Inactive Ongoing problems with computer

I'm on Win 7

Hi,

So issues like I can't log into a site, the mouse won't let me click on the fields to enter in my details.

Or on another site it won't play a video although supposedly it works on Win 10.

Things keep hanging or crashing.

Here are the first files.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-07-2019
Ran by Michelle - Alexis (administrator) on MICHELLE-ALEXIS (Dell Inc. OptiPlex 990)

(31-07-2019 23:42:00)
Running from C:\Downloads
Loaded Profiles: Michelle - Alexis (Available Profiles: Michelle - Alexis & John-

ESET)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United

States)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-

frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not

be moved.)

() [File not signed] C:\Program Files (x86)\qBittorrent\qbittorrent.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader

DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader

DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader

DC\Reader\AcroRd32.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader

DC\Reader\AcroRd32.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files

(x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files

(x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files

(x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Anvsoft Inc. -> Anvsoft) C:\Program Files (x86)\Anvsoft\Any Video Converter

Professional\AVCPro.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\Michelle - Alexis\AppData\Roaming

\Dashlane\Dashlane.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\Michelle - Alexis\AppData\Roaming

\Dashlane\DashlanePlugin.exe
(Dell Products, LP.) [File not signed] C:\Program Files (x86)\Dell Digital Delivery

\DeliveryService.exe
(Discord Inc. -> Discord Inc.) C:\Users\Michelle - Alexis\AppData\Local\Discord\app-

0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Michelle - Alexis\AppData\Local\Discord\app-

0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Michelle - Alexis\AppData\Local\Discord\app-

0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Michelle - Alexis\AppData\Local\Discord\app-

0.0.305\Discord.exe
(DOMIT LIMITED -> Domit UK LTD) C:\Users\Michelle - Alexis\AppData\Local\MP3 Skype

recorder\MP3SkypeRecorder.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client

\78.4.119\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client

\78.4.119\QtWebEngineProcess.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:

\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS

\PrivacyIconClient.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:

\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:

\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell

\ClassicStartMenu.exe
(Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM

\UMVPFSrv.exe
(Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software

\LWS.exe
(London Trust Media Incorporated -> ) C:\Program Files\pia_manager\pia_manager.exe
(London Trust Media Incorporated -> ) C:\Program Files\pia_manager\pia_manager.exe
(London Trust Media Incorporated -> hxxp://www.ruby-lang.org/) C:\Users\Michelle -

Alexis\AppData\Local\Temp\ocr5B68.tmp\bin\rubyw.exe
(London Trust Media Incorporated -> hxxp://www.ruby-lang.org/) C:\Users\Michelle -

Alexis\AppData\Local\Temp\ocrEF9B.tmp\bin\rubyw.exe
(London Trust Media Incorporated -> The NWJS Community) C:\Program Files\pia_manager

\nwjs\pia_nw.exe
(London Trust Media Incorporated -> The NWJS Community) C:\Program Files\pia_manager

\nwjs\pia_nw.exe
(London Trust Media Incorporated -> The NWJS Community) C:\Program Files\pia_manager

\nwjs\pia_nw.exe
(London Trust Media Incorporated -> The NWJS Community) C:\Program Files\pia_manager

\nwjs\pia_nw.exe
(Mega Limited -> Mega Limited) C:\Users\Michelle - Alexis\AppData\Local\MEGAsync

\MEGAsync.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft

Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft

Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft

Office\root\Office16\EXCEL.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft

Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft

Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files

\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files

\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar

\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows

\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows

\System32\atiesrxx.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox

\firefox.exe
(OMT-LIDER, TOV -> SplitCam Co.) C:\Program Files (x86)\SplitCam\SplitCamService.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera

\62.0.3331.72\opera_crashreporter.exe
(Paltalk.com -> AVM Software Inc.) C:\Program Files (x86)\Paltalk Messenger

\paltalk.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\Program Files\Realtek

\Audio\HDA\RtDCpl64.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files

(x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung

\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files

(x86)\Samsung\Kies\KiesTrayAgent.exe
(ShareX Team) [File not signed] C:\Program Files\ShareX\ShareX.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft

\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft

\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft

\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft

\Skype for Desktop\Skype.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer

\TeamViewer_Service.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(TECHHELP US LP -> PPMin Inc) C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
(VideoLAN -> VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> WmiPrvSE.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default

or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe [2907792

2012-07-19] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell

\ClassicStartMenu.exe [163800 2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not

signed]
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [180448 2019-07

-28] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine

Components\IMSS\PIconStartup.exe [113656 2013-01-24] (Intel Corporation - Intel®

Management Engine Firmware -> Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0

Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas

Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe

[205336 2011-11-11] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

[5782336 2019-07-30] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static

\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced

Micro Devices, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies

\KiesTrayAgent.exe [318112 2017-11-15] (Samsung Electronics CO., LTD. -> Samsung

Electronics Co., Ltd.)
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Run: [SkyPrivate] => C:\Users

\Michelle - Alexis\AppData\Local\Apps\2.0\48AMO56O.6NK

\V7KZ2WA3.CL1\skyp..tion_c9519c0fa2d78996_0001.0000_e39a012e2d8b94ae\SkyPrivate.exe
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Run: [Dashlane] => C:\Users

\Michelle - Alexis\AppData\Roaming\Dashlane\Dashlane.exe [390736 2019-07-18] (Dashlane

USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Run: [iCloudServices] => C:

\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384

2018-01-10] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Run: [PayPerMinute] => C:

\Users\Michelle - Alexis\AppData\Local\Programs\ppmin\PayPerMinute.exe [52621216 2019

-05-17] (TECHHELP US LP -> PPMin Inc)
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Run: [DashlanePlugin] => C:

\Users\Michelle - Alexis\AppData\Roaming\Dashlane\DashlanePlugin.exe [413264 2019-07-

18] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Run: [Discord] => C:\Users

\Michelle - Alexis\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07]

(Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Run: [MP3 Skype recorder] =>

C:\Users\Michelle - Alexis\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe

[3872904 2019-05-24] (DOMIT LIMITED -> Domit UK LTD)
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Run: [Skype for Desktop] => C:

\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53646904 2019-07-18]

(Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\Control Panel\Desktop\\SCRNSAVE.EXE

-> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-21] (Microsoft Windows ->

Microsoft Corporation)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [176416 2011-12-15]

(Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [307488 2011-12-

15] (Logitech, Inc. -> Logitech Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-

A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application

\75.0.3770.142\Installer\chrmstp.exe [2019-07-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-

D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application

\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --

system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-

0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl

\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-

7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live

\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\Users\John- ESET\AppData\Roaming\Microsoft\Windows\Start Menu\Programs

\Startup\Sidebar200.lnk [2019-07-07]
ShortcutTarget: Sidebar200.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe

(Microsoft Windows -> Microsoft Corporation)
Startup: C:\Users\Michelle - Alexis\AppData\Roaming\Microsoft\Windows\Start Menu

\Programs\Startup\MEGAsync.lnk [2016-11-20]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Michelle - Alexis\AppData\Local\MEGAsync

\MEGAsync.exe (Mega Limited -> Mega Limited)
Startup: C:\Users\Michelle - Alexis\AppData\Roaming\Microsoft\Windows\Start Menu

\Programs\Startup\PalTalk.lnk [2016-11-20]
ShortcutTarget: PalTalk.lnk -> C:\Program Files (x86)\Paltalk Messenger\paltalk.exe

(Paltalk.com -> AVM Software Inc.)
Startup: C:\Users\Michelle - Alexis\AppData\Roaming\Microsoft\Windows\Start Menu

\Programs\Startup\ShareX.lnk [2018-12-04]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [File

not signed]
Startup: C:\Users\Michelle - Alexis\AppData\Roaming\Microsoft\Windows\Start Menu

\Programs\Startup\Sidebar630.lnk [2019-07-28]
ShortcutTarget: Sidebar630.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe

(Microsoft Windows -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The

file will not be moved unless listed separately.)

Task: {14E8DD79-7335-4D7B-B17D-5402F694D450} - System32\Tasks\MEGA\MEGAsync Update

Task S-1-5-21-4016078423-3760932042-4150441970-1000 => C:\Users\Michelle - Alexis

\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2019-06-06] (Mega Limited -> Mega

Limited)
Task: {1AC5FFAC-8743-44D0-A5AC-4B02EB0E050C} - System32\Tasks

\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

[143144 2016-08-07] (Dropbox, Inc -> Dropbox, Inc.)
Task: {1EBF2B00-2994-497B-812A-5E41BF750B14} - System32\Tasks

\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

[144200 2016-03-29] (Google Inc -> Google Inc.)
Task: {21F6289C-AB48-44CD-B7DB-100AA227D578} - System32\Tasks\Microsoft\Office

\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root

\Office16\officebackgroundtaskhandler.exe [1448512 2019-07-14] (Microsoft Corporation

-> Microsoft Corporation)
Task: {244B2262-C65D-4917-9460-63FD9513C17D} - System32\Tasks\Adobe Flash Player

Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416

2019-07-09] (Adobe Inc. -> Adobe)
Task: {2B61B003-69FB-43B3-BE77-F9D7552610A5} - System32\Tasks

\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update

\DropboxUpdate.exe [143144 2016-08-07] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3EDD745B-B32C-40B8-B6C8-460932511639} - System32\Tasks

\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

[144200 2016-03-29] (Google Inc -> Google Inc.)
Task: {74DD5DE6-236F-4827-84B8-35A650E9C7D4} - System32\Tasks\Microsoft\Office\Office

Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs

\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1504384 2019-

07-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {8CA616E0-55FF-4D9D-83DF-1C51E55C934E} - System32\Tasks\Avast Software\Overseer

=> C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2047368 2019-

07-31] (AVAST Software s.r.o. -> AVAST Software)
Task: {9B1DB422-4AD3-413C-9702-5C4178A0D140} - System32\Tasks\Adobe Acrobat Update

Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-

12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {9BFF5244-E623-4E0B-A44E-FEFD8DE65099} - System32\Tasks\Adobe Flash Player PPAPI

Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe

[1453112 2019-07-09] (Adobe Inc. -> Adobe)
Task: {A05CF4EC-497B-4A88-9605-A134D9B30492} - System32\Tasks\Opera scheduled

Autoupdate 1463068136 => C:\Program Files (x86)\Opera\launcher.exe [1519640 2019-07-

24] (Opera Software AS -> Opera Software)
Task: {A363E5EC-17CE-4E13-8E66-B808FF8E5704} - System32\Tasks\{2F1CD10B-F3F3-429C-

B800-4545D3AC9BBD} => c:\program files (x86)\opera\launcher.exe [1519640 2019-07-24]

(Opera Software AS -> Opera Software)
Task: {A37926E6-E71C-43F0-BF10-485859A92D50} - System32\Tasks\Microsoft\Office\Office

Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS

\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113616 2019-07-14]

(Microsoft Corporation -> Microsoft Corporation)
Task: {C85C618F-48D3-4C8A-B278-A0567B45C9D4} - System32\Tasks\Microsoft\Office\Office

Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun

\OfficeC2RClient.exe [26804232 2019-06-26] (Microsoft Corporation -> Microsoft

Corporation)
Task: {CCB7F9AD-EB90-4AE7-9494-86D2EBB10A6B} - System32\Tasks\Adobe Flash Player NPAPI

Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe

[1457208 2019-07-09] (Adobe Inc. -> Adobe)
Task: {D744A132-0BC4-4DCB-BD00-F41C83B7B066} - System32\Tasks\Microsoft\Office\Office

Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS

\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113616 2019-07-14]

(Microsoft Corporation -> Microsoft Corporation)
Task: {DAD75A3D-EA14-4C61-BF65-2331EABCB3E4} - System32\Tasks\Microsoft\Windows Live

\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {DD39D157-CBC1-4EDF-A1A7-2286EE551F4C} - System32\Tasks\Microsoft\Office

\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office

\root\Office16\officebackgroundtaskhandler.exe [1448512 2019-07-14] (Microsoft

Corporation -> Microsoft Corporation)
Task: {E3007810-B7AF-4E06-9C17-041E6DE880F5} - System32\Tasks\Private Internet Access

Startup => %SYSTEMDRIVE%/Program Files/pia_manager/pia_manager.exe
Task: {F0B36F84-04F0-4F5F-B7CF-774140BBA027} - System32\Tasks\Microsoft\Office\Office

ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared

\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-26] (Microsoft Corporation ->

Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file

which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files

(x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files

(x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or

restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{38A21977-BD69-46A5-A094-E0D4BB9AE72A}: [NameServer]

10.0.0.138,8.8.8.8
Tcpip\..\Interfaces\{38A21977-BD69-46A5-A094-E0D4BB9AE72A}: [DhcpNameServer]

10.0.0.138
Tcpip\..\Interfaces\{D0A5AAA8-2962-4B41-82B8-D98A474E219B}: [DhcpNameServer]

209.222.18.222 209.222.18.218

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->

C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office

\Office16\OCHelper.dll [2019-07-03] (Microsoft Corporation -> Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files

\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File

not signed]
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:

\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-

07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:

\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office

\Office16\URLREDIR.DLL [2019-07-03] (Microsoft Corporation -> Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files

\Classic Shell\ClassicIEDLL_64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft) [File not

signed]
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Michelle -

Alexis\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2019-07-18] (Dashlane USA, Inc. ->

Dashlane, Inc.)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program

Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft)

[File not signed]
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} ->

C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} ->

C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2019-07-03]

(Microsoft Corporation -> Microsoft Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program

Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft)

[File not signed]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:

\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev ->

IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} -

C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (Ivaylo Beltchev ->

IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:

\Users\Michelle - Alexis\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2019-07-18]

(Dashlane USA, Inc. -> Dashlane, Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:

\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-14] (Microsoft

Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files

(x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation ->

Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program

Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-14] (Microsoft

Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files

(x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-14] (Microsoft Corporation ->

Microsoft Corporation)

FireFox:
========
FF DefaultProfile: go2b5zdi.default
FF ProfilePath: C:\Users\Michelle - Alexis\AppData\Roaming\Mozilla\Firefox\Profiles

\go2b5zdi.default [2019-07-31]
FF Homepage: Mozilla\Firefox\Profiles\go2b5zdi.default -> www.eztv.ag|

hxxps://thepiratebay.org/tv/latest/|hxxps://rarbg.to/index65.php|hxxps://katcr.co|

hxxps://torrentgalaxy.org|hxxps://yts.ag|hxxps://www.torrenting.com/login.php?

returnto=Login|hxxp://tvline.com/2017/11/30/tv-calendar-2018-january-return-dates/
FF Extension: (Adblock Plus Pop-up Addon) - C:\Users\Michelle - Alexis\AppData

\Roaming\Mozilla\Firefox\Profiles\go2b5zdi.default\Extensions

\adblockpopups@jessehakanen.net.xpi [2016-08-18] [Legacy]
FF Extension: (Dashlane) - C:\Users\Michelle - Alexis\AppData\Roaming\Mozilla\Firefox

\Profiles\go2b5zdi.default\Extensions\jetpack-extension@dashlane.com.xpi [2017-02-27]

[Legacy]
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\Michelle -

Alexis\AppData\Roaming\Mozilla\Firefox\Profiles\go2b5zdi.default\Extensions\jid0-

GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2019-05-14]
FF Extension: (Pop-up Controller) - C:\Users\Michelle - Alexis\AppData\Roaming

\Mozilla\Firefox\Profiles\go2b5zdi.default\Extensions\jid1-MIAJd5BiK7V4Pw@jetpack.xpi

[2016-12-30] [Legacy]
FF Extension: (AdBlock) - C:\Users\Michelle - Alexis\AppData\Roaming\Mozilla\Firefox

\Profiles\go2b5zdi.default\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2019-07-06]
FF Extension: (Nimbus Screen Capture: Screenshots, Annotate) - C:\Users\Michelle -

Alexis\AppData\Roaming\Mozilla\Firefox\Profiles\go2b5zdi.default\Extensions

\nimbusscreencaptureff@everhelper.me.xpi [2019-05-24]
FF Extension: (LastPass: Free Password Manager) - C:\Users\Michelle - Alexis\AppData

\Roaming\Mozilla\Firefox\Profiles\go2b5zdi.default\Extensions\support@lastpass.com.xpi

[2019-06-07]
FF Extension: (Tab Suspender) - C:\Users\Michelle - Alexis\AppData\Roaming\Mozilla

\Firefox\Profiles\go2b5zdi.default\Extensions\tabsuspender@michalewiczpiotr.xpi [2019

-07-29]
FF Extension: (Video DownloadHelper) - C:\Users\Michelle - Alexis\AppData\Roaming

\Mozilla\Firefox\Profiles\go2b5zdi.default\Extensions\{b9db16a4-6edc-47ec-a1f4-

b86292ed211d}.xpi [2019-07-08]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\Michelle - Alexis\AppData

\Roaming\Mozilla\Firefox\Profiles\go2b5zdi.default\Extensions\{d10d0bf8-f5b5-c8b4-

a8b2-2b9879e08c5d}.xpi [2019-07-31]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash

\NPSWF64_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft

Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft

Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:

\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation ->

Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll

[2017-11-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash

\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft

Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft

Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:

\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation ->

Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files

(x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation

-> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files

(x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation ->

Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files

(x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google

LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files

(x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google

LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC

\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC

\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC

\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC

\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader

\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref

\eset_security_config_overlay.js [2019-07-31]
 
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default ->

"hxxps://www.ratemycock.com/","hxxps://chaturbate.com/","hxxps://www.cam4.com/","hxxps

://www.streamatemodels.com/","hxxps://host.imlive.com/hostmembers.asp?

func=login","hxxps://www.cammodeldirectory.com/","hxxps://accounts.skyprivate.com/","h

xxps://www.myfreecams.com/modelweb/","hxxps://twitter.com/","hxxps://www.facebook.com/

","hxxps://www.talktome.com/?

access","hxxps://www.stripperweb.com/","hxxps://verifiedcall.com/profiles/SensualFreeS

pirit","hxxps://www.phrendly.com/browse?

min_age=18&max_age=99&languages=English&available=phone

%2Cvideo&sort_by=334","hxxps://www.niteflirt.com/account","hxxps://models.streamray.co

m/","hxxps://www.livecammodelshows.com/model_administration/models.php","hxxps://www.g

irlsprivatecam.com/login/","hxxps://www.girlsprivatecam.com/","hxxps://www.livecammode

lshows.com/","hxxps://www.sextpanther.com/"
CHR DefaultSearchKeyword: Default -> lp
CHR Profile: C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User Data\Default

[2019-07-31]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Michelle - Alexis\AppData

\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif

[2019-07-07]
CHR Extension: (Google Drive) - C:\Users\Michelle - Alexis\AppData\Local\Google

\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-12]
CHR Extension: (ColorZilla) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome

\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2017-06-25]
CHR Extension: (YouTube) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-12]
CHR Extension: (Nimbus Screenshot & Screen Video Recorder) - C:\Users\Michelle -

Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions

\bpconcjcammlapcogcnnelfmaeghhagj [2019-06-03]
CHR Extension: (Dashlane - Password Manager) - C:\Users\Michelle - Alexis\AppData

\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg

[2019-07-19]
CHR Extension: (Helium Backup) - C:\Users\Michelle - Alexis\AppData\Local\Google

\Chrome\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2018-07-13]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Michelle - Alexis\AppData

\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd

[2019-07-29]
CHR Extension: (Grammarly for Chrome) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2019-07

-31]
CHR Extension: (Video DownloadHelper) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2019-06

-28]
CHR Extension: (PlayTube) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome

\User Data\Default\Extensions\mgcacknkafhdpbnfiokajkfcaldpdnbl [2018-05-28]
CHR Extension: (Awesome Screenshot: Screen Video Recorder) - C:\Users\Michelle -

Alexis\AppData\Local\Google\Chrome\User Data\Default\Extensions

\nlipoenfbbikpbjkfpfillcgkoblgpmj [2019-07-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04

-11]
CHR Extension: (Gmail) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06

-06]
CHR Profile: C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User Data\Profile

1 [2018-10-15]
CHR Extension: (Slides) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-24]
CHR Extension: (Docs) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-24]
CHR Extension: (Google Drive) - C:\Users\Michelle - Alexis\AppData\Local\Google

\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-08]
CHR Extension: (YouTube) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-24]
CHR Extension: (Sheets) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-24]
CHR Extension: (Google Docs Offline) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-

10-08]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Michelle - Alexis\AppData

\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd

[2018-10-09]
CHR Extension: (Grammarly for Chrome) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Profile 1\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2018-

10-08]
CHR Extension: (Awesome Screenshot: Screen Video Recorder) - C:\Users\Michelle -

Alexis\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions

\nlipoenfbbikpbjkfpfillcgkoblgpmj [2018-09-24]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-

09-24]
CHR Extension: (Gmail) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-09-24]
CHR Extension: (Chrome Media Router) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-

09-24]
CHR Profile: C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User Data\Profile

2 [2018-10-08]
CHR Extension: (Slides) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-24]
CHR Extension: (Docs) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-24]
CHR Extension: (Google Drive) - C:\Users\Michelle - Alexis\AppData\Local\Google

\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-27]
CHR Extension: (YouTube) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-24]
CHR Extension: (Sheets) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-24]
CHR Extension: (Google Docs Offline) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-

09-24]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Michelle - Alexis\AppData

\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd

[2018-09-24]
CHR Extension: (Grammarly for Chrome) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Profile 2\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2018-

09-27]
CHR Extension: (Awesome Screenshot: Screen Video Recorder) - C:\Users\Michelle -

Alexis\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions

\nlipoenfbbikpbjkfpfillcgkoblgpmj [2018-09-24]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-

09-24]
CHR Extension: (Gmail) - C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User

Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-09-24]
CHR Extension: (Chrome Media Router) - C:\Users\Michelle - Alexis\AppData\Local

\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-

09-24]
CHR Profile: C:\Users\Michelle - Alexis\AppData\Local\Google\Chrome\User Data\System

Profile [2018-10-08]

Opera:
=======
OPR StartupUrls:

"hxxp://www.pandora.com/","hxxps://textfree.us/","hxxps://login.live.com/","hxxps://ww

w.textnow.com/","hxxps://www.talktome.com/women/category/all/adult-only/available/?

is_online=1&is_textable=1&is_chatable=1","hxxps://profiles.skyprivate.com/models/age/4

8-60/gender/women/online/","hxxps://streamate.com/"
OPR Extension: (Awesome Screenshot: Capture & Annotate) - C:\Users\Michelle - Alexis

\AppData\Roaming\Opera Software\Opera Stable\Extensions

\foobgjfmnkeainefnnoeghobcdcidhme [2016-05-12]
OPR Extension: (Nimbus Screenshot & Screen Video Recorder) - C:\Users\Michelle -

Alexis\AppData\Roaming\Opera Software\Opera Stable\Extensions

\gjpihpkhgfngnbhhfdehlcmgfahbciip [2019-02-18]
OPR Extension: (LastPass: Free Password Manager) - C:\Users\Michelle - Alexis\AppData

\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo

[2019-07-29]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\Michelle - Alexis\AppData

\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak

[2019-07-19]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Michelle - Alexis\AppData

\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp

[2019-05-15]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The

file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [246784 2015-08-04]

(Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun

\OfficeClickToRun.exe [11413600 2019-06-26] (Microsoft Corporation -> Microsoft

Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-

07] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08

-07] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-07-30] (Dropbox, Inc -> Dropbox,

Inc.)
R2 DellDigitalDelivery; C:\Program Files (x86)\Dell Digital Delivery

\DeliveryService.exe [162816 2011-10-26] (Dell Products, LP.) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2428848 2019-07-28] (ESET,

spol. s r.o. -> ESET)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo

\FMSISvc.exe [342456 2018-02-06] (FUTUREMARK INC -> Futuremark)
R2 SpliCamService; C:\Program Files (x86)\SplitCam\SplitCamService.exe [321056 2017-

08-21] (OMT-LIDER, TOV -> SplitCam Co.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn

\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU

Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11665240

2019-02-26] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27]

(Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The

file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [21622784 2015-08-04] (Microsoft

Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [665088 2015-08-04] (Microsoft

Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2015-07-15]

(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung

Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 e1kexpress; C:\Windows\System32\DRIVERS\e1k60x64.sys [220672 2009-06-10] (Microsoft

Windows -> Intel Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149144 2019-07-28] (ESET, spol. s

r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [102464 2019-07-28] (ESET, spol. s

r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [189232 2019-07-28] (ESET, spol. s

r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [50488 2019-07-28] (ESET, spol. s

r.o. -> ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [76896 2019-07-28] (ESET, spol. s r.o.

-> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [61360 2019-07-28] (ESET, spol. s

r.o. -> ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [113336 2019-07-28] (ESET, spol. s

r.o. -> ESET)
R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTDVHD64.sys [3008144 2012-11-03]

(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 PortTalk; C:\Windows\SysWOW64\Drivers\PortTalk.sys [3567 2002-01-12] (Beyond Logic

hxxp://www.beyondlogic.org) [File not signed]
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd

-> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd

-> )
R3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2016-08-02]

(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37600 2016

-08-02] (OMT-LIDER, TOV -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung

Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-05-12] (OpenVPN

Technologies, Inc. -> The OpenVPN Project)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01]

(Empty Loop -> )
R3 verysplit; C:\Windows\System32\DRIVERS\verysplit_x64.sys [80128 2016-06-20]

(Verysoft LLC -> Verysoft)
R3 VSAudio; C:\Windows\System32\DRIVERS\vsaudio_x64.sys [18944 2016-06-20] (Verysoft

LLC -> Verysoft)
S3 cpuz144; \??\C:\Windows\temp\cpuz144\cpuz144_x64.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 efavdrv; \??\C:\Windows\system32\drivers\efavdrv.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The

file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-31 23:02 - 2019-07-31 23:02 - 000000000 ____D C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Dropbox
2019-07-30 15:19 - 2019-07-30 15:19 - 000051024 _____ (Dropbox, Inc.) C:\Windows

\system32\DbxSvc.exe
2019-07-30 15:19 - 2019-07-30 15:19 - 000047600 _____ (Dropbox, Inc.) C:\Windows

\system32\Drivers\dbx-stable.sys
2019-07-30 15:19 - 2019-07-30 15:19 - 000047600 _____ (Dropbox, Inc.) C:\Windows

\system32\Drivers\dbx-dev.sys
2019-07-30 15:19 - 2019-07-30 15:19 - 000047600 _____ (Dropbox, Inc.) C:\Windows

\system32\Drivers\dbx-canary.sys
2019-07-29 13:45 - 2019-07-29 13:45 - 000000000 ____D C:\Users\Michelle - Alexis

\Documents\Any Video Converter Professional
2019-07-29 13:44 - 2019-07-29 13:44 - 000001251 _____ C:\Users\Michelle - Alexis

\Desktop\Any Video Converter Professional.lnk
2019-07-29 13:44 - 2019-07-29 13:44 - 000000000 ____D C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Anvsoft
2019-07-21 21:57 - 2019-07-21 21:57 - 000000000 ____D C:\Users\Michelle - Alexis

\.cache
2019-07-19 18:32 - 2019-07-19 18:32 - 000002378 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Word.lnk
2019-07-19 18:32 - 2019-07-19 18:32 - 000002377 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\PowerPoint.lnk
2019-07-19 18:32 - 2019-07-19 18:32 - 000002341 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Access.lnk
2019-07-19 18:32 - 2019-07-19 18:32 - 000002340 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Excel.lnk
2019-07-19 18:32 - 2019-07-19 18:32 - 000002334 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Outlook.lnk
2019-07-19 18:32 - 2019-07-19 18:32 - 000002328 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Publisher.lnk
2019-07-19 18:32 - 2019-07-19 18:32 - 000002320 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-07-19 18:32 - 2019-07-19 18:32 - 000000000 ____D C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Microsoft Office Tools
2019-07-10 15:02 - 2019-07-27 22:18 - 000000000 ____D C:\Program Files (x86)\Mozilla

Firefox
2019-07-10 10:14 - 2019-06-28 08:24 - 000887808 _____ (Microsoft Corporation) C:

\Windows\system32\wlansvc.dll
2019-07-10 10:14 - 2019-06-28 08:24 - 000448512 _____ (Microsoft Corporation) C:

\Windows\system32\wlansec.dll
2019-07-10 10:14 - 2019-06-28 08:24 - 000414208 _____ (Microsoft Corporation) C:

\Windows\system32\wlanmsm.dll
2019-07-10 10:14 - 2019-06-28 08:24 - 000118784 _____ (Microsoft Corporation) C:

\Windows\system32\wlanhlp.dll
2019-07-10 10:14 - 2019-06-28 08:24 - 000113664 _____ (Microsoft Corporation) C:

\Windows\system32\wlanapi.dll
2019-07-10 10:14 - 2019-06-28 08:23 - 000428032 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wlanmsm.dll
2019-07-10 10:14 - 2019-06-28 08:23 - 000392704 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wlansec.dll
2019-07-10 10:14 - 2019-06-28 08:23 - 000083968 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wlanhlp.dll
2019-07-10 10:14 - 2019-06-28 08:23 - 000080896 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wlanapi.dll
2019-07-10 10:14 - 2019-06-21 06:09 - 000806400 _____ (Microsoft Corporation) C:

\Windows\system32\usp10.dll
2019-07-10 10:14 - 2019-06-21 06:05 - 000628224 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\usp10.dll
2019-07-10 10:14 - 2019-06-21 05:44 - 003229696 _____ (Microsoft Corporation) C:

\Windows\system32\win32k.sys
2019-07-10 10:14 - 2019-06-21 04:41 - 001251840 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\DWrite.dll
2019-07-10 10:14 - 2019-06-20 12:11 - 000396896 _____ (Microsoft Corporation) C:

\Windows\system32\iedkcs32.dll
2019-07-10 10:14 - 2019-06-20 11:15 - 000348976 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\iedkcs32.dll
2019-07-10 10:14 - 2019-06-19 06:06 - 006135296 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mstscax.dll
2019-07-10 10:14 - 2019-06-19 04:52 - 007081984 _____ (Microsoft Corporation) C:

\Windows\system32\mstscax.dll
2019-07-10 10:14 - 2019-06-18 09:41 - 001649664 _____ (Microsoft Corporation) C:

\Windows\system32\DWrite.dll
2019-07-10 10:14 - 2019-06-18 07:34 - 025730560 _____ (Microsoft Corporation) C:

\Windows\system32\mshtml.dll
2019-07-10 10:14 - 2019-06-18 07:21 - 002724864 _____ (Microsoft Corporation) C:

\Windows\system32\mshtml.tlb
2019-07-10 10:14 - 2019-06-18 07:21 - 000004096 _____ (Microsoft Corporation) C:

\Windows\system32\ieetwcollectorres.dll
2019-07-10 10:14 - 2019-06-18 07:09 - 002903552 _____ (Microsoft Corporation) C:

\Windows\system32\iertutil.dll
2019-07-10 10:14 - 2019-06-18 07:08 - 000066560 _____ (Microsoft Corporation) C:

\Windows\system32\iesetup.dll
2019-07-10 10:14 - 2019-06-18 07:07 - 000578560 _____ (Microsoft Corporation) C:

\Windows\system32\vbscript.dll
2019-07-10 10:14 - 2019-06-18 07:07 - 000417280 _____ (Microsoft Corporation) C:

\Windows\system32\html.iec
2019-07-10 10:14 - 2019-06-18 07:07 - 000088064 _____ (Microsoft Corporation) C:

\Windows\system32\MshtmlDac.dll
2019-07-10 10:14 - 2019-06-18 07:07 - 000048640 _____ (Microsoft Corporation) C:

\Windows\system32\ieetwproxystub.dll
2019-07-10 10:14 - 2019-06-18 07:00 - 000054784 _____ (Microsoft Corporation) C:

\Windows\system32\jsproxy.dll
2019-07-10 10:14 - 2019-06-18 06:59 - 005775872 _____ (Microsoft Corporation) C:

\Windows\system32\jscript9.dll
2019-07-10 10:14 - 2019-06-18 06:59 - 000034304 _____ (Microsoft Corporation) C:

\Windows\system32\iernonce.dll
2019-07-10 10:14 - 2019-06-18 06:57 - 000615936 _____ (Microsoft Corporation) C:

\Windows\system32\ieui.dll
2019-07-10 10:14 - 2019-06-18 06:56 - 020274688 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mshtml.dll
2019-07-10 10:14 - 2019-06-18 06:56 - 000790528 _____ (Microsoft Corporation) C:

\Windows\system32\jscript.dll
2019-07-10 10:14 - 2019-06-18 06:56 - 000144384 _____ (Microsoft Corporation) C:

\Windows\system32\ieUnatt.exe
2019-07-10 10:14 - 2019-06-18 06:56 - 000116224 _____ (Microsoft Corporation) C:

\Windows\system32\ieetwcollector.exe
2019-07-10 10:14 - 2019-06-18 06:55 - 000814080 _____ (Microsoft Corporation) C:

\Windows\system32\jscript9diag.dll
2019-07-10 10:14 - 2019-06-18 06:51 - 002724864 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mshtml.tlb
2019-07-10 10:14 - 2019-06-18 06:48 - 000969216 _____ (Microsoft Corporation) C:

\Windows\system32\MsSpellCheckingFacility.exe
2019-07-10 10:14 - 2019-06-18 06:45 - 000489984 _____ (Microsoft Corporation) C:

\Windows\system32\dxtmsft.dll
2019-07-10 10:14 - 2019-06-18 06:39 - 000496128 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\vbscript.dll
2019-07-10 10:14 - 2019-06-18 06:39 - 000077824 _____ (Microsoft Corporation) C:

\Windows\system32\JavaScriptCollectionAgent.dll
2019-07-10 10:14 - 2019-06-18 06:39 - 000062464 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\iesetup.dll
2019-07-10 10:14 - 2019-06-18 06:38 - 000341504 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\html.iec
2019-07-10 10:14 - 2019-06-18 06:38 - 000107520 _____ (Microsoft Corporation) C:

\Windows\system32\inseng.dll
2019-07-10 10:14 - 2019-06-18 06:38 - 000087552 _____ (Microsoft Corporation) C:

\Windows\system32\tdc.ocx
2019-07-10 10:14 - 2019-06-18 06:38 - 000047616 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ieetwproxystub.dll
2019-07-10 10:14 - 2019-06-18 06:37 - 000064000 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\MshtmlDac.dll
2019-07-10 10:14 - 2019-06-18 06:35 - 002297344 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\iertutil.dll
2019-07-10 10:14 - 2019-06-18 06:35 - 000199680 _____ (Microsoft Corporation) C:

\Windows\system32\msrating.dll
2019-07-10 10:14 - 2019-06-18 06:34 - 000092160 _____ (Microsoft Corporation) C:

\Windows\system32\mshtmled.dll
2019-07-10 10:14 - 2019-06-18 06:32 - 000315392 _____ (Microsoft Corporation) C:

\Windows\system32\dxtrans.dll
2019-07-10 10:14 - 2019-06-18 06:32 - 000047104 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\jsproxy.dll
2019-07-10 10:14 - 2019-06-18 06:32 - 000030720 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\iernonce.dll
2019-07-10 10:14 - 2019-06-18 06:30 - 000476160 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ieui.dll
2019-07-10 10:14 - 2019-06-18 06:30 - 000152064 _____ (Microsoft Corporation) C:

\Windows\system32\occache.dll
2019-07-10 10:14 - 2019-06-18 06:29 - 000663040 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\jscript.dll
2019-07-10 10:14 - 2019-06-18 06:29 - 000620032 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\jscript9diag.dll
2019-07-10 10:14 - 2019-06-18 06:29 - 000115712 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ieUnatt.exe
2019-07-10 10:14 - 2019-06-18 06:21 - 000416256 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\dxtmsft.dll
2019-07-10 10:14 - 2019-06-18 06:21 - 000262144 _____ (Microsoft Corporation) C:

\Windows\system32\webcheck.dll
2019-07-10 10:14 - 2019-06-18 06:20 - 000809472 _____ (Microsoft Corporation) C:

\Windows\system32\msfeeds.dll
2019-07-10 10:14 - 2019-06-18 06:20 - 000728064 _____ (Microsoft Corporation) C:

\Windows\system32\ie4uinit.exe
2019-07-10 10:14 - 2019-06-18 06:19 - 015311872 _____ (Microsoft Corporation) C:

\Windows\system32\ieframe.dll
2019-07-10 10:14 - 2019-06-18 06:17 - 002136064 _____ (Microsoft Corporation) C:

\Windows\system32\inetcpl.cpl
2019-07-10 10:14 - 2019-06-18 06:17 - 001359360 _____ (Microsoft Corporation) C:

\Windows\system32\mshtmlmedia.dll
2019-07-10 10:14 - 2019-06-18 06:16 - 000091136 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\inseng.dll
2019-07-10 10:14 - 2019-06-18 06:16 - 000073216 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\tdc.ocx
2019-07-10 10:14 - 2019-06-18 06:16 - 000060416 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-07-10 10:14 - 2019-06-18 06:13 - 000168960 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\msrating.dll
2019-07-10 10:14 - 2019-06-18 06:13 - 000076288 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mshtmled.dll
2019-07-10 10:14 - 2019-06-18 06:11 - 000279040 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\dxtrans.dll
2019-07-10 10:14 - 2019-06-18 06:10 - 000130048 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\occache.dll
2019-07-10 10:14 - 2019-06-18 06:07 - 004494336 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\jscript9.dll
2019-07-10 10:14 - 2019-06-18 06:06 - 004858880 _____ (Microsoft Corporation) C:

\Windows\system32\wininet.dll
2019-07-10 10:14 - 2019-06-18 06:04 - 000230400 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\webcheck.dll
2019-07-10 10:14 - 2019-06-18 06:03 - 013706752 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ieframe.dll
2019-07-10 10:14 - 2019-06-18 06:03 - 002060288 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\inetcpl.cpl
2019-07-10 10:14 - 2019-06-18 06:03 - 000696320 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\msfeeds.dll
2019-07-10 10:14 - 2019-06-18 06:02 - 001155072 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mshtmlmedia.dll
2019-07-10 10:14 - 2019-06-18 05:55 - 001557504 _____ (Microsoft Corporation) C:

\Windows\system32\urlmon.dll
2019-07-10 10:14 - 2019-06-18 05:44 - 004386304 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wininet.dll
2019-07-10 10:14 - 2019-06-18 05:43 - 000800768 _____ (Microsoft Corporation) C:

\Windows\system32\ieapfltr.dll
2019-07-10 10:14 - 2019-06-18 05:41 - 001323008 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\urlmon.dll
2019-07-10 10:14 - 2019-06-18 05:39 - 000710144 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ieapfltr.dll
2019-07-10 10:14 - 2019-06-13 06:25 - 000160488 _____ (Microsoft Corporation) C:

\Windows\system32\CompatTelRunner.exe
2019-07-10 10:14 - 2019-06-13 06:21 - 000732160 _____ (Microsoft Corporation) C:

\Windows\system32\aeinv.dll
2019-07-10 10:14 - 2019-06-12 18:23 - 004057320 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ntkrnlpa.exe
2019-07-10 10:14 - 2019-06-12 18:23 - 003964136 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ntoskrnl.exe
2019-07-10 10:14 - 2019-06-12 18:22 - 001314104 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ntdll.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 012574208 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wmploc.DLL
2019-07-10 10:14 - 2019-06-12 18:21 - 011411968 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wmp.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 001114112 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\kernel32.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 000666112 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\rpcrt4.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 000617984 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wmdrmsdk.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 000275968 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\KernelBase.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 000179712 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wintrust.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 000172032 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wdigest.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 000096768 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\sspicli.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 000082944 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\bcrypt.dll
2019-07-10 10:14 - 2019-06-12 18:21 - 000005120 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\wow32.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 003207168 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mf.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 001329664 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\quartz.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000988160 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\drmv2clt.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000555520 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\kerberos.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000519680 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\qdvd.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000504320 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\msscp.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000489984 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\evr.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000442368 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\AUDIOKSE.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000406016 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\drmmgrtn.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000354816 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mfplat.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000265216 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\msnetobj.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000261632 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\msv1_0.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000254464 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\schannel.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000223232 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ncrypt.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000146432 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\msaudite.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000141312 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\rpchttp.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000103424 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mfps.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000070144 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\TSpkg.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000060416 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\msobjs.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000046592 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mssign32.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000043008 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\srclient.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000022016 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\secur32.dll
2019-07-10 10:14 - 2019-06-12 18:20 - 000002048 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mferror.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 001177088 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\crypt32.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 001005056 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\cryptui.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000744960 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\blackbox.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000690688 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\adtschema.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000644096 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\advapi32.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000373248 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\AudioEng.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000342528 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\certcli.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000195072 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\AudioSes.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000146432 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\cryptsvc.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000106496 _____ (Microsoft Corporation)
 
C:

\Windows\SysWOW64\cryptnet.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000080896 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\cryptsp.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000050688 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\appidapi.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000017408 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\credssp.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000006656 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\apisetschema.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000005120 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000004608 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000004096 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000004096 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000004096 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000004096 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000004096 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003584 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003584 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003584 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003584 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003584 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003584 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:19 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:15 - 000631680 _____ (Microsoft Corporation) C:

\Windows\system32\winresume.efi
2019-07-10 10:14 - 2019-06-12 18:11 - 000708328 _____ (Microsoft Corporation) C:

\Windows\system32\winload.efi
2019-07-10 10:14 - 2019-06-12 18:11 - 000262376 _____ (Microsoft Corporation) C:

\Windows\system32\hal.dll
2019-07-10 10:14 - 2019-06-12 18:11 - 000153832 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\ksecpkg.sys
2019-07-10 10:14 - 2019-06-12 18:11 - 000094440 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\mountmgr.sys
2019-07-10 10:14 - 2019-06-12 18:10 - 005550824 _____ (Microsoft Corporation) C:

\Windows\system32\ntoskrnl.exe
2019-07-10 10:14 - 2019-06-12 18:10 - 000095464 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\ksecdd.sys
2019-07-10 10:14 - 2019-06-12 18:09 - 001664352 _____ (Microsoft Corporation) C:

\Windows\system32\ntdll.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 014637568 _____ (Microsoft Corporation) C:

\Windows\system32\wmp.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 012574720 _____ (Microsoft Corporation) C:

\Windows\system32\wmploc.DLL
2019-07-10 10:14 - 2019-06-12 18:08 - 000782848 _____ (Microsoft Corporation) C:

\Windows\system32\wmdrmsdk.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000503808 _____ (Microsoft Corporation) C:

\Windows\system32\srcore.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000361984 _____ (Microsoft Corporation) C:

\Windows\system32\wow64win.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000243712 _____ (Microsoft Corporation) C:

\Windows\system32\wow64.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000236032 _____ (Microsoft Corporation) C:

\Windows\system32\srvsvc.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000229376 _____ (Microsoft Corporation) C:

\Windows\system32\wintrust.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000215552 _____ (Microsoft Corporation) C:

\Windows\system32\winsrv.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000210432 _____ (Microsoft Corporation) C:

\Windows\system32\wdigest.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000135680 _____ (Microsoft Corporation) C:

\Windows\system32\sspicli.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000094208 _____ (Microsoft Corporation) C:

\Windows\system32\TSpkg.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000050176 _____ (Microsoft Corporation) C:

\Windows\system32\srclient.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000028672 _____ (Microsoft Corporation) C:

\Windows\system32\sspisrv.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000013312 _____ (Microsoft Corporation) C:

\Windows\system32\wow64cpu.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000013312 _____ (Microsoft Corporation) C:

\Windows\system32\sscore.dll
2019-07-10 10:14 - 2019-06-12 18:08 - 000005120 _____ (Microsoft Corporation) C:

\Windows\system32\msdxm.ocx
2019-07-10 10:14 - 2019-06-12 18:08 - 000005120 _____ (Microsoft Corporation) C:

\Windows\system32\dxmasf.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 004120576 _____ (Microsoft Corporation) C:

\Windows\system32\mf.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 001574400 _____ (Microsoft Corporation) C:

\Windows\system32\quartz.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 001484800 _____ (Microsoft Corporation) C:

\Windows\system32\crypt32.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 001472512 _____ (Microsoft Corporation) C:

\Windows\system32\lsasrv.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 001211392 _____ (Microsoft Corporation) C:

\Windows\system32\rpcrt4.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 001202176 _____ (Microsoft Corporation) C:

\Windows\system32\drmv2clt.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 001162752 _____ (Microsoft Corporation) C:

\Windows\system32\kernel32.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 001068544 _____ (Microsoft Corporation) C:

\Windows\system32\cryptui.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000733184 _____ (Microsoft Corporation) C:

\Windows\system32\kerberos.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000641024 _____ (Microsoft Corporation) C:

\Windows\system32\msscp.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000632320 _____ (Microsoft Corporation) C:

\Windows\system32\evr.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000499712 _____ (Microsoft Corporation) C:

\Windows\system32\AUDIOKSE.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000497664 _____ (Microsoft Corporation) C:

\Windows\system32\drmmgrtn.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000463872 _____ (Microsoft Corporation) C:

\Windows\system32\certcli.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000433152 _____ (Microsoft Corporation) C:

\Windows\system32\mfplat.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000408576 _____ (Microsoft Corporation) C:

\Windows\system32\KernelBase.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000371712 _____ (Microsoft Corporation) C:

\Windows\system32\qdvd.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000345600 _____ (Microsoft Corporation) C:

\Windows\system32\schannel.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000325632 _____ (Microsoft Corporation) C:

\Windows\system32\msnetobj.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000317440 _____ (Microsoft Corporation) C:

\Windows\system32\msv1_0.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000312320 _____ (Microsoft Corporation) C:

\Windows\system32\ncrypt.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000284672 _____ (Microsoft Corporation) C:

\Windows\system32\EncDump.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000206848 _____ (Microsoft Corporation) C:

\Windows\system32\mfps.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000190976 _____ (Microsoft Corporation) C:

\Windows\system32\cryptsvc.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000190464 _____ (Microsoft Corporation) C:

\Windows\system32\rpchttp.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000187904 _____ (Microsoft Corporation) C:

\Windows\system32\pcasvc.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000146432 _____ (Microsoft Corporation) C:

\Windows\system32\msaudite.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000141824 _____ (Microsoft Corporation) C:

\Windows\system32\cryptnet.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000081920 _____ (Microsoft Corporation) C:

\Windows\system32\cryptsp.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000063488 _____ (Microsoft Corporation) C:

\Windows\system32\setbcdlocale.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000060416 _____ (Microsoft Corporation) C:

\Windows\system32\mssign32.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000060416 _____ (Microsoft Corporation) C:

\Windows\system32\msobjs.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000044032 _____ (Microsoft Corporation) C:

\Windows\system32\csrsrv.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000043520 _____ (Microsoft Corporation) C:

\Windows\system32\cryptbase.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000037376 _____ (Microsoft Corporation) C:

\Windows\system32\pcadm.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000028160 _____ (Microsoft Corporation) C:

\Windows\system32\secur32.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000022016 _____ (Microsoft Corporation) C:

\Windows\system32\credssp.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000016384 _____ (Microsoft Corporation) C:

\Windows\system32\ntvdm64.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000011264 _____ (Microsoft Corporation) C:

\Windows\system32\msmmsp.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000009728 _____ (Microsoft Corporation) C:

\Windows\system32\spwmp.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000008704 _____ (Microsoft Corporation) C:

\Windows\system32\pcaevts.dll
2019-07-10 10:14 - 2019-06-12 18:07 - 000002048 _____ (Microsoft Corporation) C:

\Windows\system32\mferror.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000880640 _____ (Microsoft Corporation) C:

\Windows\system32\advapi32.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000842240 _____ (Microsoft Corporation) C:

\Windows\system32\blackbox.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000690688 _____ (Microsoft Corporation) C:

\Windows\system32\adtschema.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000680960 _____ (Microsoft Corporation) C:

\Windows\system32\audiosrv.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000438784 _____ (Microsoft Corporation) C:

\Windows\system32\AudioEng.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000295936 _____ (Microsoft Corporation) C:

\Windows\system32\AudioSes.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000123904 _____ (Microsoft Corporation) C:

\Windows\system32\bcrypt.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000059904 _____ (Microsoft Corporation) C:

\Windows\system32\appidapi.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000034816 _____ (Microsoft Corporation) C:

\Windows\system32\appidsvc.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000008192 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\spwmp.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000006656 _____ (Microsoft Corporation) C:

\Windows\system32\apisetschema.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000006144 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000005120 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000004608 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000004608 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000004096 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000004096 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000004096 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000004096 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000004096 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\msdxm.ocx
2019-07-10 10:14 - 2019-06-12 18:06 - 000004096 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\dxmasf.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003584 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003584 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003584 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003584 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003584 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003584 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003584 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:06 - 000003072 ____H (Microsoft Corporation) C:

\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 18:05 - 000050176 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\rrinstaller.exe
2019-07-10 10:14 - 2019-06-12 18:04 - 000023040 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\mfpmp.exe
2019-07-10 10:14 - 2019-06-12 18:01 - 000663552 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\PEAuth.sys
2019-07-10 10:14 - 2019-06-12 17:55 - 000009728 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\sscore.dll
2019-07-10 10:14 - 2019-06-12 17:54 - 000050176 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\auditpol.exe
2019-07-10 10:14 - 2019-06-12 17:50 - 000055808 _____ (Microsoft Corporation) C:

\Windows\system32\rrinstaller.exe
2019-07-10 10:14 - 2019-06-12 17:49 - 000205312 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\Dism.exe
2019-07-10 10:14 - 2019-06-12 17:49 - 000125952 _____ (Microsoft Corporation) C:

\Windows\system32\audiodg.exe
2019-07-10 10:14 - 2019-06-12 17:49 - 000024576 _____ (Microsoft Corporation) C:

\Windows\system32\mfpmp.exe
2019-07-10 10:14 - 2019-06-12 17:48 - 000025600 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\setup16.exe
2019-07-10 10:14 - 2019-06-12 17:48 - 000014336 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ntvdm64.dll
2019-07-10 10:14 - 2019-06-12 17:48 - 000007680 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\instnm.exe
2019-07-10 10:14 - 2019-06-12 17:48 - 000002048 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\user.exe
2019-07-10 10:14 - 2019-06-12 17:47 - 000036352 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\cryptbase.dll
2019-07-10 10:14 - 2019-06-12 17:46 - 000006144 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 17:46 - 000004608 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 17:46 - 000003584 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 17:46 - 000003072 ____H (Microsoft Corporation) C:

\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-07-10 10:14 - 2019-06-12 17:42 - 000148480 _____ (Microsoft Corporation) C:

\Windows\system32\appidpolicyconverter.exe
2019-07-10 10:14 - 2019-06-12 17:42 - 000064000 _____ (Microsoft Corporation) C:

\Windows\system32\auditpol.exe
2019-07-10 10:14 - 2019-06-12 17:42 - 000062464 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\appid.sys
2019-07-10 10:14 - 2019-06-12 17:42 - 000017920 _____ (Microsoft Corporation) C:

\Windows\system32\appidcertstorecheck.exe
2019-07-10 10:14 - 2019-06-12 17:39 - 000338432 _____ (Microsoft Corporation) C:

\Windows\system32\conhost.exe
2019-07-10 10:14 - 2019-06-12 17:39 - 000129024 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\videoprt.sys
2019-07-10 10:14 - 2019-06-12 17:38 - 000296960 _____ (Microsoft Corporation) C:

\Windows\system32\rstrui.exe
2019-07-10 10:14 - 2019-06-12 17:37 - 000274944 _____ (Microsoft Corporation) C:

\Windows\system32\Dism.exe
2019-07-10 10:14 - 2019-06-12 17:37 - 000011264 _____ (Microsoft Corporation) C:

\Windows\system32\pcawrk.exe
2019-07-10 10:14 - 2019-06-12 17:37 - 000009728 _____ (Microsoft Corporation) C:

\Windows\system32\pcalua.exe
2019-07-10 10:14 - 2019-06-12 17:36 - 000464384 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\srv.sys
2019-07-10 10:14 - 2019-06-12 17:36 - 000406016 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\srv2.sys
2019-07-10 10:14 - 2019-06-12 17:36 - 000291328 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\mrxsmb10.sys
2019-07-10 10:14 - 2019-06-12 17:36 - 000169472 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\srvnet.sys
2019-07-10 10:14 - 2019-06-12 17:36 - 000160768 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\mrxsmb.sys
2019-07-10 10:14 - 2019-06-12 17:36 - 000129536 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\mrxsmb20.sys
2019-07-10 10:14 - 2019-06-12 17:35 - 000112640 _____ (Microsoft Corporation) C:

\Windows\system32\smss.exe
2019-07-10 10:14 - 2019-06-12 17:35 - 000064512 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\amdk8.sys
2019-07-10 10:14 - 2019-06-12 17:35 - 000062464 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\intelppm.sys
2019-07-10 10:14 - 2019-06-12 17:35 - 000060928 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\processr.sys
2019-07-10 10:14 - 2019-06-12 17:35 - 000060928 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\amdppm.sys
2019-07-10 10:14 - 2019-06-12 17:35 - 000044544 _____ (Microsoft Corporation) C:

\Windows\system32\Drivers\npfs.sys
2019-07-10 10:14 - 2019-06-12 17:35 - 000030720 _____ (Microsoft Corporation) C:

\Windows\system32\lsass.exe
2019-07-10 10:14 - 2019-06-11 05:59 - 002863104 _____ (Microsoft Corporation) C:

\Windows\system32\aitstatic.exe
2019-07-10 10:14 - 2019-06-11 05:59 - 001712640 _____ (Microsoft Corporation) C:

\Windows\system32\appraiser.dll
2019-07-10 10:14 - 2019-06-11 05:59 - 000801792 _____ (Microsoft Corporation) C:

\Windows\system32\generaltel.dll
2019-07-10 10:14 - 2019-06-11 05:59 - 000634368 _____ (Microsoft Corporation) C:

\Windows\system32\devinv.dll
2019-07-10 10:14 - 2019-06-11 05:59 - 000501760 _____ (Microsoft Corporation) C:

\Windows\system32\centel.dll
2019-07-10 10:14 - 2019-06-11 05:59 - 000456192 _____ (Microsoft Corporation) C:

\Windows\system32\invagent.dll
2019-07-10 10:14 - 2019-06-11 05:59 - 000315904 _____ (Microsoft Corporation) C:

\Windows\system32\acmigration.dll
2019-07-10 10:14 - 2019-06-11 05:59 - 000257024 _____ (Microsoft Corporation) C:

\Windows\system32\aepic.dll
2019-07-10 10:14 - 2019-06-07 18:18 - 001425920 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\ole32.dll
2019-07-10 10:14 - 2019-06-07 18:18 - 000026112 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\oleres.dll
2019-07-10 10:14 - 2019-06-07 18:08 - 002072576 _____ (Microsoft Corporation) C:

\Windows\system32\ole32.dll
2019-07-10 10:14 - 2019-06-07 18:08 - 000516096 _____ (Microsoft Corporation) C:

\Windows\system32\rpcss.dll
2019-07-10 10:14 - 2019-06-07 18:08 - 000026112 _____ (Microsoft Corporation) C:

\Windows\system32\oleres.dll
2019-07-10 10:14 - 2019-06-07 18:07 - 000008704 _____ (Microsoft Corporation) C:

\Windows\system32\comcat.dll
2019-07-10 10:14 - 2019-06-07 17:55 - 000007168 _____ (Microsoft Corporation) C:

\Windows\SysWOW64\comcat.dll
2019-07-10 10:14 - 2019-06-02 06:50 - 000216576 _____ (Microsoft Corporation) C:

\Windows\system32\rdpclip.exe
2019-07-08 10:12 - 2019-07-23 14:17 - 000000000 ____D C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Skype
2019-07-08 10:12 - 2019-07-08 10:12 - 000001272 _____ C:\Users\Public\Desktop

\Skype.lnk
2019-07-01 17:31 - 2019-07-01 17:31 - 000000001 _____ C:\Users\Michelle - Alexis

\Downloads\Colon.txt
2019-07-01 11:54 - 2019-07-01 11:54 - 000054310 _____ C:\Windows\system32\NOTICE_mod

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-31 23:42 - 2016-11-16 13:21 - 000000000 ____D C:\FRST
2019-07-31 23:37 - 2016-05-16 07:07 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Roaming\qBittorrent
2019-07-31 23:02 - 2016-08-07 21:08 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-07-31 23:00 - 2017-12-01 23:00 - 000696347 _____ C:\Users\Michelle - Alexis

\Network_Meter_Data.js
2019-07-31 22:53 - 2016-08-07 21:08 - 000000930 _____ C:\Windows\Tasks

\DropboxUpdateTaskMachineUA.job
2019-07-31 20:19 - 2018-02-04 21:15 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Roaming\ppmin
2019-07-31 20:15 - 2017-06-29 00:53 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Local\CrashDumps
2019-07-31 20:15 - 2016-05-21 07:19 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Local\ClassicShell
2019-07-31 16:53 - 2016-08-07 21:08 - 000000926 _____ C:\Windows\Tasks

\DropboxUpdateTaskMachineCore.job
2019-07-31 04:30 - 2009-07-14 07:45 - 000022576 ____H C:\Windows\system32\7B296FB0-

376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-07-31 04:30 - 2009-07-14 07:45 - 000022576 ____H C:\Windows\system32\7B296FB0-

376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-07-31 03:47 - 2017-03-08 07:24 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Roaming\obs-studio
2019-07-31 03:36 - 2017-10-22 23:06 - 000000000 ____D C:\Users\Michelle - Alexis

\.fontconfig
2019-07-30 15:31 - 2016-05-12 18:48 - 000003860 _____ C:\Windows\System32\Tasks\Opera

scheduled Autoupdate 1463068136
2019-07-30 15:31 - 2016-05-12 18:48 - 000000000 ____D C:\Program Files (x86)\Opera
2019-07-30 06:18 - 2016-05-12 19:21 - 000000000 ____D C:\Notes
2019-07-29 20:42 - 2019-04-29 15:43 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Roaming\Discord
2019-07-29 18:32 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\rescache
2019-07-29 13:44 - 2019-06-01 02:57 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Roaming\Anvsoft
2019-07-29 13:44 - 2019-06-01 02:57 - 000000000 ____D C:\Program Files (x86)\Anvsoft
2019-07-29 02:00 - 2009-07-14 08:13 - 000786370 _____ C:\Windows

\system32\PerfStringBackup.INI
2019-07-29 02:00 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\inf
2019-07-28 08:19 - 2016-11-19 16:48 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\LocalLow\Mozilla
2019-07-28 07:58 - 2018-02-22 18:14 - 000001964 _____ C:\Users\Michelle - Alexis

\Desktop\Dashlane.lnk
2019-07-28 07:58 - 2017-12-01 22:09 - 000027115 _____ C:\Users\Michelle - Alexis

\IP_Log_Data.js
2019-07-28 07:58 - 2017-03-18 02:02 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Roaming\Dashlane
2019-07-28 07:49 - 2016-05-12 14:58 - 000000000 ____D C:\Program Files

(x86)\TeamViewer
2019-07-28 07:49 - 2016-05-12 13:28 - 000000000 ____D C:\Program Files (x86)\Mozilla

Maintenance Service
2019-07-28 07:49 - 2009-07-14 08:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-07-28 03:42 - 2016-03-29 23:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-07-28 01:12 - 2016-05-16 07:19 - 000000000 ____D C:\Watch (File)
2019-07-28 00:58 - 2018-01-19 16:32 - 000149144 _____ (ESET) C:\Windows

\system32\Drivers\eamonm.sys
2019-07-28 00:58 - 2018-01-19 16:32 - 000113336 _____ (ESET) C:\Windows

\system32\Drivers\epfwwfp.sys
2019-07-28 00:58 - 2018-01-19 16:31 - 000189232 _____ (ESET) C:\Windows

\system32\Drivers\ehdrv.sys
2019-07-28 00:58 - 2018-01-19 16:31 - 000102464 _____ (ESET) C:\Windows

\system32\Drivers\edevmon.sys
2019-07-28 00:58 - 2018-01-19 16:31 - 000076896 _____ (ESET) C:\Windows

\system32\Drivers\epfw.sys
2019-07-28 00:58 - 2018-01-19 16:31 - 000050488 _____ (ESET) C:\Windows

\system32\Drivers\ekbdflt.sys
2019-07-28 00:58 - 2016-04-13 13:31 - 000061360 _____ (ESET) C:\Windows

\system32\Drivers\EpfwLWF.sys
2019-07-27 22:17 - 2018-12-04 01:25 - 000000000 ____D C:\Users\Michelle - Alexis

\Documents\ShareX
2019-07-27 09:10 - 2016-05-16 08:09 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Roaming\vlc
2019-07-21 21:57 - 2016-05-12 07:50 - 000000000 ____D C:\Users\Michelle - Alexis
2019-07-21 00:45 - 2015-01-14 09:08 - 000799564 _____ C:\Windows

\SysWOW64\PerfStringBackup.INI
2019-07-19 18:34 - 2016-05-12 13:26 - 000000000 ____D C:\Users\Michelle - Alexis

\AppData\Local\ElevatedDiagnostics
2019-07-19 18:34 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\system32\NDF
2019-07-19 18:33 - 2018-11-08 00:39 - 000000000 ____D C:\ProgramData\regid.1991-

06.com.microsoft
2019-07-19 18:32 - 2016-05-12 04:39 - 000000000 ____D C:\Program Files (x86)\Microsoft

Office
2019-07-16 01:02 - 2016-03-29 23:46 - 000002186 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Google Chrome.lnk
2019-07-16 01:02 - 2016-03-29 23:46 - 000002145 _____ C:\Users\Public\Desktop\Google

Chrome.lnk
2019-07-11 15:21 - 2018-11-08 00:49 - 000003212 _____ C:\Windows\System32\Tasks

\OneDrive Standalone Update Task-S-1-5-21-4016078423-3760932042-4150441970-1000
2019-07-11 15:21 - 2018-11-08 00:49 - 000002207 _____ C:\Users\Michelle - Alexis

\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2019-07-11 15:21 - 2018-11-08 00:49 - 000000000 ___RD C:\Users\Michelle - Alexis

\OneDrive
2019-07-11 15:13 - 2009-07-14 07:57 - 000001547 _____ C:\ProgramData\Microsoft

\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-07-11 15:10 - 2009-07-14 07:45 - 000439696 _____ C:\Windows\system32\FNTCACHE.DAT
2019-07-11 15:10 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-07-11 15:09 - 2016-05-17 04:48 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-07-11 15:09 - 2016-05-17 04:48 - 000000000 ____D C:\Windows\system32\appraiser
2019-07-11 15:09 - 2009-07-14 06:20 - 000000000 ____D C:\Windows\system32\Dism
2019-07-10 10:20 - 2016-05-15 06:08 - 000000000 ____D C:\Windows\system32\MRT
2019-07-10 10:14 - 2016-05-15 06:08 - 136618864 ____C (Microsoft Corporation) C:

\Windows\system32\MRT.exe
2019-07-09 16:07 - 2016-06-24 09:29 - 000004312 _____ C:\Windows\System32\Tasks\Adobe

Flash Player Updater
2019-07-09 16:07 - 2016-05-12 19:24 - 000004488 _____ C:\Windows\System32\Tasks\Adobe

Flash Player PPAPI Notifier
2019-07-09 16:07 - 2016-03-29 23:48 - 000842296 _____ (Adobe) C:\Windows

\SysWOW64\FlashPlayerApp.exe
2019-07-09 16:07 - 2016-03-29 23:48 - 000175160 _____ (Adobe) C:\Windows

\SysWOW64\FlashPlayerCPLApp.cpl
2019-07-09 16:07 - 2016-03-29 23:48 - 000000000 ____D C:\Windows\system32\Macromed
2019-07-09 15:07 - 2018-03-15 10:07 - 000004500 _____ C:\Windows\System32\Tasks\Adobe

Flash Player NPAPI Notifier
2019-07-07 14:40 - 2018-02-19 18:29 - 000000000 ____D C:\Users\John- ESET\AppData

\Local\ClassicShell
2019-07-07 14:39 - 2018-02-19 20:03 - 000114800 _____ C:\Users\John- ESET\AppData

\Local\GDIPFONTCACHEV1.DAT
2019-07-07 14:39 - 2018-02-19 18:29 - 000000000 ____D C:\Users\John- ESET\AppData

\Local\Sidebar7
2019-07-07 03:44 - 2018-02-19 18:28 - 000000000 ____D C:\Users\John- ESET

==================== Files in the root of some directories ================

2017-12-01 22:09 - 2019-07-28 07:58 - 000027115 _____ () C:\Users\Michelle - Alexis

\IP_Log_Data.js
2017-12-01 23:00 - 2019-07-31 23:00 - 000696347 _____ () C:\Users\Michelle - Alexis

\Network_Meter_Data.js

==================== FLock ================

2016-03-29 23:27 C:\Windows\CSC

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-07-07 03:37
==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-07-2019
Ran by Michelle - Alexis (31-07-2019 23:43:18)
Running from C:\Downloads
Windows 7 Professional Service Pack 1 (X64) (2016-05-12 04:50:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4016078423-3760932042-4150441970-500 - Administrator -

Disabled)
Guest (S-1-5-21-4016078423-3760932042-4150441970-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-4016078423-3760932042-4150441970-1002 - Limited - Enabled)
John- ESET (S-1-5-21-4016078423-3760932042-4150441970-1003 - Limited - Enabled) => C:

\Users\John- ESET
Michelle - Alexis (S-1-5-21-4016078423-3760932042-4150441970-1000 - Administrator -

Enabled) => C:\Users\Michelle - Alexis

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide

them. The adware programs should be uninstalled manually.)

3DMark (HKLM\...\{62A3D06F-97B8-4CD0-9B7F-3B06C4DF377B}) (Version: 2.4.4264.0 -

Futuremark) Hidden
3DMark (HKLM-x32\...\{0034a3c4-a299-491d-b683-791a538a7db4}) (Version: 2.4.4264.0 -

Futuremark)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
8GadgetPack (HKLM-x32\...\{36E60904-D465-40F7-82A7-A9C7A84C29B7}) (Version: 24.0.0 -

8GadgetPack.net)
Adb Run v4.5.4.2 (HKLM-x32\...\Adb Run v4.5.4.2) (Version: v4.5.4.2 - Android +1)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100})

(Version: 19.012.20035 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version:

32.0.0.223 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version:

32.0.0.223 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version:

32.0.0.223 - Adobe)
AMD Catalyst Install Manager (HKLM\...\{7E5DC2C5-115A-322B-976C-219237FAED66})

(Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Any Video Converter Professional 6.3.3 (HKLM-x32\...\Any Video Converter

Professional_is1) (Version: - Any-Video-Converter.com)
Audacity 2.3.1 (HKLM-x32\...\Audacity_is1) (Version: 2.3.1 - Audacity Team)
Broadcom NetXtreme-I Netlink Driver and Management Installer (HKLM\...\{64973F6A-8754

-43D1-BDD0-FC6F0546347B}) (Version: 14.4.4.3 - Broadcom Corporation)
calibre (HKLM-x32\...\{F38BF6AA-9392-41C0-8E78-2F0F7D606011}) (Version: 2.64.0 - Kovid

Goyal)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version:

13.40.836.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM-x32\...\{AF33D0D2-2627-4AC8-8473-FDBB7892129C}) (Version:

8.6.0.2079 - TechSmith Corporation)
Classic Shell (HKLM\...\{383BB30A-B4A7-4666-9A83-22CFA8640097}) (Version: 4.3.0 -

IvoSoft)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902

- Microsoft) Hidden
Dashlane (HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Dashlane) (Version:

6.1929.1.22035 - Dashlane, Inc.)
DaVinci Resolve (HKLM\...\{48FD7BF7-F069-4E10-8F0F-E322DADBBB9F}) (Version: 14.0.0051

- Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{6A8DCCDF-BC76-4964-B429-D74E5FC11E98}) (Version:

1.1.1.0 - Blackmagic Design)
Dell Backup and Recovery Manager (HKLM\...\{50B4B603-A4C6-4739-AE96-6C76A0F8A388})

(Version: 1.3.1 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{31045ECE-019D-4DDF-A5C8-5C51A3FE50EE}) (Version:

1.7.4501.0 - Dell Products, LP)
Discord (HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...\Discord) (Version:

0.0.305 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 78.4.119 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version:

1.3.189.1 - Dropbox, Inc.) Hidden
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 -

Logitech, Inc.) Hidden
ESET Security (HKLM\...\{3EB22EED-2263-4174-9F36-09BD15A7AEF8}) (Version: 12.2.23.0 -

ESET, spol. s r.o.)
FastStone Photo Resizer 3.6 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.6 -

FastStone Soft.)
Futuremark SystemInfo (HKLM-x32\...\{8AD048D8-1975-47F5-800F-15028E84F2C5}) (Version:

5.5.646.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.142 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version:

1.3.34.11 - Google LLC) Hidden
GoTo Opener (HKLM-x32\...\{1F803452-798F-49FB-A5DD-9F527F7017E4}) (Version: 1.0.473 -

LogMeIn, Inc.)
HandBrake 1.2.0 (HKLM-x32\...\HandBrake) (Version: 1.2.0 - )
iCloud (HKLM\...\{694E3E02-E14A-4BB2-A970-CF7F017FD5CC}) (Version: 7.3.0.20 - Apple

Inc.)
IModelPlus (HKLM-x32\...\{5D6A20A9-B0DB-320B-08C2-E6CD904A49F1}) (Version: 1.0.0 -

Donamis LLC) Hidden
IModelPlus (HKLM-x32\...\IModelPlus) (Version: 1.0.0 - Donamis LLC)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-

C6E4FC25798A}) (Version: 7.1.70.1205 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA})

(Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-

B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Jing (HKLM-x32\...\{8C784F8B-89D0-4A59-A000-7EEF129E1574}) (Version: 2.9.15255.1 -

TechSmith Corporation)
JustCamIt 3.0.8 (HKLM-x32\...\JustCamIt3.0.8) (Version: 3.0.8 - iStreaming Networks

LLC)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215})

(Version: 2.40 - Logitech Inc.)
Lovense Browser version 1.0.1.2 (HKLM-x32\...\{EF65AAC0-AC86-4FA6-9A84-1630357761E9}

_is1) (Version: 1.0.1.2 - Hytto Ltd.)
LWS VideoEffects (HKLM\...\{138A4072-9E64-46BD-B5F9-DB2BB395391F}) (Version:

13.30.1379.0 - Logitech) Hidden
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} -

1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version:

16.0.11727.20244 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version:

14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\...

\OneDriveSetup.exe) (Version: 19.103.0527.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version:

5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-

9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-

51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-

1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-

38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-

F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-

30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...

\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft

Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-

35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-

1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-

b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-

719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-

5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-

aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-

78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual

Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft

Corporation)
MiniTool Partition Wizard Free 10.2.3 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-

A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Movavi Video Converter 17 (HKLM-x32\...\Movavi Video Converter 17) (Version: 17.3.0 -

Movavi)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version:

16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version:

16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 68.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 68.0.1 (x64 en-US))

(Version: 68.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version:

68.0.1.7137 - Mozilla)
MP3 Skype recorder (HKLM-x32\...\{66C0348D-0190-4078-927B-A51159E15AD0}) (Version:

4.52.1.0 - Domit LTD)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.0 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000

-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...

\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft

Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-

0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-

0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Opera Stable 62.0.3331.99 (HKLM-x32\...\Opera 62.0.3331.99) (Version: 62.0.3331.99 -

Opera Software)
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN

LLC)
Paltalk Messenger 11.8 (HKLM-x32\...\Paltalk Messenger) (Version: 11.8.659.17893 -

AVM Software Inc.)
PayPerMinute 1.5.3 (only current user) (HKU\S-1-5-21-4016078423-3760932042-4150441970

-1000\...\5225b2c7-7fc7-5d14-901c-fd31e1d55bb3) (Version: 1.5.3 - PPMin Inc)
Performer Application v4 (HKLM-x32\...\{8D893E69-052F-4F66-8BB5-8235D94317FC})

(Version: 4.11.2 - VS Media, Inc.)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Private Internet Access v83 (HKLM-x32\...\{148169C2-5558-4C3E-B38A-7B1813A264CA}_is1)

(Version: 83 - London Trust Media, Inc.)
qBittorrent 4.1.6 (HKLM-x32\...\qBittorrent) (Version: 4.1.6 - The qBittorrent

project)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-

958108FE7DBC}) (Version: 6.0.1.5931 - Realtek Semiconductor Corp.)
Red Light Center (HKLM-x32\...\Red Light Center) (Version: 1.9.4773 - Utherverse

Digital Inc)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-

8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_

{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics

Corporation)
RogueKiller version 12.8.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1)

(Version: 12.8.2.0 - Adlice Software)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version:

2.6.4.17113.1 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A})

(Version: 2.6.4.17113.1 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44})

(Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 12.4.1 - ShareX

Team)
Skype version 8.50 (HKLM-x32\...\Skype_is1) (Version: 8.50 - Skype Technologies S.A.)
SMBroadcast (HKLM-x32\...\{CC523F92-A533-4242-8493-9065B1CBEC6B}) (Version: 1.0.16.0 -

ICF Technology)
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
SplitCam (HKLM-x32\...\SplitCam) (Version: 7.7.4.1 - SplitCam Co)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.18533 - TeamViewer)
TLSkype version 2.0.2 (HKLM\...\{6A5CDBF5-950E-4BE6-AFB2-7C1B57432B37}_is1) (Version:

2.0.2 - TriState Technology Professionals, Inc.)
TLSkype version 2.0.2 (HKLM-x32\...\{6A5CDBF5-950E-4BE6-AFB2-7C1B57432B37}_is1)

(Version: 2.0.2 - TriState Technology Professionals, Inc.)
TreeSize Free V4.2.2 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.2.2 - JAM Software)
UltraFileSearch Lite (HKLM-x32\...\{EA14948B-C591-4AF6-9A32-3F374317D7A9}) (Version:

4.6.0.16023 - Stegisoft) Hidden
UltraFileSearch Lite (HKLM-x32\...\UltraFileSearch Lite) (Version: - Stegisoft)
UltraFileSearch Std (HKLM-x32\...\{EC1DFA01-BA25-4E1C-A101-A8C8EDD821B2}) (Version:

4.9.0.17037 - Stegisoft) Hidden
UltraFileSearch Std (HKLM-x32\...\UltraFileSearch Std) (Version: - Stegisoft)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: -

DownloadHelper)
Verysoft WebCamSplitter (HKLM-x32\...\{C75A1B65-EADD-4CFE-AF32-F3E22A0A0FE0}_is1)

(Version: 1.6.339 - Verysoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.8 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.6.0 - Azureus Software, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 -

Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The

file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4016078423-3760932042-4150441970-1000_Classes\CLSID

\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\Michelle - Alexis

\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release

\Sidebar7.64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-4016078423-3760932042-4150441970-1000_Classes\CLSID

\{25815CC0-43F4-3C75-8C3A-A139D9ADE740}\InprocServer32 -> C:/Users/Michelle -

Alexis/AppData/Local/Microsoft/Windows

Sidebar/Gadgets/Network_Meter_V8.4.gadget/netlib.dll (AddGadgets IT -> Jonathan

Abbott)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-

BA2E9197FF8C} => C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll

[2019-06-06] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-

1DD28605D202} => C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll

[2019-06-06] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-

873BE6890637} => C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll

[2019-06-06] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>

-> No File
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516}

=> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (Ivaylo Beltchev

-> IvoSoft) [File not signed]
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-

BA2E9197FF8C} => C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll

[2019-06-06] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-

1DD28605D202} => C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll

[2019-06-06] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-

873BE6890637} => C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll

[2019-06-06] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-

CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05

-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-

825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30]

(Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program

Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:

\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc

-> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D}

=> C:\Program Files\ESET\ESET Security\shellExt.dll [2019-07-28] (ESET, spol. s r.o.

-> ESET)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17}

=> C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-06]

(Mega Limited -> )
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} =>

C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-01-10]

(Apple Inc. -> Apple Inc.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D}

=> C:\Program Files\ESET\ESET Security\shellExt.dll [2019-07-28] (ESET, spol. s r.o.

-> ESET)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17}

=> C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-06]

(Mega Limited -> )
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No

File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17}

=> C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-06]

(Mega Limited -> )
ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-

035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop ->

)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program

Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:

\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc

-> Dropbox, Inc.)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17}

=> C:\Users\Michelle - Alexis\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-06]

(Mega Limited -> )
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program

Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices,

Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:

\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc

-> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:

\Windows\system32\igfxpph.dll [2015-05-26] (Microsoft Windows Hardware Compatibility

Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program

Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D}

=> C:\Program Files\ESET\ESET Security\shellExt.dll [2019-07-28] (ESET, spol. s r.o.

-> ESET)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:

\Windows\system32\StartMenuHelper64.dll [2016-07-30] (Ivaylo Beltchev -> IvoSoft)

[File not signed]
ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-

035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop ->

)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=

\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM

__InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND

TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate =>

cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

Shortcut: C:\Users\Michelle - Alexis\Desktop\Adb Run.lnk -> C:\adb_run\bin\adb_run.bat

()

ShortcutWithArgument: C:\Users\Michelle - Alexis\Desktop\Michelle Assists You -

Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)

-> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\Michelle - Alexis\Desktop\Person 1 - Chrome.lnk -> C:

\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-

directory="Default"
ShortcutWithArgument: C:\Users\Michelle - Alexis\Desktop\Rapid Financial Solutions -

Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC)

-> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Michelle - Alexis\AppData\Roaming\Microsoft\Windows

\Start Menu\Programs\Chrome Apps\Helium Backup.lnk -> C:\Program Files (x86)\Google

\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-

id=gpglbgbpeobllokpmeagpoagjbfknanl
ShortcutWithArgument: C:\Users\Michelle - Alexis\AppData\Roaming\Microsoft\Internet

Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome

\Application\chrome.exe (Google LLC) -> --disable-background-timer-throttling
ShortcutWithArgument: C:\Users\Michelle - Alexis\AppData\Roaming\Microsoft\Internet

Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5730c40285acfcca\Chromium.lnk

-> C:\Users\Michelle - Alexis\AppData\Local\Lovense\Browser\chrome.exe (The Chromium

Authors) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Public\Desktop\Body Chat.lnk -> C:\Users\Michelle -

Alexis\AppData\Local\Lovense\Browser\chrome.exe (The Chromium Authors) -> --profile-

directory=Default --app-id=cbachaijodpgkhcobkchlmjgbfmcdpkh

==================== Loaded Modules (Whitelisted) ==============

2019-05-03 05:33 - 2019-05-03 05:33 - 007862371 _____ (Adobe Systems Incorporated)

[File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins

\Annots.api
2019-05-03 05:33 - 2019-05-03 05:33 - 002802787 _____ (Adobe Systems Incorporated)

[File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins

\EScript.api
2019-05-03 05:33 - 2019-05-03 05:33 - 000135779 _____ (Adobe Systems Incorporated)

[File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins

\IA32.api
2019-05-03 05:33 - 2019-05-03 05:33 - 000168547 _____ (Adobe Systems Incorporated)

[File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins

\Updater.api
2019-05-03 05:33 - 2019-05-03 05:33 - 000335971 _____ (Adobe Systems Incorporated)

[File not signed] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\plug_ins

\weblink.api
2018-11-08 00:34 - 2018-11-08 00:34 - 000000000 ____L (Microsoft Corporation) C:

\Program Files (x86)\Microsoft Office\root\Client\AppVIsvSubsystems32.dll
2018-11-08 00:33 - 2018-11-08 00:33 - 000000000 ____L (Microsoft Corporation) C:

\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Books:com.dropbox.attributes [168]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The

"AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default

or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-01-13 00:44 - 2019-01-21 22:52 - 000000828 _____ C:\Windows\system32\drivers\etc

\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program

Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files

\Microsoft Shared\Windows Live;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%

\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%

\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin

\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files

(x86)\Calibre2\;C:\Program Files\RogueKiller;C:\Program Files (x86)\Windows Live

\Shared;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files

(x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin

\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Intel

\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program

Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK

\2.0\bin\x64;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static
HKU\S-1-5-21-4016078423-3760932042-4150441970-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 10.0.0.138 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System =>

(ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The

file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft

Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe

(Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{0831D106-AC7A-4C92-A316-53AD81699DE7}] => (Allow) C:\Program Files

\AVAST Software\Avast\ng\vbox\aswFe.exe No File
FirewallRules: [{632BA245-196C-4143-A2F1-43ECA1F2F67F}] => (Allow) C:\Program Files

\AVAST Software\Avast\ng\vbox\aswFe.exe No File
FirewallRules: [{AC08FD1C-1EB4-4062-987C-CAE3E359FE3A}] => (Allow) C:\Program Files

(x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3D816A35-E7B5-4755-8099-07EA8A146EBC}] => (Allow) C:\Program Files

(x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{13DABC9A-9617-45BD-B175-A04C24B32168}] => (Allow) C:\Program Files

(x86)\JustCamIt\JustCamIt 3.0.8\JustCamIt.exe (iStreaming Networks LLC) [File not

signed]
FirewallRules: [{79E32986-08D4-4FD5-924C-58E4E6E40C8E}] => (Allow) C:\Program Files

\Bonjour\mDNSResponder.exe No File
FirewallRules: [{E87DF0BD-BAAD-457E-B792-E4B58B163AEB}] => (Allow) C:\Program Files

\Bonjour\mDNSResponder.exe No File
FirewallRules: [{8A88B521-2E6F-406B-9CD7-91865AFFDB9D}] => (Allow) C:\Program Files

(x86)\Bonjour\mDNSResponder.exe No File
FirewallRules: [{B73C8BE7-634E-4405-8196-79633FE65966}] => (Allow) C:\Program Files

(x86)\Bonjour\mDNSResponder.exe No File
FirewallRules: [{5D163E23-0ADE-4FAD-8E68-9FCEADF640DD}] => (Allow) C:\Program Files

(x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft

Corporation)
FirewallRules: [{A1206FCB-0495-4DAE-997E-D9E3E92BF478}] => (Allow) LPort=2869
FirewallRules: [{CD5568A3-EFBE-411E-AFED-852F065C6983}] => (Allow) LPort=1900
FirewallRules: [{D4834C06-AA5F-4BD5-A518-A8DFEB053437}] => (Allow) C:\Program Files

\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd ->

Blackmagic Design Pty. Ltd.)
FirewallRules: [{1F7C9FA6-6DA8-4C77-A7EA-335D48C22D02}] => (Allow) C:\Program Files

\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{1FF6FF35-BD8B-490D-A40B-27DD0A86AEEE}] => (Allow) C:\Program Files

\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{312D4715-CFBC-49EA-AF93-D14DC363D7DF}] => (Allow) C:\Program Files

\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{4F484A3A-3C2A-4FEE-83A3-32F64E05D46B}] => (Allow) C:\Program Files

\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{D996898C-B2B2-4AC2-AFB2-28033BF43350}] => (Allow) C:\Program Files

\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe () [File not signed]
FirewallRules: [{5EC11AB8-9C3C-4756-AB63-2D2F4CB390A3}] => (Allow) C:\Program Files

\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{EC107A34-A9F1-49C2-9E81-AEA31421017D}] => (Allow) C:\ProgramData

\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
FirewallRules: [{5A1463FB-A502-4988-9308-02CDCCF212CE}] => (Allow) LPort=8317
FirewallRules: [{3B45AF10-AE3C-43D9-8B86-C6052B3A47EE}] => (Allow) C:\Program Files

\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc)
FirewallRules: [{D9D70BAB-8F50-4055-BC0A-EAC4100A1E0C}] => (Allow) C:\Program Files

\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc)
FirewallRules: [{2D78B30F-2B02-4D7A-BB4B-CC8AD61E78C9}] => (Allow) C:\Program Files

\CCleaner\CCUpdate.exe No File
FirewallRules: [{9EDFA067-95BD-4497-8412-0D62EE98DF32}] => (Allow) C:\Program Files

\CCleaner\CCUpdate.exe No File
FirewallRules: [{3C2A17E4-BB55-4608-B9F7-5B17546C6E72}] => (Allow) C:\Program Files

(x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{44676FF4-DFCD-4B30-8465-3D0176C72EA2}] => (Allow) C:\Program Files

(x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{2D49A120-E322-4441-9103-EF5FF89C7EF7}] => (Allow) C:\Program Files

(x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{600F445B-5262-4EFB-863F-ED9B3BAF96F7}] => (Allow) C:\Program Files

(x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{A7C9CEA5-4012-4CF7-962A-9060C669A653}] => (Allow) C:\Program Files

(x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies

S.A.)
FirewallRules: [{1323609F-9D41-4470-B395-E91A35D345C0}] => (Allow) C:\Program Files

(x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies

S.A.)
FirewallRules: [{3D7974E3-C8EE-40E4-9F00-5D0B33CD2CAB}] => (Allow) C:\Program Files

(x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{EB064E11-AFDF-4115-AD85-30CF0B42881D}] => (Allow) C:\Program Files

(x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{998AD57C-C1DF-4701-BC8A-8B322B2658C0}] => (Allow) C:\Program Files

(x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{3BCDE73F-031F-4162-A1D6-E75BD7ACC5BF}] => (Allow) C:\Program Files

(x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{18892A2B-EB37-464B-B59B-611FA35AAEBE}] => (Allow) C:\Program Files

(x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{42BE7E51-36CC-4801-874E-1866F51AA5A9}] => (Allow) C:\Program Files

(x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{DEAFE99F-56B9-4DE6-8DA9-5B3D7C48E901}] => (Allow) C:\Program Files

(x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft

Corporation)
FirewallRules: [{01630658-3824-4BB1-A53F-A3A0E61E9EE0}] => (Allow) C:\Program Files

(x86)\Opera\62.0.3331.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{906ACC21-86DB-4F99-B18F-356AF498BA76}] => (Allow) C:\Program Files

(x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4BB3C0F3-E214-4443-B57E-0AB3187BB2F9}] => (Allow) C:\Program Files

(x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies

S.A.)
FirewallRules: [{89232C79-6A50-45E3-888F-859DC6817152}] => (Allow) C:\Program Files

(x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies

S.A.)
FirewallRules: [{2AE5CBD2-882E-440D-ADA7-D115FADD565C}] => (Allow) C:\Program Files

(x86)\Opera\62.0.3331.99\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{7605682F-0D49-46B9-9E8A-F1E76588E660}] => (Allow) C:\Program Files

(x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

29-07-2019 18:32:14 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/31/2019 11:02:20 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Cannot find object

or property.

Error: (07/31/2019 11:02:20 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Cannot find object

or property.

Error: (07/31/2019 08:19:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program PayPerMinute.exe version 1.5.3.0 stopped interacting with

Windows and was closed. To see if more information about the problem is available,

check the problem history in the Action Center control panel.

Process ID: 3e84

Start Time: 01d547c39e87a523

Termination Time: 6

Application Path: C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe

Report Id:

Error: (07/31/2019 08:15:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PayPerMinute.exe, version: 1.5.3.0, time

stamp: 0x5c9d30e2
Faulting module name: fe58985e-8d2d-4e59-8337-ed39fa3_unloaded, version: 0.0.0.0, time

stamp: 0x5c1f4444
Exception code: 0xc0000005
Fault offset: 0x0f57238e
Faulting process id: 0x1910
Faulting application start time: 0x01d5473ca58ccae3
Faulting application path: C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
Faulting module path: fe58985e-8d2d-4e59-8337-ed39fa3
Report Id: da74128c-b3b6-11e9-82b3-90b11c5bfc1b

Error: (07/31/2019 04:09:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PayPerMinute.exe, version: 1.5.3.0, time

stamp: 0x5c9d30e2
Faulting module name: PayPerMinute.exe, version: 1.5.3.0, time stamp: 0x5c9d30e2
Exception code: 0xc0000005
Fault offset: 0x0009aa09
Faulting process id: 0x3d24
Faulting application start time: 0x01d547160b65d0af
Faulting application path: C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
Faulting module path: C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
Report Id: de0e893d-b32f-11e9-82b3-90b11c5bfc1b

Error: (07/30/2019 11:33:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PayPerMinute.exe, version: 1.5.3.0, time

stamp: 0x5c9d30e2
Faulting module name: 2e791c89-64f8-4f4c-aecf-3464474e5f73.tmp.node, version: 0.0.0.0,

time stamp: 0x5cde6208
Exception code: 0xc0000005
Fault offset: 0x003261be
Faulting process id: 0x4424
Faulting application start time: 0x01d54653cb9824e2
Faulting application path: C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
Faulting module path: \\?\C:\Users\Michelle - Alexis\AppData\Local\Temp\2e791c89-64f8

-4f4c-aecf-3464474e5f73.tmp.node
Report Id: 47cc51e2-b309-11e9-82b3-90b11c5bfc1b

Error: (07/30/2019 12:22:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PayPerMinute.exe, version: 1.5.3.0, time

stamp: 0x5c9d30e2
Faulting module name: AcXtrnal.DLL, version: 6.1.7601.19050, time stamp: 0x563259ff
Exception code: 0xc0000374
Fault offset: 0x00008518
Faulting process id: 0x1924
Faulting application start time: 0x01d545e6c3685c18
Faulting application path: C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
Faulting module path: C:\Windows\AppPatch\AcXtrnal.DLL
Report Id: 083d0f8f-b247-11e9-82b3-90b11c5bfc1b

Error: (07/29/2019 11:22:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PayPerMinute.exe, version: 1.5.3.0, time

stamp: 0x5c9d30e2
Faulting module name: 80fafaac-5bea-406c-91f8-7b1ee9b7ff92.tmp.node, version: 0.0.0.0,

time stamp: 0x5cde6208
Exception code: 0xc0000005
Fault offset: 0x003261be
Faulting process id: 0xf9c
Faulting application start time: 0x01d5450108ad37f6
Faulting application path: C:\Users\Michelle - Alexis\AppData\Local\Programs\ppmin

\PayPerMinute.exe
Faulting module path: \\?\C:\Users\Michelle - Alexis\AppData\Local\Temp\80fafaac-

5bea-406c-91f8-7b1ee9b7ff92.tmp.node
Report Id: fffddd3b-b1d9-11e9-82b3-90b11c5bfc1b


System errors:
=============
Error: (07/29/2019 03:14:53 PM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy

storage could not grow due to a user imposed limit.

Error: (07/28/2019 07:49:31 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 5:44:37 AM on ‎7/‎28/‎2019 was unexpected.

Error: (07/23/2019 03:40:02 PM) (Source: Schannel) (EventID: 4119) (User: NT

AUTHORITY)
Description: The following fatal alert was received: 20.

Error: (07/19/2019 06:37:20 PM) (Source: Service Control Manager) (EventID: 7043)

(User: )
Description: The Group Policy Client service did not shut down properly after

receiving a preshutdown control.

Error: (07/19/2019 06:31:10 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with

DCOM within the required timeout.

Error: (07/11/2019 10:12:54 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (07/09/2019 02:46:17 PM) (Source: Schannel) (EventID: 4119) (User: NT

AUTHORITY)
Description: The following fatal alert was received: 20.

Error: (07/07/2019 03:19:51 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 3:18:10 AM on ‎7/‎7/‎2019 was unexpected.


==================== Memory info ===========================

BIOS: Dell Inc. A23 02/11/2018
Motherboard: Dell Inc. 0D6H9T
Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Percentage of memory in use: 95%
Total physical RAM: 16341.02 MB
Available physical RAM: 800.79 MB
Total Virtual: 32680.18 MB
Available Virtual: 11133 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:217.22 GB) (Free:72.05 GB) NTFS
Drive d: (Recovery) (Fixed) (Total:5.86 GB) (Free:1.53 GB) NTFS
Drive f: (External-HD) (Fixed) (Total:931.41 GB) (Free:47.89 GB) NTFS

\\?\Volume{956252c1-f5ec-11e5-baf0-806e6f6e6963}\ (System) (Fixed) (Total:0.49 GB)

(Free:0.44 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 817F8DA3)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=5.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=217.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: E5C6F453)
Partition 1: (Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
 

Broni

Malware Annihilator
I don't see anything malicious there.
I suggest new topic in Windows forum.