ltd -> Binary Fortress Software) K:\DisplayFusion\DisplayFusionHookApp64.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment Inc.) C:\Program Files (x86)\StarCraft II\Support\BlizzardBrowser\BlizzardBrowser.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.7205\Agent.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.) C:\Program Files (x86)\StarCraft II\Versions\Base81433\SC2_x64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Discord Inc. -> Discord Inc.) C:\Users\jakem\AppData\Local\Discord\app-0.0.308\Discord.exe <12>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_31a8dbbf39dcdc3b\jhi_service.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\devenv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcpackages\vcpkgsrv.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\controller\Microsoft.ServiceHub.Controller.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.Host.CLR.x86.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.IdentityHost.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.SettingsHost.exe
(Microsoft Corporation -> Microsoft) C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\ServiceHub.VSDetouredHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.screensketch_10.2008.2277.0_x64__8wekyb3d8bbwe\ScreenSketch.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2009.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2009.7-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Node.js Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(NordPass Team) [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\NordPass.exe <3>
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <5>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_15676754357bf917\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(ShareX Team) [File not signed] C:\Program Files\ShareX\ShareX.exe
(Shenzhen Hezon Lito Technology Co., Ltd. -> VEIKK) C:\Program Files\VKTablet\TabletDriverCenter.exe
(Shenzhen Hezon Lito Technology Co., Ltd. -> VEIKK) C:\Program Files\VKTablet\TabletDriverSetting.exe
(Stardock Corporation -> Stardock Corporation) C:\Program Files (x86)\Stardock\WindowBlinds\WBSrv.exe
(Stardock Corporation -> Stardock Software) C:\Program Files (x86)\Stardock\Tiles\Tiles32Help.exe
(Stardock Corporation -> Stardock Software) C:\Program Files (x86)\Stardock\Tiles\Tiles64.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10_64.exe <2>
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe
(TEFINCOM S.A. -> ) C:\Users\jakem\AppData\Local\Programs\nordpass\resources\nordpass-background-app.exe
(Whole Tomato Software LLC -> ) C:\Users\jakem\AppData\Local\Microsoft\VisualStudio\16.0_f452b6de\Extensions\kgavzvib.jyp\VaDbMtx.exe
(Whole Tomato Software LLC -> Whole Tomato Software, LLC) C:\Users\jakem\AppData\Local\Microsoft\VisualStudio\16.0_f452b6de\Extensions\kgavzvib.jyp\VaCodeInspectionsServer.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TabletDriverCenter] => C:\Program Files\VKTablet\TabletDriverCenter.exe [2926208 2019-10-28] (Shenzhen Hezon Lito Technology Co., Ltd. -> VEIKK)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [410152 2020-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Policies\Explorer: [AllowOnlineTips] 0
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM\...\Policies\Explorer: [NoPublishingWizard] 1
HKLM\...\Policies\Explorer: [HideSCAPower] 1
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [SC2ReplayStats] => C:\Users\jakem\Downloads\Sc2ReplayStats.com.exe [116224 2017-12-03] () [File not signed]
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [Tiles] => C:\Program Files (x86)\Stardock\Tiles\Tiles64.exe [1286120 2015-07-17] (Stardock Corporation -> Stardock Software)
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [DisplayFusion] => K:\DisplayFusion\DisplayFusion.exe [7776192 2020-06-24] (Binary Fortress Software Ltd -> Binary Fortress Software)
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [electron.app.NordPass] => C:\Users\jakem\AppData\Local\Programs\nordpass\NordPass.exe [110795264 2020-09-30] (NordPass Team) [File not signed]
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Run: [LGHUB] => "C:\Program Files\LGHUB\lghub.exe" --background
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [HideSCANetwork] 0
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [HideSCAVolume] 0
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Policies\Explorer: [NoWinkeys] 0
Startup: C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2020-09-25]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [File not signed]
BootExecute:
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01A8D9A9-4E53-4F82-8BAE-BB72782EEBCD} - \NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {15EE8D38-DA3A-4FA7-BD59-9CD11FE97E24} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [65432 2020-09-25] (Microsoft Corporation -> Microsoft)
Task: {1ADB4EB4-3033-48BD-8F2C-22520119D6EB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5137312 2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {1C04EAB7-5A86-41FC-AE14-735621B2200D} - System32\Tasks\Microsoft\VisualStudio\Updates\UpdateConfiguration_S-1-5-21-1154741852-3201556293-3969415838-1001 => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXConfigurationUpdater.exe [23464 2020-09-25] (Microsoft Corporation -> Microsoft)
Task: {1D567B74-B0D3-427A-ABAD-27F23B5AA30A} - System32\Tasks\ASUS\ASUS AISuiteIII => K:\NEWAISUITE\AI Suite III\AISuite3.exe [2096088 2018-01-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {1EF1B32E-5752-45E8-A759-2660734A5FB6} - \NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {2C2025C1-2700-4369-BDD9-B1A9D2B8BDC4} - System32\Tasks\Microsoft\Windows\PLA\New Data Collector Set => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {2C39180C-9CE4-43EB-8269-B77A2D9DAB2B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2E182709-2E7B-4A8F-9649-F1B11D1D530A} - \Adobe Acrobat Update Task -> No File <==== ATTENTION
Task: {342D3D61-DB0F-4F6C-B255-C9BA99C70E5C} - \NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {37432144-0216-4C54-971B-987776C56385} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3BD549BA-19E0-48CE-A51A-6EA254D326E2} - \BraveSoftwareUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {40697F97-649A-409F-A717-C3EE849224FD} - \NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {42B7048C-FA3E-4707-AE0E-649244C143D7} - System32\Tasks\Uninstaller_SkipUac_jakem => C:\Users\jakem\IOBIT\IObit Uninstaller\IObitUninstaler.exe [6435088 2020-09-22] (IObit Information Technology -> IObit)
Task: {4486AF33-1946-476C-8621-EE641B11C7B2} - \NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {53667791-87FA-4DF8-A0D4-8E43905714EC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5A4B9F82-C05A-4461-9349-344A0FE22CC4} - System32\Tasks\ASUS\GpuFanHelper => K:\NEWAISUITE\AI Suite III\DIP4\GpuFanHelper.exe [4417496 2017-11-24] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {5E0323B8-6637-4DA8-8278-F9613D3A1FE1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144744 2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {788CC737-0F48-4985-8DA1-F7C21B5A01B2} - \Microsoft\VisualStudio\VSIX Auto Update -> No File <==== ATTENTION
Task: {834DAA5D-4104-4067-A3F0-F0A81BE69085} - \NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {8587E843-8297-4775-929C-B228F3C7338C} - \NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {96F86CB6-2E29-46A3-9158-FF93DEAE0A3D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144744 2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {9FC87C76-3619-45F8-8415-B28E5E0CDC1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1755E82-B5C2-4ACA-AE1A-98E84522AAEC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {A89DC0A9-B1DF-4656-95BB-03C2E4711020} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AE0DBDDE-EE6D-4910-96DA-D9737F06697E} - System32\Tasks\ASUS\ASUS DIPAwayMode => K:\NEWAISUITE\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1448408 2017-11-24] (ASUSTeK Computer Inc. -> )
Task: {B586D9A1-23C0-490E-92E0-837AED4B38C6} - \NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {C7C1DF1E-B368-4D05-A743-49F0E5E93E50} - \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB -> No File <==== ATTENTION
Task: {D02F44F8-2379-4A50-BAF8-2CDFDAC895C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D392D2C5-2503-4E66-962E-19B1EEA57CB8} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {DC778AE3-A89D-451D-8EAB-15332E3918E2} - \BraveSoftwareUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {E6C9650C-8F8D-4B22-945C-6F0231ED5120} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22855048 2020-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {E8269F6F-81CB-4952-B573-90F26ED8AE08} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_7e148e9c120d86df\lib\IntelPTTEKRecertification.exe [925152 2019-04-23] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {FB40A8D6-6D1A-4419-89AF-A78A36F3BC92} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5137312 2020-09-30] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0f770de1-673e-4ad0-84b2-c2e3a4221863}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{0f770de1-673e-4ad0-84b2-c2e3a4221863}: [DhcpNameServer] 192.168.1.1
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
======
DownloadDir: C:\Users\jakem\Downloads
Edge Profile: C:\Users\jakem\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-02]

FireFox:
========
FF DefaultProfile: ofwkckpe.default
FF ProfilePath: C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\ofwkckpe.default [2020-09-27]
FF user.js: detected! => C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\ofwkckpe.default\user.js [2020-09-30]
FF ProfilePath: C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414 [2020-10-04]
FF user.js: detected! => C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\user.js [2020-09-30]
FF NetworkProxy: Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414 -> type", 0
FF Extension: (Dark Reader) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\addon@darkreader.org.xpi [2020-09-30]
FF Extension: (Pearltrees Extension) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\collector@broceliand.fr.xpi [2020-10-01]
FF Extension: (To Google Translate) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2020-09-30]
FF Extension: (NordPass® Password Manager & Digital Vault) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\nordpass@nordpass.com.xpi [2020-09-30]
FF Extension: (PH Downloader) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\{0adb7d9f-4f8a-43db-890a-5421cd153986}.xpi [2020-10-01]
FF Extension: (YouTube High Definition) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2020-10-01]
FF Extension: (Bookmark Manager and Viewer) - C:\Users\jakem\AppData\Roaming\Mozilla\Firefox\Profiles\fem1u8pi.default-release-1601450818414\Extensions\{beb1b1c0-32b9-47d8-bbd1-f65bed4e7c22}.xpi [2020-10-01]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-09-11]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-09-25] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-09-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-09-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-09-30] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-09-30] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-09-25] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-09-25] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2020-09-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2020-09-24] (ASUSTeK Computer Inc. -> ) [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe [1340376 2020-09-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S4 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-30] (Brave Software, Inc. -> BraveSoftware Inc.)
S4 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-09-30] (Brave Software, Inc. -> BraveSoftware Inc.)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8943496 2020-09-24] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [605096 2020-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421928 2020-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [56872 2020-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S4 Everything; K:\Everything\Everything.exe [2142536 2020-08-31] (voidtools -> voidtools)
R2 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [294200 2020-09-15] (NVIDIA Corporation -> NVIDIA)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11139720 2020-09-24] (Logitech Inc -> Logitech, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-01] (Malwarebytes Inc -> Malwarebytes)
S4 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13610040 2020-09-15] (Adlice -> )
R2 Start10; C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe [220440 2020-08-19] (Stardock Corporation -> Stardock Software, Inc)
S4 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-09-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WindowBlinds; C:\Program Files (x86)\Stardock\WindowBlinds\wbsrv.exe [86528 2019-05-03] (Stardock Corporation -> Stardock Corporation)
S3 Browser; %SystemRoot%\System32\browser.dll [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_15676754357bf917\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_15676754357bf917\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASInsHelp; C:\WINDOWS\SysWow64\drivers\AsInsHelp64.sys [11832 2008-01-04] (ASUSTeK Computer Inc. -> )
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2020-09-24] (ASUSTeK Computer Inc. -> )
R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudio64.sys [60328 2020-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz149; C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [44320 2020-10-03] (CPUID S.A.R.L.U. -> CPUID)
S3 gfiark; C:\WINDOWS\System32\drivers\gfiark.sys [40584 2015-08-27] (Threattrack Security, Inc. -> ThreatTrack Security)
S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [32400 2016-03-04] (ThreatTrack Security, Inc. -> ThreatTrack Security)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-09-27] (Martin Malik - REALiX -> REALiX(tm))
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-12-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 IUFileFilter; C:\Users\jakem\IOBIT\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [43896 2020-07-31] (IObit Information Technology -> IObit)
S3 IUProcessFilter; C:\Users\jakem\IOBIT\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2020-07-31] (IObit Information Technology -> IObit)
S3 IURegistryFilter; C:\Users\jakem\IOBIT\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [51128 2020-07-31] (IObit Information Technology -> IObit)
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\66043\driver_cpu_temperature\logi_core_temp.sys [25448 2020-09-24] (Logitech Inc. -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2020-09-20] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-09-20] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2020-09-20] (Logitech Inc -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-01] (Malwarebytes Inc -> Malwarebytes)
R3 VkDevice; C:\WINDOWS\System32\drivers\VkDevice.sys [29592 2019-11-29] (Shenzhen Hezon Lito Technology Co., Ltd. -> VEIKK)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-09-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [428264 2020-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; C:\Users\jakem\AppData\Local\Temp\tmp22E4.tmp [14544 2020-10-03] (Noriyuki MIYAZAKI -> OpenLibSys.org) <==== ATTENTION
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X]
S3 efavdrv; \??\C:\WINDOWS\system32\drivers\efavdrv.sys [X]
U4 HomeGroupProvider; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)


2020-10-03 13:11 - 2020-10-03 21:43 - 000000000 ____D C:\Users\jakem\Downloads\FRST-OlderVersion
2020-10-03 13:11 - 2020-10-03 13:11 - 002299392 _____ (Farbar) C:\Users\jakem\Downloads\FRST64.exe
2020-10-03 08:01 - 2020-10-03 08:01 - 000003646 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2020-10-03 07:12 - 2020-10-03 07:12 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-10-03 07:09 - 2020-09-15 10:55 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-10-03 07:09 - 2020-09-15 10:55 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-10-03 07:09 - 2020-09-15 10:55 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-10-03 07:09 - 2020-09-15 10:55 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-10-03 07:09 - 2020-09-15 10:55 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-10-03 07:09 - 2020-09-15 10:55 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-10-03 07:09 - 2020-09-15 10:55 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-10-03 07:09 - 2020-09-15 10:55 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-10-03 07:09 - 2020-09-15 10:55 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-10-03 07:09 - 2020-09-15 10:55 - 000351128 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-10-03 07:09 - 2020-09-15 10:50 - 032457456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2020-10-03 07:09 - 2020-09-15 10:50 - 001021680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-10-03 07:09 - 2020-09-15 10:50 - 000815856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-10-03 07:09 - 2020-09-15 10:50 - 000674200 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-10-03 07:09 - 2020-09-15 10:50 - 000670104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-10-03 07:09 - 2020-09-15 10:50 - 000540912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-10-03 07:09 - 2020-09-15 10:46 - 001505008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-10-03 07:09 - 2020-09-15 10:46 - 001159408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-10-03 07:09 - 2020-09-15 10:46 - 000586480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-10-03 07:09 - 2020-09-15 10:46 - 000554736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-10-03 07:09 - 2020-09-15 10:45 - 002097560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-10-03 07:09 - 2020-09-15 10:45 - 001585048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-10-03 07:09 - 2020-09-15 10:45 - 000811248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-10-03 07:09 - 2020-09-15 10:45 - 000656792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-10-03 07:09 - 2020-09-15 10:44 - 007706520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-10-03 07:09 - 2020-09-15 10:44 - 006857968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-10-03 07:09 - 2020-09-15 10:44 - 004173552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-10-03 07:09 - 2020-09-15 10:44 - 002508016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-10-03 07:09 - 2020-09-15 10:44 - 000445848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-10-03 07:09 - 2020-09-15 10:43 - 000850840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-10-03 07:09 - 2020-09-15 10:41 - 006992192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-10-03 07:09 - 2020-09-15 10:41 - 005964512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-10-03 07:09 - 2020-09-14 17:01 - 000080940 _____ C:\WINDOWS\system32\nvinfo.pb

2020-10-03 04:42 - 2020-10-03 04:42 - 000000000 ____D C:\Users\jakem\Downloads\tmp
2020-10-03 03:23 - 2020-10-03 03:23 - 000000000 ____D C:\Users\jakem\Downloads\LearningFactory_alpha_0.6.5_win64 - Copy
2020-10-03 03:23 - 2020-10-02 04:12 - 000322887 _____ C:\Users\jakem\Downloads\lotv_5_XML.1 - Copy.xml
2020-10-02 22:57 - 2020-10-02 22:57 - 000909100 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2020-10-02 22:57 - 2020-10-02 22:57 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-10-02 22:57 - 2020-10-02 22:57 - 000000000 ____D C:\Program Files\MSBuild
2020-10-02 22:57 - 2019-12-03 14:04 - 000781384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2020-10-02 22:57 - 2019-12-03 14:04 - 000105544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2020-10-02 22:57 - 2019-12-03 14:04 - 000037864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2020-10-02 22:57 - 2019-11-08 14:44 - 001168968 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2020-10-02 22:57 - 2019-11-08 14:44 - 000127056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2020-10-02 22:57 - 2019-11-08 14:44 - 000038072 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2020-10-02 21:53 - 2020-10-02 21:57 - 000000000 ____D C:\Users\jakem\AppData\Roaming\WSCC4
2020-10-02 20:48 - 2020-10-02 20:48 - 000000000 ____H C:\Users\jakem\Documents\Default.rdp
2020-10-02 16:53 - 2020-10-02 16:53 - 008846418 _____ C:\Users\jakem\Documents\ARTFFCT011.arn
2020-10-02 16:49 - 2020-10-02 16:49 - 108163072 _____ C:\WINDOWS\system32\config\software.new
2020-10-02 16:49 - 2020-10-02 16:49 - 027463680 _____ C:\WINDOWS\system32\config\components.new
2020-10-02 16:49 - 2020-10-02 16:49 - 013078528 _____ C:\WINDOWS\system32\config\system.new
2020-10-02 16:49 - 2020-10-02 16:49 - 000622592 _____ C:\WINDOWS\system32\config\default.new
2020-10-02 16:49 - 2020-10-02 16:49 - 000069632 _____ C:\WINDOWS\system32\config\sam.new
2020-10-02 16:49 - 2020-10-02 16:49 - 000024576 _____ C:\WINDOWS\system32\config\security.new
2020-10-02 16:45 - 2020-10-02 16:45 - 000000000 ____D C:\Users\jakem\AppData\Local\Mirillis
2020-10-02 14:02 - 2020-10-03 22:58 - 000000105 _____ C:\Users\jakem\Downloads\tmpcurrent_version_standalone.txt
2020-10-02 13:50 - 2020-10-02 13:50 - 000000085 _____ C:\WINDOWS\wininit.ini
2020-10-02 13:36 - 2020-10-02 13:36 - 006444280 _____ (Carifred) C:\Users\jakem\Downloads\TechToolStore.exe
2020-10-02 11:47 - 2020-10-03 07:13 - 000000000 ____D C:\Users\jakem\AppData\Local\DisplayFusion
2020-10-02 11:45 - 2020-10-02 16:52 - 000002446 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_jakem
2020-10-02 11:44 - 2020-10-02 11:44 - 000001800 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2019.lnk
2020-10-02 11:44 - 2020-10-02 11:44 - 000000000 ____D C:\Program Files (x86)\NuGet
2020-10-02 11:43 - 2020-10-02 11:43 - 000000000 ____D C:\Program Files\dotnet
2020-10-02 11:43 - 2020-10-02 11:43 - 000000000 ____D C:\Program Files (x86)\dotnet
2020-10-02 08:30 - 2020-10-03 12:55 - 000458824 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-02 04:13 - 2020-10-02 04:13 - 000000000 ____D C:\Users\jakem\Downloads\New folder
2020-10-02 04:01 - 2020-10-02 04:14 - 000000000 ____D C:\Users\jakem\Downloads\Versions
2020-10-02 04:01 - 2016-02-01 16:03 - 004026368 _____ (CarbonTwelve) C:\Users\jakem\Downloads\SCFusion_v1.27.exe
2020-10-02 04:01 - 2015-09-24 21:02 - 000038912 _____ C:\Users\jakem\Downloads\SCFusionTTS_v1.27.exe
2020-10-02 04:01 - 2015-04-14 19:20 - 000431616 _____ (Bright Ideas Software) C:\Users\jakem\Downloads\ObjectListView.dll
2020-10-02 04:01 - 2011-01-07 20:28 - 000943616 _____ (winsparkle.org) C:\Users\jakem\Downloads\WinSparkle.dll
2020-10-02 02:56 - 2020-10-03 13:06 - 000000000 ____D C:\Users\jakem\AppData\Local\ElevatedDiagnostics
2020-10-02 02:36 - 2020-10-02 02:36 - 019823408 _____ (Goversoft LLC) C:\Users\jakem\Downloads\PrivaZer.exe
2020-10-02 02:25 - 2020-10-02 02:25 - 000020106 _____ C:\Users\jakem\Documents\cc_20201002_022517.reg
2020-10-02 02:00 - 2020-10-02 02:00 - 000001799 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2020-10-02 01:30 - 2020-10-02 01:30 - 000000258 __RSH C:\ProgramData\ntuser.pol
2020-10-02 01:30 - 2020-10-02 01:30 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2020-10-02 01:30 - 2020-10-02 01:30 - 000000000 ___SD C:\WINDOWS\system32\lxss
2020-10-02 00:10 - 2020-10-02 00:10 - 078184576 _____ (Amazon.com Services LLC) C:\Users\jakem\Downloads\AmazonMusicInstaller.exe
2020-10-02 00:10 - 2020-10-02 00:10 - 000001271 _____ C:\Users\jakem\Desktop\Amazon Music.lnk
2020-10-02 00:10 - 2020-10-02 00:10 - 000001182 _____ C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music.lnk
2020-10-02 00:10 - 2020-10-02 00:10 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Music
2020-10-02 00:10 - 2020-10-02 00:10 - 000000000 ____D C:\Users\jakem\AppData\Local\Amazon Music
2020-10-01 23:37 - 2020-10-01 23:37 - 000286008 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmsif.dll
2020-10-01 23:37 - 2020-10-01 23:37 - 000222008 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetMgmtIF.dll
2020-10-01 23:37 - 2020-10-01 23:37 - 000151352 _____ C:\WINDOWS\system32\nmscrub.exe
2020-10-01 23:37 - 2020-10-01 23:37 - 000142648 _____ (Microsoft Corporation) C:\WINDOWS\system32\nmbind.exe
2020-10-01 23:37 - 2020-10-01 23:37 - 000123704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2020-10-01 23:37 - 2020-10-01 23:37 - 000122168 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmsifcore.dll
2020-10-01 23:37 - 2020-10-01 23:37 - 000107048 _____ (Microsoft Corporation) C:\WINDOWS\system32\p9np.dll
2020-10-01 23:37 - 2020-10-01 23:37 - 000091152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\p9rdr.sys
2020-10-01 23:37 - 2020-10-01 23:37 - 000081208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p9np.dll
2020-10-01 23:37 - 2020-10-01 23:37 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\bash.exe
2020-10-01 23:37 - 2020-10-01 23:37 - 000027960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmsifproxystub.dll
2020-10-01 23:37 - 2020-10-01 23:37 - 000015880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lxss.sys
2020-10-01 17:08 - 2020-10-01 17:08 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\743339CC.sys
2020-10-01 17:07 - 2020-10-01 17:13 - 000000000 ____D C:\Users\jakem\Desktop\mbar
2020-10-01 17:06 - 2020-10-01 17:06 - 014178840 _____ (Malwarebytes Corp.) C:\Users\jakem\Downloads\mbar-1.10.3.1001.exe
2020-10-01 16:59 - 2020-10-01 16:59 - 000004099 _____ C:\Users\jakem\Desktop\malwarebytesreport.txt
2020-10-01 16:59 - 2020-10-01 16:59 - 000001354 _____ C:\Users\jakem\Desktop\roguereport.txt
2020-10-01 16:54 - 2020-10-01 17:00 - 000000000 ____D C:\AdwCleaner
2020-10-01 16:54 - 2020-10-01 16:54 - 008414384 _____ (Malwarebytes) C:\Users\jakem\Downloads\AdwCleaner.exe
2020-10-01 16:54 - 2020-10-01 16:54 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-10-01 16:54 - 2020-10-01 16:54 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-01 16:54 - 2020-10-01 16:54 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-01 16:54 - 2020-10-01 16:54 - 000002029 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-01 16:54 - 2020-10-01 16:54 - 000000000 ____D C:\Users\jakem\AppData\Local\mbam
2020-10-01 16:54 - 2020-10-01 16:53 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-10-01 16:53 - 2020-10-01 16:53 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-10-01 16:49 - 2020-10-01 16:49 - 000000903 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-10-01 16:49 - 2020-10-01 16:49 - 000000903 _____ C:\ProgramData\Desktop\RogueKiller.lnk
2020-10-01 03:24 - 2020-10-01 03:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2020-10-01 03:23 - 2020-10-01 03:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2020-10-01 02:23 - 2020-10-01 03:20 - 000000000 ___HD C:\VTRoot
2020-09-30 14:18 - 2020-09-30 14:18 - 000000000 ____D C:\Users\jakem\Documents\ProcAlyzer Dumps
2020-09-30 14:16 - 2020-09-30 14:29 - 000000000 ____D C:\Users\jakem\AppData\Local\Neware
2020-09-30 14:11 - 2020-09-30 14:11 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TailExpert
2020-09-30 14:11 - 2020-09-30 14:11 - 000000000 ____D C:\Program Files (x86)\TailExpert
2020-09-30 14:05 - 2020-09-30 14:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2020-09-30 14:04 - 2020-09-30 14:04 - 000000000 ____D C:\Users\jakem\AppData\Local\Safer-Networking Ltd
2020-09-30 14:03 - 2020-10-02 14:02 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-09-30 14:03 - 2020-10-02 13:50 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2020-09-30 13:10 - 2020-09-30 13:10 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000147439 _____ C:\WINDOWS\system32\gpedit.msc
2020-09-30 13:10 - 2020-09-30 13:10 - 000120458 _____ C:\WINDOWS\system32\secpol.msc
2020-09-30 13:10 - 2020-09-30 13:10 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2020-09-30 13:10 - 2020-09-30 13:10 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2020-09-30 13:10 - 2020-09-30 13:10 - 000043566 _____ C:\WINDOWS\system32\rsop.msc
2020-09-30 13:10 - 2020-09-30 13:10 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2020-09-30 13:05 - 2020-09-30 13:05 - 000000000 ____D C:\Users\Public\File Viewer Plus
2020-09-30 09:45 - 2020-09-30 10:23 - 000000000 ____D C:\Program Files\Rainmeter
2020-09-30 09:45 - 2020-09-30 09:46 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Rainmeter
2020-09-30 09:45 - 2020-09-30 09:45 - 000001747 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2020-09-30 09:45 - 2020-09-30 09:45 - 000000000 ____D C:\Users\jakem\Documents\Rainmeter
2020-09-30 06:53 - 2020-09-30 06:53 - 000071551 _____ C:\Users\jakem\Desktop\Manag eye Graph EVCC.ai
2020-09-30 05:20 - 2020-09-30 05:20 - 000014201 _____ C:\Users\jakem\Desktop\Manag eye Graph EVCC.dwg
2020-09-30 05:19 - 2020-09-30 05:19 - 000164912 _____ C:\Users\jakem\Desktop\Manag eye Graph EVCC.ait
2020-09-30 04:34 - 2020-09-30 04:34 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2020-09-30 01:18 - 2020-09-30 01:18 - 000466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000122904 _____ (Portions (C) Creative

 

[IIEleven11]

9-30 01:18 - 2020-09-30 01:18 - 000466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2020-09-30 01:18 - 2020-09-30 01:18 - 000000000 ____D C:\Program Files (x86)\OpenAL
2020-09-30 01:18 - 2020-09-30 01:18 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2020-09-30 00:50 - 2020-10-02 02:25 - 000000000 ____D C:\Users\jakem\AppData\Local\BraveSoftware
2020-09-30 00:50 - 2020-09-30 00:50 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2020-09-30 00:27 - 2020-09-30 00:27 - 000000000 ____D C:\Users\jakem\Desktop\Old Firefox Data
2020-09-29 20:05 - 2020-09-29 20:05 - 000056840 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2020-09-29 20:04 - 2020-09-29 20:04 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\PCGameBoost
2020-09-29 17:59 - 2020-10-03 22:57 - 000008192 ___SH C:\DumpStack.log.tmp
2020-09-29 17:59 - 2020-10-02 02:19 - 000000000 ____D C:\WINDOWS\Minidump
2020-09-29 15:47 - 2020-09-29 15:47 - 000000000 ____D C:\Users\jakem\AppData\Local\Steam
2020-09-29 15:46 - 2020-09-29 15:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-09-29 04:58 - 2020-09-29 04:58 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\6574A274.sys
2020-09-29 04:57 - 2020-10-01 17:13 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-09-29 04:33 - 2020-09-29 04:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-09-29 04:33 - 2020-09-29 04:33 - 000000000 ____D C:\Program Files\Malwarebytes
2020-09-29 04:19 - 2020-09-29 04:19 - 000000017 _____ C:\Users\jakem\AppData\Local\resmon.resmoncfg
2020-09-28 23:00 - 2020-09-28 23:00 - 000000000 ____D C:\Users\jakem\Documents\Custom Office Templates
2020-09-28 20:47 - 2020-09-28 20:47 - 000002116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2020-09-28 20:47 - 2020-09-28 20:47 - 000002105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2020-09-28 20:47 - 2020-09-28 20:47 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-09-28 12:25 - 2020-10-03 23:53 - 000000000 ____D C:\Users\jakem\AppData\Roaming\NordPass
2020-09-28 12:25 - 2020-09-29 14:29 - 000000000 ____D C:\Users\jakem\AppData\Local\nordpass-updater
2020-09-28 12:25 - 2020-09-28 12:25 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NordSec
2020-09-28 10:14 - 2020-09-28 10:14 - 101568512 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2020-09-28 10:14 - 2020-09-28 10:14 - 000634880 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2020-09-28 10:14 - 2020-09-28 10:14 - 000073728 _____ C:\WINDOWS\system32\config\SAM.iobit
2020-09-28 10:14 - 2020-09-28 10:14 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2020-09-28 10:10 - 2020-09-30 13:25 - 000000000 ____D C:\ProgramData\PCGameBoost
2020-09-28 10:10 - 2020-09-28 10:10 - 000000000 ____D C:\Users\jakem\AppData\Roaming\PCGameBoost
2020-09-28 10:10 - 2020-07-28 11:16 - 000278072 _____ C:\WINDOWS\SysWOW64\D3DX8Wrapper.dll
2020-09-28 10:10 - 2019-09-12 09:59 - 000178960 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2020-09-28 10:10 - 2016-03-22 11:02 - 000036824 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2020-09-28 09:10 - 2020-10-02 14:01 - 000000000 ____D C:\Users\jakem\Documents\Outlook Files
2020-09-28 09:01 - 2020-09-28 09:01 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2020-09-28 05:51 - 2020-09-30 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-09-28 05:51 - 2020-09-28 05:51 - 000002464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002422 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-09-28 05:51 - 2020-09-28 05:51 - 000002401 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-09-28 05:50 - 2020-09-28 05:50 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-09-28 05:47 - 2020-09-30 18:13 - 000000000 ____D C:\Program Files\Microsoft Office
2020-09-28 05:47 - 2020-09-28 05:47 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-09-28 05:31 - 2020-09-28 05:31 - 000000000 ____D C:\Users\jakem\AppData\Local\VSIXInstaller
2020-09-27 19:05 - 2020-10-04 00:12 - 000000000 ___RD C:\Users\jakem\Creative Cloud Files
2020-09-27 18:16 - 2020-09-27 18:16 - 000001490 _____ C:\Users\jakem\Documents\WifiInfoView.cfg
2020-09-27 18:09 - 2020-09-15 12:06 - 000336248 _____ (NirSoft) C:\Users\jakem\Documents\WifiInfoView.exe
2020-09-27 18:09 - 2020-09-15 12:06 - 000054342 _____ C:\Users\jakem\Documents\WifiInfoView.chm
2020-09-27 17:58 - 2020-09-27 18:16 - 000001510 _____ C:\Users\jakem\Documents\WifiChannelMonitor.cfg
2020-09-27 17:56 - 2020-09-28 19:25 - 000000000 ____D C:\Users\jakem\Documents\Network Monitor 3
2020-09-27 17:55 - 2020-09-27 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Network Monitor 3.4
2020-09-27 17:55 - 2020-09-27 17:55 - 000000000 ____D C:\Program Files\Microsoft Network Monitor 3
2020-09-27 17:41 - 2020-09-27 14:40 - 001071480 _____ (NirSoft) C:\Users\jakem\Documents\WifiChannelMonitor.exe
2020-09-27 17:41 - 2020-09-27 14:40 - 000020924 _____ C:\Users\jakem\Documents\WifiChannelMonitor.chm
2020-09-27 17:37 - 2020-09-27 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autorun Angel
2020-09-27 17:37 - 2020-09-27 17:37 - 000000000 ____D C:\Program Files (x86)\Autorun Angel
2020-09-27 13:52 - 2020-10-03 16:37 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-09-27 13:48 - 2020-09-27 13:48 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2020-09-27 13:48 - 2020-09-27 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VKTabletDriver
2020-09-27 13:48 - 2020-09-27 13:48 - 000000000 ____D C:\Program Files\VKTablet
2020-09-27 13:48 - 2019-10-28 20:35 - 000130688 _____ (VEIKK) C:\WINDOWS\system32\WinTab32.dll
2020-09-27 13:32 - 2020-09-30 13:47 - 000000000 ____D C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}
2020-09-27 13:32 - 2020-09-27 13:36 - 000000000 ____D C:\Users\jakem\AppData\Roaming\instinfo
2020-09-27 13:32 - 2020-09-27 13:32 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2020-09-27 13:24 - 2020-09-27 13:24 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2020-09-27 13:24 - 2020-09-27 13:24 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2020-09-27 13:10 - 2019-10-28 20:35 - 000115840 _____ (VEIKK) C:\WINDOWS\SysWOW64\WinTab32.dll
2020-09-27 13:06 - 2020-09-27 13:06 - 019724624 _____ (Shenzhen Hezon Lito Technology Co.,Ltd. ) C:\Users\jakem\Downloads\VKTablet.exe
2020-09-27 06:27 - 2020-09-27 06:27 - 000000000 ____D C:\Users\jakem\Documents\Stardock
2020-09-27 06:02 - 2020-09-27 06:02 - 000000000 ___HD C:\$SysReset
2020-09-27 06:01 - 2020-09-27 06:01 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Macromedia
2020-09-27 01:36 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2020-09-27 01:36 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2020-09-27 01:36 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2020-09-27 01:36 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2020-09-27 01:36 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2020-09-27 01:36 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2020-09-27 01:36 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2020-09-27 01:36 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2020-09-27 01:36 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2020-09-27 01:36 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2020-09-27 01:36 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2020-09-27 01:36 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2020-09-27 01:36 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2020-09-27 01:36 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2020-09-27 01:36 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2020-09-27 01:36 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2020-09-27 01:36 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2020-09-27 01:36 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2020-09-27 01:36 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2020-09-27 01:36 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2020-09-27 01:36 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2020-09-27 01:36 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2020-09-27 01:36 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2020-09-27 01:36 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2020-09-27 01:36 - 2008-10-10 04:52 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2020-09-27 01:36 - 2008-10-10 04:52 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2020-09-27 01:36 - 2008-10-10 04:52 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2020-09-27 01:36 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2020-09-27 01:36 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2020-09-27 01:36 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2020-09-27 01:36 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2020-09-27 01:36 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2020-09-27 01:36 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2020-09-27 01:36 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2020-09-27 01:36 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2020-09-27 01:36 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2020-09-27 01:36 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2020-09-27 01:36 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2020-09-27 01:36 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2020-09-27 01:36 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2020-09-27 01:36 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2020-09-27 01:36 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2020-09-27 01:36 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2020-09-27 01:36 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2020-09-27 01:36 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2020-09-27 01:36 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2020-09-27 01:36 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2020-09-27 01:36 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2020-09-27 01:36 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2020-09-27 01:36 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2020-09-27 01:36 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2020-09-27 01:36 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2020-09-27 01:36 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2020-09-27 01:36 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2020-09-27 01:36 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2020-09-27 01:36 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2020-09-27 01:36 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2020-09-27 01:36 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2020-09-27 01:36 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2020-09-27 01:36 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2020-09-27 01:36 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2020-09-27 01:36 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2020-09-27 01:36 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2020-09-27 01:36 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2020-09-27 01:36 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2020-09-27 01:36 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2020-09-27 01:36 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2020-09-27 01:36 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2020-09-27 01:36 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2020-09-27 01:36 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2020-09-27 01:36 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2020-09-27 01:36 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2020-09-27 01:36 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2020-09-27 01:36 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2020-09-27 01:36 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2020-09-27 01:36 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2020-09-27 01:35 - 2020-09-28 12:07 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-09-27 01:35 - 2020-09-27 01:36 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-09-27 01:35 - 2020-09-27 01:35 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2020-09-27 01:35 - 2020-09-27 01:35 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2020-09-27 01:35 - 2020-09-27 01:35 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-09-27 01:35 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2020-09-27 01:35 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2020-09-27 01:35 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2020-09-27 01:35 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2020-09-27 01:35 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2020-09-27 01:35 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2020-09-27 01:35 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2020-09-27 01:35 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2020-09-27 01:35 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2020-09-26 22:45 - 2020-09-26 22:45 - 000000000 ____D C:\Users\jakem\AppData\Roaming\PVS-Studio-Java
2020-09-26 21:13 - 2020-09-26 21:13 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2020-09-26 21:09 - 2020-09-26 21:09 - 000000000 ____D C:\ProgramData\FNET
2020-09-26 21:06 - 2020-09-26 21:07 - 000000000 ____D C:\Users\jakem\RAMCACHE
2020-09-26 21:06 - 2020-09-26 21:06 - 000000000 ____D C:\Users\jakem\AppData\Roaming\AsRamdisk
2020-09-26 21:06 - 2008-01-04 13:34 - 000011832 _____ C:\WINDOWS\SysWOW64\Drivers\AsInsHelp64.sys
2020-09-26 21:04 - 2020-09-26 21:04 - 000000000 ____D C:\Users\jakem\RamDisk
2020-09-26 21:02 - 2015-06-09 16:46 - 000192512 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\SysWOW64\Drivers\UpdateHelper.dll
2020-09-26 20:56 - 2020-09-26 20:56 - 000000000 ____D C:\Program Files (x86)\7-Zip
2020-09-26 14:03 - 2020-10-03 22:56 - 110886912 _____ C:\WINDOWS\system32\config\SOFTWARE
2020-09-26 14:03 - 2020-10-03 22:56 - 014155776 _____ C:\WINDOWS\system32\config\SYSTEM
2020-09-26 14:03 - 2020-10-03 22:56 - 001048576 _____ C:\WINDOWS\system32\config\DEFAULT
2020-09-26 14:03 - 2020-10-03 22:56 - 000139264 _____ C:\WINDOWS\system32\config\SAM
2020-09-26 14:03 - 2020-10-03 22:56 - 000040960 _____ C:\WINDOWS\system32\config\SECURITY
2020-09-26 05:31 - 2020-10-03 23:29 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\Mozilla
2020-09-26 02:45 - 2020-10-02 12:29 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\Temp
2020-09-26 02:45 - 2020-09-26 02:45 - 000000000 ____D C:\Users\jakem\AppData\Roaming\NuGet
2020-09-26 01:12 - 2020-10-01 16:49 - 000000000 ____D C:\Program Files\RogueKiller
2020-09-26 01:12 - 2020-09-26 01:12 - 000000000 ____D C:\ProgramData\RogueKiller
2020-09-26 01:03 - 2020-09-26 01:03 - 000000000 ____D C:\Users\jakem\Documents\HUD Desktop
2020-09-26 00:46 - 2020-10-03 07:12 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Stardock
2020-09-26 00:46 - 2020-10-03 07:12 - 000000000 ____D C:\ProgramData\Stardock
2020-09-26 00:46 - 2020-10-02 09:07 - 000000000 ____D C:\Users\jakem\AppData\Local\Stardock
2020-09-26 00:46 - 2020-10-02 09:06 - 000000000 ____D C:\Users\jakem\Downloads\Stardock
2020-09-26 00:46 - 2020-10-02 09:06 - 000000000 ____D C:\Program Files (x86)\Stardock
2020-09-25 21:36 - 2020-09-25 21:36 - 000000000 ____D C:\Users\jakem\AppData\Local\IsolatedStorage
2020-09-25 21:35 - 2020-09-25 21:35 - 000000000 ____D C:\Users\jakem\Viasfora
2020-09-25 21:33 - 2020-10-03 23:49 - 000000000 ____D C:\Users\jakem\AppData\Roaming\VisualAssist
2020-09-25 21:33 - 2020-10-02 05:23 - 000000000 ____D C:\Users\jakem\AppData\Local\CodeMaid
2020-09-25 21:33 - 2020-09-25 21:33 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Meowtrix
2020-09-25 21:33 - 2020-09-25 21:33 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Embarcadero
2020-09-25 18:08 - 2020-10-04 00:33 - 000000000 ____D C:\Users\jakem\AppData\Local\.IdentityService
2020-09-25 18:08 - 2020-09-25 18:08 - 000000000 ____D C:\Users\jakem\AppData\Local\unityhub-updater
2020-09-25 18:08 - 2020-09-25 18:08 - 000000000 ____D C:\Program Files\Unity Hub
2020-09-25 18:08 - 2020-09-25 18:08 - 000000000 ____D C:\Program Files\Android
2020-09-25 18:08 - 2020-09-25 18:08 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity
2020-09-25 18:07 - 2020-09-25 18:07 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\3082
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\2052
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1055
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1049
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1046
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1045
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1042
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1041
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1040
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1036
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1033
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1031
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1029
2020-09-25 18:03 - 2020-09-25 18:08 - 000000000 ____D C:\WINDOWS\system32\1028
2020-09-25 18:02 - 2020-09-25 18:02 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2020-09-25 18:02 - 2020-09-25 18:02 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2020-09-25 18:01 - 2020-10-02 22:57 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-09-25 18:01 - 2020-10-02 11:43 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2020-09-25 18:01 - 2020-10-02 02:03 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-09-25 18:01 - 2020-09-25 18:01 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-09-25 17:59 - 2020-10-02 11:44 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Visual Studio Setup
2020-09-25 17:59 - 2020-09-25 17:59 - 000001359 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2020-09-25 17:59 - 2020-09-25 17:59 - 000000000 ____D C:\Users\jakem\AppData\Roaming\vstelemetry
2020-09-25 17:59 - 2020-09-25 17:59 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft Visual Studio
2020-09-25 17:59 - 2020-09-25 17:59 - 000000000 ____D C:\Users\jakem\AppData\Local\ServiceHub
2020-09-25 17:58 - 2020-09-25 17:59 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2020-09-25 17:58 - 2020-09-25 17:58 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2020-09-25 16:22 - 2020-10-02 16:47 - 000000000 ____D C:\Users\jakem\AppData\Local\CrashDumps
2020-09-25 16:17 - 2020-09-25 16:17 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2020.lnk
2020-09-25 16:09 - 2020-09-25 16:09 - 000000000 ____D C:\Users\jakem\AppData\Local\UXP
2020-09-25 16:02 - 2020-09-28 20:24 - 000000000 __RHD C:\Users\jakem\jtmottola@students.everettcc.edu Creative Cloud Files
2020-09-25 15:59 - 2020-09-25 15:59 - 000001368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2020-09-25 15:58 - 2020-09-28 20:53 - 000000000 ____D C:\ProgramData\Adobe
2020-09-25 15:58 - 2020-09-28 20:46 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-09-25 15:58 - 2020-09-25 16:17 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-09-25 15:58 - 2020-09-25 16:16 - 000000000 ____D C:\Program Files\Adobe
2020-09-25 15:57 - 2020-09-28 20:53 - 000000000 ____D C:\Users\jakem\AppData\Local\Adobe
2020-09-25 15:46 - 2020-09-27 13:48 - 000000000 ____D C:\Users\jakem\AppData\Roaming\VKTablet
2020-09-25 15:43 - 2020-10-03 22:56 - 000000000 ____D C:\Users\jakem\Documents\ShareX
2020-09-25 15:43 - 2020-09-25 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2020-09-25 15:43 - 2020-09-25 15:43 - 000000000 ____D C:\Program Files\ShareX
2020-09-25 15:34 - 2019-11-29 16:46 - 000029592 _____ (VEIKK) C:\WINDOWS\system32\Drivers\VkDevice.sys
2020-09-25 14:50 - 2020-09-26 13:51 - 000000000 ____D C:\ProgramData\JAM Software
2020-09-25 14:49 - 2020-09-26 13:51 - 000000023 _____ C:\WINDOWS\ODBCINST.INI
2020-09-25 14:49 - 2020-09-26 13:51 - 000000000 ____D C:\Users\jakem\AppData\Roaming\JAM Software
2020-09-25 14:32 - 2020-09-25 14:32 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Geek Uninstaller
2020-09-25 14:32 - 2020-09-25 14:32 - 000000000 ____D C:\ProgramData\Tech Tool Store
2020-09-25 14:07 - 2020-09-15 00:50 - 000068408 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2020-09-25 14:07 - 2020-09-15 00:50 - 000057144 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2020-09-25 02:10 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2020-09-25 02:10 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2020-09-25 02:10 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2020-09-25 02:10 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2020-09-25 02:10 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2020-09-25 02:10 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2020-09-25 02:10 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2020-09-25 02:10 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2020-09-25 02:10 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2020-09-25 02:10 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2020-09-25 02:10 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2020-09-25 02:10 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2020-09-25 02:10 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2020-09-25 02:10 - 2009-09-04 17:29 - 000235344 _____ (Microsoft

 

[IIEleven11]

SysWOW64\XAudio2_0.dll
2020-09-25 02:10 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2020-09-25 02:10 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2020-09-25 02:10 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2020-09-25 02:10 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2020-09-25 02:10 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2020-09-25 02:10 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2020-09-25 02:10 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2020-09-25 02:10 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2020-09-25 02:10 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2020-09-25 02:10 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2020-09-25 02:10 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2020-09-25 02:10 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2020-09-25 02:10 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2020-09-25 02:10 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2020-09-25 02:10 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2020-09-25 02:10 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2020-09-25 02:10 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2020-09-25 02:10 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2020-09-25 02:10 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2020-09-25 02:10 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2020-09-25 02:10 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2020-09-25 02:10 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2020-09-25 02:10 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2020-09-25 02:10 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2020-09-25 02:10 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2020-09-25 02:10 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2020-09-25 02:10 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2020-09-25 02:10 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2020-09-25 02:10 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2020-09-25 02:10 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2020-09-25 02:10 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2020-09-25 02:10 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2020-09-25 02:10 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2020-09-25 02:10 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2020-09-25 02:10 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2020-09-25 02:10 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2020-09-25 02:10 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2020-09-25 02:10 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2020-09-25 02:10 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2020-09-25 02:10 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2020-09-25 02:10 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2020-09-25 02:10 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2020-09-25 02:10 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2020-09-25 02:10 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2020-09-25 02:02 - 2020-10-03 07:11 - 000000000 ____D C:\Users\jakem\AppData\Local\Ubisoft Game Launcher
2020-09-25 02:01 - 2020-09-25 02:01 - 000000000 ____D C:\ProgramData\Ubisoft
2020-09-24 22:17 - 2020-09-24 22:17 - 000000000 ____D C:\Users\jakem\AppData\Roaming\NVIDIA
2020-09-24 22:14 - 2020-09-24 19:04 - 000744808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-09-24 22:11 - 2020-09-24 22:11 - 000166056 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-09-24 22:11 - 2020-09-24 22:11 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Sun
2020-09-24 22:11 - 2020-09-24 22:11 - 000000000 ____D C:\ProgramData\Oracle
2020-09-24 22:11 - 2020-09-24 22:11 - 000000000 ____D C:\Program Files (x86)\Java
2020-09-24 20:32 - 2020-09-24 20:32 - 000000000 ____D C:\Users\jakem\AppData\Local\cache
2020-09-24 20:17 - 2020-09-26 05:32 - 000000000 ____D C:\Users\jakem\AppData\Local\Google
2020-09-24 19:46 - 2020-09-24 19:46 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Corsair
2020-09-24 19:46 - 2020-09-24 19:46 - 000000000 ____D C:\Users\jakem\AppData\Local\Corsair
2020-09-24 19:46 - 2017-12-26 01:58 - 000034064 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2020-09-24 19:38 - 2020-09-30 13:05 - 000000000 ____D C:\Users\jakem\AppData\Local\PlaceholderTileLogoFolder
2020-09-24 19:35 - 2020-10-02 02:56 - 000000000 ____D C:\Users\jakem\AppData\Local\D3DSCache
2020-09-24 19:28 - 2020-09-24 19:28 - 000000000 __SHD C:\Users\jakem\AppData\Roaming\Common
2020-09-24 19:28 - 2020-09-24 19:28 - 000000000 ____D C:\Users\jakem\AppData\Local\Binary_Fortress_Software
2020-09-24 19:28 - 2020-09-24 19:28 - 000000000 ____D C:\ProgramData\Binary Fortress Software
2020-09-24 19:27 - 2020-10-03 21:31 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Everything
2020-09-24 19:27 - 2020-10-03 21:31 - 000000000 ____D C:\Users\jakem\AppData\Local\Everything
2020-09-24 19:27 - 2020-10-02 11:47 - 000000000 ____D C:\ProgramData\GRETECH
2020-09-24 19:27 - 2020-09-24 19:27 - 000000000 ____D C:\Users\jakem\AppData\Roaming\GRETECH
2020-09-24 19:24 - 2020-09-25 18:08 - 000001882 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity Hub.lnk
2020-09-24 19:24 - 2020-09-24 19:24 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-09-24 19:24 - 2020-09-24 18:41 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-09-24 19:24 - 2020-09-23 22:21 - 000002055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2020-09-24 19:24 - 2020-09-21 15:33 - 000000357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Q-Dir.lnk
2020-09-24 19:23 - 2020-10-03 23:06 - 000000000 ____D C:\Users\jakem\AppData\Local\LGHUB
2020-09-24 19:23 - 2020-10-01 17:00 - 000000000 ____D C:\Users\jakem\AppData\Roaming\IObit
2020-09-24 19:23 - 2020-10-01 17:00 - 000000000 ____D C:\ProgramData\IObit
2020-09-24 19:23 - 2020-09-30 18:30 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Q-Dir
2020-09-24 19:23 - 2020-09-30 13:24 - 000000000 ____D C:\ProgramData\ProductData
2020-09-24 19:23 - 2020-09-26 01:05 - 000000000 ____D C:\Users\jakem\AppData\Roaming\LGHUB
2020-09-24 19:23 - 2020-09-25 16:23 - 000000000 ____D C:\Program Files\LGHUB
2020-09-24 19:23 - 2020-09-24 19:23 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-09-24 19:23 - 2020-09-24 19:23 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2020-09-24 19:23 - 2020-09-24 19:23 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2020-09-24 19:23 - 2020-09-24 19:23 - 000000000 ____D C:\WINDOWS\Setup
2020-09-24 19:23 - 2020-09-24 19:23 - 000000000 ____D C:\WINDOWS\OCR
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\winrm
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\slmgr
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\0409
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\DigitalLocker
2020-09-24 19:22 - 2020-09-24 19:22 - 000000000 ____D C:\Users\jakem\AppData\Local\Comms
2020-09-24 19:22 - 2020-08-08 01:23 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-09-24 19:22 - 2020-08-08 01:23 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-24 19:21 - 2020-10-03 22:59 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-09-24 19:21 - 2020-10-03 12:55 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2020-09-24 19:21 - 2020-10-03 07:57 - 000000000 ___RD C:\Program Files (x86)
2020-09-24 19:21 - 2020-10-03 07:28 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-09-24 19:21 - 2020-10-03 03:09 - 000000000 ___HD C:\Program Files\WindowsApps
2020-09-24 19:21 - 2020-10-02 13:45 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-09-24 19:21 - 2020-10-02 01:30 - 000000000 ____D C:\WINDOWS\system32\spool
2020-09-24 19:21 - 2020-10-01 16:54 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-09-24 19:21 - 2020-09-30 13:44 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2020-09-24 19:21 - 2020-09-30 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-24 19:21 - 2020-09-30 13:10 - 000000000 ____D C:\WINDOWS\security
2020-09-24 19:21 - 2020-09-30 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-09-24 19:21 - 2020-09-28 05:50 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-09-24 19:21 - 2020-09-27 13:23 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-09-24 19:21 - 2020-09-25 04:09 - 000000000 ____D C:\WINDOWS\appcompat
2020-09-24 19:21 - 2020-09-24 19:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-09-24 19:21 - 2020-09-24 19:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-09-24 19:21 - 2020-09-24 19:23 - 000000000 ____D C:\ProgramData\LGHUB
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\system32\dsc
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\setup
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\MUI
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\system32\Com
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\IME
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\WINDOWS\Help
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files\Windows NT
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files\Common Files\System
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files (x86)\Windows NT
2020-09-24 19:21 - 2020-09-24 19:22 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 __RSD C:\WINDOWS\Media
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\system32\Nui
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Web
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\WaaS
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Vss
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\tracing
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\TAPI
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SystemApps
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\winevt
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ti-et
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ta-in
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\si-lk
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ras
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\my-mm
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Keywords
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\IME
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\icsxml
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ias
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\DriverState
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\downlevel
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\DDFs
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\ContainerSettingsProviders
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\am-et
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\System
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SKB
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\schemas
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\SchCache
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Resources
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\rescache
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Registration
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\PLA
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Performance
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\ModemLogs
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\L2Schemas
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\InputMethod
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\IdentityCRL
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Globalization
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Cursors
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Containers
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\Branding
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\ProgramData\USOShared
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\Windows Security
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files\Common Files\Services
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2020-09-24 19:21 - 2020-09-24 19:21 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2020-09-24 19:21 - 2020-09-24 19:20 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2020-09-24 19:21 - 2020-09-24 19:20 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2020-09-24 19:21 - 2020-09-24 19:20 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2020-09-24 19:21 - 2020-09-24 19:20 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2020-09-24 19:21 - 2020-09-24 19:20 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-09-24 19:21 - 2020-09-24 19:20 - 000020339 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-09-24 19:21 - 2020-09-24 19:20 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2020-09-24 19:21 - 2020-09-24 19:20 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2020-09-24 19:21 - 2020-09-24 19:20 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2020-09-24 19:21 - 2020-09-24 19:20 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2020-09-24 19:21 - 2020-09-24 19:20 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2020-09-24 19:21 - 2020-09-24 19:20 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2020-09-24 19:21 - 2020-09-24 19:20 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2020-09-24 19:21 - 2020-09-24 19:20 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2020-09-24 19:21 - 2020-09-24 19:20 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2020-09-24 19:21 - 2020-09-24 19:20 - 000000219 _____ C:\WINDOWS\system.ini
2020-09-24 19:21 - 2020-09-24 19:20 - 000000092 _____ C:\WINDOWS\win.ini
2020-09-24 19:21 - 2020-09-24 19:05 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-09-24 19:21 - 2020-09-24 19:04 - 000000000 ____D C:\Program Files\Windows Defender
2020-09-24 19:21 - 2020-09-24 18:32 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-24 19:21 - 2020-09-24 18:32 - 000000000 ____D C:\ProgramData\USOPrivate
2020-09-24 19:21 - 2020-09-24 18:30 - 000000000 __RHD C:\Users\Public\Libraries
2020-09-24 19:21 - 2020-09-24 18:26 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-24 19:21 - 2020-09-24 18:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-24 19:21 - 2020-09-24 18:26 - 000000000 ____D C:\WINDOWS\ServiceState
2020-09-24 19:20 - 2020-10-03 12:55 - 000000000 ____D C:\WINDOWS\INF
2020-09-24 19:18 - 2020-10-03 22:56 - 000032768 _____ C:\WINDOWS\system32\config\BBI
2020-09-24 19:18 - 2020-10-03 12:43 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-24 19:18 - 2020-09-26 14:03 - 083361792 _____ C:\WINDOWS\system32\config\software.rcbak
2020-09-24 19:18 - 2020-09-26 14:03 - 013107200 _____ C:\WINDOWS\system32\config\system.rcbak
2020-09-24 19:18 - 2020-09-26 14:03 - 002097152 _____ C:\WINDOWS\system32\config\default.rcbak
2020-09-24 19:18 - 2020-09-26 14:03 - 000131072 _____ C:\WINDOWS\system32\config\sam.rcbak
2020-09-24 19:18 - 2020-09-26 14:03 - 000032768 _____ C:\WINDOWS\system32\config\security.rcbak
2020-09-24 19:18 - 2020-09-24 19:21 - 000000000 ____D C:\WINDOWS\system32\SMI
2020-09-24 19:18 - 2020-09-24 19:07 - 000000000 ____D C:\WINDOWS\servicing
2020-09-24 19:18 - 2020-09-24 18:30 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-09-24 19:07 - 2020-09-28 20:53 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Adobe
2020-09-24 19:07 - 2020-09-24 19:07 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Blizzard Entertainment
2020-09-24 19:06 - 2020-09-24 19:07 - 000000000 ____D C:\ProgramData\Corsair
2020-09-24 19:06 - 2020-09-24 19:06 - 000000000 ____D C:\Program Files (x86)\Corsair
2020-09-24 19:04 - 2020-09-24 19:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-24 19:04 - 2020-09-24 19:04 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-24 19:01 - 2020-10-04 01:10 - 000000000 ____D C:\Users\jakem\AppData\Roaming\discord
2020-09-24 19:01 - 2020-09-28 09:02 - 000000000 ____D C:\Users\jakem\AppData\Local\SquirrelTemp
2020-09-24 19:01 - 2020-09-24 19:01 - 000000000 ____D C:\Users\jakem\AppData\Local\Discord
2020-09-24 18:51 - 2020-10-03 23:06 - 000000000 ____D C:\Program Files (x86)\StarCraft II
2020-09-24 18:51 - 2020-09-24 19:07 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2020-09-24 18:50 - 2020-10-04 00:21 - 000000000 ____D C:\ProgramData\NVIDIA
2020-09-24 18:50 - 2020-10-03 23:06 - 000000000 ____D C:\Users\jakem\AppData\Local\Battle.net
2020-09-24 18:50 - 2020-10-03 16:39 - 000000000 ____D C:\Users\jakem\AppData\Local\NVIDIA
2020-09-24 18:50 - 2020-10-02 21:04 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Battle.net
2020-09-24 18:50 - 2020-09-29 01:36 - 000000000 ____D C:\Users\jakem\AppData\Local\NVIDIA Corporation
2020-09-24 18:50 - 2020-09-28 09:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-09-24 18:50 - 2020-09-25 14:07 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-24 18:50 - 2020-09-25 14:07 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-24 18:50 - 2020-09-24 18:50 - 000000000 ____D C:\Users\jakem\AppData\Local\CEF
2020-09-24 18:50 - 2020-09-15 21:49 - 002795320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-09-24 18:50 - 2020-09-15 21:49 - 002152936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-09-24 18:50 - 2020-09-15 21:49 - 001294648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-09-24 18:50 - 2020-09-15 21:42 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-09-24 18:50 - 2020-08-10 08:20 - 000169272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2020-09-24 18:50 - 2020-08-10 08:20 - 000145208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2020-09-24 18:50 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2020-09-24 18:50 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2020-09-24 18:50 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2020-09-24 18:50 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2020-09-24 18:49 - 2020-09-25 14:07 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-09-24 18:49 - 2020-09-24 19:07 - 000000000 ____D C:\Users\jakem\AppData\Local\Blizzard Entertainment
2020-09-24 18:49 - 2020-09-24 18:51 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-09-24 18:48 - 2020-09-24 18:48 - 000000000 ____D C:\ProgramData\Battle.net
2020-09-24 18:47 - 2020-09-24 18:47 - 000000000 ____D C:\Users\jakem\Downloads\Sc2ReplayStats
2020-09-24 18:46 - 2020-09-28 20:15 - 000000000 ____D C:\Users\jakem\AppData\Local\Mailbird
2020-09-24 18:45 - 2020-09-24 18:45 - 000000000 ____D C:\Users\jakem\AppData\Local\OneDrive
2020-09-24 18:44 - 2020-10-02 02:24 - 000000000 ____D C:\ProgramData\Package Cache
2020-09-24 18:44 - 2020-09-27 01:57 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-09-24 18:43 - 2020-10-01 03:25 - 000000000 ____D C:\ProgramData\ASUS
2020-09-24 18:43 - 2020-09-27 01:57 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-09-24 18:43 - 2020-09-24 18:43 - 000028672 _____ (ASUSTek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO.dll
2020-09-24 18:43 - 2020-09-24 18:43 - 000015232 _____ C:\WINDOWS\SysWOW64\Drivers\AsIO.sys
2020-09-24 18:41 - 2020-10-02 13:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-09-24 18:41 - 2020-10-02 13:45 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-09-24 18:41 - 2020-09-24 18:51 - 000000000 ____D C:\ProgramData\Mozilla
2020-09-24 18:41 - 2020-09-24 18:41 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Mozilla
2020-09-24 18:41 - 2020-09-24 18:41 - 000000000 ____D C:\Users\jakem\AppData\Local\Mozilla
2020-09-24 18:40 - 2020-10-01 03:10 - 000000000 ____D C:\Users\jakem\AppData\Local\MicrosoftEdge
2020-09-24 18:38 - 2020-10-03 07:21 - 000000000 ____D C:\Users\jakem\AppData\Local\Packages
2020-09-24 18:38 - 2020-09-30 13:05 - 000000000 ____D C:\ProgramData\Packages
2020-09-24 18:38 - 2020-09-29 19:04 - 000000000 ____D C:\Users\jakem\AppData\Local\VirtualStore
2020-09-24 18:38 - 2020-09-28 09:10 - 000000000 ____D C:\Users\jakem\AppData\Local\ConnectedDevicesPlatform
2020-09-24 18:38 - 2020-09-24 18:38 - 000000020 ___SH C:\Users\jakem\ntuser.ini
2020-09-24 18:33 - 2020-10-03 12:55 - 000934806 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-24 18:30 - 2020-09-24 18:30 - 000000000 _SHDL C:\Users\Default User
2020-09-24 18:30 - 2020-09-24 18:30 - 000000000 _SHDL C:\Users\All Users
2020-09-24 18:29 - 2020-09-20 23:55 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-09-24 18:26 - 2020-10-03 22:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-24 18:26 - 2020-10-02 16:49 - 000000000 ____D C:\Users\jakem
2020-09-24 18:26 - 2020-09-29 14:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-09-24 18:26 - 2020-09-29 01:45 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-09-24 18:26 - 2020-09-24 18:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-09-24 18:25 - 2020-10-03 16:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-09-24 15:01 - 2020-10-04 01:29 - 000000000 ____D C:\FRST
2020-09-24 14:32 - 2020-09-27 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChrisPC DNS Switch
2020-09-24 12:23 - 2020-09-28 20:22 - 000000000 ____D C:\AISuite3_Win7-8-8-1_Z87-DELUXE-1
2020-09-24 07:01 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM
2020-09-24 07:01 - 2020-09-24 07:01 - 000002047 _____ C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2020-09-24 07:00 - 2020-09-24 07:00 - 000000000 ____D C:\Users\jakem\gom player
2020-09-24 06:59 - 2020-09-24 06:59 - 000000286 _____ C:\nsispromotion_log.txt
2020-09-24 05:17 - 2020-10-02 11:50 - 000000000 ____D C:\Users\jakem\Downloads\Video
2020-09-24 03:05 - 2020-09-24 03:05 - 000000000 ____D C:\Quarantine
2020-09-23 22:21 - 2020-10-01 17:00 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\IObit
2020-09-23 22:21 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2020-09-23 22:21 - 2020-09-23 22:21 - 000000000 ____D C:\Users\jakem\IOBIT
2020-09-23 21:43 - 2020-09-10 16:08 - 008651616 ____N (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw04.sys
2020-09-23 21:20 - 2020-09-10 16:08 - 002074564 _____ C:\WINDOWS\system32\Drivers\Netwfw04.dat
2020-09-23 21:20 - 2020-09-10 16:08 - 001067872 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter04.dll
2020-09-23 03:18 - 2017-12-03 18:29 - 000116224 _____ () C:\Users\jakem\Downloads\Sc2ReplayStats.com.exe
2020-09-23 03:18 - 2017-02-13 03:20 - 000061440 _____ (JacksonSoft) C:\Users\jakem\Downloads\JacksonSoft.CustomTabControl.dll
2020-09-23 02:10 - 2020-04-13 15:24 - 000010752 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vmulti.sys
2020-09-23 02:10 - 2020-04-13 15:24 - 000007680 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\hidkmdf.sys
2020-09-22 13:06 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
2020-09-22 13:06 - 2020-09-22 13:06 - 000000000 ____D C:\Users\jakem\Documents\DisplayFusion Backups
2020-09-22 10:04 - 2020-10-03 23:50 - 000000000 ____D C:\Users\jakem\.templateengine
2020-09-22 10:04 - 2020-09-22 10:04 - 000000000 ____D C:\Users\jakem\source
2020-09-22 09:48 - 2020-09-22 10:04 - 000000000 ____D C:\Users\jakem\Documents\Visual Studio 2019
2020-09-22 05:00 - 2020-09-22 05:00 - 000000000 ____D C:\Users\jakem\Documents\My Games
2020-09-22 03:37 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winaero Tweaker
2020-09-22 03:25 - 2020-09-22 03:25 - 000000000 ____D C:\Users\jakem\Documents\FrameView
2020-09-21 23:48 - 2020-09-26 00:48 - 000000000 ____D C:\Users\Public\Documents\Stardock
2020-09-21 23:48 - 2020-09-26 00:48 - 000000000 ____D C:\ProgramData\Documents\Stardock
2020-09-21 23:43 - 2020-10-02 09:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2020-09-21 23:43 - 2020-09-26 00:46 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stardock
2020-09-21 23:17 - 2020-09-24 18:30 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Yamicsoft
2020-09-21 22:57 - 2020-10-03 22:02 - 000000000 ____D C:\Users\jakem\Downloads\Tech tool store tools
2020-09-21 18:53 - 2020-09-30 19:06 - 000000000 ____D C:\Users\jakem\Scelight Replay Backup
2020-09-21 18:25 - 2020-09-21 18:32 - 000000000 ____D C:\Users\jakem\Documents\New folder
2020-09-21 18:17 - 2020-09-21 18:17 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\Sun
2020-09-21 18:17 - 2020-09-21 18:17 - 000000000 ____D C:\Users\jakem\.Scelight
2020-09-21 18:16 - 2020-09-24 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-09-21 18:15 - 2020-09-28 20:53 - 000000000 ____D C:\Users\jakem\AppData\LocalLow\Adobe
2020-09-21 17:09 - 2020-09-25 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2019 Tools for Unity
2020-09-21 16:59 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2020-09-21 16:57 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2020-09-21 16:57 - 2020-09-21 16:57 - 000000000 ____D C:\Users\jakem\.dotnet
2020-09-21 16:09 - 2020-07-30 05:49 - 000126941 _____ C:\Users\jakem\Documents\signed2.pdf
2020-09-21 16:09 - 2020-07-29 21:01 - 000031322 _____ C:\Users\jakem\Documents\Mottola JT 28-8872 IWRP IEAP.pdf
2020-09-21 16:09 - 2020-06-15 15:59 - 000003392 _____ C:\Users\jakem\Documents\Rule of 1 gas Buildnotes.txt
2020-09-21 15:33 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Q-Dir
2020-09-21 15:29 - 2020-09-21 15:37 - 000000038 _____ C:\keyrateOFF.bat
2020-09-21 15:29 - 2020-09-21 15:36 - 000000037 _____ C:\KeyrateON.bat
2020-09-21 15:29 - 2020-02-25 04:31 - 000003072 _____ C:\keyrate.exe
2020-09-21 15:23 - 2020-09-21 15:23 - 000000000 ____D C:\Users\jakem\Documents\Adobe
2020-09-21 14:27 - 2020-09-24 18:29 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-09-21 13:17 - 2020-09-21 13:17 - 005681152 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2020-09-21 13:17 - 2020-09-21 13:17 - 004468736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2020-09-21 13:17 - 2020-09-21 13:17 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-09-21 05:51 - 2020-09-28 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mailbird
2020-09-21 05:09 - 2020-09-21 05:10 - 000000000 ____D C:\Users\jakem\.zenmap
2020-09-21 04:44 - 2020-10-01 16:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-09-21 04:36 - 2020-09-28 20:24 - 000000000 ___RD C:\Users\jakem\Creative Cloud Files (archived) (1)
2020-09-21 04:32 - 2020-10-04 00:13 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-09-21 04:32 - 2020-10-04 00:13 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-09-21 03:51 - 2020-09-21 03:51 - 000000000 ____D C:\Users\jakem\Downloads\pluginsdk
2020-09-21 01:37 - 2020-09-26 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-09-21 00:27 - 2020-10-02 02:18 - 000000000 ____D C:\Temp
2020-09-21 00:20 - 2020-09-24 19:01 - 000000000 ____D C:\Users\jakem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-09-21 00:16 - 2019-12-06 21:25 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2020-09-21 00:16 - 2019-12-06 19:45 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2020-09-21 00:16 - 2019-12-06 17:00 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2020-09-21 00:16 - 2019-12-06 16:47 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2020-09-21 00:16 - 2019-12-06 16:36 - 018011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2020-09-21 00:16 - 2019-12-06 16:35 - 000374784 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2020-09-21 00:16 - 2019-12-06 16:35 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2020-09-21 00:16 - 2019-12-06 16:34 - 000417792 _____ C:\WINDOWS\system32\d3dconfig.exe
2020-09-21 00:16 - 2019-12-06 16:34 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2020-09-21 00:16 - 2019-12-06 16:33 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2020-09-21 00:16 - 2019-12-06 16:32 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2020-09-21 00:16 - 2019-12-06 16:31 - 001379328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2020-09-21 00:16 - 2019-12-06 16:30 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2020-09-21 00:16 - 2019-12-06 16:29 - 013957632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2020-09-21 00:16 - 2019-12-06 16:29 - 001985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2020-09-21 00:16 - 2019-12-06 16:29 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2020-09-21 00:16 - 2019-12-06 16:28 - 001152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2020-09-21 00:16 - 2019-12-06 16:28 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2020-09-21 00:16 - 2019-12-06 16:27 - 004826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2020-09-21 00:16 - 2019-12-06 16:27 - 000347136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2020-09-21 00:16 - 2019-12-06 16:26 - 004795392 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2020-09-21 00:16 - 2019-12-06 16:26 - 000365056 _____ C:\WINDOWS\SysWOW64\d3dconfig.exe
2020-09-21 00:16 - 2019-12-06 16:26 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2020-09-21 00:16 - 2019-12-06 16:26 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2020-09-21 00:16 - 2019-12-06 16:26 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2020-09-21 00:16 - 2019-12-06 16:24 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2020-09-21 00:16 - 2019-12-06 16:23 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2020-09-21 00:16 - 2019-12-06 16:23 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2020-09-21 00:16 - 2019-12-06 16:23 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2020-09-21 00:16 - 2019-12-06 16:22 - 003578880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2020-09-21 00:16 - 2019-12-06 16:22 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2020-09-21 00:16 - 2019-12-06 16:22 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2020-09-21 00:16 - 2019-12-06 16:21 - 003592704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2020-09-21 00:16 - 2019-12-06 16:20 - 001411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2020-09-21 00:16 - 2019-12-06 16:19 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2020-09-21 00:16 - 2019-12-06 16:19 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2020-09-21 00:16 - 2019-12-06 15:44 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DirectML.Debug.dll
2020-09-21 00:12 - 2020-03-11 12:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-09-20 23:59 - 2020-09-15 10:43 - 005520280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-09-20 23:59 - 2020-09-14 17:01 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-09-20 23:59 - 2020-09-14 17:01 - 000038632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-09-20 23:57 - 2020-09-20 23:57 - 000000000 ____D C:\Users\jakem\ansel
2020-09-20 23:56 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-09-20 23:56 - 2020-09-20 23:56 - 032610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 026272768 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 023441408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 019869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 018766848 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 018075136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 007611904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 006417408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004892672 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004820992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004783344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004304384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 004274688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003992576 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003868672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003659264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003547784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 003334656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 002687488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 002519512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 002485560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2020-09-20 23:56 - 2020-09-20 23:56 - 002452856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 002338184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 002136744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 001980728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001956032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001812368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001770040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001719096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll

 

[IIEleven11]

2020-09-20 23:56 - 2020-09-20 23:56 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-09-20 23:56 - 2020-09-20 23:56 - 001301584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001260200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 001253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001183256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001128544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 001117344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001115448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lxcore.sys
2020-09-20 23:56 - 2020-09-20 23:56 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001061376 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 001048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 001014864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000961192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000946712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000920896 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000801544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000759792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000680664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 000676680 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000665264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-20 23:56 - 2020-09-20 23:56 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000538120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000530440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\glmf32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000500968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000412688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glmf32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000377344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000367416 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000360024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000291640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nvspinfo.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000217920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsl.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000117056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000095032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-20 23:56 - 2020-09-20 23:56 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslconfig.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000051000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VmsProxy.sys
2020-09-20 23:56 - 2020-09-20 23:56 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000039224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VmsProxyHNic.sys
2020-09-20 23:56 - 2020-09-20 23:56 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2020-09-20 23:56 - 2020-09-20 23:56 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2020-09-20 23:56 - 2020-09-20 23:56 - 000009277 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-09-20 23:56 - 2020-09-20 23:56 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragres.dll
2020-09-20 23:56 - 2020-03-06 03:03 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2020-09-20 23:56 - 2020-03-04 05:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-09-20 23:56 - 2020-03-04 05:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-09-20 23:55 - 2020-09-20 23:56 - 005993968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 014754304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 010847552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 009034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 008897200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 008006248 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 007979416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 007633360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 006357032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 006197760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 006193664 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005870496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005776544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005729280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005430480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 005056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 004747776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 004727296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 004592136 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 004523008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 004009064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003913728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003875840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003819528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003815424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 003806720 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 003749376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003505952 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003436544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003303936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003181056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003082240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 003062784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002991416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 002975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002951680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 002918736 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002851128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 002806152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002772992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002757120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 002647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002635640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002631168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002606592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002587448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002541056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002451456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002433024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002422784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002319216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002265328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002259968 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002248192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002206208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002178048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002131032 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002103704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002102784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 002023704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001978656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001951232 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001924608 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001868672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001866240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001856312 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001834496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001805192 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-09-20 23:55 - 2020-09-20 23:55 - 001777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001720832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001701368 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001693208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001681408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001654824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001649664 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001640888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001617088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001538656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001514496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001504768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001473024 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001472824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 001449792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001449472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001426944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001400208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-09-20 23:55 - 2020-09-20 23:55 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001378568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001337176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001329664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001296384 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001279288 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001277440 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001209344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001209096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001198288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 001191592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001181200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001145344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001140928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001126488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001094472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001092392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001089344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001068112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001046528 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001028288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001027344 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001021952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001008696 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 001003320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000978760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000976680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000969216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000943408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

 

[IIEleven11]

2020-09-20 23:55 - 2020-09-20 23:55 - 000934912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000914216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000913776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000907440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000903992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000894768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000890944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000887304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000843376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000827912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000809280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000799544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000794624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000775776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000763840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000757192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000755576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000750976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000725608 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000705560 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000702792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000702776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000688960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000647480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000639928 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000635824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000603464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000602440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-09-20 23:55 - 2020-09-20 23:55 - 000602184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000585696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000573752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000546464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000531448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000528352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000502592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-20 23:55 - 2020-09-20 23:55 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000495848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000472376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000455480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000454960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000428672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000420920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000420456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000403768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000374072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000373560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000361472 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000337768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msquic.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000303168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnputil.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000286024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000269624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000259888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000249664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000240136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000239432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000230392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000230376 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000223040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000212760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000196768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2020-09-20 23:55 - 2020-09-20 23:55 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000190792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000185672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000185664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000183112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000169456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000167880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000160064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000159048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000155952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000153400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000152376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000147256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000138936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000133736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000132928 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000132728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlgpclnt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000119608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000118072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000116024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-09-20 23:55 - 2020-09-20 23:55 - 000110504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000109992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000099640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000092952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000091448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000070976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000069752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000069728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000069432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000068928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000064008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000061952 _____ (Microsoft

 

[IIEleven11]

\SysWOW64\AssignedAccessRuntime.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-09-20 23:55 - 2020-09-20 23:55 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000042320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-09-20 23:55 - 2020-09-20 23:55 - 000030024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\midimap.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-09-20 23:55 - 2020-09-20 23:55 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-20 23:55 - 2020-09-20 23:55 - 000019776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\midimap.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000017216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000016704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-09-20 23:55 - 2020-09-20 23:55 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-20 23:55 - 2020-09-20 23:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-20 23:52 - 2020-08-24 20:42 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-20 23:52 - 2020-08-24 20:36 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-20 23:51 - 2020-09-24 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2020-09-20 23:51 - 2020-09-20 23:51 - 000000000 ___HD C:\$WinREAgent
2020-09-20 23:47 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2020-09-20 23:42 - 2020-10-01 01:06 - 000000000 ____D C:\Users\jakem\Documents\StarCraft II
2020-09-20 23:41 - 2020-09-24 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2020-09-20 23:39 - 2020-09-20 23:39 - 000066808 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2020-09-20 23:39 - 2020-09-20 23:39 - 000038136 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2020-09-20 23:39 - 2020-09-20 23:39 - 000026672 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2020-09-20 23:35 - 2020-09-28 09:13 - 000000000 ___RD C:\Users\jakem\OneDrive
2020-09-20 23:35 - 2020-09-20 23:35 - 000000000 ___HD C:\Users\jakem\MicrosoftEdgeBackups
2020-09-20 23:34 - 2020-09-24 18:38 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-09-20 23:34 - 2020-09-24 18:38 - 000000000 ___RD C:\Users\jakem\3D Objects
2020-09-20 23:33 - 2020-06-26 01:00 - 000724280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\UcmCxUcsiNvppc.sys
2020-09-20 23:30 - 2020-09-20 23:30 - 000000000 _SHDL C:\Documents and Settings
2020-09-16 12:16 - 2020-09-16 12:16 - 008847232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140ud.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 008775040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 005076872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140u.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 004786048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000920968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcamp140d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000737672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000571272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000448384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000354696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcamp140.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000293256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_2d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000267648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000244608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000172936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcomp140d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000166792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_2.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000150400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcomp140.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000114560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000098176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcm140d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000097672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcm140ud.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000076168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000075144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcm140u.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000075144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcm140.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000068488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140fra.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000068488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140deu.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000067464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140esn.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000066440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140ita.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000064384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140rus.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000058760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140enu.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000048000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140jpn.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000046984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140kor.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000039808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140cht.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000039808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc140chs.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000025992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_1d.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000021384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_1.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000020864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140d_codecvt_ids.dll
2020-09-16 12:16 - 2020-09-16 12:16 - 000018824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_codecvt_ids.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 011072904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140ud.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 011000184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 005617544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140u.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 005583752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 001104264 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000933256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000914312 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcamp140d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000723840 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000583048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcamp140.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000376200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_2d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000330120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000309632 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000203656 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcomp140d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000186240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_2.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000177032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcomp140.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000161152 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000111488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcm140d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcm140ud.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000094072 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000084872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcm140.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcm140u.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000068488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140deu.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000068480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140fra.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000067448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140esn.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000066424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140ita.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000064392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140rus.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000058760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140enu.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_1d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000047992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140jpn.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000046976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140kor.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000039816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140cht.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000039816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc140chs.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000036744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_1.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000031112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_1d.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000023944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_1.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000023928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140d_codecvt_ids.dll
2020-09-16 12:15 - 2020-09-16 12:15 - 000020344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_codecvt_ids.dll
2020-09-11 09:30 - 2020-09-11 09:30 - 000065488 _____ (Adobe Systems Inc) C:\WINDOWS\system32\AdobePDF.dll
2020-09-11 09:30 - 2020-09-11 09:30 - 000036304 _____ (Adobe Systems Inc.) C:\WINDOWS\system32\AdobePDFUI.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)


==================== Files in the root of some directories ========

 

[IIEleven11]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-10-2020
Ran by jakem (04-10-2020 01:31:42)
Running from C:\Users\jakem\Downloads
Windows 10 Home Version 2004 19041.508 (X64) (2020-09-25 01:32:30)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1154741852-3201556293-3969415838-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1154741852-3201556293-3969415838-503 - Limited - Disabled)
Guest (S-1-5-21-1154741852-3201556293-3969415838-501 - Limited - Disabled)
jakem (S-1-5-21-1154741852-3201556293-3969415838-1001 - Administrator - Enabled) => C:\Users\jakem
skate (S-1-5-21-1154741852-3201556293-3969415838-1002 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1154741852-3201556293-3969415838-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Disabled - Up to date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
FW: COMODO Firewall (Disabled) {3D87FB90-B561-70B4-3B0B-BCEFE7656ABC}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (HKLM-x32\...\{23170F69-40C1-2701-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.0.468 - Adobe Inc.)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_3) (Version: 24.3 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2_4) (Version: 21.2.4.323 - Adobe Inc.)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.13 - ASUSTeK Computer Inc.)
Amazon Music (HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Amazon Amazon Music) (Version: 7.13.0.2210 - Amazon.com Services LLC)
Application Verifier x64 External Package (HKLM\...\{10CA1677-8F02-3131-F25C-780BAB52E468}) (Version: 10.1.18362.1 - Microsoft) Hidden
Autorun Angel 1.0.55 (HKLM-x32\...\{210F3CE3-C716-416C-99AE-7151A0968BF2}_is1) (Version: - NictaTech Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Child of Light (HKLM-x32\...\Uplay Install 609) (Version: - Ubisoft)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{0243F145-076D-423A-8F77-218DC8840261}) (Version: 4.8.04119 - Microsoft Corporation) Hidden
CORSAIR iCUE Software (HKLM-x32\...\{229E0F5D-0FE7-4468-B856-DDF1B089345F}) (Version: 3.33.246 - Corsair)
DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Discord) (Version: 0.0.308 - Discord Inc.)
Entity Framework 6.2.0 Tools for Visual Studio 2019 (HKLM-x32\...\{7C2070BF-8E07-4B5F-A182-FADB0B95AB39}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
icecap_collection_neutral (HKLM-x32\...\{EEF3770F-1EEF-4AA4-94E7-4B1DEBEED8B6}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{1E36C98F-0653-495C-B28E-433A6740ADB0}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{60C5BEEB-0865-45D8-AB7F-7F2E916EBEE4}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{7525DBB9-50C3-4924-BA87-CD21910F3DA3}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
IntelliTraceProfilerProxy (HKLM-x32\...\{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 - Microsoft Corporation) Hidden
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
Kits Configuration Installer (HKLM-x32\...\{63AAA877-5536-9481-2385-28A082100D78}) (Version: 10.1.18362.1 - Microsoft) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: - Logitech)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Microsoft .NET Core SDK 3.1.402 (x64) from Visual Studio (HKLM\...\{B72DD495-8F46-4BD2-86D7-CD564039ADBF}) (Version: 3.1.402.015278 - Microsoft Corporation)
Microsoft .NET Framework 4.7 SDK (HKLM-x32\...\{3428E9C1-638B-4410-BC11-EDB2B8ECFE3B}) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 Targeting Pack (ENU) (HKLM-x32\...\{829CB0F4-AB51-4DB7-8CA2-1C93CCC36D5E}) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 Targeting Pack (HKLM-x32\...\{EC073C7E-990D-4BB1-BFA9-45C6704E3571}) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft 365 Apps for enterprise - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft Network Monitor 3.4 (HKLM\...\{8C5B5A11-CBF8-451B-B201-77FAB0D0B77D}) (Version: 3.4.2350.0 - Microsoft Corporation)
Microsoft Network Monitor: NetworkMonitor Parsers 3.4 (HKLM\...\{963E5FEB-1367-46B9-851D-A957F1A3747F}) (Version: 3.4.2350.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM\...\{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32\...\{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 (HKLM-x32\...\{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29112 (HKLM-x32\...\{be826f5f-eda5-45a2-a3fe-c2cb5c1b9842}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.7.3066.826 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 81.0 (x64 en-US) (HKLM\...\Mozilla Firefox 81.0 (x64 en-US)) (Version: 81.0 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSI Development Tools (HKLM-x32\...\{DB4DB790-64DD-1902-4BF2-833B3B6DBCA1}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
NordPass (HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\285d85e1-fc76-5a0e-ba2d-20241a7fe9d2) (Version: 2.10.2 - NordPass Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29066181 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29066181 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.48 - NVIDIA Corporation)
NVIDIA Graphics Driver 456.38 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.38 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3.1 r3321 - Rainmeter)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
RogueKiller version 14.7.3.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.7.3.0 - Adlice Software)
SDK ARM Additions (HKLM-x32\...\{73681F86-CD86-4208-572F-959B45430B04}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{67EE3804-9642-62BA-EBF1-B1561FB4ECBE}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.2.1 - ShareX Team)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Stardock Object Desktop (HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\Object Desktop Manager) (Version: 4.01 - Stardock Software, Inc.)
Stardock Start10 (HKLM-x32\...\Stardock Start10) (Version: 1.95 - Stardock Software, Inc.)
Stardock Tiles (HKLM-x32\...\Tiles) (Version: 1.20 - Stardock Software, Inc.)
Stardock WindowBlinds™ (HKLM-x32\...\Stardock WindowBlinds™) (Version: 10.84 - Stardock Software, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TailExpert (HKLM-x32\...\{873CAA28-E28D-4378-A057-52F54DED7AB9}) (Version: 1.0.0 - Neware)
Unity Hub 2.4.0 (HKLM\...\{Unity Technologies - Hub}) (Version: 2.4.0 - Unity Technologies Inc.)
Universal CRT Extension SDK (HKLM-x32\...\{13952D7A-B7B3-F4F8-5F29-5CD18E8168B7}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{74CBC330-ED16-31B9-E8BE-0C6A8E67DE32}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{847D4DAF-0182-265B-324F-406462E8A90D}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{54FE4D23-11A2-F1C4-76E9-79C8FB40A4A1}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{9F7B0D96-881D-8850-C303-43F3A08E6902}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{6F54BF87-2EE6-FA6D-431D-33A665992D49}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{187432B8-F7D6-4F73-9D40-8B39312D2EDF}) (Version: 14.27.29112 - Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32\...\f452b6de) (Version: 16.7.30523.141 - Microsoft Corporation)
VKTabletDriver (HKLM\...\DC6C14C4-4F50-4976-9A7D-191E107219FD_is1) (Version: 2.0.0.6 - Shenzhen Hezon Lito Technology Co.,Ltd.)
VS Immersive Activate Helper (HKLM-x32\...\{A71406B5-E487-4B01-8E59-D466841350F5}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{C7E8A4F2-EF09-42A8-B892-69D5ED99D965}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{BAF91847-0A64-405E-98EC-A0BA6FB4BC4E}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{CC46F5AE-F0CA-400C-A557-A95D742D4EE0}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{95E79BBC-97FD-4FEB-91B5-CC0231324812}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{804E218D-A59D-48B9-AD2A-13BF6F1C9DA0}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{3A735826-F946-4348-8DE2-0B9FF750F77D}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{EF1AD9BC-8273-4B78-ACB6-A35DF4CE4447}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{5F1382AE-D96A-4E32-989C-0A3C8C35CC23}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{87B66F22-97AC-4420-841B-2305F921B39F}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{760FF3F5-A7F3-4079-92DD-9AEB0344D13E}) (Version: 16.7.30310 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{EC04CD66-C03A-470D-B0D2-4BBC87F6382D}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{937CD512-3142-4F3E-93CD-5F86203ED24B}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsi (HKLM-x32\...\{178ED1EA-BAFA-489D-873D-F5FB72EA69B9}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
WinAppDeploy (HKLM-x32\...\{8E3AE0EF-D067-700C-BDB4-10D5552155DC}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
Windows Driver Package - VeiKk (WinUsb) USBDevice (03/27/2018 1.0.0.1) (HKLM\...\49CDB6956EA98C2483A3AA1DE55B32E48F35A45D) (Version: 03/27/2018 1.0.0.1 - VeiKk)
Windows SDK AddOn (HKLM-x32\...\{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.18362.1 (HKLM-x32\...\{126dedf0-cc0e-4b48-9ece-806b0e437195}) (Version: 10.1.18362.1 - Microsoft Corporation)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{E67F1F03-FB4A-3D61-8999-E6A4C4B26F34}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{7EF010FF-7800-28BA-FF49-2D219EC7BA82}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{36AE12FB-4349-6EAA-B6E4-5F4E06FA8AE8}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{6B03A6A4-643C-57CE-CA6F-4E19BF47497A}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{918A448F-59E8-FBF5-B087-D3F07160C7E0}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{66483041-F590-EC46-4AF0-EE39C62FB680}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{9C61E6D2-C43E-6746-B519-6185558C4A24}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{6B37CC5B-78DF-5050-2215-68479716A587}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{250D5341-0879-4016-399C-BBCD87B80E95}) (Version: 10.1.18362.1 - Microsoft Corporation) Hidden

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-09-25] (Adobe Systems Incorporated)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-09-24] (NVIDIA Corp.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{75f92b33-bbaa-b4b4-04ac-a7c07959e5a66}\InprocServer32 -> 0xE4E6EACDE493D601BE6F964AA294D601020000001400000000000000 => No File
CustomCLSID: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0xEA70518FE392D601632DE8CDE493D601030000000C00000000000000 => No File
CustomCLSID: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-25] (Adobe Inc. -> )
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_15676754357bf917\nvshext.dll [2020-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [Fast Explorer] -> {693BE9C0-BEC3-11D2-B4C1-C33BBD3AD64B} => -> No File

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\jakem\Documents\Stardock\Tiles\Shortcuts\Gaming\keyrateOFF.bat.lnk -> C:\keyrateOFF.bat ()
Shortcut: C:\Users\jakem\Documents\Stardock\Tiles\Shortcuts\Gaming\KeyrateON.bat.lnk -> C:\KeyrateON.bat ()
ShortcutWithArgument: C:\Users\jakem\Documents\Stardock\Tiles\Shortcuts\Programmer\Developer Command Prompt for VS 2019.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Tools\VsDevCmd.bat"

==================== Loaded Modules (Whitelisted) =============

2020-09-24 18:43 - 2020-09-24 18:43 - 000053248 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.01\cpuutil.dll
2020-09-24 18:44 - 2020-09-24 18:43 - 000062464 _____ () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Exeio.dll
2020-09-24 18:44 - 2020-09-24 18:43 - 001772544 _____ () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Vender.dll
2020-08-31 20:30 - 2020-08-31 20:30 - 000351744 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\ActionsConverters.dll
2020-08-31 19:56 - 2020-08-31 19:56 - 000759296 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\LegacyCommands.dll
2020-08-31 19:57 - 2020-08-31 19:57 - 000743424 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\LegacyNotifications.dll
2020-08-31 19:55 - 2020-08-31 19:55 - 000530944 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\MobileProto.dll
2020-08-31 19:56 - 2020-08-31 19:56 - 000200704 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\ModelHelpers.dll
2020-08-31 19:55 - 2020-08-31 19:55 - 000209408 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\quazip.dll
2020-08-31 19:55 - 2020-08-31 19:55 - 000101376 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\zlib.dll
2020-09-25 18:01 - 2020-09-25 18:01 - 001021440 _____ () [File not signed] c:\program files (x86)\microsoft visual studio\2019\community\common7\ide\commonextensions\microsoft\openfolder\x86\e_sqlite3.dll
2020-09-24 18:53 - 2020-09-24 18:53 - 080168448 _____ () [File not signed] C:\Program Files (x86)\StarCraft II\Support\BlizzardBrowser\libcef.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 000109056 _____ () [File not signed] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\1033\VaPkgUIMetro.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 025382912 _____ () [File not signed] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\valibclang2.dll
2020-09-30 09:09 - 2020-09-30 05:36 - 002772480 _____ () [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\ffmpeg.dll
2020-09-30 09:09 - 2020-09-30 05:36 - 000379904 _____ () [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\libegl.dll
2020-09-30 09:09 - 2020-09-30 05:36 - 007863296 _____ () [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\libglesv2.dll
2020-09-30 09:09 - 2020-09-30 05:36 - 000147456 _____ () [File not signed] C:\Users\jakem\AppData\Local\Programs\nordpass\resources\app.asar.unpacked\dist\main\keytar.node
2020-09-25 19:09 - 2020-09-25 19:09 - 001665024 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V0980bc02#\dd5bdbe8c64ac2e6d7c65a4c4e748b24\Microsoft.VisualStudio.ExtensionEngine.ni.dll
2020-10-02 19:01 - 2020-10-02 19:01 - 002772480 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V317d5f2e#\796c26a1f393d56d319b1408d3a2351a\Microsoft.VisualStudio.ProjectServices.ni.dll
2020-09-25 19:16 - 2020-09-25 19:16 - 000233472 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V3880418d#\607cf4dd19937916fa19b11e0d4201b7\Microsoft.VisualStudio.CodingConventions.ni.dll
2020-10-02 19:03 - 2020-10-02 19:03 - 000047104 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vd5d72abf#\293ca3b2aafe51d5a892236f726ae382\Microsoft.VisualStudio.ExtensionManager.ni.dll
2020-10-02 19:03 - 2020-10-02 19:03 - 001508352 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf617de63#\8fbf1b88cb70d0d68adc952cd4beb539\Microsoft.VisualStudio.ExtensionManager.Implementation.ni.dll
2020-09-22 13:06 - 2019-08-15 18:13 - 001265664 _____ () [File not signed] K:\DisplayFusion\runtimes\win-x64\native\e_sqlite3.dll
2020-10-01 03:23 - 2017-10-29 19:15 - 000147456 _____ () [File not signed] K:\NEWAISUITE\AI Suite III\AssistFunc.dll
2020-10-01 03:24 - 2017-11-24 08:48 - 004744704 _____ () [File not signed] K:\NEWAISUITE\AI Suite III\DIP4\idti_old.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 001261056 _____ (Andrew Arnott) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Nerdbank.Streams\2909d291c77ff19cf493f98b0a75dd34\Nerdbank.Streams.ni.dll
2020-09-25 19:16 - 2020-09-25 19:16 - 001260544 _____ (Andrew Arnott) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Nerdbank.Streams\e98910bd62c9d6120f9c20adb3e47e26\Nerdbank.Streams.ni.dll
2020-09-25 19:09 - 2020-09-25 19:09 - 001502720 _____ (Andrew Arnott) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Nerdbank.Streams\04874fe295a2e93e98545ee918650dc6\Nerdbank.Streams.ni.dll
2020-10-01 03:23 - 2017-10-29 19:15 - 000108544 _____ (ASUS) [File not signed] K:\NEWAISUITE\AI Suite III\AsAcpi.dll
2020-10-01 03:24 - 2017-11-24 08:47 - 000108544 _____ (ASUS) [File not signed] K:\NEWAISUITE\AI Suite III\DIP4\DIPAwayMode\asacpi.dll
2020-10-03 22:57 - 2020-10-03 22:57 - 000046888 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.01\PEbiosinterface32.dll
2020-10-01 03:23 - 2017-10-29 19:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\asacpiEx.dll
2020-10-01 03:23 - 2017-10-29 19:15 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\AsMultiLang.dll
2020-10-01 03:24 - 2017-11-24 08:47 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\DIP4\AsMultiLang.dll
2020-10-01 03:24 - 2017-11-24 08:47 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] K:\NEWAISUITE\AI Suite III\DIP4\DIPAwayMode\asacpiEx.dll
2020-09-24 18:44 - 2020-09-24 18:43 - 000106496 _____ (ASUSTek Computer Inc.,) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\EIO.DLL

 

[IIEleven11]

2020-09-25 19:15 - 2020-09-25 19:15 - 000466432 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.D487c049b#\8ad98f2f3cf122ed01334b3cbdba79a2\Microsoft.Developer.IdentityService.Client.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 001358336 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.S0b6afd4f#\9c7cc43bd24f9d262f53140f19e05fe6\Microsoft.ServiceHub.Framework.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 001358336 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.S0b6afd4f#\f009601d73afef4db0e92f81aee59e19\Microsoft.ServiceHub.Framework.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 000400384 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.S5aeb222a#\07c5ff5ed6e7ccaba328d15c315ff82d\Microsoft.ServiceHub.Client.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 000218112 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Sb88c8854#\216870b77264e00508e1b94091aca700\Microsoft.ServiceHub.HostLib.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 000369664 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Sca0cfb83#\7e1d9045b7679d61bee54c1a1f49afca\Microsoft.ServiceHub.HostStub.ni.dll
2020-10-02 19:01 - 2020-10-02 19:01 - 007930368 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V15eb4492#\6fcbb4c56a8c6d0c4324f96081616f42\Microsoft.VisualStudio.ProjectSystem.VS.Implementation.ni.dll
2020-09-25 19:13 - 2020-09-25 19:13 - 000166400 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V2f43c8ea#\2711dcff65636d36d3ff8b735b9af754\Microsoft.VisualStudio.Workspace.VSIntegration.Contracts.ni.dll
2020-10-02 19:02 - 2020-10-02 19:02 - 002502144 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V43ea1027#\3f99fb64f82265150ecab9af1c84c46c\Microsoft.VisualStudio.IntelliCode.ni.dll
2020-10-02 19:01 - 2020-10-02 19:01 - 006598656 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V4922f139#\62587dce0c73f910c6fc6332c1ce11c5\Microsoft.VisualStudio.ProjectSystem.Implementation.ni.dll
2020-09-25 19:13 - 2020-09-25 19:13 - 000567296 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V624a2f90#\d46760fb5b1de84b92764a058212a49c\Microsoft.VisualStudio.Workspace.ni.dll
2020-09-25 19:15 - 2020-09-25 19:15 - 001908736 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.V64f73072#\b4295c55cb150b511bd09be452084552\Microsoft.VisualStudio.Setup.ni.dll
2020-09-25 19:13 - 2020-09-25 19:13 - 000139264 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vbe54ab74#\1c579f3db072018116cc19028d481df2\Microsoft.VisualStudio.Workspace.Extensions.ni.dll
2020-09-25 19:15 - 2020-09-25 19:15 - 000231936 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vbea50588#\9bd939c658e539e8c74fd623eafa2b22\Microsoft.VisualStudio.Setup.Download.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 001675776 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vbeb7089b#\a3d8896b5b14a9a73cae07d0a469a13d\Microsoft.VisualStudio.Threading.ni.dll
2020-10-02 19:01 - 2020-10-02 19:01 - 000554496 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vd21cd7ee#\95e6cd7b41103d203971e3efd60602af\Microsoft.VisualStudio.ProjectSystem.VS.ni.dll
2020-09-25 19:16 - 2020-09-25 19:16 - 000048640 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vd43b287e#\0a4c117b7c1b234b44bff40543a78a67\Microsoft.VisualStudio.Validation.ni.dll
2020-09-25 19:15 - 2020-09-25 19:15 - 000795648 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vd873e1f1#\46981e9bb40b1a0605cce77d62f70347\Microsoft.VisualStudio.Setup.Common.ni.dll
2020-09-25 19:09 - 2020-09-25 19:09 - 006216704 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf3bd3225#\dc3238e686f8567ef1960de94561a234\Microsoft.VisualStudio.ProjectSystem.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 001092096 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Vfd40090d#\2a1f75802e7e9e9440675dea4442ea78\Microsoft.VisualStudio.Composition.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 001285632 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\StreamJsonRpc\0797282821aff2505bb63a3d527f0f3b\StreamJsonRpc.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 001229824 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\StreamJsonRpc\ba6f00494c468168c77e4141a21f9c54\StreamJsonRpc.ni.dll
2020-09-25 19:09 - 2020-09-25 19:09 - 001751040 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.S0b6afd4f#\ff64cfb301f435a690644d9ffdfe91d7\Microsoft.ServiceHub.Framework.ni.dll
2020-09-25 19:09 - 2020-09-25 19:09 - 002148352 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Vbeb7089b#\f9f602d870d0c10150979f83be98cf87\Microsoft.VisualStudio.Threading.ni.dll
2020-09-25 19:09 - 2020-09-25 19:09 - 000058880 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Vd43b287e#\3b1e878dce7cb977d23545d8d5fe72e3\Microsoft.VisualStudio.Validation.ni.dll
2020-09-25 19:09 - 2020-09-25 19:09 - 001636864 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\StreamJsonRpc\6c5066bb32c3a5ac514b778660818067\StreamJsonRpc.ni.dll
2020-09-25 19:16 - 2020-09-25 19:16 - 002029056 _____ (neuecc,aarnott) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MessagePack\6606ca83704b948faa41212520df3968\MessagePack.ni.dll
2020-09-25 19:16 - 2020-09-25 19:16 - 000016384 _____ (neuecc,aarnott) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MessagePack311884ad#\dc779be8d73dd098e30319c79ab597f4\MessagePack.Annotations.ni.dll
2020-09-25 19:10 - 2020-09-25 19:10 - 003061248 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\2ac3b1a9fd4eeff457f9e3b7b36f33d6\Newtonsoft.Json.ni.dll
2020-09-25 19:16 - 2020-09-25 19:16 - 003060736 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\314577cb89b8524b9b6f8139bad2022f\Newtonsoft.Json.ni.dll
2020-09-25 19:09 - 2020-09-25 19:09 - 003834368 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\a964cfa9a7ec2b4a03f297f249a810d0\Newtonsoft.Json.ni.dll
2020-07-29 11:46 - 2020-07-29 11:46 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2020-09-24 18:54 - 2020-09-24 18:54 - 000504832 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\StarCraft II\Support\BlizzardBrowser\chrome_elf.dll
2020-09-24 18:53 - 2020-09-24 18:53 - 010893824 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\StarCraft II\Support64\icudt52.dll
2020-09-24 18:54 - 2020-09-24 18:54 - 001760768 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\StarCraft II\Support64\icuin52.dll
2020-09-24 18:54 - 2020-09-24 18:54 - 001327104 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\StarCraft II\Support64\icuuc52.dll
2020-07-29 23:51 - 2020-07-29 23:51 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll
2020-07-29 23:51 - 2020-07-29 23:51 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libssl-1_1.dll
2020-09-24 18:44 - 2020-09-24 18:43 - 000193536 _____ (TODO: <Company name>) [File not signed] [File is in use] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\AsusGpuTweak.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 000523776 _____ (Whole Tomato Software, LLC) [File not signed] [File is in use] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\VaCodeInspections.Interop.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 000481280 _____ (Whole Tomato Software, LLC) [File not signed] [File is in use] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\vaIPCnet.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 000154112 _____ (Whole Tomato Software, LLC) [File not signed] [File is in use] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\VAX.interop.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 002274304 _____ (Whole Tomato Software, LLC) [File not signed] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\VaAux.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 000843264 _____ (Whole Tomato Software, LLC) [File not signed] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\VaCodeInspections.Interop2.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 000137216 _____ (Whole Tomato Software, LLC) [File not signed] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\vaIPC.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 000410112 _____ (Whole Tomato Software, LLC) [File not signed] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\VaPkgAsync.dll
2020-09-25 18:21 - 2020-09-25 18:21 - 000348160 _____ (Whole Tomato Software, LLC) [File not signed] c:\users\jakem\appdata\local\microsoft\visualstudio\16.0_f452b6de\extensions\kgavzvib.jyp\VAssistNET.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\Software\Classes\exefile: <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-09-24] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-09-24] (Oracle America, Inc. -> Oracle Corporation)
Handler: AutorunsDisabled - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: AutorunsDisabled - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: AutorunsDisabled - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: AutorunsDisabled - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: AutorunsDisabled - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: AutorunsDisabled - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: AutorunsDisabled - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: AutorunsDisabled - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-30] (Microsoft Corporation -> Microsoft Corporation)
Filter: AutorunsDisabled - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLMF.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)
Filter-x32: AutorunsDisabled - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL [2020-09-28] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\sharepoint.com -> hxxps://everettccedu-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2020-09-24 19:21 - 2020-09-28 19:59 - 000000709 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %SystemRoot%\system32\WBEM;C:\WINDOWS\system32\WBEM;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\WindowsPowerShell\v1.0;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Users\jakem\AppData\Local\Microsoft\WindowsApps;C:\Program Files\Microsoft Network Monitor 3;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jakem\AppData\Local\DisplayFusion\Wallpaper_1.png
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Everything"
HKLM\...\StartupApproved\Run: => "TabletDriverCenter"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerProgramData"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\StartupApproved\StartupFolder: => "Rainmeter.lnk.disabled"
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\StartupApproved\Run: => "Amazon Music"
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\...\StartupApproved\Run: => "Amazon Music Helper"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{FBE1E96A-9E9A-4847-A5B2-907468C01BD9}C:\users\jakem\appdata\local\programs\nordpass\nordpass.exe] => (Allow) C:\users\jakem\appdata\local\programs\nordpass\nordpass.exe (NordPass Team) [File not signed]
FirewallRules: [UDP Query User{6A8892A6-7983-4592-905A-005143EB9F98}C:\users\jakem\appdata\local\programs\nordpass\nordpass.exe] => (Allow) C:\users\jakem\appdata\local\programs\nordpass\nordpass.exe (NordPass Team) [File not signed]
FirewallRules: [TCP Query User{A581CD08-EB96-4237-B86D-8E36C099BBC7}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{BCF1C48B-C18E-4602-BCDF-F76E42A290E2}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [TCP Query User{D8A832E5-4825-42AE-941C-9D703BCF3F39}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{BFE05B06-CC30-4F9D-BE8F-36D20EEFC247}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{15D813B2-DBDA-468C-AE0F-5412F7877645}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5DAB185A-06A2-446F-8949-2991C153C085}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F4EFC954-A2B5-464D-8638-835E9CBCD0D6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DB15B93D-073B-46F7-973E-855FDF7542BB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C2ABBC42-8D02-4B2D-AE45-E569BC6B6599}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{025FBD39-FB91-42EE-BFF4-592B0C996F82}C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{C278DA99-A19B-4621-8935-07BE2AE5D1E0}C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{652D2C4D-4095-4BBE-B0BF-252A6448425D}] => (Allow) K:\SSteam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CE74B896-A9C5-4152-81AC-72E6AEAA56B9}] => (Allow) K:\SSteam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5E3A751A-9C93-46BD-AC26-0221D031520B}] => (Allow) K:\SSteam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{66D89CF2-24DD-413D-BC5A-F3F66BCB7F82}] => (Allow) K:\SSteam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/03/2020 08:00:54 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider wsp_sr attempted to register query "select * from WSP_ReplicationGroupStorageModificationEvent" whose target class "WSP_ReplicationGroupStorageModificationEvent" in //./root/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.

Error: (10/03/2020 08:00:54 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider wsp_sr attempted to register query "select * from WSP_ReplicationGroupStorageDepartureEvent" whose target class "WSP_ReplicationGroupStorageDepartureEvent" in //./root/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.

Error: (10/03/2020 08:00:54 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider wsp_sr attempted to register query "select * from WSP_ReplicationGroupStorageArrivalEvent" whose target class "WSP_ReplicationGroupStorageArrivalEvent" in //./root/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.

Error: (10/03/2020 08:00:54 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider attempted to register query "select * from WSP_ReplicationGroupStorageModificationEvent" whose target class "WSP_ReplicationGroupStorageModificationEvent" in //./root/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.

Error: (10/03/2020 08:00:54 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider attempted to register query "select * from WSP_ReplicationGroupStorageDepartureEvent" whose target class "WSP_ReplicationGroupStorageDepartureEvent" in //./root/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.

Error: (10/03/2020 08:00:54 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider attempted to register query "select * from WSP_ReplicationGroupStorageArrivalEvent" whose target class "WSP_ReplicationGroupStorageArrivalEvent" in //./root/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.

Error: (10/03/2020 08:00:54 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider wsp_health attempted to register query "select * from WSP_StorageHealthStatusChangeEvent" whose target class "WSP_StorageHealthStatusChangeEvent" in //./root/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.

Error: (10/03/2020 08:00:54 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Event provider wsp_health attempted to register query "select * from WSP_StorageFaultEvent" whose target class "WSP_StorageFaultEvent" in //./root/Microsoft/Windows/Storage/Providers_v2 namespace does not exist. The query will be ignored.


System errors:
=============
Error: (10/04/2020 12:01:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Browser service depends on the Server service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (10/04/2020 12:01:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Browser service depends on the Server service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (10/04/2020 12:01:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Browser service depends on the Server service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (10/04/2020 12:01:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Browser service depends on the Server service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (10/04/2020 12:01:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Browser service depends on the Server service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (10/04/2020 12:01:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Browser service depends on the Server service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (10/04/2020 12:01:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Browser service depends on the Server service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Error: (10/04/2020 12:01:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Browser service depends on the Server service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Windows Defender:
===================================
Date: 2020-10-03 21:43:53.8190000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Wacatac.D6!ml threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Wacatac.D6!ml
ID: 2147757785
Severity: Severe
Category: Trojan
Path: file:_C:\Users\jakem\Downloads\FRST-OlderVersion\FRST.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Users\jakem\Downloads\Tech tool store tools\ZHPCleaner.exe
Security intelligence Version: AV: 1.325.141.0, AS: 1.325.141.0, NIS: 1.325.141.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-03 21:43:49.9930000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Wacatac.D6!ml threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Wacatac.D6!ml
ID: 2147757785
Severity: Severe
Category: Trojan
Path: file:_C:\Users\jakem\Downloads\FRST-OlderVersion\FRST.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Users\jakem\Downloads\Tech tool store tools\ZHPCleaner.exe
Security intelligence Version: AV: 1.325.141.0, AS: 1.325.141.0, NIS: 1.325.141.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-03 21:43:37.4660000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Wacatac.D6!ml threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Wacatac.D6!ml
ID: 2147757785
Severity: Severe
Category: Trojan
Path: file:_C:\Users\jakem\Downloads\FRST-OlderVersion\FRST.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.325.141.0, AS: 1.325.141.0, NIS: 1.325.141.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-03 04:02:43.8120000Z
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan ID: {B0F0ABF7-71ED-40C7-9A7F-2BB35762EA71}
Scan Type: Antimalware
Scan Parameters: Quick Scan

 

[IIEleven11]

Ate: 2020-10-03 03:21:27.7660000Z
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:

Trojan:Win32/Fuerboos.B!cl threat description - Microsoft Security Intelligence

Name: Trojan:Win32/Fuerboos.B!cl
ID: 2147723653
Severity: Severe
Category: Trojan
Path: file:_C:\Users\jakem\Downloads\FRST.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\System32\svchost.exe
Security intelligence Version: AV: 1.325.88.0, AS: 1.325.88.0, NIS: 1.325.88.0
Engine Version: AM: 1.1.17500.4, NIS: 1.1.17500.4

CodeIntegrity:
===================================

Date: 2020-10-03 21:40:31.1630000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\gfiutil.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-03 14:54:22.6940000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\wbload.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-03 14:54:22.6900000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\wbload.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-03 14:54:22.6860000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\wbload.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-03 14:54:17.6520000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\wbload.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-03 14:54:17.6470000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\wbload.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-03 14:54:17.6420000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\wbload.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-03 14:54:17.6380000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\wbload.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1301 03/14/2018
Motherboard: ASUSTeK COMPUTER INC. MAXIMUS IX HERO
Processor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Percentage of memory in use: 54%
Total physical RAM: 16315.51 MB
Available physical RAM: 7496.38 MB
Total Virtual: 22203.51 MB
Available Virtual: 7878.36 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.28 GB) (Free:133.59 GB) NTFS
Drive k: (File Bunker) (Fixed) (Total:931.51 GB) (Free:921.12 GB) NTFS

\\?\Volume{f7ef0c7a-9546-4e71-ae1b-6f716770968c}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{756a6384-1e64-47c0-a9b1-a3803c4077f9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 558EC8DD)

 

[Broni]

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

[IIEleven11]

Fix result of Farbar Recovery Scan Tool (x64) Version: 04-10-2020
Ran by jakem (04-10-2020 14:16:58) Run:1
Running from C:\Users\jakem\Downloads
Loaded Profiles: jakem
Boot Mode: Normal
==============================================

fixlist content:
*****************
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Task: {01A8D9A9-4E53-4F82-8BAE-BB72782EEBCD} - \NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {1EF1B32E-5752-45E8-A759-2660734A5FB6} - \NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {2E182709-2E7B-4A8F-9649-F1B11D1D530A} - \Adobe Acrobat Update Task -> No File <==== ATTENTION
Task: {342D3D61-DB0F-4F6C-B255-C9BA99C70E5C} - \NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {3BD549BA-19E0-48CE-A51A-6EA254D326E2} - \BraveSoftwareUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {40697F97-649A-409F-A717-C3EE849224FD} - \NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {4486AF33-1946-476C-8621-EE641B11C7B2} - \NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {788CC737-0F48-4985-8DA1-F7C21B5A01B2} - \Microsoft\VisualStudio\VSIX Auto Update -> No File <==== ATTENTION
Task: {834DAA5D-4104-4067-A3F0-F0A81BE69085} - \NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {8587E843-8297-4775-929C-B228F3C7338C} - \NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {B586D9A1-23C0-490E-92E0-837AED4B38C6} - \NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} -> No File <==== ATTENTION
Task: {C7C1DF1E-B368-4D05-A743-49F0E5E93E50} - \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB -> No File <==== ATTENTION
Task: {DC778AE3-A89D-451D-8EAB-15332E3918E2} - \BraveSoftwareUpdateTaskMachineUA -> No File <==== ATTENTION
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
S3 WinRing0_1_2_0; C:\Users\jakem\AppData\Local\Temp\tmp22E4.tmp [14544 2020-10-03] (Noriyuki MIYAZAKI -> OpenLibSys.org) <==== ATTENTION
C:\Users\jakem\AppData\Local\Temp\tmp22E4.tm
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X]
S3 efavdrv; \??\C:\WINDOWS\system32\drivers\efavdrv.sys [X]
U4 HomeGroupProvider; no ImagePath
CustomCLSID: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{75f92b33-bbaa-b4b4-04ac-a7c07959e5a66}\InprocServer32 -> 0xE4E6EACDE493D601BE6F964AA294D601020000001400000000000000 => No File
CustomCLSID: HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0xEA70518FE392D601632DE8CDE493D601030000000C00000000000000 => No File
ContextMenuHandlers6: [Fast Explorer] -> {693BE9C0-BEC3-11D2-B4C1-C33BBD3AD64B} => -> No File
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\Software\Classes\exefile: <==== ATTENTION

*****************

C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\system32\GroupPolicy\User => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{01A8D9A9-4E53-4F82-8BAE-BB72782EEBCD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{01A8D9A9-4E53-4F82-8BAE-BB72782EEBCD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1EF1B32E-5752-45E8-A759-2660734A5FB6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EF1B32E-5752-45E8-A759-2660734A5FB6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2E182709-2E7B-4A8F-9649-F1B11D1D530A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E182709-2E7B-4A8F-9649-F1B11D1D530A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{342D3D61-DB0F-4F6C-B255-C9BA99C70E5C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{342D3D61-DB0F-4F6C-B255-C9BA99C70E5C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3BD549BA-19E0-48CE-A51A-6EA254D326E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BD549BA-19E0-48CE-A51A-6EA254D326E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BraveSoftwareUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{40697F97-649A-409F-A717-C3EE849224FD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{40697F97-649A-409F-A717-C3EE849224FD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4486AF33-1946-476C-8621-EE641B11C7B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4486AF33-1946-476C-8621-EE641B11C7B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{788CC737-0F48-4985-8DA1-F7C21B5A01B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{788CC737-0F48-4985-8DA1-F7C21B5A01B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\VisualStudio\VSIX Auto Update" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{834DAA5D-4104-4067-A3F0-F0A81BE69085}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{834DAA5D-4104-4067-A3F0-F0A81BE69085}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8587E843-8297-4775-929C-B228F3C7338C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8587E843-8297-4775-929C-B228F3C7338C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B586D9A1-23C0-490E-92E0-837AED4B38C6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B586D9A1-23C0-490E-92E0-837AED4B38C6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C7C1DF1E-B368-4D05-A743-49F0E5E93E50}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DC778AE3-A89D-451D-8EAB-15332E3918E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DC778AE3-A89D-451D-8EAB-15332E3918E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BraveSoftwareUpdateTaskMachineUA" => removed successfully
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully
WinRing0_1_2_0 => service not found.
"C:\Users\jakem\AppData\Local\Temp\tmp22E4.tm" => not found
HKLM\System\CurrentControlSet\Services\AscFileFilter => removed successfully
AscFileFilter => service removed successfully
HKLM\System\CurrentControlSet\Services\AscRegistryFilter => removed successfully
AscRegistryFilter => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz145 => removed successfully
cpuz145 => service removed successfully
HKLM\System\CurrentControlSet\Services\efavdrv => removed successfully
efavdrv => service removed successfully
"HKLM\System\CurrentControlSet\Services\HomeGroupProvider" => removed successfully
HomeGroupProvider => service removed successfully
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{75f92b33-bbaa-b4b4-04ac-a7c07959e5a66} => removed successfully
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817} => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Fast Explorer => removed successfully
HKU\S-1-5-21-1154741852-3201556293-3969415838-1001\Software\Classes\exefile => removed successfully


The system needed a reboot.

==== End of Fixlog 14:16:59 ====

 

[Broni]

Last scans...

Download Security Check from here or here and save it to your Desktop.

• Double-click SecurityCheck.exe
• Follow the onscreen instructions inside of the black box.
• A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
Make sure the following options are checked:

• Internet Services
• Windows Firewall
• System Restore
• Security Center
• Windows Update
• Windows Defender
• Other Services

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe

• Double click on TFC.exe to run the program.
• Click on Start button to begin cleaning process.
• TFC will close all running programs, and it may ask you to restart computer.

Download Sophos Free Virus Removal Tool and save it to your desktop.

• Double click the icon and select Run
• Click Next
• Select I accept the terms in this license agreement, then click Next twice
• Click Install
• Click Finish to launch the program
• Once the virus database has been updated click Start Scanning
• If any threats are found click Details, then View log file... (bottom left hand corner)
• Copy and paste the results in your reply
• Close the Notepad document, close the Threat Details screen, then click Start cleanup
• Click Exit to close the program