PC is slowing down. Most likely infected. Please help!

JellyJamJohnson · March 2, 2019

I've noticed severe lag in my computer when playing games or loading applications. If someone can scan and help out, that would be appreciated.

nasdaq · March 2, 2019

Hello, Welcome to Malwarebytes.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Please download Malwarebytes Anti-Malware from here

Right-click on the MBAM icon and select Run as administrator to run the tool.
Click Yes to accept any security warnings that may appear.
Once the MBAM dashboard opens, on the right detail pane click on the word "Current" under the Scan Status to update the tool database.
On the left menu pane click the Settings tab, and then select the Protection tab on the top.
Under the Scan Options, turn on the button Scan for rootkits and Scan within archives.
Click the Scan tab on the right detail pane, select Threat Scan and click the Start Scan button
Note: The scan may take some time to finish, so please be patient.
If potential threats are detected, ensure to check mark all the listed items, and click the Quarantine Selected button.
While still on the Scan tab, click the View Report button, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
The log can also be viewed by clicking the log to select it, then clicking the View Report button.

Please post the log for my review.

Note: If asked to restart the computer, please do so immediately.
===

Please download AdwCleaner by Malwarebytes your Desktop.

Close all open programs and internet browsers.
Double click on AdwCleaner.exe to run the tool.
Click the Scan button and wait for the process to complete.
Click the LogFile button and the report will open in Notepad.

IMPORTANT

If you click the Clean button all items listed in the report will be removed.

If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.

Close all open programs and internet browsers.
Double click on AdwCleaner.exe to run the tool.
Click the Scan button and wait for the process to complete.
Check off the element(s) you wish to keep.
Click on the Clean button follow the prompts.
A log file will automatically open after the scan has finished.
Please post the content of that log file with your next answer.
You can find the log file at C:\AdwCleanerCx.txt (x is a number).

===

Download the Farbar Recovery Scan Tool (FRST).
Choose the 32 or 64 bit version for your system.
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

How to attach a file to your reply:
In the Reply section in the bottom of the topic Click the "more reply Options" button.

Attach the file.
Select the "Choose a File" navigate to the location of the File.
Click the file you wish to Attach.
Click Attach this file.
Click the Add reply button.
===

Please post the logs for my review.

Let me know what problems persists.

Wait for further instructions

nasdaq · March 8, 2019

Are you still with us?

JellyJamJohnson · March 8, 2019

Yes. Sorry for disappearing. Here's the scan from Malwarebytes:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 3/8/19
Scan Time: 3:10 PM
Log File: 2865657a-41de-11e9-93b1-1062e5e0fbc2.json

-Software Information-
Version: 3.7.1.2839
Components Version: 1.0.538
Update Package Version: 1.0.9602
License: Trial

-System Information-
OS: Windows 10 (Build 17763.348)
CPU: x64
File System: NTFS
User: LAPTOP-EI55CAH0\BIG O

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 275206
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 10 min, 50 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)

(end)

Then, here's the log from AdwCleaner:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build:    01-30-2019
# Database: 2019-03-04.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    03-08-2019
# Duration: 00:00:07
# OS:       Windows 10 Home
# Cleaned: 1
# Failed:   0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Blackjack +.lnk

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1327 octets] - [08/03/2019 15:49:04]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

FRST.txt ------------------------------------------------------------------------------------------

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03.03.2019
Ran by BIG O (administrator) on LAPTOP-EI55CAH0 (08-03-2019 15:54:52)
Running from C:\Users\BIG O\Desktop
Loaded Profiles: BIG O (Available Profiles: BIG O)
Platform: Windows 10 Home Version 1809 17763.348 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki128916.inf_amd64_3509e1eb83b83cfb\igfxCUIService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki128916.inf_amd64_3509e1eb83b83cfb\IntelCpHDCPSvc.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki128916.inf_amd64_3509e1eb83b83cfb\IntelCpHeciSvc.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\mmsshost\MMSSHOST.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\mfeav\MfeAVSvc.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\VSCore_18_12\mcapexe.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\mcafee\amcore\mcshield.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki128916.inf_amd64_3509e1eb83b83cfb\igfxEM.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(HP Inc. -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\csp\3.1.160.0\McCSPServiceHost.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => %ProgramFiles%\Elantech\ETDCtrl.exe
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-09-11] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [709152 2018-03-22] (HP Inc. -> HP Inc.)
HKLM\...\Drivers32: [VIDC.RTV1] => c:\windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.10.10.1 8.8.8.8
Tcpip\..\Interfaces\{70f500e1-65f0-4657-9bf0-9327e8419ca1}: [DhcpNameServer] 10.10.10.1 8.8.8.8

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-3861241854-1628855769-3286695407-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-3861241854-1628855769-3286695407-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-09-27] (HP Inc. -> HP Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-09-27] (HP Inc. -> HP Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files\mcafee\msc\mcsniepl64.dll [2019-01-07] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files (x86)\mcafee\msc\mcsniepl.dll [2019-01-07] (McAfee, Inc. -> McAfee, Inc.)

FireFox:
========
FF DefaultProfile: ryikcdld.default
FF ProfilePath: C:\Users\BIG O\AppData\Roaming\Mozilla\Firefox\Profiles\ryikcdld.default [2019-03-08]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => not found
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2019-03-07] [Legacy] [not signed]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\program files\mcafee\msc\npmcsnffpl64.dll [2019-01-07] (McAfee, Inc. -> )
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\program files (x86)\mcafee\msc\npmcsnffpl.dll [2019-01-07] (McAfee, Inc. -> )

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1855976 2019-01-24] (Intel Corporation -> Intel Corporation)
R2 ETDService; C:\WINDOWS\System32\ETDService.exe [237464 2019-03-07] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.)
S4 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1322632 2017-12-13] (HP Inc. -> HP Inc.)
S4 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [477184 2017-10-06] (HP Inc. -> HP Inc.)
S4 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1075744 2017-10-11] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc. -> HP Inc.)
S4 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2593848 2018-03-15] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17440 2018-09-11] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\System32\ibtsiva.exe [541896 2018-07-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [743728 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [720184 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [214672 2018-01-31] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_18_12\McApExe.exe [745880 2019-01-08] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.1.160.0\\McCSPServiceHost.exe [2158952 2018-12-17] (McAfee, Inc. -> McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [371840 2018-12-05] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [604216 2018-12-05] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\windows\system32\mfevtps.exe [509728 2018-12-05] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1692552 2018-12-19] (McAfee, Inc. -> McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265824 2018-04-17] (Intel Corporation -> )
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1333064 2018-10-26] (McAfee, Inc. -> McAfee, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268360 2018-09-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
S4 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1517416 2018-03-26] (WildTangent Inc -> )
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3848288 2018-04-17] (Intel Corporation -> Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [55696 2018-08-31] (HP Inc. -> HP)
R3 AmPeStorU; C:\WINDOWS\system32\drivers\AmPeStorU.sys [128448 2018-04-02] (Alcorlink Corp. -> Generic)
S3 BrSerIb; C:\WINDOWS\system32\DRIVERS\BrSerIb.sys [95344 2013-05-22] (Brother Industries, Ltd. -> Brother Industries Ltd.)
S3 BrUsbSIb; C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys [21872 2013-05-22] (Brother Industries, Ltd. -> Brother Industries Ltd.)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77144 2018-12-10] (McAfee, Inc. -> McAfee, LLC)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [78680 2019-01-24] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [71000 2019-01-24] (Intel Corporation -> Intel Corporation)
S3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [30264 2019-02-06] (Disc Soft Ltd -> Disc Soft Ltd)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [402264 2019-01-24] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [34200 2019-03-07] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [218408 2018-12-24] (McAfee, Inc. -> McAfee, Inc.)
R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [42384 2018-08-31] (HP Inc. -> HP)
S3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [123544 2017-10-15] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [967808 2018-09-11] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [72248 2018-03-15] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [207384 2018-07-17] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1214752 2019-01-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [198512 2019-03-08] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [127136 2019-03-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [72864 2019-03-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-03-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [114040 2019-03-08] (Malwarebytes Corporation -> Malwarebytes)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [510808 2018-12-10] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [373592 2018-12-10] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85928 2018-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [516952 2018-12-10] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [980824 2018-12-10] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [563728 2018-11-19] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109072 2018-11-19] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [117592 2018-12-10] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [253784 2018-12-10] (McAfee, Inc. -> McAfee, LLC)
U5 Netwtw06; C:\Windows\System32\Drivers\Netwtw06.sys [8742936 2018-04-04] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw08; C:\WINDOWS\system32\DRIVERS\Netwtw08.sys [8972984 2018-10-12] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_a6d1704585575e53\nvlddmkm.sys [17212744 2018-08-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1010648 2017-10-30] (Realtek Semiconductor Corp. -> Realtek )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-03-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-03-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-03-07] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35360 2018-09-13] (HP Inc. -> HP)
U3 aspnet_state; no ImagePath
S3 H2OFFT; \SystemRoot\System32\drivers\H2OFFT64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-08 15:54 - 2019-03-08 15:56 - 000019895 _____ C:\Users\BIG O\Desktop\FRST.txt
2019-03-08 15:54 - 2019-03-08 15:54 - 000000000 ____D C:\Users\BIG O\Desktop\FRST-OlderVersion
2019-03-08 15:54 - 2019-03-08 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2019-03-08 15:54 - 2019-03-08 15:54 - 000000000 ____D C:\FRST
2019-03-08 15:53 - 2019-03-08 15:54 - 002434560 _____ (Farbar) C:\Users\BIG O\Desktop\FRST64.exe
2019-03-08 15:52 - 2019-03-08 15:52 - 000001493 _____ C:\Users\BIG O\Desktop\AdwCleaner[C00].txt
2019-03-08 15:51 - 2019-03-08 15:51 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-03-08 15:51 - 2019-03-08 15:51 - 000127136 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-03-08 15:51 - 2019-03-08 15:51 - 000114040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-03-08 15:51 - 2019-03-08 15:51 - 000072864 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-03-08 15:48 - 2019-03-08 15:49 - 000000000 ____D C:\AdwCleaner
2019-03-08 15:48 - 2019-03-08 15:48 - 007316688 _____ (Malwarebytes) C:\Users\BIG O\Downloads\adwcleaner_7.2.7.0.exe
2019-03-08 15:47 - 2019-03-08 15:47 - 000001230 _____ C:\Users\BIG O\Desktop\Scan.txt
2019-03-08 12:18 - 2019-03-08 13:58 - 000003606 _____ C:\WINDOWS\System32\Tasks\McAfee DAT Built in test
2019-03-08 12:13 - 2019-03-08 12:25 - 000000000 ____D C:\Users\BIG O\AppData\Local\NVIDIA Corporation
2019-03-08 12:13 - 2019-03-08 12:13 - 000000000 ____D C:\Users\BIG O\AppData\Local\NVIDIA
2019-03-08 12:09 - 2018-07-20 01:44 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2019-03-08 12:08 - 2019-03-08 12:08 - 000000000 ____D C:\WINDOWS\LastGood
2019-03-08 12:07 - 2018-08-23 01:37 - 013732120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-03-08 12:07 - 2018-08-23 01:37 - 011276424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-03-08 12:07 - 2018-08-23 01:37 - 001420648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-03-08 12:07 - 2018-08-23 01:37 - 001093632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-03-08 12:07 - 2018-08-23 01:37 - 000628552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-03-08 12:07 - 2018-08-23 01:37 - 000518832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 040346984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 035250184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 031250688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 025966544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 017757816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 015172032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 004859424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 004352792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 004129504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 003768656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 002015184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439907.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 001564520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 001467728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439907.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 001358896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 001349376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 001218056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 001159096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 001071560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 001065864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 000906608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 000816384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-03-08 12:07 - 2018-08-23 01:36 - 000654936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-03-08 11:45 - 2019-03-08 15:50 - 000000000 ____D C:\ProgramData\NVIDIA
2019-03-08 11:45 - 2019-03-08 12:09 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-03-08 11:45 - 2019-03-08 12:08 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2019-03-08 11:45 - 2019-03-08 12:07 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-03-08 11:45 - 2018-08-21 05:15 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2019-03-08 11:45 - 2018-08-21 05:14 - 005947600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2019-03-08 11:45 - 2018-08-21 05:14 - 002612264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2019-03-08 11:45 - 2018-08-21 05:14 - 001767632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2019-03-08 11:45 - 2018-08-21 05:14 - 000634352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2019-03-08 11:45 - 2018-08-21 05:14 - 000450768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2019-03-08 11:45 - 2018-08-21 05:14 - 000124216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2019-03-08 11:45 - 2018-08-21 05:14 - 000083440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2019-03-08 11:45 - 2018-08-02 17:32 - 008273432 _____ C:\WINDOWS\system32\nvcoproc.bin
2019-03-08 11:45 - 2018-07-04 03:40 - 000551840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-03-08 11:45 - 2018-07-04 03:40 - 000457144 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-03-08 11:44 - 2019-03-08 12:09 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-03-08 11:44 - 2019-03-08 11:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2019-03-08 11:40 - 2019-03-08 11:59 - 639243736 _____ (Hewlett-Packard ) C:\Users\BIG O\Downloads\sp92917.exe
2019-03-08 11:34 - 2019-03-08 11:36 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2019-03-08 11:32 - 2019-03-08 11:32 - 000000000 ____D C:\WINDOWS\pss
2019-03-08 11:31 - 2019-03-08 11:31 - 000000000 ____D C:\Users\BIG O\Desktop\DDU v18.0.0.9
2019-03-08 11:30 - 2019-03-08 11:30 - 001228919 _____ C:\Users\BIG O\Downloads\[Guru3D.com]-DDU.zip
2019-03-08 11:22 - 2019-03-08 11:22 - 000000000 ___HD C:\$SysReset
2019-03-07 17:07 - 2019-03-07 17:07 - 000000000 ____D C:\Users\BIG O\Downloads\Pokemon Battle Revolution
2019-03-07 17:06 - 2019-03-07 17:06 - 003686799 _____ C:\Users\BIG O\Downloads\Pokemon Battle Revolution.zip
2019-03-07 15:06 - 2019-03-07 15:05 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-03-07 14:42 - 2019-03-08 11:34 - 000198512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-03-07 14:31 - 2019-03-08 12:22 - 000000000 ____D C:\Users\BIG O\AppData\Local\CrashDumps
2019-03-07 14:19 - 2019-03-08 12:09 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-07 14:19 - 2019-03-08 12:09 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-07 14:19 - 2019-03-08 12:09 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-07 14:19 - 2019-03-08 12:09 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-07 14:19 - 2019-03-08 12:09 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-07 14:19 - 2019-03-08 12:09 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-07 14:19 - 2019-03-08 12:09 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-07 14:17 - 2019-03-07 14:17 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-03-07 14:15 - 2019-03-01 17:30 - 000668456 _____ C:\WINDOWS\system32\nvofapi64.dll
2019-03-07 14:15 - 2019-03-01 17:30 - 000534728 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-03-07 14:11 - 2019-03-07 14:12 - 578337888 _____ (NVIDIA Corporation) C:\Users\BIG O\Downloads\419.35-notebook-win10-64bit-international-whql.exe
2019-03-07 14:00 - 2019-03-07 14:01 - 020298120 _____ (HP Company ) C:\Users\BIG O\Downloads\sp95072.exe
2019-03-07 13:51 - 2019-03-07 13:51 - 001207704 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCtrl.exe
2019-03-07 13:51 - 2019-03-07 13:51 - 000586648 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCmds.dll
2019-03-07 13:51 - 2019-03-07 13:51 - 000507800 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\ETDApix.dll
2019-03-07 13:51 - 2019-03-07 13:51 - 000475544 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDFavorite.dll
2019-03-07 13:51 - 2019-03-07 13:51 - 000438680 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\ETDApi.dll
2019-03-07 13:51 - 2019-03-07 13:51 - 000407960 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCtrlHelper.exe
2019-03-07 13:51 - 2019-03-07 13:51 - 000237464 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDService.exe
2019-03-07 13:19 - 2019-03-07 13:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-03-07 13:19 - 2019-03-07 13:19 - 000000000 ____D C:\Users\Default\AppData\Roaming\Intel Corporation
2019-03-07 13:19 - 2019-03-07 13:19 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Intel Corporation
2019-03-07 13:19 - 2019-03-07 13:19 - 000000000 ____D C:\Program Files\Common Files\Intel Corporation
2019-03-07 12:59 - 2019-03-07 17:10 - 003670016 _____ C:\Users\BIG O\Desktop\PbrSaveData
2019-03-07 12:31 - 2019-03-07 12:31 - 000000062 _____ C:\Users\BIG O\Desktop\afterBURNER SETTINGS.txt
2019-03-07 12:21 - 2019-03-07 12:21 - 000000000 ____D C:\Users\BIG O\Desktop\ThrottleStop_8.70.6
2019-03-07 12:14 - 2019-03-07 12:14 - 000001166 _____ C:\Users\BIG O\Desktop\MSI Afterburner.lnk
2019-03-07 12:14 - 2019-03-07 12:14 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-03-07 12:13 - 2019-03-07 16:39 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2019-03-07 12:05 - 2019-03-07 16:39 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2019-03-07 12:05 - 2019-03-07 12:05 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2019-03-07 11:46 - 2019-03-07 11:46 - 000000000 ____D C:\Users\BIG O\Documents\Dolphin Emulator
2019-03-07 11:37 - 2019-03-07 11:37 - 005166857 _____ C:\Users\BIG O\Downloads\PBR_ziperto.com.part2.rar
2019-03-07 11:18 - 2019-03-07 11:38 - 000000000 ____D C:\Users\BIG O\Downloads\PBR_ziperto.com
2019-03-07 10:45 - 2019-03-07 10:59 - 000000000 ____D C:\Program Files (x86)\Dragon Ball - Xenoverse 2
2019-03-07 10:45 - 2019-03-07 10:45 - 000001914 _____ C:\Users\Public\Desktop\Dragon Ball - Xenoverse 2.lnk
2019-03-07 10:02 - 2019-03-07 10:31 - 1048576000 _____ C:\Users\BIG O\Downloads\PBR_ziperto.com.part1.rar
2019-03-07 10:01 - 2019-03-07 17:13 - 000000000 ____D C:\Users\BIG O\Desktop\Dolphin-x64
2019-03-07 10:00 - 2019-03-07 10:00 - 011740937 _____ C:\Users\BIG O\Downloads\dolphin-master-5.0-9715-x64.7z
2019-03-05 13:23 - 2019-03-05 13:23 - 000000000 ___HD C:\ProgramData\CanonBJ
2019-03-04 17:47 - 2019-03-07 13:31 - 000000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleForBIG O.job
2019-03-04 17:47 - 2019-03-04 17:47 - 000003256 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForBIG O
2019-03-04 17:47 - 2019-03-04 17:47 - 000000000 ____D C:\Users\BIG O\AppData\Local\HP_Inc
2019-03-03 15:16 - 2019-03-03 15:16 - 000000000 ____D C:\ProgramData\Brother
2019-03-03 14:57 - 2019-03-03 14:57 - 000000000 ____D C:\Users\BIG O\Documents\Custom Office Templates
2019-03-02 22:54 - 2019-03-02 22:54 - 000000000 ____D C:\Users\BIG O\Documents\My Games
2019-03-02 22:50 - 2019-03-02 22:54 - 181087479 _____ C:\Users\BIG O\Downloads\PS2_BIOS.zip
2019-03-02 22:47 - 2019-03-02 22:47 - 000294869 _____ C:\Users\BIG O\Downloads\PS2dumperV2_bin.7z
2019-03-02 22:43 - 2019-03-02 22:43 - 000000000 ____D C:\Users\BIG O\Downloads\Virtua Fighter 4 (USA)
2019-03-02 22:43 - 2019-03-02 22:43 - 000000000 ____D C:\Users\BIG O\Documents\PCSX2
2019-03-02 22:36 - 2019-03-02 22:43 - 407643103 _____ C:\Users\BIG O\Downloads\Virtua Fighter 4 (USA).rar
2019-03-02 22:26 - 2019-03-07 12:06 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2019-03-02 22:26 - 2019-03-02 22:26 - 000002019 _____ C:\Users\Public\Desktop\PCSX2 1.4.0.lnk
2019-03-02 22:26 - 2019-03-02 22:26 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2019-03-02 22:26 - 2019-03-02 22:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2019-03-02 22:26 - 2019-03-02 22:26 - 000000000 ____D C:\Program Files (x86)\PCSX2 1.4.0
2019-03-02 22:10 - 2019-03-02 22:10 - 000000874 _____ C:\Users\BIG O\Desktop\Halo 2 Project Cartographer.lnk
2019-03-02 22:10 - 2019-03-02 22:10 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Halo 2 Project Cartographer
2019-03-02 22:10 - 2010-06-02 07:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2019-03-02 22:10 - 2010-06-02 07:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2019-03-02 22:10 - 2010-06-02 07:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2019-03-02 22:10 - 2010-06-02 07:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2019-03-02 22:10 - 2010-06-02 07:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2019-03-02 22:10 - 2010-06-02 07:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2019-03-02 22:10 - 2010-05-26 14:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2019-03-02 22:10 - 2010-02-04 13:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2019-03-02 22:10 - 2010-02-04 13:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2019-03-02 22:10 - 2010-02-04 13:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2019-03-02 22:10 - 2010-02-04 13:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2019-03-02 22:10 - 2010-02-04 13:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2019-03-02 22:10 - 2010-02-04 13:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2019-03-02 22:10 - 2010-02-04 13:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2019-03-02 22:10 - 2010-02-04 13:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2019-03-02 22:10 - 2009-09-04 20:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2019-03-02 22:10 - 2009-09-04 20:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2019-03-02 22:10 - 2009-09-04 20:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2019-03-02 22:10 - 2009-09-04 20:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2019-03-02 22:10 - 2009-09-04 20:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2019-03-02 22:10 - 2009-09-04 20:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2019-03-02 22:10 - 2009-09-04 20:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2019-03-02 22:10 - 2009-03-16 17:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2019-03-02 22:10 - 2009-03-16 17:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2019-03-02 22:10 - 2009-03-16 17:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2019-03-02 22:10 - 2009-03-16 17:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2019-03-02 22:10 - 2009-03-16 17:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2019-03-02 22:10 - 2009-03-16 17:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2019-03-02 22:10 - 2009-03-09 18:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2019-03-02 22:10 - 2009-03-09 18:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2019-03-02 22:10 - 2009-03-09 18:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2019-03-02 22:10 - 2009-03-09 18:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2019-03-02 22:10 - 2009-03-09 18:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2019-03-02 22:10 - 2009-03-09 18:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2019-03-02 22:10 - 2008-10-27 13:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2019-03-02 22:10 - 2008-10-27 13:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2019-03-02 22:10 - 2008-10-27 13:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2019-03-02 22:10 - 2008-10-27 13:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2019-03-02 22:10 - 2008-10-27 13:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2019-03-02 22:10 - 2008-10-27 13:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2019-03-02 22:10 - 2008-10-27 13:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2019-03-02 22:10 - 2008-10-27 13:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2019-03-02 22:10 - 2008-10-15 09:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2019-03-02 22:10 - 2008-10-15 09:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2019-03-02 22:10 - 2008-10-15 09:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2019-03-02 22:10 - 2008-10-15 09:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2019-03-02 22:10 - 2008-10-15 09:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2019-03-02 22:10 - 2008-10-15 09:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2019-03-02 22:10 - 2008-07-31 13:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2019-03-02 22:10 - 2008-07-31 13:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2019-03-02 22:10 - 2008-07-31 13:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2019-03-02 22:10 - 2008-07-31 13:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2019-03-02 22:10 - 2008-07-31 13:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2019-03-02 22:10 - 2008-07-31 13:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2019-03-02 22:10 - 2008-07-10 14:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2019-03-02 22:10 - 2008-07-10 14:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2019-03-02 22:10 - 2008-07-10 14:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2019-03-02 22:10 - 2008-07-10 14:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2019-03-02 22:10 - 2008-07-10 14:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2019-03-02 22:10 - 2008-07-10 14:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2019-03-02 22:10 - 2008-05-30 17:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2019-03-02 22:10 - 2008-05-30 17:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2019-03-02 22:10 - 2008-05-30 17:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2019-03-02 22:10 - 2008-05-30 17:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2019-03-02 22:10 - 2008-05-30 17:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2019-03-02 22:10 - 2008-05-30 17:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2019-03-02 22:10 - 2008-05-30 17:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2019-03-02 22:10 - 2008-05-30 17:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2019-03-02 22:09 - 2008-05-30 17:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2019-03-02 22:09 - 2008-05-30 17:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2019-03-02 22:09 - 2008-05-30 17:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2019-03-02 22:09 - 2008-05-30 17:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2019-03-02 22:09 - 2008-05-30 17:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2019-03-02 22:09 - 2008-05-30 17:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2019-03-02 22:09 - 2008-03-05 19:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2019-03-02 22:09 - 2008-03-05 19:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2019-03-02 22:09 - 2008-03-05 19:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2019-03-02 22:09 - 2008-03-05 19:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2019-03-02 22:09 - 2008-03-05 19:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2019-03-02 22:09 - 2008-03-05 19:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2019-03-02 22:09 - 2008-03-05 18:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2019-03-02 22:09 - 2008-03-05 18:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2019-03-02 22:09 - 2008-03-05 18:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2019-03-02 22:09 - 2008-03-05 18:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2019-03-02 22:09 - 2008-02-06 02:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2019-03-02 22:09 - 2008-02-06 02:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2019-03-02 22:09 - 2007-10-22 06:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2019-03-02 22:09 - 2007-10-22 06:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2019-03-02 22:09 - 2007-10-22 06:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2019-03-02 22:09 - 2007-10-22 06:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2019-03-02 22:09 - 2007-10-12 18:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2019-03-02 22:09 - 2007-10-12 18:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2019-03-02 22:09 - 2007-10-12 18:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2019-03-02 22:09 - 2007-10-12 18:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2019-03-02 22:09 - 2007-10-02 12:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2019-03-02 22:09 - 2007-10-02 12:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2019-03-02 22:09 - 2007-07-20 03:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2019-03-02 22:09 - 2007-07-20 03:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2019-03-02 22:09 - 2007-07-19 21:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2019-03-02 22:09 - 2007-07-19 21:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2019-03-02 22:09 - 2007-07-19 21:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2019-03-02 22:09 - 2007-07-19 21:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2019-03-02 22:09 - 2007-07-19 21:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2019-03-02 22:09 - 2007-07-19 21:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2019-03-02 22:09 - 2007-06-20 23:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2019-03-02 22:09 - 2007-06-20 23:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2019-03-02 22:09 - 2007-05-16 19:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2019-03-02 22:09 - 2007-05-16 19:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2019-03-02 22:09 - 2007-05-16 19:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2019-03-02 22:09 - 2007-05-16 19:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2019-03-02 22:09 - 2007-05-16 19:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2019-03-02 22:09 - 2007-05-16 19:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2019-03-02 22:09 - 2007-04-04 21:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2019-03-02 22:09 - 2007-04-04 21:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2019-03-02 22:09 - 2007-04-04 21:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2019-03-02 22:09 - 2007-04-04 21:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2019-03-02 22:09 - 2007-03-15 19:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2019-03-02 22:09 - 2007-03-15 19:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2019-03-02 22:09 - 2007-03-12 19:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2019-03-02 22:09 - 2007-03-12 19:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2019-03-02 22:09 - 2007-03-12 19:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2019-03-02 22:09 - 2007-03-12 19:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2019-03-02 22:09 - 2007-03-05 15:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2019-03-02 22:09 - 2007-03-05 15:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2019-03-02 22:09 - 2007-01-24 18:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2019-03-02 22:09 - 2007-01-24 18:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2019-03-02 22:09 - 2006-12-08 15:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2019-03-02 22:09 - 2006-12-08 15:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2019-03-02 22:09 - 2006-11-29 16:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2019-03-02 22:09 - 2006-11-29 16:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2019-03-02 22:09 - 2006-11-29 16:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2019-03-02 22:09 - 2006-11-29 16:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2019-03-02 22:09 - 2006-09-28 19:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2019-03-02 22:09 - 2006-09-28 19:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2019-03-02 22:09 - 2006-09-28 19:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2019-03-02 22:09 - 2006-09-28 19:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2019-03-02 22:09 - 2006-07-28 12:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2019-03-02 22:09 - 2006-07-28 12:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2019-03-02 22:09 - 2006-07-28 12:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2019-03-02 22:09 - 2006-07-28 12:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2019-03-02 22:09 - 2006-05-31 10:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2019-03-02 22:09 - 2006-05-31 10:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2019-03-02 22:09 - 2006-03-31 15:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2019-03-02 22:09 - 2006-03-31 15:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2019-03-02 22:09 - 2006-03-31 15:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2019-03-02 22:09 - 2006-03-31 15:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2019-03-02 22:09 - 2006-03-31 15:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2019-03-02 22:09 - 2006-03-31 15:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2019-03-02 22:09 - 2006-02-03 11:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2019-03-02 22:09 - 2006-02-03 11:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2019-03-02 22:09 - 2006-02-03 11:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2019-03-02 22:09 - 2006-02-03 11:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2019-03-02 22:09 - 2006-02-03 11:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2019-03-02 22:09 - 2006-02-03 11:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2019-03-02 22:09 - 2005-12-05 21:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2019-03-02 22:09 - 2005-12-05 21:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2019-03-02 22:09 - 2005-07-22 22:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2019-03-02 22:09 - 2005-07-22 22:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2019-03-02 22:09 - 2005-05-26 18:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2019-03-02 22:09 - 2005-05-26 18:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2019-03-02 22:09 - 2005-03-18 20:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2019-03-02 22:09 - 2005-03-18 20:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2019-03-02 22:09 - 2005-02-05 22:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2019-03-02 22:09 - 2005-02-05 22:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2019-03-02 22:06 - 2019-03-02 22:06 - 017837152 _____ C:\Users\BIG O\Downloads\pcsx2-1.4.0-setup.exe
2019-03-02 22:05 - 2019-03-02 22:05 - 000000000 ____D C:\Games
2019-03-02 20:38 - 2019-03-02 21:52 - 3100014398 _____ C:\Users\BIG O\Downloads\h2pc_installer_1.8.1(2).zip
2019-03-02 20:35 - 2019-03-08 15:48 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Azureus
2019-03-02 20:35 - 2019-03-08 12:35 - 000000000 ____D C:\Users\BIG O\Documents\Vuze Downloads
2019-03-02 20:35 - 2019-03-02 20:35 - 000001874 _____ C:\Users\Public\Desktop\Vuze.lnk
2019-03-02 20:35 - 2019-03-02 20:35 - 000001874 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
2019-03-02 20:35 - 2019-03-02 20:35 - 000000000 ____D C:\Users\BIG O\.swt
2019-03-02 20:35 - 2019-03-02 20:35 - 000000000 ____D C:\ProgramData\Oracle
2019-03-02 20:35 - 2019-03-02 20:35 - 000000000 ____D C:\Program Files\Vuze
2019-03-02 20:29 - 2019-03-08 15:52 - 000000000 ____D C:\Users\BIG O\AppData\LocalLow\Mozilla
2019-03-02 20:29 - 2019-03-02 20:29 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-03-02 20:29 - 2019-03-02 20:29 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-03-02 20:29 - 2019-03-02 20:29 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Mozilla
2019-03-02 20:29 - 2019-03-02 20:29 - 000000000 ____D C:\Users\BIG O\AppData\Local\Mozilla
2019-03-02 20:29 - 2019-03-02 20:29 - 000000000 ____D C:\ProgramData\Mozilla
2019-03-02 20:29 - 2019-03-02 20:29 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-03-02 20:29 - 2019-03-02 20:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-02 20:16 - 2019-03-02 20:16 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\WinRAR
2019-03-02 20:16 - 2019-03-02 20:16 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-02 20:16 - 2019-03-02 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-02 20:16 - 2019-03-02 20:16 - 000000000 ____D C:\Program Files\WinRAR
2019-03-02 20:16 - 2019-01-11 13:00 - 000000000 ____D C:\Users\BIG O\Desktop\Unreal PT 1.0.7
2019-03-02 20:14 - 2019-03-02 20:14 - 583849384 _____ C:\Users\BIG O\Downloads\Unreal PT 1.0.7.rar
2019-03-02 13:58 - 2019-03-03 14:41 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3861241854-1628855769-3286695407-1001
2019-03-02 13:58 - 2019-03-03 14:41 - 000000000 ___RD C:\Users\BIG O\OneDrive
2019-03-02 13:58 - 2019-03-02 13:58 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Intel Corporation
2019-03-02 13:58 - 2019-03-02 13:58 - 000000000 ____D C:\Users\BIG O\AppData\Local\RegistrationDataHandler
2019-03-02 13:58 - 2019-03-02 13:58 - 000000000 ____D C:\Users\BIG O\AppData\Local\HP
2019-03-02 13:58 - 2019-03-02 13:58 - 000000000 ____D C:\Users\BIG O\AppData\Local\Hewlett-Packard
2019-03-02 13:58 - 2019-03-02 11:49 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\HP
2019-03-02 13:57 - 2019-03-02 13:58 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\hpqLog
2019-03-02 13:57 - 2019-03-02 13:57 - 000001446 _____ C:\Users\BIG O\Desktop\Microsoft Edge.lnk
2019-03-02 13:57 - 2019-03-02 13:57 - 000000000 ___HD C:\Users\BIG O\MicrosoftEdgeBackups
2019-03-02 13:57 - 2019-03-02 13:57 - 000000000 ____D C:\Users\BIG O\AppData\Local\DBG
2019-03-02 13:57 - 2019-03-02 13:57 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-03-02 13:56 - 2019-03-08 15:51 - 000000000 __SHD C:\Users\BIG O\IntelGraphicsProfiles
2019-03-02 13:56 - 2019-03-07 13:52 - 000000000 ____D C:\Users\BIG O\AppData\Local\Packages
2019-03-02 13:56 - 2019-03-07 13:52 - 000000000 ____D C:\ProgramData\Packages
2019-03-02 13:56 - 2019-03-02 20:31 - 000000000 ____D C:\Users\BIG O\AppData\Local\Publishers
2019-03-02 13:56 - 2019-03-02 13:57 - 000000000 ____D C:\Users\BIG O\AppData\Local\Intel
2019-03-02 13:56 - 2019-03-02 13:56 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\WildTangent
2019-03-02 13:56 - 2019-03-02 13:56 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Intel
2019-03-02 13:56 - 2019-03-02 13:56 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Adobe
2019-03-02 13:56 - 2019-03-02 13:56 - 000000000 ____D C:\Users\BIG O\AppData\Local\VirtualStore
2019-03-02 13:56 - 2019-03-02 13:56 - 000000000 ____D C:\Users\BIG O\AppData\Local\ConnectedDevicesPlatform
2019-03-02 13:56 - 2019-03-02 11:48 - 000000000 ___RD C:\Users\BIG O\3D Objects
2019-03-02 13:56 - 2019-03-02 11:03 - 000000000 ____D C:\Users\BIG O\AppData\Local\MicrosoftEdge
2019-03-02 13:54 - 2019-03-07 13:44 - 000000000 ____D C:\Users\BIG O
2019-03-02 13:54 - 2019-03-03 14:41 - 000002374 _____ C:\Users\BIG O\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-02 13:54 - 2019-03-02 13:54 - 000000020 ___SH C:\Users\BIG O\ntuser.ini
2019-03-02 11:23 - 2019-03-02 11:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-03-02 11:23 - 2019-03-02 11:23 - 129330784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-03-02 11:21 - 2019-03-02 11:21 - 000000000 ____D C:\Users\BIG O\AppData\Local\mbamtray
2019-03-02 11:21 - 2019-03-02 11:21 - 000000000 ____D C:\Users\BIG O\AppData\Local\mbam
2019-03-02 11:20 - 2019-03-02 11:20 - 000001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-03-02 11:20 - 2019-03-02 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-03-02 11:20 - 2019-03-02 11:20 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-03-02 11:20 - 2019-03-02 11:20 - 000000000 ____D C:\Program Files\Malwarebytes
2019-03-02 11:20 - 2019-02-01 14:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-03-02 11:20 - 2019-01-08 18:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-03-02 11:15 - 2019-03-02 11:15 - 000000000 ____D C:\Users\BIG O\AppData\Local\Comms
2019-03-02 11:11 - 2019-03-05 17:29 - 000000000 ____D C:\Users\BIG O\AppData\Local\PlaceholderTileLogoFolder
2019-03-02 11:02 - 2019-03-07 12:53 - 000000000 ____D C:\Users\BIG O\AppData\Local\D3DSCache
2019-03-02 11:01 - 2019-03-02 11:01 - 000000000 ____D C:\Users\BIG O\AppData\Local\CEF
2019-03-02 11:00 - 2019-03-02 11:00 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Macromedia
2019-03-02 11:00 - 2019-03-02 11:00 - 000000000 ____D C:\Users\BIG O\AppData\Roaming\Hewlett-Packard
2019-03-02 08:23 - 2019-03-08 12:18 - 000910774 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-03-02 08:21 - 2019-03-02 08:21 - 000000000 _SHDL C:\Users\Default User
2019-03-02 08:21 - 2019-03-02 08:21 - 000000000 _SHDL C:\Users\All Users
2019-03-02 08:21 - 2019-03-02 08:21 - 000000000 _SHDL C:\Documents and Settings
2019-03-02 08:19 - 2019-03-08 15:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-02 08:19 - 2019-03-02 14:10 - 000003710 _____ C:\WINDOWS\System32\Tasks\McAfee Remediation (Prepare)
2019-03-02 08:19 - 2019-03-02 14:10 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2019-03-02 08:19 - 2019-03-02 12:05 - 000003316 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
2019-03-02 08:19 - 2019-03-02 11:53 - 000000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2019-03-02 08:19 - 2019-03-02 08:20 - 000002856 _____ C:\WINDOWS\System32\Tasks\HPJumpStartLaunch
2019-03-02 08:19 - 2019-03-02 08:20 - 000002768 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2019-03-02 08:19 - 2019-03-02 08:20 - 000002500 _____ C:\WINDOWS\System32\Tasks\HPEA3JOBS
2019-03-02 08:19 - 2019-03-02 08:20 - 000002440 _____ C:\WINDOWS\System32\Tasks\HPAudioSwitch
2019-03-02 08:19 - 2019-03-02 08:20 - 000002368 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_HP_VOICEMODE_FOR_SKYPE
2019-03-02 08:19 - 2019-03-02 08:20 - 000002308 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_Session
2019-03-02 08:19 - 2019-03-02 08:20 - 000002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2019-03-02 08:19 - 2019-03-02 08:19 - 000022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-03-02 08:19 - 2019-03-02 08:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\Intel
2019-03-02 08:19 - 2019-03-02 08:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\HP
2019-03-02 08:19 - 2019-03-02 00:15 - 002865152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-03-02 07:57 - 2019-03-02 07:57 - 003472370 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2019-03-02 07:57 - 2019-03-02 07:57 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\B&O Play Audio Control.lnk
2019-03-02 07:57 - 2019-03-02 07:57 - 000000026 _____ C:\WINDOWS\system32\Drivers\RtkR0Log.dat
2019-03-02 07:57 - 2019-03-02 07:57 - 000000000 ____D C:\ProgramData\SoundResearch
2019-03-02 07:56 - 2019-03-07 13:43 - 000000000 ____D C:\ProgramData\Intel
2019-03-02 07:56 - 2019-03-07 13:42 - 000000000 ____D C:\Program Files\Intel
2019-03-02 07:56 - 2019-03-02 08:08 - 000000000 ____D C:\Intel
2019-03-02 07:56 - 2019-03-02 07:56 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ETD_01011.Wdf
2019-03-02 07:56 - 2019-03-02 07:56 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-03-02 07:56 - 2019-03-02 07:56 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2019-03-02 07:56 - 2019-03-02 07:56 - 000000000 ____D C:\ProgramData\USOShared
2019-03-02 07:56 - 2019-03-02 07:56 - 000000000 ____D C:\Program Files\Realtek
2019-03-02 07:56 - 2019-03-02 07:56 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2019-03-02 07:52 - 2019-03-08 15:47 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-03-02 07:52 - 2019-03-07 13:31 - 000267584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-02 04:29 - 2019-03-02 08:14 - 000000000 ___HD C:\system.sav
2019-03-02 04:29 - 2018-07-10 16:57 - 000000000 __RSH C:\WINDOWS\system32\Drivers\103C_HP_cNB_Pavilion Gaming Laptop 15-cx0xxx_Y5335KV_0U_QCND8274HTS_ECND0401S025B DPS_4A_I8478_SHP_V70.36_BF.08_T180611_W1101-0_L409_M8082_J1000_7Intel_86EA_92.30_#180710_N10EC8168;8086A370_(4PY21UA#ABA)_XMOBILE.MRK
2019-03-02 04:26 - 2019-03-02 07:54 - 000000000 ____D C:\WINDOWS\IAStorAfsService
2019-03-02 04:26 - 2019-03-02 07:53 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-03-02 04:26 - 2019-03-02 04:26 - 000000000 ____D C:\WINDOWS\system32\Intel
2019-03-02 04:25 - 2019-03-02 04:25 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-03-02 04:25 - 2019-03-02 04:25 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2019-03-02 04:25 - 2019-03-02 04:25 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2019-03-02 04:25 - 2019-03-02 04:25 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2019-03-02 04:25 - 2019-03-02 04:25 - 000000000 ____D C:\WINDOWS\Setup
2019-03-02 04:25 - 2019-03-02 04:25 - 000000000 ____D C:\WINDOWS\OCR
2019-03-02 04:24 - 2019-03-02 11:40 - 000000000 ____D C:\WINDOWS\holoshell
2019-03-02 04:24 - 2019-03-02 04:24 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-03-02 04:24 - 2019-03-02 04:24 - 000000000 ____D C:\Program Files\MSBuild
2019-03-02 04:24 - 2019-03-02 04:24 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-03-02 04:24 - 2019-03-02 04:24 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\winrm
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\slmgr
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\0409
2019-03-02 04:23 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\DigitalLocker
2019-03-02 04:21 - 2019-02-13 10:44 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-03-02 04:21 - 2019-02-13 10:44 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-03-02 04:19 - 2019-03-08 15:53 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-02 04:19 - 2019-03-08 11:45 - 000000000 ___RD C:\Program Files (x86)
2019-03-02 04:19 - 2019-03-08 11:45 - 000000000 ____D C:\WINDOWS\Help
2019-03-02 04:19 - 2019-03-08 11:44 - 000000000 ___HD C:\Program Files\WindowsApps
2019-03-02 04:19 - 2019-03-08 11:44 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-03-02 04:19 - 2019-03-07 15:15 - 000000000 ___RD C:\Program Files\Windows Defender
2019-03-02 04:19 - 2019-03-07 12:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-03-02 04:19 - 2019-03-04 17:49 - 000000000 ____D C:\WINDOWS\appcompat
2019-03-02 04:19 - 2019-03-02 12:00 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-03-02 04:19 - 2019-03-02 11:41 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-03-02 04:19 - 2019-03-02 11:41 - 000000000 ____D C:\WINDOWS\TextInput
2019-03-02 04:19 - 2019-03-02 11:41 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-03-02 04:19 - 2019-03-02 11:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-03-02 04:19 - 2019-03-02 11:41 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-02 04:19 - 2019-03-02 11:41 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-03-02 04:19 - 2019-03-02 11:41 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-03-02 04:19 - 2019-03-02 11:41 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-02 04:19 - 2019-03-02 11:40 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-02 04:19 - 2019-03-02 11:40 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-03-02 04:19 - 2019-03-02 11:40 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-03-02 04:19 - 2019-03-02 11:40 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-03-02 04:19 - 2019-03-02 11:40 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-03-02 04:19 - 2019-03-02 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2019-03-02 04:19 - 2019-03-02 08:23 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-03-02 04:19 - 2019-03-02 08:20 - 000000000 ____D C:\WINDOWS\Registration
2019-03-02 04:19 - 2019-03-02 08:14 - 000000000 ____D C:\WINDOWS\system32\spool
2019-03-02 04:19 - 2019-03-02 08:14 - 000000000 ____D C:\WINDOWS\system32\DriverState
2019-03-02 04:19 - 2019-03-02 08:14 - 000000000 ____D C:\WINDOWS\Resources
2019-03-02 04:19 - 2019-03-02 07:59 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-03-02 04:19 - 2019-03-02 07:59 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-03-02 04:19 - 2019-03-02 07:56 - 000000000 ____D C:\ProgramData\USOPrivate
2019-03-02 04:19 - 2019-03-02 04:28 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-03-02 04:19 - 2019-03-02 04:25 - 000000000 ____D C:\WINDOWS\SystemApps
2019-03-02 04:19 - 2019-03-02 04:25 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-03-02 04:19 - 2019-03-02 04:25 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ___SD C:\WINDOWS\system32\F12
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ___SD C:\WINDOWS\system32\dsc
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\com
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\setup
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\system32\com
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\WINDOWS\IME
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\Program Files\Common Files\system
2019-03-02 04:19 - 2019-03-02 04:23 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 __SHD C:\Program Files\Windows Sidebar
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 __RSD C:\WINDOWS\media
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 __RHD C:\Users\Public\Libraries
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ___SD C:\WINDOWS\system32\Nui
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\Web
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\WaaS
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\Vss
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\tracing
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\TAPI
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SystemResources
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\winevt
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\ti-et
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\ta-in
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\si-lk
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\ras
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\my-mm
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\IME
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\icsxml
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\ias
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\hydrogen
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\downlevel
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\DDFs
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\am-et
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\System
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SKB
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\security
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\schemas
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\SchCache
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\rescache
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\Provisioning
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\PLA
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\Performance
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\ModemLogs
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\L2Schemas
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\InputMethod
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\IdentityCRL
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\Globalization
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\Cursors
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\Containers
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\Branding
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\addins
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\Program Files\Windows Security
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\Program Files\Windows Portable Devices
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\Program Files\windows nt
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\Program Files\Common Files\Services
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\Program Files (x86)\windows nt
2019-03-02 04:19 - 2019-03-02 04:19 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2019-03-02 04:19 - 2019-03-02 04:17 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2019-03-02 04:19 - 2019-03-02 04:17 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2019-03-02 04:19 - 2019-03-02 04:17 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2019-03-02 04:19 - 2019-03-02 04:17 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2019-03-02 04:19 - 2019-03-02 04:17 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-03-02 04:19 - 2019-03-02 04:17 - 000017548 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-03-02 04:19 - 2019-03-02 04:17 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2019-03-02 04:19 - 2019-03-02 04:17 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2019-03-02 04:19 - 2019-03-02 04:17 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2019-03-02 04:19 - 2019-03-02 04:17 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2019-03-02 04:19 - 2019-03-02 04:17 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2019-03-02 04:19 - 2019-03-02 04:17 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2019-03-02 04:18 - 2019-03-08 12:18 - 000000000 ____D C:\WINDOWS\INF
2019-03-02 04:12 - 2019-03-02 11:56 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-02 04:08 - 2019-03-08 15:50 - 080478208 _____ C:\WINDOWS\system32\config\SOFTWARE
2019-03-02 04:08 - 2019-03-08 15:50 - 026738688 _____ C:\WINDOWS\system32\config\SYSTEM
2019-03-02 04:08 - 2019-03-08 15:50 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2019-03-02 04:08 - 2019-03-08 15:50 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-03-02 04:08 - 2019-03-08 15:50 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2019-03-02 04:08 - 2019-03-08 15:50 - 000032768 _____ C:\WINDOWS\system32\config\SECURITY
2019-03-02 04:08 - 2019-03-02 11:56 - 000000000 ____D C:\WINDOWS\servicing
2019-03-02 04:08 - 2019-03-02 08:21 - 000000000 ____D C:\WINDOWS\Panther
2019-03-02 04:08 - 2019-03-02 08:20 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-03-02 04:08 - 2019-03-02 04:19 - 000000000 ____D C:\WINDOWS\system32\SMI
2019-03-02 00:18 - 2019-03-02 00:18 - 000866152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 024616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 023439360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 020812288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 019023872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 012150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 008875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 007897088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 005588184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 005436184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 004920832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 004688896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 003923456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 003551408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 002752360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001332224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001294856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001258808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-03-02 00:17 - 2019-03-02 00:17 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001077912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001072720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 001047040 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-03-02 00:17 - 2019-03-02 00:17 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000421688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-03-02 00:17 - 2019-03-02 00:17 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-03-02 00:17 - 2019-03-02 00:17 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2019-03-02 00:17 - 2019-03-02 00:17 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-02 00:17 - 2019-03-02 00:17 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-02 00:17 - 2019-03-02 00:17 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2019-03-02 00:16 - 2019-03-02 00:17 - 006544584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 009683256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 009670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 007251456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 005915936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 005566464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 003761664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 003729808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 003660288 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-03-02 00:16 - 2019-03-02 00:16 - 003652656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 003504128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 003427840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 003399168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 002871312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 002700792 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-03-02 00:16 - 2019-03-02 00:16 - 002447360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 002073240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 002001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-02 00:16 - 2019-03-02 00:16 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001711616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001697744 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-03-02 00:16 - 2019-03-02 00:16 - 001644048 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001590072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001572176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001563336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001481488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001479480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001468440 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 001457544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-02 00:16 - 2019-03-02 00:16 - 001341880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-03-02 00:16 - 2019-03-02 00:16 - 001272552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001179168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 001176064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001098128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001078072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001056272 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2019-03-02 00:16 - 2019-03-02 00:16 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2019-03-02 00:16 - 2019-03-02 00:16 - 000902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000860160 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-02 00:16 - 2019-03-02 00:16 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000833064 _____ C:\WINDOWS\system32\InputHost.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000808464 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000772408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000764216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000735760 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000652824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000619832 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000591832 _____ C:\WINDOWS\SysWOW64\InputHost.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-03-02 00:16 - 2019-03-02 00:16 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000460304 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-02 00:16 - 2019-03-02 00:16 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-03-02 00:16 - 2019-03-02 00:16 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000330464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000322576 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000279376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000262456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-03-02 00:16 - 2019-03-02 00:16 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000147256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-02 00:16 - 2019-03-02 00:16 - 000071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-02 00:16 - 2019-03-02 00:16 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-02 00:15 - 2019-03-02 00:16 - 001656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 007688088 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 007647256 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 007556392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 003983872 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 003381760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 003378488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 002766648 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 002720768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 002637312 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 002485760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 002187264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 002044416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 002013696 _____ C:\WINDOWS\system32\rdpnano.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001931264 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001893888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001742104 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001604096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001296576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001191512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000865568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000790328 _____ (Microsoft Corporation) C:\WINDOWS\system32\upshared.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000646632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000605496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000484976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000449368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000355360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000336744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000138960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000115152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2019-03-02 00:15 - 2019-03-02 00:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-02 00:15 - 2019-03-02 00:15 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-03-02 00:15 - 2019-03-02 00:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-03-02 00:15 - 2019-03-02 00:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-03-02 00:15 - 2019-03-02 00:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-03-02 00:15 - 2019-03-02 00:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-03-02 00:15 - 2019-03-02 00:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-03-02 00:15 - 2019-03-02 00:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-03-02 00:15 - 2019-03-02 00:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-03-02 00:15 - 2019-03-02 00:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-02-13 10:48 - 2019-02-13 10:48 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 006070272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 004885504 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 002927120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 001700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 001671864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 001467560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000982576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000982032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 000765960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000475152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-02-13 10:48 - 2019-02-13 10:48 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000419128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000047136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-02-13 10:48 - 2019-02-13 10:48 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-02-13 10:48 - 2019-02-13 10:48 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-02-13 10:48 - 2019-02-13 10:48 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-02-06 21:58 - 2019-02-06 21:58 - 000030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtproscsibus.sys

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-08 12:05 - 2018-05-25 07:13 - 000000000 ____D C:\SWSetup
2019-03-08 11:38 - 2018-07-10 17:05 - 000000000 ____D C:\Program Files (x86)\McAfee
2019-03-08 00:01 - 2018-07-10 17:05 - 000000000 ____D C:\Program Files\Common Files\mcafee
2019-03-07 15:15 - 2018-04-28 01:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-03-07 13:51 - 2018-05-16 08:10 - 000616856 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\Drivers\ETD.sys
2019-03-07 13:51 - 2018-05-16 08:10 - 000034200 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\Drivers\ETDSMBus.sys
2019-03-07 13:44 - 2018-05-25 06:36 - 000000000 ____D C:\ProgramData\Package Cache
2019-03-07 13:43 - 2018-07-10 16:49 - 000000000 ____D C:\Program Files\Common Files\Intel
2019-03-07 13:43 - 2018-07-10 16:42 - 000000000 ____D C:\Program Files (x86)\Intel
2019-03-02 12:00 - 2018-07-10 17:05 - 000000000 ____D C:\ProgramData\mcafee
2019-03-02 11:48 - 2018-04-28 01:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-03-02 08:19 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-03-02 08:14 - 2018-07-10 17:12 - 000000000 ____D C:\WINDOWS\SysWOW64\WildTangent
2019-03-02 08:14 - 2018-07-10 17:00 - 000000000 ____D C:\WINDOWS\HP
2019-03-02 08:14 - 2018-07-10 16:49 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2019-03-02 08:11 - 2018-07-10 17:03 - 000000000 ____D C:\ProgramData\WildTangent
2019-03-02 08:11 - 2018-07-10 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-03-02 08:11 - 2018-07-10 17:03 - 000000000 ____D C:\Program Files (x86)\WildTangent Games
2019-03-02 08:11 - 2018-07-10 17:03 - 000000000 ____D C:\Program Files (x86)\WildGames
2019-03-02 08:11 - 2018-07-10 16:43 - 000000000 ____D C:\Program Files (x86)\Realtek
2019-03-02 08:11 - 2018-05-25 06:36 - 000000000 ___RD C:\Program Files (x86)\Online Services
2019-03-02 08:11 - 2018-05-25 06:36 - 000000000 ____D C:\ProgramData\Apple
2019-03-02 08:11 - 2018-05-25 06:35 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2019-03-02 08:11 - 2018-05-25 06:35 - 000000000 ____D C:\ProgramData\HP
2019-03-02 08:11 - 2018-05-25 06:35 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-03-02 08:10 - 2018-05-25 06:36 - 000000000 ___RD C:\Program Files\Online Services
2019-03-02 08:10 - 2018-05-25 06:36 - 000000000 ____D C:\Program Files (x86)\Bonjour
2019-03-02 08:10 - 2018-05-25 06:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-03-02 08:10 - 2018-05-25 06:35 - 000000000 ____D C:\Program Files (x86)\HP
2019-03-02 08:10 - 2018-05-25 06:34 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-03-02 08:09 - 2018-07-10 17:06 - 000000000 ____D C:\Program Files\mcafee.com
2019-03-02 08:09 - 2018-07-10 17:06 - 000000000 ____D C:\Program Files\mcafee
2019-03-02 08:09 - 2018-05-25 06:39 - 000000000 ____D C:\Program Files\HPCommRecovery
2019-03-02 08:09 - 2018-05-25 06:35 - 000000000 ____D C:\Program Files\HP
2019-03-02 08:08 - 2018-07-10 17:05 - 000000000 ____D C:\Program Files\Common Files\av
2019-03-02 08:08 - 2018-05-25 06:36 - 000000000 ____D C:\Program Files\Bonjour
2019-03-02 08:08 - 2018-05-15 13:52 - 000000000 ___HD C:\hp

Some files in TEMP:
====================
2019-03-02 20:36 - 2019-03-08 15:48 - 000079904 _____ () C:\Users\BIG O\AppData\Local\Temp\i4jdel0.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

The Addition.txt is attached.

Addition.txt

nasdaq · March 9, 2019

Hi,

Please download the attached Fixlist.txt file to the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the FRST.txt log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Nothing suspicious was found in your logs.

Execute the fix to reset some of the settings.

Please post the Fixlog.txt and let me know what problem persists.

nasdaq · March 15, 2019

Are you still with me?

JellyJamJohnson · March 15, 2019

I couldn't find an attached file on your post.

nasdaq · March 16, 2019

Hi,

Sorry about that.

It's attached now.

fixlist.txt

nasdaq · March 21, 2019

Are you still with me?

AdvancedSetup · April 2, 2019

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Thanks

PC is slowing down. Most likely infected. Please help!

Recommended Posts

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Recently Browsing 0 members

Important Information