Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2021 01 Ran by Tom (administrator) on DESKTOP-KL1F59U (23-07-2021 16:08:18) Running from E:\Programi za popravljanje Loaded Profiles: Tom Platform: Windows 10 Pro Version 20H2 19042.1110 (X64) Language: slovenščina (Slovenija) Default browser: FF Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Adobe Inc. -> Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0346830.inf_amd64_35731e557194973d\B345901\atiesrxx.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tom\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6> (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [168456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) [File not signed] HKLM-x32\...\Run: [] => [X] HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65488 2020-03-06] (Adobe Inc. -> Adobe Systems Inc) ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {00C039F7-B974-41A8-8A49-6732DB7B6717} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147304 2021-07-23] (Microsoft Corporation -> Microsoft Corporation) Task: {23D334CF-3D09-4D93-AE15-FA7D4A496822} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147304 2021-07-23] (Microsoft Corporation -> Microsoft Corporation) Task: {2BA3BD8C-DEC3-48B7-9DE8-74349D2DEDEE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23182224 2021-07-09] (Microsoft Corporation -> Microsoft Corporation) Task: {4F4D3685-68BB-488F-B61B-E6B64B8FCE2E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [681400 2021-07-23] (Mozilla Corporation -> Mozilla Foundation) Task: {6A9E25FC-6CD3-46B2-8D73-797A80BF26AE} - System32\Tasks\Online_KMS_Activation_Script-Renewal => %windir%\Online_KMS_Activation_Script\Online_KMS_Activation_Script-Renewal.cmd 0 Task: {7182BDF6-D8F3-401D-93EE-DFC10FBF8C51} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23182224 2021-07-09] (Microsoft Corporation -> Microsoft Corporation) Task: {A31DA55B-FCCC-41A3-9A4C-B4B31BA779D4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe Task: {B06263D6-3981-4853-8C59-4993187E6638} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {BC75E44E-83E9-4CE4-BADF-181C963BBD3D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5311392 2021-07-23] (Microsoft Corporation -> Microsoft Corporation) Task: {EB8A5100-F72C-45E8-B3FA-D8E8540D0CDD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5311392 2021-07-23] (Microsoft Corporation -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 84.255.209.79 84.255.210.79 Tcpip\..\Interfaces\{3f352286-a439-427d-9e4b-d6b1aa6ab3e0}: [DhcpNameServer] 84.255.209.79 84.255.210.79 Edge: ======= Edge Profile: C:\Users\Tom\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-01] FireFox: ======== FF DefaultProfile: rbd13inq.default FF ProfilePath: C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\rbd13inq.default [2021-07-01] FF ProfilePath: C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\2efgk32g.default-release [2021-07-23] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-03-05] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-07-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056672 2021-07-08] (Microsoft Corporation -> Microsoft Corporation) R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [98896 2020-12-01] (Panda Security S.L. -> Panda Security, S.L.) S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-20] (AnchorFree Inc -> ) R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.) R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [189288 2020-07-09] (Panda Security S.L. -> Panda Security S.L.) R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [59440 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5395384 2021-07-23] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 aftap0901; C:\Windows\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) R3 BCM43XX; C:\Windows\System32\drivers\bcmwl63al.sys [5170176 2019-12-07] (Microsoft Windows -> Broadcom Corporation) R1 NNSDNS; C:\Windows\system32\DRIVERS\NNSDNS.sys [141088 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTP; C:\Windows\system32\DRIVERS\NNSHTTP.sys [212768 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTPS; C:\Windows\system32\DRIVERS\NNSHTTPS.sys [125728 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSIDS; C:\Windows\system32\DRIVERS\NNSIDS.sys [132384 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [111296 2020-11-23] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPICC; C:\Windows\system32\DRIVERS\NNSPICC.sys [152864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPIHSW; C:\Windows\system32\DRIVERS\NNSPIHSW.sys [102688 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPOP3; C:\Windows\system32\DRIVERS\NNSPOP3.sys [135456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPROT; C:\Windows\system32\DRIVERS\NNSPROT.sys [347424 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPRV; C:\Windows\system32\DRIVERS\NNSPRV.sys [353592 2020-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSMTP; C:\Windows\system32\DRIVERS\NNSSMTP.sys [123168 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSTRM; C:\Windows\system32\DRIVERS\NNSSTRM.sys [327968 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINAflt; C:\Windows\system32\DRIVERS\PSINAflt.sys [195872 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) S0 psinelam; C:\Windows\System32\DRIVERS\psinelam.sys [21432 2020-07-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.) R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [171296 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.) R1 PSINKNC; C:\Windows\system32\DRIVERS\PSINKNC.sys [216864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [148768 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProt; C:\Windows\system32\DRIVERS\PSINProt.sys [160544 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINReg; C:\Windows\system32\DRIVERS\PSINReg.sys [130336 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) U3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-07-23 15:42 - 2021-07-23 15:42 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2021-07-23 15:27 - 2021-07-23 15:27 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl 2021-07-23 15:27 - 2021-07-23 15:27 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsraLegacy.tlb 2021-07-23 15:27 - 2021-07-23 15:27 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\MsraLegacy.tlb 2021-07-23 15:27 - 2021-07-23 15:27 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rendezvousSession.tlb 2021-07-23 15:27 - 2021-07-23 15:27 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\rendezvousSession.tlb 2021-07-23 15:26 - 2021-07-23 15:26 - 002371072 _____ C:\Windows\system32\rdpnano.dll 2021-07-23 15:26 - 2021-07-23 15:26 - 001823280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2021-07-23 15:26 - 2021-07-23 15:26 - 001393504 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2021-07-23 15:26 - 2021-07-23 15:26 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2021-07-23 15:26 - 2021-07-23 15:26 - 000570880 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2021-07-23 15:26 - 2021-07-23 15:26 - 000452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2021-07-23 15:26 - 2021-07-23 15:26 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl 2021-07-23 15:26 - 2021-07-23 15:26 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2021-07-23 15:26 - 2021-07-23 15:26 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-07-23 15:25 - 2021-07-23 15:25 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2021-07-23 15:25 - 2021-07-23 15:25 - 000097792 _____ C:\Windows\system32\Drivers\cimfs.sys 2021-07-23 15:18 - 2021-07-23 16:04 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-07-21 19:17 - 2021-07-21 19:17 - 000109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2021-07-21 19:06 - 2021-07-23 16:08 - 000000000 ____D C:\FRST 2021-07-21 01:30 - 2021-07-21 01:30 - 000000112 ___SH C:\bootTel.dat 2021-07-02 19:05 - 2021-07-02 19:05 - 000000000 ____D C:\Users\Tom\AppData\Local\PeerDistRepub 2021-07-02 15:19 - 2021-07-23 15:11 - 000000000 ____D C:\Windows\system32\MRT 2021-07-01 18:34 - 2021-07-21 10:04 - 000000000 ____D C:\Windows\Online_KMS_Activation_Script 2021-07-01 18:34 - 2021-07-01 18:34 - 000004734 _____ C:\Windows\system32\Tasks\Online_KMS_Activation_Script-Renewal 2021-07-01 18:27 - 2021-07-01 18:27 - 000002485 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2021-07-01 18:27 - 2021-07-01 18:27 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2021-07-01 18:27 - 2021-07-01 18:27 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2021-07-01 18:27 - 2021-07-01 18:27 - 000002399 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2021-07-01 18:27 - 2021-07-01 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Officeova orodja 2021-07-01 18:27 - 2021-07-01 18:27 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2021-07-01 18:18 - 2021-07-23 15:13 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-07-01 18:18 - 2021-07-01 18:19 - 000003522 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0 2021-07-01 18:17 - 2021-07-23 15:15 - 000000000 ____D C:\Program Files\Microsoft Office 2021-07-01 18:17 - 2021-07-01 18:17 - 000000000 ____D C:\Program Files\Microsoft Office 15 2021-07-01 18:16 - 2021-07-01 18:16 - 000000000 ____D C:\Users\Tom\AppData\LocalLow\Adobe 2021-07-01 18:15 - 2021-07-02 15:15 - 000000000 ____D C:\Users\Tom\AppData\Local\Adobe 2021-07-01 18:15 - 2021-07-01 18:15 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2021-07-01 18:15 - 2021-07-01 18:15 - 000000040 ____H C:\9CDDA0359704 2021-07-01 18:14 - 2021-07-01 18:14 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2021-07-01 18:14 - 2021-07-01 18:14 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk 2021-07-01 18:14 - 2021-07-01 18:14 - 000002091 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk 2021-07-01 18:14 - 2021-07-01 18:14 - 000000000 ____D C:\ProgramData\Adobe 2021-07-01 18:14 - 2021-07-01 18:14 - 000000000 ____D C:\Program Files (x86)\Adobe 2021-07-01 17:57 - 2021-07-02 19:59 - 000000000 ____D C:\Users\Tom\AppData\Roaming\qBittorrent 2021-07-01 17:57 - 2021-07-01 17:57 - 000000000 ____D C:\Users\Tom\AppData\Local\qBittorrent 2021-07-01 17:57 - 2021-07-01 17:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent 2021-07-01 17:57 - 2021-07-01 17:57 - 000000000 ____D C:\Program Files\qBittorrent 2021-07-01 17:56 - 2021-07-01 17:56 - 027435355 _____ (The qBittorrent project) C:\Users\Tom\Downloads\qbittorrent_4.3.6_x64_setup.exe 2021-07-01 17:54 - 2021-07-20 13:32 - 000000000 ____D C:\Windows\Panther 2021-07-01 17:49 - 2019-02-20 07:31 - 000072984 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys 2021-07-01 17:48 - 2021-07-01 17:49 - 000002298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk 2021-07-01 17:48 - 2021-07-01 17:49 - 000002281 _____ C:\Users\Public\Desktop\Panda Dome.lnk 2021-07-01 17:48 - 2021-07-01 17:49 - 000000000 ____D C:\Program Files\WinRAR 2021-07-01 17:48 - 2021-07-01 17:48 - 000000000 ____D C:\Users\Tom\AppData\Roaming\Panda Security 2021-07-01 17:48 - 2021-07-01 17:48 - 000000000 ____D C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-07-01 17:48 - 2021-07-01 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-07-01 17:48 - 2021-07-01 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome 2021-07-01 17:48 - 2021-07-01 17:48 - 000000000 ____D C:\Program Files (x86)\Panda Security 2021-07-01 17:48 - 2020-12-10 14:18 - 000353592 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnsprv.sys 2021-07-01 17:48 - 2020-12-02 12:21 - 000216864 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINKNC.sys 2021-07-01 17:48 - 2020-12-02 12:21 - 000195872 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINAflt.sys 2021-07-01 17:48 - 2020-12-02 12:21 - 000160544 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINProt.sys 2021-07-01 17:48 - 2020-12-02 12:21 - 000130336 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINReg.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000347424 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnsprot.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000327968 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnsstrm.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000212768 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnshttp.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000152864 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnspicc.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000141088 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnsdns.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000135456 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnspop3.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000132384 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnsids.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000125728 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnshttps.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000123168 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnssmtp.sys 2021-07-01 17:48 - 2020-12-02 12:20 - 000102688 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\nnspihsw.sys 2021-07-01 17:48 - 2020-07-10 11:48 - 000021432 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\psinelam.sys 2021-07-01 17:46 - 2021-07-01 17:48 - 000000000 ____D C:\ProgramData\Panda Security 2021-07-01 17:46 - 2021-07-01 17:46 - 002138920 _____ (Panda Security, S.L.) C:\Users\Tom\Downloads\PANDADE.exe 2021-07-01 17:45 - 2021-07-01 17:45 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2021-07-01 17:45 - 2021-07-01 17:45 - 001687040 _____ C:\Windows\system32\libcrypto.dll 2021-07-01 17:45 - 2021-07-01 17:45 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2021-07-01 17:45 - 2021-07-01 17:45 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2021-07-01 17:45 - 2021-07-01 17:45 - 000480256 _____ C:\Windows\system32\AssignedAccessCsp.dll 2021-07-01 17:45 - 2021-07-01 17:45 - 000234496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2021-07-01 17:45 - 2021-07-01 17:45 - 000157184 _____ C:\Windows\system32\uwfcsp.dll 2021-07-01 17:45 - 2021-07-01 17:45 - 000153600 _____ C:\Windows\system32\uwfcfgmgmt.dll 2021-07-01 17:45 - 2021-07-01 17:45 - 000138056 _____ C:\Windows\system32\HvsiManagementApi.dll 2021-07-01 17:45 - 2021-07-01 17:45 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax 2021-07-01 17:45 - 2021-07-01 17:45 - 000101704 _____ C:\Windows\SysWOW64\HvsiManagementApi.dll 2021-07-01 17:45 - 2021-07-01 17:45 - 000095744 _____ C:\Windows\system32\VirtualMonitorManager.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2021-07-01 17:44 - 2021-07-01 17:44 - 001864192 _____ (The ICU Project) C:\Windows\SysWOW64\icu.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000729600 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx 2021-07-01 17:44 - 2021-07-01 17:44 - 000700928 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl 2021-07-01 17:44 - 2021-07-01 17:44 - 000575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx 2021-07-01 17:44 - 2021-07-01 17:44 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl 2021-07-01 17:44 - 2021-07-01 17:44 - 000468440 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000446976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl 2021-07-01 17:44 - 2021-07-01 17:44 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2021-07-01 17:44 - 2021-07-01 17:44 - 000304128 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2021-07-01 17:44 - 2021-07-01 17:44 - 000266240 _____ C:\Windows\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000240640 _____ C:\Windows\SysWOW64\CoreMas.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000235520 _____ C:\Windows\SysWOW64\HeatCore.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2021-07-01 17:44 - 2021-07-01 17:44 - 000182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl 2021-07-01 17:44 - 2021-07-01 17:44 - 000178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl 2021-07-01 17:44 - 2021-07-01 17:44 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax 2021-07-01 17:44 - 2021-07-01 17:44 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncpa.cpl 2021-07-01 17:44 - 2021-07-01 17:44 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2021-07-01 17:44 - 2021-07-01 17:44 - 000072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2021-07-01 17:44 - 2021-07-01 17:44 - 000067072 _____ C:\Windows\system32\BWContextHandler.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000053760 _____ C:\Windows\SysWOW64\BWContextHandler.dll 2021-07-01 17:44 - 2021-07-01 17:44 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 002254336 _____ C:\Windows\system32\dwmscene.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE 2021-07-01 17:43 - 2021-07-01 17:43 - 000707016 _____ C:\Windows\system32\TextShaping.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 000657464 _____ C:\Windows\system32\WindowManagementAPI.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 000544768 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl 2021-07-01 17:43 - 2021-07-01 17:43 - 000330752 _____ C:\Windows\SysWOW64\ssdm.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 000306688 _____ C:\Windows\system32\HeatCore.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 000238592 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl 2021-07-01 17:43 - 2021-07-01 17:43 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 000190976 _____ C:\Windows\system32\BthpanContextHandler.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 000152064 _____ C:\Windows\system32\EoAExperiences.exe 2021-07-01 17:43 - 2021-07-01 17:43 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\ncpa.cpl 2021-07-01 17:43 - 2021-07-01 17:43 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2021-07-01 17:43 - 2021-07-01 17:43 - 000010752 _____ C:\Windows\SysWOW64\agentactivationruntimestarter.exe 2021-07-01 17:43 - 2021-07-01 17:43 - 000001370 _____ C:\Windows\system32\ThirdPartyNoticesBySHS.txt 2021-07-01 17:42 - 2021-07-01 17:42 - 000563712 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2021-07-01 17:42 - 2021-07-01 17:42 - 000455168 _____ C:\Windows\system32\ssdm.dll 2021-07-01 17:42 - 2021-07-01 17:42 - 000363520 _____ C:\Windows\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-07-01 17:42 - 2021-07-01 17:42 - 000287232 _____ C:\Windows\system32\CoreMas.dll 2021-07-01 17:42 - 2021-07-01 17:42 - 000272384 _____ C:\Windows\system32\TpmTool.exe 2021-07-01 17:42 - 2021-07-01 17:42 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl 2021-07-01 17:42 - 2021-07-01 17:42 - 000165888 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2021-07-01 17:42 - 2021-07-01 17:42 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2021-07-01 17:42 - 2021-07-01 17:42 - 000074240 _____ C:\Windows\system32\rdsxvmaudio.dll 2021-07-01 17:42 - 2021-07-01 17:42 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2021-07-01 17:42 - 2021-07-01 17:42 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe 2021-07-01 17:27 - 2021-07-23 16:06 - 000000000 ____D C:\ProgramData\Mozilla 2021-07-01 17:27 - 2021-07-23 16:05 - 000000000 ____D C:\Users\Tom\AppData\LocalLow\Mozilla 2021-07-01 17:27 - 2021-07-23 16:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-07-01 17:27 - 2021-07-23 15:42 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-07-01 17:27 - 2021-07-01 17:27 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk 2021-07-01 17:27 - 2021-07-01 17:27 - 000000000 ____D C:\Users\Tom\AppData\Roaming\Mozilla 2021-07-01 17:27 - 2021-07-01 17:27 - 000000000 ____D C:\Users\Tom\AppData\Local\Mozilla 2021-07-01 17:26 - 2021-07-01 17:26 - 000332960 _____ (Mozilla) C:\Users\Tom\Downloads\Firefox Installer.exe 2021-07-01 17:25 - 2021-07-01 17:25 - 000000000 ____D C:\Users\Tom\AppData\LocalLow\AMD 2021-07-01 17:22 - 2021-07-01 17:22 - 000000000 ____D C:\Users\Tom\AppData\Local\Comms 2021-07-01 17:18 - 2021-07-23 16:04 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2021-07-01 17:18 - 2021-07-01 17:18 - 000000000 ____D C:\Windows\system32\AMD 2021-07-01 17:18 - 2021-07-01 17:18 - 000000000 ____D C:\Users\Tom\AppData\Local\AMD 2021-07-01 17:18 - 2019-09-18 18:05 - 003885152 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 003484256 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 001705568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 001237088 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 001237088 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 001010696 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 001010696 _____ C:\Windows\system32\vulkan-1.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000941152 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000873640 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000873640 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000768608 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000760928 _____ (AMD) C:\Windows\system32\atieclxx.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000574048 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000553568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000493152 _____ C:\Windows\system32\dgtrayicon.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000484960 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000480352 _____ C:\Windows\system32\GameManager64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000468576 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000466528 _____ C:\Windows\system32\amdlogum.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000439904 _____ C:\Windows\system32\atieah64.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000416864 _____ C:\Windows\system32\EEURestart.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000383584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000381536 _____ C:\Windows\SysWOW64\GameManager32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000352352 _____ C:\Windows\SysWOW64\atieah32.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000348768 _____ C:\Windows\system32\clinfo.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000304224 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000304224 _____ C:\Windows\system32\vulkaninfo.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000276064 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000276064 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-07-01 17:18 - 2019-09-18 18:05 - 000239200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000211552 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000183904 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000178752 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000162912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000158816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000157592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000152672 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000138336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000135776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000134752 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000125536 _____ (AMD) C:\Windows\system32\atimuixx.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000124000 _____ C:\Windows\system32\atidxx64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000121440 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000120928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000107104 _____ C:\Windows\SysWOW64\atidxx32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000105568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000090720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mcl64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000075360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mcl32.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000070240 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000046688 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000043616 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000019768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2021-07-01 17:18 - 2019-09-18 18:05 - 000019768 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 001686000 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 001365352 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000554072 _____ C:\Windows\system32\amdmiracast.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000472672 _____ C:\Windows\system32\amdgfxinfo64.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000381536 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000134824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000128112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000128112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000119232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000107728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2021-07-01 17:18 - 2019-09-18 18:04 - 000107728 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2021-07-01 17:18 - 2019-09-18 17:33 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2021-07-01 17:18 - 2019-09-18 17:33 - 003437632 _____ C:\Windows\system32\atiumd6a.cap 2021-07-01 17:18 - 2019-09-18 17:33 - 000920680 _____ C:\Windows\SysWOW64\atiapfxx.blb 2021-07-01 17:18 - 2019-09-18 17:33 - 000920680 _____ C:\Windows\system32\atiapfxx.blb 2021-07-01 17:18 - 2019-09-18 17:33 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2021-07-01 17:18 - 2019-09-18 17:33 - 000204952 _____ C:\Windows\system32\ativvsvl.dat 2021-07-01 17:18 - 2019-09-18 17:33 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2021-07-01 17:18 - 2019-09-18 17:33 - 000157144 _____ C:\Windows\system32\ativvsva.dat 2021-07-01 17:18 - 2019-09-18 17:33 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin 2021-07-01 17:18 - 2019-09-18 17:33 - 000138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin 2021-07-01 17:18 - 2019-09-18 17:33 - 000125488 _____ C:\Windows\system32\kapp_ci.sbin 2021-07-01 17:18 - 2019-09-18 17:33 - 000121168 _____ C:\Windows\system32\kapp_si.sbin 2021-07-01 17:18 - 2019-09-18 17:32 - 000034488 _____ C:\Windows\system32\AMDKernelEvents.man 2021-07-01 17:15 - 2021-07-02 15:15 - 000000000 ____D C:\Users\Tom\AppData\Local\PlaceholderTileLogoFolder 2021-07-01 17:08 - 2021-07-01 17:08 - 000000000 ___HD C:\$WinREAgent 2021-07-01 17:08 - 2021-07-01 17:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-07-01 17:04 - 2021-07-23 15:47 - 000804054 _____ C:\Windows\system32\PerfStringBackup.INI 2021-07-01 17:04 - 2021-07-23 15:08 - 000003376 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3547423862-3492151725-1014740435-1001 2021-07-01 17:04 - 2021-07-23 15:08 - 000000000 ___RD C:\Users\Tom\OneDrive 2021-07-01 17:02 - 2021-07-23 15:09 - 000000000 ____D C:\Users\Tom\AppData\Local\Packages 2021-07-01 17:02 - 2021-07-23 15:09 - 000000000 ____D C:\Users\Tom\AppData\Local\D3DSCache 2021-07-01 17:02 - 2021-07-23 15:08 - 000002387 _____ C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-07-01 17:02 - 2021-07-02 22:18 - 000000000 ____D C:\Users\Tom 2021-07-01 17:02 - 2021-07-01 18:16 - 000000000 ____D C:\Users\Tom\AppData\Roaming\Adobe 2021-07-01 17:02 - 2021-07-01 17:02 - 000000020 ___SH C:\Users\Tom\ntuser.ini 2021-07-01 17:02 - 2021-07-01 17:02 - 000000000 ___RD C:\Users\Tom\3D Objects 2021-07-01 17:02 - 2021-07-01 17:02 - 000000000 ____D C:\Users\Tom\AppData\Local\VirtualStore 2021-07-01 17:02 - 2021-07-01 17:02 - 000000000 ____D C:\Users\Tom\AppData\Local\Publishers 2021-07-01 17:02 - 2021-07-01 17:02 - 000000000 ____D C:\Users\Tom\AppData\Local\ConnectedDevicesPlatform 2021-07-01 16:59 - 2021-07-01 16:59 - 000000000 ____D C:\Windows\CSC 2021-07-01 16:58 - 2021-07-01 16:58 - 000000000 _SHDL C:\Documents and Settings 2021-07-01 16:55 - 2021-07-23 16:04 - 000008192 ___SH C:\DumpStack.log.tmp 2021-07-01 16:55 - 2021-07-01 16:55 - 000002858 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3547423862-3492151725-1014740435-500 2021-07-01 16:55 - 2021-07-01 16:55 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-07-23 16:04 - 2020-11-19 01:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-07-23 16:04 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-07-23 16:04 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2021-07-23 16:04 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2021-07-23 15:54 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2021-07-23 15:42 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-07-23 15:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2021-07-23 15:40 - 2020-11-19 00:44 - 000308280 _____ C:\Windows\system32\FNTCACHE.DAT 2021-07-23 15:33 - 2019-12-07 16:51 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2021-07-23 15:33 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-07-23 15:09 - 2020-11-19 01:46 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-07-23 15:09 - 2020-11-19 01:46 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-07-23 15:07 - 2020-11-19 00:44 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-07-02 15:29 - 2020-11-19 01:48 - 000000000 ____D C:\ProgramData\Packages 2021-07-02 15:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat 2021-07-01 20:58 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports 2021-07-01 18:27 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-07-01 18:05 - 2019-12-07 16:49 - 000000000 ____D C:\Windows\system32\OpenSSH 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\F12 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\F12 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Com 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Sysprep 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Keywords 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE 2021-07-01 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX 2021-07-01 18:04 - 2019-12-07 16:51 - 000000000 ___SD C:\Windows\system32\AppV 2021-07-01 18:04 - 2019-12-07 16:51 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-07-01 18:04 - 2019-12-07 16:51 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Com 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\IME 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\DiagTrack 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-07-01 18:04 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-07-01 18:04 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing 2021-07-01 17:54 - 2019-12-07 11:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2021-07-01 17:49 - 2019-12-07 16:51 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2021-07-01 17:47 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2021-07-01 17:47 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\GroupPolicy 2021-07-01 17:42 - 2020-11-19 01:46 - 002877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2021-07-01 17:17 - 2020-11-19 01:46 - 000003622 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-07-01 17:17 - 2020-11-19 01:46 - 000003498 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-07-01 17:02 - 2020-11-19 01:48 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-07-01 16:59 - 2019-12-07 16:49 - 000000000 ____D C:\Windows\system32\FxsTmp 2021-07-01 16:59 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState 2021-07-01 16:59 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate ==================== Files in the root of some directories ======== 2021-07-01 18:14 - 2021-07-01 18:14 - 000000410 _____ () C:\Users\Tom\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================