Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-08-2019 Ran by Sebastian Romero (administrator) on DESKTOP-KM6A2DG (Micro-Star International Co., Ltd. MS-7A39) (20-08-2019 11:33:58) Running from C:\Users\Sebastian Romero\Downloads Loaded Profiles: Sebastian Romero (Available Profiles: Sebastian Romero & postgres) Platform: Windows 10 Pro Version 1809 17763.107 (X64) Language: English (United States) Default browser: Chrome Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Discord Inc. -> Discord Inc.) C:\Users\Sebastian Romero\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Sebastian Romero\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Sebastian Romero\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Sebastian Romero\AppData\Local\Discord\app-0.0.305\Discord.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.2\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.2\GoogleCrashHandler64.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.0.13.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11805.1001.49.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rstrui.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wuapihost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Java\jre1.8.0_221\bin\javaw.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Java\jre1.8.0_221\bin\javaw.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.26.95.0_x64__kzf8qxf38zg5c\Skype4Life.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.26.95.0_x64__kzf8qxf38zg5c\SkypeHelper.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-05] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation) HKLM\...\Policies\Explorer: [HideSCAHealth] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-3352561277-775047346-3813433219-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210016 2019-08-05] (Valve -> Valve Corporation) HKU\S-1-5-21-3352561277-775047346-3813433219-1002\...\Run: [BitTorrent] => C:\Users\Sebastian Romero\AppData\Roaming\BitTorrent\BitTorrent.exe [2083824 2019-07-31] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3352561277-775047346-3813433219-1002\...\Run: [Franz] => C:\Users\Sebastian Romero\AppData\Local\Programs\franz\Franz.exe [92313744 2019-07-19] (Stefan Malzner -> Stefan Malzner) HKU\S-1-5-21-3352561277-775047346-3813433219-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-3352561277-775047346-3813433219-1002\...\Run: [f.lux] => C:\Users\Sebastian Romero\AppData\Local\FluxSoftware\Flux\flux.exe [1378824 2019-05-07] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-3352561277-775047346-3813433219-1002\...\Run: [Spotify] => C:\Users\Sebastian Romero\AppData\Roaming\Spotify\Spotify.exe [25591712 2019-08-01] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-3352561277-775047346-3813433219-1002\...\Run: [Discord] => C:\Users\Sebastian Romero\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.100\Installer\chrmstp.exe [2019-08-08] (Google LLC -> Google LLC) Startup: C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\QuickLook.lnk [2019-08-05] ShortcutTarget: QuickLook.lnk -> C:\Users\Sebastian Romero\AppData\Local\Programs\QuickLook\QuickLook.exe (pooi.moe) [File not signed] GroupPolicy: Restriction - Chrome <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {02981B66-1B6A-45A5-84BC-59996C09A38B} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-07-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {1A35F819-C3F5-45B8-B26D-8E29A464B075} - System32\Tasks\Red Giant Link => C:\Program Files\Red Giant Link\Red Giant Link.exe Task: {303369F4-E28F-46E2-8E05-A391673C4A7F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3940232 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) Task: {6D8FC0E8-AF0B-4664-A2CD-0F078A2CCC42} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [891576 2019-07-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {6DA3180D-BB03-4610-B09D-9D63E57A3F62} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-07-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {878A50B6-957B-48C0-9F01-21164EB8921C} - System32\Tasks\Opera scheduled Autoupdate 1564635730 => C:\Program Files\Opera\launcher.exe [1519640 2019-08-07] (Opera Software AS -> Opera Software) Task: {8F43A981-C3EF-4B78-83FE-DE597ACE1C95} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-31] (Google Inc -> Google LLC) Task: {9899DE83-F5AD-4748-8474-4B9150A02D5B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-19] (AVAST Software s.r.o. -> AVAST Software) Task: {9C463DFF-1A5A-4256-A3CA-6848DA40CF5D} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost <==== ATTENTION Task: {A52ECCFD-6082-4215-A266-EB37A38DDDB2} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-07-30] (Advanced Micro Devices, Inc.) [File not signed] Task: {AFF63022-F1DF-474E-A773-F7FD0CC7CA5B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-31] (Google Inc -> Google LLC) Task: {CE5A860E-2970-46DB-92E7-6C928C81F3EC} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-KM6A2DG-Sebastian Romero => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {CF18191F-6A7C-44ED-B4D0-BABC959EC9EB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7175384 2016-12-06] (Piriform Ltd -> Piriform Ltd) Task: {D1EE2C2B-C3B7-422E-A5BC-16D596FB35F8} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION Task: {D9BF1B3C-3341-4A06-B630-9F7B3744E55B} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-07-30] (Advanced Micro Devices, Inc.) [File not signed] (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 10.0.0.1 Tcpip\..\Interfaces\{33a7d56c-cca4-4e17-bdf0-2618788478e3}: [DhcpNameServer] 10.0.0.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-08-02] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-08-02] (Oracle America, Inc. -> Oracle Corporation) FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-08-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-08-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.2\npGoogleUpdate3.dll [2019-08-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.2\npGoogleUpdate3.dll [2019-08-15] (Google Inc -> Google LLC) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR HomePage: Default -> hxxp://www.shortoftheweek.com/ CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox","hxxps://www.screendaily.com/news/alberto-barbera-defends-lack-of-female-directors-in-venice-competition/5131212.article","hxxps://www.shortoftheweek.com/","hxxps://www.shortoftheweek.com/news/list-of-festivals-and-online-eligibility/","hxxps://festagent.com/en","hxxps://www.shortfilmcentral.com/events/" CHR Profile: C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default [2019-08-20] CHR Extension: (Slides) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-31] CHR Extension: (Docs) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-31] CHR Extension: (Google Drive) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-31] CHR Extension: (ColorZilla) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2019-08-01] CHR Extension: (YouTube) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-31] CHR Extension: (WebRTC Leak Shield) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\bppamachkoflopbagkdoflbgfjflfnfl [2019-08-01] CHR Extension: (Sheets) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-31] CHR Extension: (Chrome Remote Desktop) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-30] CHR Extension: (Google Docs Offline) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-30] CHR Extension: (LastPass: Free Password Manager) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2019-08-01] CHR Extension: (Adblocker for Youtube™) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaifmpegndoadklfhjffnpilecgegfbb [2019-08-16] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] <==== ATTENTION CHR Extension: (Google Slides Offline) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibpkmaogdhfdifidilooocmimjpgpeoh [2019-08-17] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] <==== ATTENTION CHR Extension: (Chrome Remote Desktop) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2019-08-01] CHR Extension: (Grammarly for Chrome) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2019-08-16] CHR Extension: (Wikibuy from Capital One) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2019-08-19] CHR Extension: (Chrome Web Store Payments) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-31] CHR Extension: (Grammar and Spell Checker - LanguageTool) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2019-08-12] CHR Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\oofgbpoabipfcfjapgnbbjjaenockbdp [2019-08-01] CHR Extension: (Gmail) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-31] CHR Extension: (Chrome Media Router) - C:\Users\Sebastian Romero\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-31] CHR HKLM\...\Chrome\Extension: [fcbhdhpamoencpdogjnmnbjddipfkpad] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fcbhdhpamoencpdogjnmnbjddipfkpad] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AMD External Events Utility; C:\Windows\System32\DriverStore\FileRepository\c0345289.inf_amd64_6ef2ac49787c27a7\B345285\atiesrxx.exe [508632 2019-07-31] (Advanced Micro Devices, Inc. -> AMD) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6797008 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [414976 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8577760 2019-08-01] (BattlEye Innovations e.K. -> ) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3830488 2018-09-15] (Microsoft Corporation -> Microsoft Corporation) S3 wuauserv; C:\Windows\system32\svchost.exe [51696 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL) S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2018-09-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL) S4 postgresql-x64-9.5; "C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.5" -D "C:\Program Files\PostgreSQL\9.5\data" -w ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [34568 2019-04-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc) R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24424 2016-08-13] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc) S3 amdkmcsp; C:\Windows\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. ) R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\c0345289.inf_amd64_6ef2ac49787c27a7\B345285\atikmdag.sys [59249368 2019-07-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\c0345289.inf_amd64_6ef2ac49787c27a7\B345285\atikmpag.sys [597720 2019-07-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [103456 2019-07-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [31592 2018-04-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R0 amdpsp; C:\Windows\System32\DRIVERS\amdpsp.sys [243048 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. ) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37320 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [209256 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [263224 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206056 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61688 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [15488 2019-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279336 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42504 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [169112 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112520 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88160 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030992 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [477288 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [225816 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [387392 2019-08-01] (AVAST Software s.r.o. -> AVAST Software) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [108152 2019-07-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) S3 ESETCleanersDriver; C:\Windows\system32\Drivers\ESETCleanersDriver.sys [170280 2019-08-20] (ESET, spol. s r.o. -> ESET) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [605696 2018-09-15] (Microsoft Windows -> Realtek ) R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [8206848 2018-09-15] (Microsoft Windows -> Realtek Semiconductor Corporation ) S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation) R1 webshieldfilter; C:\Windows\System32\drivers\webshieldfilter.sys [98944 2019-04-02] (Protected Antivirus Limited -> Windows (R) Win 7 DDK provider) U3 avgbdisk; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-08-20 10:12 - 2019-08-20 10:12 - 001728127 _____ C:\Users\Sebastian Romero\Downloads\Autoruns.zip 2019-08-20 10:09 - 2019-08-20 10:10 - 000038760 _____ C:\Users\Sebastian Romero\Downloads\Addition.txt 2019-08-20 10:08 - 2019-08-20 11:34 - 000026111 _____ C:\Users\Sebastian Romero\Downloads\FRST.txt 2019-08-20 10:08 - 2019-08-20 11:33 - 000000000 ____D C:\FRST 2019-08-20 10:07 - 2019-08-20 10:08 - 001612800 _____ (Farbar) C:\Users\Sebastian Romero\Downloads\FRST64.exe 2019-08-20 02:38 - 2019-08-20 11:16 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\BleachBit 2019-08-20 02:37 - 2019-08-20 02:37 - 009283336 _____ C:\Users\Sebastian Romero\Downloads\BleachBit-2.2-setup.exe 2019-08-20 01:56 - 2019-08-20 01:59 - 000001134 _____ C:\Users\Sebastian Romero\Downloads\esetsirefefcleaner.exe_20190820.015645.4588.zip 2019-08-20 01:27 - 2019-08-20 01:27 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\4714A635.sys 2019-08-20 01:17 - 2019-08-20 01:17 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\76731386.sys 2019-08-20 01:16 - 2019-08-20 11:16 - 000000000 ____D C:\Users\Sebastian Romero\Desktop\mbar 2019-08-20 01:16 - 2019-08-20 02:15 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2019-08-20 01:16 - 2019-08-20 01:26 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2019-08-20 01:16 - 2019-08-20 01:16 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\4144535E.sys 2019-08-20 01:16 - 2019-08-20 01:16 - 000000000 ____D C:\ProgramData\Malwarebytes 2019-08-20 01:15 - 2019-08-20 01:16 - 014178840 _____ (Malwarebytes Corp.) C:\Users\Sebastian Romero\Downloads\mbar-1.10.3.1001.exe 2019-08-20 01:10 - 2019-08-20 01:10 - 000001089 _____ C:\Users\Sebastian Romero\Downloads\esetsirefefcleaner.exe_20190820.011005.8472.zip 2019-08-20 00:46 - 2019-08-20 00:46 - 000430280 _____ (ESET) C:\Users\Sebastian Romero\Downloads\esetsirefefcleaner.exe 2019-08-20 00:46 - 2019-08-20 00:46 - 000001135 _____ C:\Users\Sebastian Romero\Downloads\esetsirefefcleaner.exe_20190820.004632.5788.zip 2019-08-20 00:46 - 2019-08-20 00:46 - 000000022 _____ C:\Users\Sebastian Romero\Downloads\esetsirefefcleaner.exe_20190820.004650.3884.zip 2019-08-20 00:39 - 2019-08-20 01:39 - 000170280 _____ (ESET) C:\Windows\system32\Drivers\ESETCleanersDriver.sys 2019-08-20 00:39 - 2019-08-20 01:39 - 000000000 ____D C:\Program Files\ESET 2019-08-20 00:37 - 2019-08-20 00:37 - 005455616 _____ (ESET) C:\Users\Sebastian Romero\Downloads\eset_smart_security_premium_live_installer.exe 2019-08-20 00:23 - 2019-08-20 00:41 - 000000000 ____D C:\Program Files (x86)\AVG 2019-08-20 00:21 - 2019-08-20 01:08 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Avg 2019-08-20 00:19 - 2019-08-20 02:35 - 000000000 ____D C:\ProgramData\AVG 2019-08-19 23:41 - 2019-04-02 07:38 - 000098944 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\webshieldfilter.sys 2019-08-19 16:12 - 2019-08-19 16:12 - 000059092 _____ C:\Users\Sebastian Romero\Downloads\Carta RAMONA.pdf 2019-08-19 16:09 - 2019-08-19 16:09 - 005513264 _____ C:\Users\Sebastian Romero\Downloads\RAMONA Dossier.pdf 2019-08-18 19:18 - 2019-08-18 19:18 - 000197222 _____ C:\Users\Sebastian Romero\Downloads\BlockLocker.jar 2019-08-17 10:58 - 2019-08-17 10:59 - 000000000 ____D C:\Users\Sebastian Romero\Downloads\Hyperborea 2019-08-17 10:53 - 2019-08-17 10:53 - 000000024 _____ C:\Windows\system32\WinUpdates105.dat 2019-08-16 18:30 - 2019-08-19 23:56 - 000000000 ____D C:\Users\Sebastian Romero\Desktop\MC 2019-08-16 18:21 - 2019-08-20 01:23 - 000000000 ____D C:\Program Files (x86)\YMxlnjuEU 2019-08-16 18:21 - 2019-08-20 01:23 - 000000000 ____D C:\Program Files (x86)\xuktVREmDfpMZheyGYR 2019-08-16 18:21 - 2019-08-20 01:23 - 000000000 ____D C:\Program Files (x86)\RbCYUNrkjDzU2 2019-08-16 18:21 - 2019-08-20 01:23 - 000000000 ____D C:\Program Files (x86)\OEXqRerEIIE 2019-08-16 18:21 - 2019-08-20 01:23 - 000000000 ____D C:\Program Files (x86)\lYgpJeBGgAVxC 2019-08-16 18:21 - 2019-08-20 01:23 - 000000000 ____D C:\Program Files (x86)\BDmOKgQBgQUn 2019-08-16 18:21 - 2019-08-16 18:21 - 000000000 ____D C:\ProgramData\hXmxarTOMwDGDsVB 2019-08-15 19:24 - 2019-08-15 19:25 - 007948008 _____ (Tim Kosse) C:\Users\Sebastian Romero\Downloads\FileZilla_3.44.2_win64-setup.exe 2019-08-15 15:06 - 2019-07-31 13:24 - 000000000 ____D C:\Users\Sebastian Romero\Downloads\EssentialsX 2019-08-15 14:53 - 2019-08-15 14:54 - 003348275 _____ C:\Users\Sebastian Romero\Downloads\EssentialsX.zip 2019-08-15 10:41 - 2019-08-15 16:46 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Notepad++ 2019-08-15 10:41 - 2019-08-15 10:41 - 000001100 _____ C:\Users\Sebastian Romero\Desktop\Notepad++.lnk 2019-08-15 10:41 - 2019-08-15 10:41 - 000000000 ____D C:\Program Files (x86)\Notepad++ 2019-08-15 09:53 - 2019-08-20 00:11 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\FileZilla 2019-08-15 09:53 - 2019-08-17 22:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2019-08-15 09:53 - 2019-08-17 22:26 - 000000000 ____D C:\Program Files\FileZilla FTP Client 2019-08-15 09:53 - 2019-08-15 16:57 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\FileZilla 2019-08-12 21:17 - 2019-08-12 21:17 - 000103204 _____ C:\Users\Sebastian Romero\Downloads\GUION FINAL MOFLE #.pdf 2019-08-12 21:13 - 2019-08-12 21:13 - 000069813 _____ C:\Users\Sebastian Romero\Documents\BS MOFLE.pdf 2019-08-11 00:58 - 2019-08-11 00:58 - 000001492 _____ C:\Users\Sebastian Romero\Desktop\BlackShot.lnk 2019-08-11 00:52 - 2019-08-11 00:52 - 000000000 ____D C:\Program Files (x86)\Papaya Play 2019-08-10 21:32 - 2019-08-10 21:32 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Opera Software 2019-08-09 15:24 - 2019-08-09 15:24 - 000024512 _____ C:\Windows\system32\7B296FC0-376B-497d-B013-58F4D9633A22-5P-1.B5841A4C-A289-439d-8115-50AB69CD450B 2019-08-09 15:24 - 2019-08-09 15:24 - 000000000 _____ C:\Windows\system32\setup4.2.6.tmp 2019-08-09 13:50 - 2019-08-14 16:42 - 000000000 ____D C:\Users\Sebastian Romero\Desktop\Escenas 2019-08-09 13:33 - 2019-08-09 13:33 - 000000000 ____D C:\2-click run 2019-08-09 13:31 - 2019-08-09 13:32 - 000000000 ____D C:\Users\Sebastian Romero\Downloads\Bandicam v4.3.3.1498 (2-click run) 2019-08-09 13:28 - 2019-08-09 13:28 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\IsolatedStorage 2019-08-09 13:20 - 2019-08-09 13:20 - 000000000 ____D C:\Users\Sebastian Romero\Documents\Expression 2019-08-08 14:47 - 2019-08-08 14:48 - 000000000 ____D C:\Users\Sebastian Romero\Desktop\Stills 2019-08-05 22:21 - 2019-08-05 22:21 - 000001457 _____ C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QuickLook.lnk 2019-08-05 22:21 - 2019-08-05 22:21 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\pooi.moe 2019-08-05 22:13 - 2019-08-05 22:13 - 000000000 ____D C:\Users\Sebastian Romero\Desktop\Cigar 2019-08-05 10:43 - 2019-08-05 10:43 - 000000000 ____D C:\ProgramData\PDF Architect 7 2019-08-05 10:42 - 2019-08-05 10:42 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\pdfforge 2019-08-04 17:15 - 2019-08-04 17:15 - 003723725 _____ C:\Users\Sebastian Romero\Downloads\MFL Dossier Agosto.pdf 2019-08-04 11:38 - 2019-08-05 15:38 - 000000000 ____D C:\Users\Sebastian Romero\Desktop\MMS 2019-08-04 11:31 - 2019-08-04 11:38 - 000000000 ____D C:\Program Files (x86)\Movie Magic 2019-08-04 11:31 - 2019-08-04 11:31 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Movie Magic 2019-08-04 11:22 - 2019-08-04 11:30 - 000000000 ____D C:\Users\Sebastian Romero\Downloads\Entertainment.Partners.Movie.Magic.Scheduling.v6.00.374-DVT 2019-08-04 11:12 - 2019-08-04 11:12 - 000000000 ____D C:\ProgramData\FLEXnet 2019-08-04 11:11 - 2019-08-04 11:11 - 000000000 ___HD C:\Users\Sebastian Romero\InstallAnywhere 2019-08-04 11:11 - 2019-08-04 11:11 - 000000000 ___HD C:\Program Files (x86)\Zero G Registry 2019-08-04 11:11 - 2019-08-04 11:11 - 000000000 ____D C:\Users\Sebastian Romero\MMData 2019-08-04 11:11 - 2019-08-04 11:11 - 000000000 ____D C:\EP 2019-08-02 18:40 - 2019-08-20 01:17 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Discord 2019-08-02 18:40 - 2019-08-02 18:40 - 000002288 _____ C:\Users\Sebastian Romero\Desktop\Discord.lnk 2019-08-02 18:40 - 2019-08-02 18:40 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2019-08-02 18:40 - 2019-08-02 18:40 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\SquirrelTemp 2019-08-02 18:40 - 2019-08-02 18:40 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Discord 2019-08-02 18:39 - 2019-08-02 18:40 - 061370712 _____ (Discord Inc.) C:\Users\Sebastian Romero\Downloads\DiscordSetup.exe 2019-08-02 18:26 - 2019-08-09 14:43 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\RadeonSettings 2019-08-02 18:26 - 2019-08-02 18:26 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\cache 2019-08-02 16:38 - 2019-08-02 16:38 - 000003438 _____ C:\Windows\System32\Tasks\AMD ThankingURL 2019-08-02 16:35 - 2019-08-20 11:22 - 000003134 _____ C:\Windows\System32\Tasks\AMDLinkUpdate 2019-08-02 16:35 - 2019-08-02 16:35 - 000003198 _____ C:\Windows\System32\Tasks\ModifyLinkUpdate 2019-08-02 16:35 - 2019-08-02 16:35 - 000003080 _____ C:\Windows\System32\Tasks\StartDVR 2019-08-02 16:35 - 2019-08-02 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings 2019-08-02 16:35 - 2019-08-02 16:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard 2019-08-02 16:35 - 2019-08-02 16:35 - 000000000 ____D C:\Program Files (x86)\AMD 2019-08-02 16:34 - 2019-08-02 16:34 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\ATI 2019-08-02 16:34 - 2019-08-02 16:34 - 000000000 ____D C:\Users\Sebastian Romero\AppData\LocalLow\AMD 2019-08-02 16:34 - 2019-08-02 16:34 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\ATI 2019-08-02 16:34 - 2019-08-02 16:34 - 000000000 ____D C:\ProgramData\ATI 2019-08-02 16:34 - 2019-08-02 16:34 - 000000000 ____D C:\ProgramData\AMD 2019-08-02 16:34 - 2019-07-31 12:18 - 000103456 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys 2019-08-02 16:32 - 2019-08-02 16:32 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\RadeonInstaller 2019-08-02 11:29 - 2019-08-14 16:40 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\vlc 2019-08-02 10:56 - 2019-08-02 10:56 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Sun 2019-08-01 22:25 - 2019-08-01 22:25 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\OneDrive 2019-08-01 22:16 - 2019-08-01 22:16 - 000000258 __RSH C:\Users\Sebastian Romero\ntuser.pol 2019-08-01 17:23 - 2019-08-01 17:27 - 000000024 _____ C:\Users\Sebastian Romero\random.dat 2019-08-01 17:23 - 2019-08-01 17:27 - 000000024 _____ C:\Users\Sebastian Romero\jagexappletviewer.preferences 2019-08-01 17:23 - 2019-08-01 17:23 - 000000055 _____ C:\Users\Sebastian Romero\jagex_cl_oldschool_LIVE.dat 2019-08-01 17:23 - 2019-08-01 17:23 - 000000000 ____D C:\.jagex_cache_32 2019-08-01 16:32 - 2019-08-01 16:32 - 000000000 ____D C:\ProgramData\Panda Security 2019-08-01 16:31 - 2019-08-20 00:06 - 000000000 ____D C:\Users\Sebastian Romero\jagexcache 2019-08-01 16:12 - 2019-08-20 00:06 - 000000000 ____D C:\Windows\system32\appmgmt 2019-08-01 16:04 - 2019-08-01 16:04 - 000063989 _____ C:\ProgramData\cl.1564689867.bdinstall.bin 2019-08-01 16:04 - 2019-08-01 16:04 - 000046279 _____ C:\ProgramData\cl.kit.1564689857.bdinstall.bin 2019-08-01 16:03 - 2019-08-01 16:03 - 000063986 _____ C:\ProgramData\cl.1564689817.bdinstall.bin 2019-08-01 16:03 - 2019-08-01 16:03 - 000046278 _____ C:\ProgramData\cl.kit.1564689810.bdinstall.bin 2019-08-01 16:03 - 2019-08-01 16:03 - 000000543 _____ C:\ProgramData\cl.1564689791.bdinstall.bin 2019-08-01 16:03 - 2019-08-01 16:03 - 000000000 ____D C:\Program Files\Common Files\Bitdefender 2019-08-01 16:02 - 2019-08-01 16:02 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\beb45599-6282-4f58-8800-9c882e78bd59 2019-08-01 16:02 - 2019-08-01 16:02 - 000000000 ____D C:\SystemID 2019-08-01 16:01 - 2019-08-16 18:21 - 000006746 __RSH C:\ProgramData\ntuser.pol 2019-08-01 16:01 - 2019-08-01 16:07 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\d8586af2-180a-4c0c-8e52-528a69f70949 2019-08-01 16:01 - 2019-08-01 16:01 - 000000000 ____D C:\ProgramData\Garbage Cleaner 2019-08-01 15:46 - 2019-08-20 11:20 - 000004264 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2019-08-01 15:46 - 2019-08-20 11:17 - 000000000 _____ C:\Windows\system32\last.dump 2019-08-01 15:46 - 2019-08-01 15:58 - 000000000 ____D C:\Program Files (x86)\Eserv3 2019-08-01 15:46 - 2019-08-01 15:46 - 001030992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000477288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000387392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000363400 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2019-08-01 15:46 - 2019-08-01 15:46 - 000279336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000263224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000225816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000209256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000206056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000169112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000112520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000088160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000061688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000042504 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000037320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000015488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys 2019-08-01 15:46 - 2019-08-01 15:46 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software 2019-08-01 15:46 - 2019-08-01 15:46 - 000000000 ____D C:\Program Files\Common Files\AVAST Software 2019-08-01 15:45 - 2019-08-01 15:46 - 000000000 ____D C:\ProgramData\AVAST Software 2019-08-01 15:45 - 2019-08-01 15:45 - 000000000 ____D C:\Program Files\AVAST Software 2019-08-01 14:55 - 2019-08-01 16:12 - 000000000 ____D C:\ProgramData\Betternet 2019-08-01 14:55 - 2019-08-01 14:55 - 000000000 ____D C:\Program Files (x86)\Betternet 2019-08-01 14:52 - 2019-08-01 14:52 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\CrashRpt 2019-08-01 14:52 - 2019-08-01 14:52 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\BattlEye 2019-08-01 14:13 - 2019-08-01 14:13 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BlackShot 2019-08-01 13:39 - 2019-08-01 13:39 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Solid State Networks 2019-08-01 12:38 - 2019-08-20 11:23 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\.tlauncher 2019-08-01 12:38 - 2019-08-02 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-08-01 12:38 - 2019-08-02 10:57 - 000000000 ____D C:\Program Files\Java 2019-08-01 12:38 - 2019-08-02 10:55 - 000110064 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2019-08-01 12:38 - 2019-08-01 12:38 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\java 2019-08-01 12:38 - 2019-08-01 12:38 - 000000000 ____D C:\Users\Sebastian Romero\AppData\LocalLow\Oracle 2019-08-01 12:38 - 2019-08-01 12:38 - 000000000 ____D C:\ProgramData\Sun 2019-08-01 12:38 - 2019-08-01 12:38 - 000000000 ____D C:\ProgramData\Oracle 2019-08-01 12:37 - 2019-08-01 12:37 - 000000000 ____D C:\Users\Sebastian Romero\AppData\LocalLow\Sun 2019-08-01 12:35 - 2019-08-20 11:23 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\.minecraft 2019-08-01 12:35 - 2019-08-01 12:37 - 000001992 _____ C:\Users\Sebastian Romero\Desktop\TLauncher.lnk 2019-08-01 11:40 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2019-08-01 11:40 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2019-08-01 11:40 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2019-08-01 11:40 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2019-08-01 11:40 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2019-08-01 11:40 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2019-08-01 11:40 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2019-08-01 11:40 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2019-08-01 11:40 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2019-08-01 11:40 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2019-08-01 11:40 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2019-08-01 11:40 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2019-08-01 11:40 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2019-08-01 11:40 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2019-08-01 11:40 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2019-08-01 11:40 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2019-08-01 11:40 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2019-08-01 11:40 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2019-08-01 11:40 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2019-08-01 11:40 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2019-08-01 11:40 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2019-08-01 11:40 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2019-08-01 11:40 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2019-08-01 11:40 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2019-08-01 11:40 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2019-08-01 11:40 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2019-08-01 11:40 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2019-08-01 11:40 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2019-08-01 11:40 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2019-08-01 11:40 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2019-08-01 11:40 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2019-08-01 11:40 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2019-08-01 11:40 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2019-08-01 11:40 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2019-08-01 11:40 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2019-08-01 11:40 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2019-08-01 11:40 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2019-08-01 11:40 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2019-08-01 11:40 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2019-08-01 11:40 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2019-08-01 11:40 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2019-08-01 11:40 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2019-08-01 11:40 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2019-08-01 11:40 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2019-08-01 11:40 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2019-08-01 11:40 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2019-08-01 11:40 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2019-08-01 11:40 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2019-08-01 11:40 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2019-08-01 11:40 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2019-08-01 11:40 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2019-08-01 11:40 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2019-08-01 11:40 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2019-08-01 11:40 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2019-08-01 11:40 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2019-08-01 11:40 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2019-08-01 11:40 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2019-08-01 11:40 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2019-08-01 11:40 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2019-08-01 11:40 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2019-08-01 11:40 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2019-08-01 11:40 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2019-08-01 11:40 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2019-08-01 11:40 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2019-08-01 11:40 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2019-08-01 11:40 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2019-08-01 11:40 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2019-08-01 11:40 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2019-08-01 11:40 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2019-08-01 11:40 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2019-08-01 11:40 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2019-08-01 11:40 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2019-08-01 11:40 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2019-08-01 11:40 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2019-08-01 11:40 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2019-08-01 11:40 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2019-08-01 11:40 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2019-08-01 11:40 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2019-08-01 11:40 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2019-08-01 11:40 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2019-08-01 11:40 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2019-08-01 11:40 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2019-08-01 11:40 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2019-08-01 11:40 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2019-08-01 11:40 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2019-08-01 11:40 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2019-08-01 11:40 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2019-08-01 11:40 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2019-08-01 11:40 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2019-08-01 11:40 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2019-08-01 11:40 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2019-08-01 11:40 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2019-08-01 11:40 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2019-08-01 11:40 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2019-08-01 11:40 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2019-08-01 11:40 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2019-08-01 11:40 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2019-08-01 11:40 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2019-08-01 11:40 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2019-08-01 11:40 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2019-08-01 11:40 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2019-08-01 11:40 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2019-08-01 11:40 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2019-08-01 11:40 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2019-08-01 11:40 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2019-08-01 11:40 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2019-08-01 11:40 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2019-08-01 11:40 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2019-08-01 11:40 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2019-08-01 11:40 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2019-08-01 11:40 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2019-08-01 11:40 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2019-08-01 11:40 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2019-08-01 11:40 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2019-08-01 11:40 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2019-08-01 11:40 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2019-08-01 11:40 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2019-08-01 11:40 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2019-08-01 11:40 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2019-08-01 11:40 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2019-08-01 11:40 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2019-08-01 11:40 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2019-08-01 11:40 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2019-08-01 11:40 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2019-08-01 11:40 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2019-08-01 11:40 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2019-08-01 11:40 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2019-08-01 11:40 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2019-08-01 11:40 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2019-08-01 11:40 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2019-08-01 11:40 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2019-08-01 11:40 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2019-08-01 11:40 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2019-08-01 11:40 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2019-08-01 11:40 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2019-08-01 11:40 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2019-08-01 11:40 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2019-08-01 11:40 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2019-08-01 11:40 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2019-08-01 11:40 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2019-08-01 11:40 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2019-08-01 11:40 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2019-08-01 11:40 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2019-08-01 11:40 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2019-08-01 11:40 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2019-08-01 11:40 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2019-08-01 11:40 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2019-08-01 11:40 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2019-08-01 11:40 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2019-08-01 11:40 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2019-08-01 11:40 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2019-08-01 11:40 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2019-08-01 11:40 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2019-08-01 11:40 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2019-08-01 11:40 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2019-08-01 11:40 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2019-08-01 11:40 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2019-08-01 11:40 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2019-08-01 11:40 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2019-08-01 11:40 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2019-08-01 11:40 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2019-08-01 11:40 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2019-08-01 11:40 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2019-08-01 11:40 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2019-08-01 09:01 - 2019-08-10 18:58 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Spotify 2019-08-01 08:46 - 2019-08-17 15:01 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Greenshot 2019-08-01 08:46 - 2019-08-01 08:46 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Greenshot 2019-08-01 01:53 - 2019-08-20 10:08 - 000004188 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{8CC211D8-D88C-4521-80BA-A158F64E368C} 2019-08-01 01:53 - 2019-08-01 01:53 - 000002211 _____ C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk 2019-08-01 01:53 - 2019-08-01 01:53 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\FluxSoftware 2019-08-01 01:48 - 2019-08-01 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Magic Scheduling 2019-08-01 01:45 - 2019-08-01 01:45 - 000000000 ____D C:\Users\Sebastian Romero\Documents\TotalAV 2019-08-01 01:45 - 2019-08-01 01:45 - 000000000 ____D C:\ProgramData\SecuritySuite 2019-08-01 01:35 - 2019-08-01 01:37 - 000000000 ____D C:\Program Files\CCleaner 2019-08-01 01:35 - 2019-08-01 01:35 - 000002892 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2019-08-01 01:35 - 2019-08-01 01:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2019-08-01 01:24 - 2019-08-19 21:07 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Franz 2019-08-01 01:24 - 2019-08-01 01:24 - 000002426 _____ C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Franz.lnk 2019-08-01 01:24 - 2019-08-01 01:24 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\franz-updater 2019-08-01 01:18 - 2019-08-20 00:11 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\CrashDumps 2019-08-01 01:13 - 2019-08-05 10:43 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\PDFCreator 2019-08-01 01:13 - 2019-08-01 01:13 - 000116736 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll 2019-08-01 01:12 - 2019-08-10 18:14 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Spotify 2019-08-01 01:12 - 2019-08-01 16:07 - 000000000 ____D C:\Program Files\PDFCreator 2019-08-01 01:12 - 2019-08-01 01:12 - 000001891 _____ C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2019-08-01 01:12 - 2019-08-01 01:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator 2019-08-01 01:07 - 2019-08-01 01:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2019-08-01 01:07 - 2019-08-01 01:07 - 000000000 ____D C:\Program Files\VideoLAN 2019-08-01 01:02 - 2019-08-20 10:10 - 000000000 ____D C:\Program Files\Opera 2019-08-01 01:02 - 2019-08-10 21:31 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Opera Software 2019-08-01 01:02 - 2019-08-09 10:10 - 000003958 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1564635730 2019-08-01 01:02 - 2019-08-09 10:10 - 000001107 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk 2019-08-01 01:02 - 2019-08-01 01:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Greenshot 2019-08-01 01:02 - 2019-08-01 01:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2019-08-01 01:02 - 2019-08-01 01:02 - 000000000 ____D C:\Program Files\Greenshot 2019-08-01 01:02 - 2019-08-01 01:02 - 000000000 ____D C:\Program Files\7-Zip 2019-08-01 00:33 - 2019-08-01 00:33 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2019-08-01 00:26 - 2019-08-01 00:26 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Google 2019-07-31 18:35 - 2019-07-31 18:35 - 000001271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2019.lnk 2019-07-31 18:25 - 2019-07-31 18:25 - 000002520 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2019.lnk 2019-07-31 18:25 - 2019-07-31 18:25 - 000000000 ____D C:\Users\Sebastian Romero\AppData\LocalLow\Adobe 2019-07-31 18:08 - 2019-08-20 02:36 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\BitTorrent 2019-07-31 18:08 - 2019-07-31 18:08 - 000000907 _____ C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk 2019-07-31 17:56 - 2019-07-31 17:56 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Apple Computer 2019-07-31 17:54 - 2019-08-01 00:08 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Apple Computer 2019-07-31 17:54 - 2019-07-31 17:54 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Apple 2019-07-31 17:53 - 2019-07-31 17:53 - 000000000 ____D C:\Users\Sebastian Romero\AppData\LocalLow\Apple Computer 2019-07-31 17:53 - 2019-07-31 17:53 - 000000000 ____D C:\ProgramData\Apple 2019-07-31 12:18 - 2019-07-31 12:18 - 059439320 _____ C:\Windows\system32\amdcomgr64.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 049336024 _____ C:\Windows\SysWOW64\amdcomgr.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 001593048 _____ (AMD) C:\Windows\system32\coinst_19.30.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 001243864 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 001011320 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 001011320 _____ C:\Windows\system32\vulkan-1.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 000874264 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 000874264 _____ C:\Windows\SysWOW64\vulkan-1.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 000304848 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2019-07-31 12:18 - 2019-07-31 12:18 - 000304848 _____ C:\Windows\system32\vulkaninfo.exe 2019-07-31 12:18 - 2019-07-31 12:18 - 000276688 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2019-07-31 12:18 - 2019-07-31 12:18 - 000276688 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2019-07-31 12:18 - 2019-07-31 12:18 - 000135384 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 000122072 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 000020392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2019-07-31 12:18 - 2019-07-31 12:18 - 000020392 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2019-07-31 05:36 - 2019-07-31 05:36 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\PeerDistRepub 2019-07-31 05:30 - 2019-08-08 16:35 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-07-31 05:29 - 2019-08-15 15:40 - 000003416 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2019-07-31 05:29 - 2019-08-15 15:40 - 000003292 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2019-07-31 05:29 - 2019-08-15 15:34 - 000000000 ____D C:\Program Files (x86)\Google 2019-07-31 05:29 - 2019-08-01 16:10 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\PlaceholderTileLogoFolder 2019-07-31 05:29 - 2019-07-31 05:29 - 000000000 ___HD C:\Users\Sebastian Romero\MicrosoftEdgeBackups 2019-07-31 05:29 - 2019-07-30 15:33 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Google 2019-07-31 05:25 - 2019-08-09 14:43 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\AMD 2019-07-31 04:20 - 2019-08-02 16:35 - 000003160 _____ C:\Windows\System32\Tasks\StartCN 2019-07-31 04:19 - 2019-08-20 11:16 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2019-07-31 04:19 - 2019-08-09 14:43 - 000000000 ____D C:\Program Files\AMD 2019-07-31 04:19 - 2019-08-02 16:35 - 000000000 ____D C:\AMD 2019-07-31 04:19 - 2019-08-01 14:27 - 000000000 ____D C:\ProgramData\Package Cache 2019-07-31 04:19 - 2019-07-31 04:19 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies 2019-07-31 04:06 - 2019-07-31 04:06 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf 2019-07-31 03:55 - 2019-07-31 03:55 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Comms 2019-07-30 17:43 - 2019-07-30 17:43 - 000174768 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll 2019-07-30 17:43 - 2019-07-30 17:43 - 000146440 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll 2019-07-30 16:18 - 2019-08-01 15:52 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\ElevatedDiagnostics 2019-07-30 16:17 - 2019-07-30 16:17 - 000000000 ____D C:\Program Files\UNP 2019-07-30 16:05 - 2019-07-30 16:05 - 000000000 ____D C:\Users\Sebastian Romero\Documents\Red Giant 2019-07-30 16:05 - 2019-07-30 16:05 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Red Giant 2019-07-30 16:04 - 2019-07-30 16:04 - 000003796 _____ C:\Windows\System32\Tasks\Red Giant Link 2019-07-30 16:04 - 2019-07-30 16:04 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Red Giant 2019-07-30 16:03 - 2019-07-30 16:04 - 000000000 ____D C:\ProgramData\Red Giant 2019-07-30 16:03 - 2019-07-30 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant 2019-07-30 16:03 - 2019-07-30 16:04 - 000000000 ____D C:\Program Files (x86)\Red Giant Link 2019-07-30 16:03 - 2019-07-30 16:03 - 000000000 ____D C:\ProgramData\Sony 2019-07-30 16:03 - 2019-07-30 16:03 - 000000000 ____D C:\ProgramData\RedGiant 2019-07-30 16:03 - 2019-07-30 16:03 - 000000000 ____D C:\Program Files\Red Giant 2019-07-30 16:03 - 2019-07-30 16:03 - 000000000 ____D C:\Program Files (x86)\Red Giant 2019-07-30 16:02 - 2019-07-30 16:02 - 000000000 ____D C:\Users\Sebastian Romero\Documents\Blackmagic Design 2019-07-30 16:02 - 2019-07-30 16:02 - 000000000 ____D C:\Users\Public\Documents\Blackmagic Design 2019-07-30 16:01 - 2019-07-30 16:02 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design 2019-07-30 16:00 - 2019-08-20 00:05 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\D3DSCache 2019-07-30 16:00 - 2019-07-31 17:19 - 000000000 ___RD C:\Users\Sebastian Romero\Creative Cloud Files 2019-07-30 16:00 - 2019-07-30 16:00 - 000003724 _____ C:\Windows\System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-KM6A2DG-Sebastian Romero 2019-07-30 15:55 - 2019-07-31 18:36 - 000000000 ____D C:\Users\Sebastian Romero\Documents\Adobe 2019-07-30 15:54 - 2019-07-31 18:35 - 000000000 ____D C:\Users\Public\Documents\Adobe 2019-07-30 15:54 - 2019-07-31 18:35 - 000000000 ____D C:\Program Files\Common Files\Adobe 2019-07-30 15:54 - 2019-07-31 18:35 - 000000000 ____D C:\Program Files\Adobe 2019-07-30 15:54 - 2019-07-30 15:58 - 000001406 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2019-07-30 15:54 - 2019-07-30 15:54 - 000001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2019.lnk 2019-07-30 15:54 - 2019-07-30 15:54 - 000000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs 2019-07-30 15:53 - 2019-07-30 15:59 - 000000000 ____D C:\Program Files (x86)\Adobe 2019-07-30 15:45 - 2019-07-31 18:36 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Adobe 2019-07-30 15:45 - 2019-07-31 18:35 - 000000000 ____D C:\ProgramData\Adobe 2019-07-30 15:42 - 2019-07-30 15:42 - 000000000 ____D C:\ProgramData\Reprise 2019-07-30 15:41 - 2019-07-30 15:41 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Blackmagic Design 2019-07-30 15:40 - 2019-07-30 15:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design 2019-07-30 15:40 - 2019-07-30 15:41 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design 2019-07-30 15:40 - 2019-07-30 15:40 - 000000000 ____D C:\ProgramData\Blackmagic Design 2019-07-30 15:40 - 2019-07-30 15:40 - 000000000 ____D C:\Program Files\Blackmagic Design 2019-07-30 15:39 - 2019-08-20 01:23 - 000000000 ____D C:\Users\postgres 2019-07-30 15:39 - 2019-07-30 15:39 - 000000020 ___SH C:\Users\postgres\ntuser.ini 2019-07-30 15:39 - 2019-07-30 15:39 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\DBG 2019-07-30 15:39 - 2019-07-30 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostgreSQL 9.5 2019-07-30 15:39 - 2018-09-15 03:29 - 000001105 _____ C:\Users\postgres\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-07-30 15:38 - 2019-07-30 15:38 - 000000000 ____D C:\Program Files\PostgreSQL 2019-07-30 15:37 - 2019-07-30 15:37 - 000000000 ____D C:\Users\Sebastian Romero\.QtWebEngineProcess 2019-07-30 15:37 - 2019-07-30 15:37 - 000000000 ____D C:\Users\Sebastian Romero\.Origin 2019-07-30 15:32 - 2019-07-30 15:32 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Steam 2019-07-30 15:32 - 2019-07-30 15:32 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\CEF 2019-07-30 15:31 - 2019-08-20 00:11 - 000000000 ____D C:\Program Files (x86)\Steam 2019-07-30 15:31 - 2019-07-30 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2019-07-30 15:30 - 2019-07-30 15:30 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps 2019-07-24 10:30 - 2017-05-01 00:25 - 001458856 ___RH (Sysinternals - www.sysinternals.com) C:\Users\Sebastian Romero\Downloads\  2019-07-23 04:48 - 2019-08-02 18:26 - 000000000 ___RD C:\Users\Sebastian Romero\OneDrive 2019-07-23 04:48 - 2019-08-01 22:25 - 000003400 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3352561277-775047346-3813433219-1002 2019-07-23 04:47 - 2019-07-31 05:29 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\MicrosoftEdge 2019-07-23 04:46 - 2019-08-20 03:22 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Packages 2019-07-23 04:46 - 2019-08-20 00:47 - 000000000 ____D C:\Users\Sebastian Romero 2019-07-23 04:46 - 2019-08-01 22:25 - 000002396 _____ C:\Users\Sebastian Romero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-07-23 04:46 - 2019-08-01 15:54 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\VirtualStore 2019-07-23 04:46 - 2019-08-01 08:46 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\ConnectedDevicesPlatform 2019-07-23 04:46 - 2019-07-31 18:36 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Roaming\Adobe 2019-07-23 04:46 - 2019-07-23 04:46 - 000000020 ___SH C:\Users\Sebastian Romero\ntuser.ini 2019-07-23 04:46 - 2019-07-23 04:46 - 000000000 ___RD C:\Users\Sebastian Romero\3D Objects 2019-07-23 04:46 - 2019-07-23 04:46 - 000000000 ____D C:\Users\Sebastian Romero\AppData\Local\Publishers 2019-07-23 02:53 - 2019-07-23 02:53 - 000000000 ____D C:\Windows\CSC 2019-07-23 02:48 - 2019-07-23 02:48 - 000002852 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3352561277-775047346-3813433219-500 ==================== One month (modified) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-08-20 11:23 - 2018-11-14 13:16 - 000795988 _____ C:\Windows\system32\PerfStringBackup.INI 2019-08-20 11:23 - 2018-09-15 03:31 - 000000000 ____D C:\Windows\INF 2019-08-20 11:22 - 2018-09-15 03:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-08-20 11:17 - 2018-11-14 13:07 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-08-20 11:16 - 2018-09-15 03:33 - 000000000 ___HD C:\Program Files\WindowsApps 2019-08-20 11:16 - 2018-09-15 02:09 - 000524288 _____ C:\Windows\system32\config\BBI 2019-08-20 11:15 - 2018-09-15 03:33 - 000000000 ____D C:\Windows\registration 2019-08-20 11:15 - 2018-09-15 03:23 - 000000000 ____D C:\Windows\CbsTemp 2019-08-20 10:38 - 2018-11-14 13:06 - 000000000 ____D C:\Windows\system32\SleepStudy 2019-08-20 03:23 - 2018-09-15 03:33 - 000000000 ____D C:\Windows\AppReadiness 2019-08-20 02:02 - 2018-09-15 03:33 - 000000000 ____D C:\Windows\system32\NDF 2019-08-20 00:20 - 2018-09-15 03:33 - 000000000 ___HD C:\Windows\ELAMBKUP 2019-08-16 18:19 - 2018-09-15 03:33 - 000000000 ____D C:\Program Files\Windows Defender 2019-08-14 10:45 - 2018-09-15 02:09 - 000000000 ____D C:\Windows\servicing 2019-08-09 11:32 - 2018-09-15 03:33 - 000000000 ____D C:\Windows\LiveKernelReports 2019-08-01 16:05 - 2018-11-14 13:06 - 000000000 ____D C:\Windows\Panther 2019-08-01 16:01 - 2018-09-15 03:33 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2019-08-01 00:44 - 2018-11-14 13:12 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-07-31 12:18 - 2017-05-16 21:06 - 003914456 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 003516632 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 001712856 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 001243864 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000941784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000769240 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000762072 _____ (AMD) C:\Windows\system32\atieclxx.exe 2019-07-31 12:18 - 2017-05-16 21:06 - 000574672 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000554200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000493784 _____ C:\Windows\system32\dgtrayicon.exe 2019-07-31 12:18 - 2017-05-16 21:06 - 000485592 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000480984 _____ C:\Windows\system32\GameManager64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000473304 _____ C:\Windows\system32\amdgfxinfo64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000469208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000440536 _____ C:\Windows\system32\atieah64.exe 2019-07-31 12:18 - 2017-05-16 21:06 - 000384216 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000382168 _____ C:\Windows\SysWOW64\GameManager32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000382168 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000352976 _____ C:\Windows\SysWOW64\atieah32.exe 2019-07-31 12:18 - 2017-05-16 21:06 - 000349400 _____ C:\Windows\system32\clinfo.exe 2019-07-31 12:18 - 2017-05-16 21:06 - 000242904 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000214744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000184528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000179376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000163544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000159448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000158216 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000153304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000138968 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000136408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000126168 _____ (AMD) C:\Windows\system32\atimuixx.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000124632 _____ C:\Windows\system32\atidxx64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000121560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000107736 _____ C:\Windows\SysWOW64\atidxx32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000106200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000070872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000047312 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll 2019-07-31 12:18 - 2017-05-16 21:06 - 000044240 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2019-07-31 12:16 - 2017-05-16 21:05 - 000554696 _____ C:\Windows\system32\amdmiracast.dll 2019-07-31 12:16 - 2017-05-16 21:05 - 000135448 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2019-07-31 12:16 - 2017-05-16 21:05 - 000128952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2019-07-31 12:16 - 2017-05-16 21:05 - 000128736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2019-07-31 12:16 - 2017-05-16 21:05 - 000119856 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2019-07-31 12:16 - 2017-05-16 21:05 - 000108568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2019-07-31 12:16 - 2017-05-16 21:05 - 000108344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2019-07-31 04:24 - 2018-09-15 03:33 - 000000000 ____D C:\Windows\appcompat 2019-07-30 17:27 - 2017-04-25 03:56 - 003437632 _____ C:\Windows\system32\atiumd6a.cap 2019-07-30 17:27 - 2017-04-25 03:51 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2019-07-30 17:25 - 2017-04-25 04:06 - 000550928 _____ C:\Windows\SysWOW64\atiapfxx.blb 2019-07-30 17:25 - 2017-04-25 04:06 - 000550928 _____ C:\Windows\system32\atiapfxx.blb 2019-07-30 15:59 - 2018-11-14 13:12 - 000000000 ____D C:\ProgramData\Packages 2019-07-30 15:39 - 2018-09-15 03:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-07-24 01:55 - 2017-11-17 10:20 - 000108152 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdWT6.sys 2019-07-23 03:47 - 2018-09-15 03:31 - 000028672 _____ C:\Windows\system32\config\BCD-Template ==================== Files in the root of some directories ================ 2019-07-30 15:53 - 2019-07-30 15:53 - 000000410 _____ () C:\Users\Sebastian Romero\AppData\Local\oobelibMkey.log ==================== FLock ================ 2019-07-23 02:53 C:\Windows\CSC ==================== SigCheck =============================== (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ============================