Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Possible virus or malware

Started by mckinnik , Jul 18 2020 06:58 PM

#possible virus #malware

Please log in to reply

#16
mckinnik

Posted 15 August 2020 - 10:45 AM

Member

Topic Starter
Member
57 posts

Okay ... I finally have the results of the second FRST scan. The scan took a very long time to complete

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-08-2020

Ran by mckinnik (administrator) on DESKTOP-GLBDK8Q (SAMSUNG ELECTRONICS CO., LTD. 750QUA) (14-08-2020 20:12:14)

Running from C:\Users\mckin\OneDrive\Desktop

Loaded Profiles: mckinnik

Platform: Windows 10 Home Version 1903 18362.1016 (X64) Language: English (United States)

Default browser: Chrome

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository̵151.inf_amd64_e5705aeeafa5c2ab\B335002\atieclxx.exe

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository̵151.inf_amd64_e5705aeeafa5c2ab\B335002\atiesrxx.exe

(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe

(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe

(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE

(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE

(Cisco Video Technologies Israel Ltd. -> Synamedia) C:\Users\mckin\AppData\Local\Synamedia\VideoGuardPlayer\VideoGuardMonitor\VideoGuardMonitor.exe

(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe

(Hitachi-LG Data Storage Korea, Inc. -> Hitachi-LG Data Storage, Inc.) C:\Program Files (x86)\ODD Auto Firmware Update\ODDFWUpdate.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

(Qualcomm Atheros -> Windows ® Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\ConsultingMode\ConsultingMode.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\ConsultingMode\ConsultingModeService.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\SamsungSecurity\CmdServer\SamsungSecurityCmdServer.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\SamsungSecurity\CmdServer\SamsungSecurityEventHandler.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\SamsungSecurity\CmdServer\SamsungSecurityLauncher.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\PTPCtrl\PTPCtrl.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\ColorEngine\ColorEngine.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Recovery\BulletService.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\PCCleaner2Service.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\PCCleaner2Status.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungSettings\SamsungSettingsExpansionPack.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungSettings\SamsungSettingsExpansionUI.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungSettings\SamsungSettingsExpLauncher.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUEngine.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUService.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\sService\sServiceAgentLauncherSvc.exe

(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\sService\sServiceKeyMonitor.exe

(Samsung Electronics CO., LTD. -> Samsung) C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe

(Trend Micro, Inc. -> ) C:\Program Files\Trend Micro\TMIDS\tower\PwmTower.exe <3>

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\module\10011\8.1.2009\8.1.2009\TmsaInstance64.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\DiamondRing\DrSDKCaller.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\TMIDS\PwmSvc.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe

(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1246368 2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)

HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [246112 2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)

HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [190648 2018-06-27] (CyberLink Corp. -> CyberLink)

HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [593080 2018-06-27] (CyberLink Corp. -> CyberLink Corp.)

HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.)

HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)

HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62625080 2020-07-05] (Discord Inc. -> Discord Inc.)

HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-18] (Microsoft Windows -> Microsoft Corporation)

HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-18] (Microsoft Windows -> Microsoft Corporation)

HKU\S-1-5-21-3518604814-232533841-1677687598-1002\...\Run: [GoogleDriveSync] => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart

HKU\S-1-5-21-3518604814-232533841-1677687598-1002\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1911152 2020-08-12] (Microsoft Corporation -> Microsoft Corporation)

HKU\S-1-5-21-3518604814-232533841-1677687598-1002\...\Run: [VideoGuardMonitor] => C:\Users\mckin\AppData\Local\Synamedia\VideoGuardPlayer\VideoGuardMonitor\VideoGuardMonitor.exe [2610920 2019-11-21] (Cisco Video Technologies Israel Ltd. -> Synamedia)

HKU\S-1-5-21-3518604814-232533841-1677687598-1002\...\Run: [Discord] => C:\Users\mckin\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-06-09] (Discord Inc. -> Discord Inc.)

HKU\S-1-5-21-3518604814-232533841-1677687598-1002\...\RunOnce: [Application Restart #5] => C:\Program Files\Trend Micro\TMIDS\tower\PwmTower.exe [935840 2018-07-13] (Trend Micro, Inc. -> )

HKU\S-1-5-21-3518604814-232533841-1677687598-1002\...\RunOnce: [Application Restart #0] => C:\Program Files\Trend Micro\TMIDS\tower\PwmTower.exe [935840 2018-07-13] (Trend Micro, Inc. -> )

HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-26] (Samsung Electronics CO., LTD. -> Samsung)

HKU\S-1-5-18\...\RunOnce: [Application Restart #3] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-26] (Samsung Electronics CO., LTD. -> Samsung)

HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-26] (Samsung Electronics CO., LTD. -> Samsung)

HKU\S-1-5-18\...\RunOnce: [Application Restart #2] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-26] (Samsung Electronics CO., LTD. -> Samsung)

HKU\S-1-5-18\...\RunOnce: [Application Restart #4] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-26] (Samsung Electronics CO., LTD. -> Samsung)

HKU\S-1-5-18\...\RunOnce: [Application Restart #5] => C:\Program Files\Samsung\SamsungSettings\WlanAniControl.exe [3379096 2017-06-26] (Samsung Electronics CO., LTD. -> Samsung)

HKLM\...\Windows x64\Print Processors\Canon TS6100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDP.DLL [482816 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)

HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6100 series: C:\WINDOWS\system32\CNMLMDP.DLL [1302016 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.125\Installer\chrmstp.exe [2020-08-10] (Google LLC -> Google LLC)

Startup: C:\Users\mckin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2020-05-16]

ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\mckin\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {116569F3-7FF4-4C4C-8034-17A7AF2229DB} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [956920 2019-12-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

Task: {16B3C668-E49D-487E-836F-97E0171F6AC4} - System32\Tasks\Samsung\SamsungPCCleaner\SecurityCheck => C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\SecurityAppChecker.exe [4664568 2020-06-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {19932E13-FD77-4C47-8E10-CC484B97C15F} - System32\Tasks\SamsungUpdateServiceUpdate => C:\ProgramData\Samsung\SamsungUpdate3\data\SelfUpdate\SUInst.exe

Task: {31E64FB9-A4BC-4EDE-BCA5-8EA843517BAB} - System32\Tasks\SecTimeSync\TimeSyncInit => C:\Windows\SecTimeSync.exe [1629424 2018-06-11] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)

Task: {35BFBAB8-D0FF-4353-A11E-EDC7D4F8CC14} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2749288 2020-08-12] (Microsoft Corporation -> Microsoft Corporation)

Task: {3D7F9E35-CEAF-4BB3-8082-E2537C92936E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118624 2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Task: {49DD80F0-3637-48C9-9259-8B2352B10FF8} - System32\Tasks\Samsung\Settings\SettingsHibernateMonitor => C:\Program Files\Samsung\SamsungSettings\SettingsHibernateMonitor.exe [46488 2017-07-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {550E6CD7-C77B-4B65-96F1-C7FE53C50EB8} - System32\Tasks\DPICustomized => C:\ProgramData\Samsung\DPICustomizing\FontCustomizing.exe [24736 2017-11-05] (Samsung Electronics CO., LTD. -> )

Task: {56277C9B-AF4E-4740-B06A-D75A9D64F9C9} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2018-10-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {56D95652-C436-41AB-BDA9-BF26A30FBA3D} - System32\Tasks\PTPFilter => C:\Program Files\PTPCtrl\PTPCtrl.exe [3336864 2018-05-09] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {5D426AB7-E112-4BF2-9CC7-CC26F8B4CF33} - System32\Tasks\Samsung\SamsungSecurity\SecurityAppMoniter => C:\Program Files (x86)\Samsung\SamsungSecurity\SecurityAppChecker.exe [459608 2019-10-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {5ED0E562-B82C-423E-94AD-95A6941F3C08} - System32\Tasks\ColorEngine => C:\Program Files\Samsung\ColorEngine\ColorEngine.exe [571736 2019-05-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {68D60D6E-6A3C-47F4-8E72-181C4D04B9A2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-03] (Google Inc -> Google Inc.)

Task: {73418FAA-0C7A-4BA8-B589-DF6465E12E8B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe [1471032 2020-08-13] (Adobe Inc. -> Adobe)

Task: {7A085267-4926-43DE-A23B-48A191DDAF27} - System32\Tasks\Samsung\SamsungSecurity\SamsungSecurityPatternLoginMonitor => C:\Program Files (x86)\Samsung\SamsungSecurity\SMessage.exe [500056 2019-10-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {7A3B3FA3-F89A-4F75-84D8-405B28475781} - System32\Tasks\AirSupport Update => C:\Program Files\Trend Micro\AirSupport\Update.exe [4344776 2020-05-17] (Trend Micro, Inc. -> Trend Micro Inc.)

Task: {8DB18245-D4FD-4F4D-8B97-84C19E2E7252} - System32\Tasks\Samsung\SamsungUpdate\UserModeWorker => C:\Program Files\Samsung\SamsungUpdate\SUUserModeWorker.exe [21880 2020-05-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {A7357291-DC9D-4F01-9C8A-1EDB08B9E02F} - System32\Tasks\Samsung\SamsungSecurity\SamsungSecurityPatternLoginAccountMonitor => C:\Program Files (x86)\Samsung\SamsungSecurity\SMessage.exe [500056 2019-10-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {AD48ED6B-F1A0-484B-B625-3FFBA3CD6CEB} - System32\Tasks\ColorSettings => C:\Program Files\Samsung\ColorEngine\SetParam3264.exe [40608 2019-05-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {B04C66D3-635E-4EBA-A231-AE83A506A838} - System32\Tasks\ODDAutoFirmwareUpdate => C:\Program Files (x86)\ODD Auto Firmware Update\ODDFWUpdate.exe [1260880 2020-01-24] (Hitachi-LG Data Storage Korea, Inc. -> Hitachi-LG Data Storage, Inc.)

Task: {C5E99885-5966-46C2-A980-8D4E1DB289CD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1312672 2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Task: {D8E598ED-640E-4A1A-A2A4-631E756D60D8} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-13] (Adobe Inc. -> Adobe)

Task: {EBF74085-AE5E-4E9E-8E3E-E638A93E24F9} - System32\Tasks\Samsung\Recovery8\BulletUserModeWorker => C:\Program Files\Samsung\Recovery\BulletUserModeWorker.exe [317160 2018-06-20] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

Task: {EC300D46-8F0B-4BF9-A963-0D8A10334DB3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118624 2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Task: {ECC85EE6-C980-41FE-B76D-4D257BD2FA25} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819128 2020-07-27] (Microsoft Corporation -> Microsoft Corporation)

Task: {F82E7C73-277F-4A83-966A-AE60D954C660} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819128 2020-07-27] (Microsoft Corporation -> Microsoft Corporation)

Task: {FA16150C-7C42-4B08-8838-393F037C1721} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-03] (Google Inc -> Google Inc.)

Task: {FC00166F-6DEA-4DD7-A6B0-4E1C39A3E89E} - System32\Tasks\Samsung\Wifi Camera\WiFi Camera Agent => C:\Program Files\Samsung\WiFiCamera\WiFiCameraAgent.exe [434904 2018-06-20] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{3f913ad0-69eb-4e37-af61-b835662b816c}: [DhcpNameServer] 68.105.28.11 68.105.29.11 68.105.28.12

Tcpip\..\Interfaces\{df4a89ed-0624-4f9c-bbe4-534d39895a40}: [DhcpNameServer] 192.168.42.129

Internet Explorer:

==================

HKU\S-1-5-21-3518604814-232533841-1677687598-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://samsung17win10.msn.com/?pc=SMTE

HKU\S-1-5-21-3518604814-232533841-1677687598-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung17win10.msn.com/?pc=SMTE

SearchScopes: HKU\S-1-5-21-3518604814-232533841-1677687598-1002 -> DefaultScope {C44B1D2B-F169-4ABB-9F54-B4CD5A09252F} URL =

SearchScopes: HKU\S-1-5-21-3518604814-232533841-1677687598-1002 -> {C44B1D2B-F169-4ABB-9F54-B4CD5A09252F} URL =

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)

BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)

BHO: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2020-04-10] (Trend Micro, Inc. -> Trend Micro Inc.)

BHO: Password Manager BHO -> {782829FB-43A5-4AE0-A14E-590A252E7946} -> C:\Program Files\Trend Micro\TMIDS\bhoDirectPass64.dll [2020-07-06] (Trend Micro, Inc. -> Trend Micro Inc.)

BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)

BHO-x32: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2020-04-10] (Trend Micro, Inc. -> Trend Micro Inc.)

BHO-x32: Password Manager BHO -> {782829FB-43A5-4AE0-A14E-590A252E7946} -> C:\Program Files\Trend Micro\TMIDS\bhoDirectPass32.dll [2020-07-06] (Trend Micro, Inc. -> Trend Micro Inc.)

Toolbar: HKLM - Password Manager ToolBar - {97EE74D2-C351-4ECE-B75A-8CD36FAE3661} - C:\Program Files\Trend Micro\TMIDS\bhoDirectPass64.dll [2020-07-06] (Trend Micro, Inc. -> Trend Micro Inc.)

Toolbar: HKLM - Trend Micro Security Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2020-04-10] (Trend Micro, Inc. -> Trend Micro Inc.)

Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)

Toolbar: HKLM-x32 - Password Manager ToolBar - {97EE74D2-C351-4ECE-B75A-8CD36FAE3661} - C:\Program Files\Trend Micro\TMIDS\bhoDirectPass32.dll [2020-07-06] (Trend Micro, Inc. -> Trend Micro Inc.)

Toolbar: HKLM-x32 - Trend Micro Security Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2020-04-10] (Trend Micro, Inc. -> Trend Micro Inc.)

Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)

Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-07] (Microsoft Corporation -> Microsoft Corporation)

Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2020-04-10] (Trend Micro, Inc. -> Trend Micro Inc.)

Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2020-04-10] (Trend Micro, Inc. -> Trend Micro Inc.)

Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll [2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)

Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll [2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)

Edge:

======

DownloadDir: C:\Users\mckin\Downloads

Edge DefaultProfile: Default

Edge Profile: C:\Users\mckin\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-14]

Edge DownloadDir: C:\Users\mckin\Downloads

Edge Extension: (Trend Micro Security for Best Buy) - C:\Users\mckin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aafppfglogndiagcgpkieicjfkjghbpd [2020-08-14]

FireFox:

========

FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\[email protected]

FF Extension: (Trend Micro Toolbar) - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\[email protected] [2020-06-17] [UpdateUrl:hxxps://ti-res.trendmicro.com/ti-res/toolbar/FF/prod/updates.json]

FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\[email protected]

FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin HKU\S-1-5-21-3518604814-232533841-1677687598-1002: @zoom.us/ZoomVideoPlugin -> C:\Users\mckin\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-13] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:

=======

CHR DefaultProfile: Default

CHR Profile: C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default [2020-08-14]

CHR Notifications: Default -> hxxps://colapamall.com; hxxps://drive.google.com; hxxps://m.headlineswithavoice.com; hxxps://mail.google.com; hxxps://mewe.com; hxxps://outlook.live.com; hxxps://photos.google.com; hxxps://www.facebook.com; hxxps://www.lawenforcementtoday.com; hxxps://www.neonrevolt.com; hxxps://www.spiritualunite.com; hxxps://www.youtube.com

CHR HomePage: Default -> hxxps://www.google.com/

CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://duckduckgo.com/"

CHR NewTab: Default -> Not-active:"chrome-extension://llelondjpcjljnjihdflhpclcpbiaiba/iframe_msn.html"

CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}

CHR DefaultSearchKeyword: Default -> duckduckgo.com

CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab

CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list

CHR Extension: (Slides) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-03]

CHR Extension: (Docs) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-03]

CHR Extension: (Google Drive) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-03]

CHR Extension: (DuckDuckGo) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2020-08-13]

CHR Extension: (YouTube) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-03]

CHR Extension: (ReadingFanatic) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmmbajpcfedaechekcachdldkdfaalbf [2020-06-13]

CHR Extension: (Spell checker and Grammar checker by Scribens) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmgkiikdlhmpikkhpiplldicbnicmboc [2020-07-15]

CHR Extension: (Sheets) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-03]

CHR Extension: (Trend Micro Password Manager) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fokifklggehlihkifghafpekelcicmgl [2019-07-02]

CHR Extension: (Emojis - Emoji Keyboard) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaoflciahikhligngeccdecgfjngejlh [2020-07-25]

CHR Extension: (Google Docs Offline) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-11]

CHR Extension: (Guardio: Antivirus & Malware Removal) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjfpmkejnolcfklaaddjnckanhhgegla [2020-07-09]

CHR Extension: (Google Play Music) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2019-01-03]

CHR Extension: (EasyVoice Search) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifabnpjjgbggngmgijikmfjkppdhfpgj [2019-01-07]

CHR Extension: (Grammarly for Chrome) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2020-08-14]

CHR Extension: (Sea Turtle) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgekaffpofmijoelekkemmmelefohain [2019-12-15]

CHR Extension: (MSN New Tab) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\llelondjpcjljnjihdflhpclcpbiaiba [2020-05-25]

CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-05-28]

CHR Extension: (Office) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2020-08-07]

CHR Extension: (Wikibuy from Capital One) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2020-08-07]

CHR Extension: (Chrome Web Store Payments) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]

CHR Extension: (Trend Micro Toolbar) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf [2020-05-22]

CHR Extension: (Flash Player ) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooonkoejkmhiacbhhkdgfeemioceapbh [2019-06-12]

CHR Extension: (Amazon Assistant for Chrome) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2020-08-14]

CHR Extension: (mp10search) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfkloachmagkajpnglbknngaimopgkbd [2019-06-12]

CHR Extension: (Gmail) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-03-26]

CHR Extension: (Chrome Media Router) - C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-21]

CHR Profile: C:\Users\mckin\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-05-02]

CHR Profile: C:\Users\mckin\AppData\Local\Google\Chrome\User Data\System Profile [2020-05-17]

CHR HKU\S-1-5-21-3518604814-232533841-1677687598-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-13] (Adobe Inc. -> Adobe)

R2 Amsp; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [384032 2019-07-28] (Trend Micro, Inc. -> Trend Micro Inc.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10566528 2020-07-22] (Microsoft Corporation -> Microsoft Corporation)

R2 ConsultingMode; C:\Program Files (x86)\Samsung\ConsultingMode\ConsultingModeService.exe [951024 2020-05-18] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\20.134.0705.0008\FileSyncHelper.exe [2165608 2020-08-12] (Microsoft Corporation -> Microsoft Corporation)

R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [399296 2019-11-28] (Canon Inc. -> )

S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\20.134.0705.0008\OneDriveUpdaterService.exe [2525040 2020-08-12] (Microsoft Corporation -> Microsoft Corporation)

R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1127584 2019-07-29] (Trend Micro, Inc. -> Trend Micro Inc.)

R2 PwmSvc; C:\Program Files\Trend Micro\TMIDS\PwmSvc.exe [2794056 2020-07-06] (Trend Micro, Inc. -> Trend Micro Inc.)

R2 Samsung PC Cleaner 2 Service; C:\Program Files\Samsung\Samsung PC Cleaner 2 Service\PCCleaner2Service.exe [1147136 2020-06-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

R2 Samsung Settings Expansion Launcher; C:\Program Files\Samsung\SamsungSettings\SamsungSettingsExpLauncher.exe [229232 2020-05-07] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

R2 SamsungRecoveryService; C:\Program Files\Samsung\Recovery\BulletService.exe [479464 2018-06-20] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

R2 SamsungSecurity Launcher; C:\Program Files (x86)\Samsung\SamsungSecurity\CmdServer\SamsungSecurityLauncher.exe [2014040 2019-10-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

R2 SamsungUpdateService; C:\Program Files\Samsung\SamsungUpdate\SUService.exe [377208 2020-05-21] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

R2 sService Agent Launcher; C:\Program Files\Samsung\sService\sServiceAgentLauncherSvc.exe [412880 2017-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

S3 sServiceLoopBack; C:\Program Files\Samsung\sService\sServiceLoopBackSvc.exe [47312 2018-02-08] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

S3 TmWscSvc; C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe [406440 2019-11-05] (Trend Micro, Inc. -> Trend Micro Inc.)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 mxtBootBridge; C:\WINDOWS\System32\drivers\mxtBootBridge.sys [66560 2018-06-26] (Solomon Systech Limited -> Atmel Corporation)

R3 PTPFilter; C:\WINDOWS\System32\drivers\PTPFilter.sys [69440 2018-06-04] (WDKTestCert tguni,131171724190859783 -> Samsung)

S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [26368 2015-07-13] (Daniel Terhell -> Resplendence Software Projects Sp.)

R3 SamsungEventController; C:\WINDOWS\System32\drivers\SamsungEventController.sys [41616 2018-05-16] (Samsung Electronics CO., LTD. -> Samsung)

R3 Shci; C:\WINDOWS\System32\drivers\Shci.sys [62448 2018-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Samsung Electronics Co., Ltd.)

S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167232 2018-12-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

R0 TMEBC; C:\WINDOWS\System32\DRIVERS\TMEBC64.sys [74760 2019-06-04] (Trend Micro, Inc. -> Trend Micro Inc.)

R2 tmeevw; C:\WINDOWS\system32\DRIVERS\tmeevw.sys [147672 2017-05-10] (Trend Micro, Inc. -> Trend Micro Inc.)

S0 tmel; C:\WINDOWS\System32\DRIVERS\tmel.sys [37552 2019-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Trend Micro Inc.)

R1 tmeyes; C:\WINDOWS\system32\DRIVERS\tmeyes.sys [686152 2020-06-07] (Trend Micro, Inc. -> Trend Micro Inc.)

R2 tmnciesc; C:\WINDOWS\system32\DRIVERS\tmnciesc.sys [562296 2018-03-07] (Trend Micro, Inc. -> Trend Micro Inc.)

R1 tmumh; C:\WINDOWS\system32\DRIVERS\TMUMH.sys [160544 2020-03-27] (Trend Micro, Inc. -> Trend Micro Inc.)

R2 tmusa; C:\WINDOWS\system32\DRIVERS\tmusa.sys [137776 2019-05-03] (Trend Micro, Inc. -> Trend Micro Inc.)

S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation)

U2 TMAgent; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-14 16:00 - 2020-08-14 16:00 - 000000000 ____D C:\Users\mckin\AppData\Local\inSSIDer

2020-08-14 13:37 - 2020-08-14 16:01 - 000000000 ____D C:\Users\mckin\AppData\Local\MetaGeek

2020-08-14 13:37 - 2020-08-14 16:00 - 000000000 ____D C:\Users\mckin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetaGeek

2020-08-14 12:50 - 2020-08-14 12:50 - 000000000 ____D C:\Users\mckin\AppData\Local\MetaGeek,_LLC

2020-08-13 11:49 - 2020-08-13 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LatencyMon

2020-08-13 11:49 - 2020-08-13 11:49 - 000000000 ____D C:\Program Files\LatencyMon

2020-08-13 11:49 - 2015-07-13 11:16 - 000026368 _____ (Resplendence Software Projects Sp.) C:\WINDOWS\system32\Drivers\rspLLL64.sys

2020-08-13 11:06 - 2020-08-13 11:32 - 000137243 _____ C:\Users\mckin\OneDrive\Documents\DESKTOP-GLBDK8Q.txt

2020-08-13 10:58 - 2020-08-13 10:59 - 000000000 ____D C:\Program Files\Speccy

2020-08-13 10:58 - 2020-08-13 10:58 - 000000837 _____ C:\Users\Public\Desktop\Speccy.lnk

2020-08-13 10:58 - 2020-08-13 10:58 - 000000837 _____ C:\ProgramData\Desktop\Speccy.lnk

2020-08-13 10:58 - 2020-08-13 10:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy

2020-08-13 09:55 - 2020-08-13 09:55 - 000039372 _____ C:\junk.txt

2020-08-13 09:33 - 2020-08-13 09:33 - 000036408 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS

2020-08-12 17:44 - 2020-08-12 17:44 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 022642688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 007758848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 007270912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 006294528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 006074552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 005904896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 005849872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 005767224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 005003824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 004611072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 003743056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 003516416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2020-08-12 17:44 - 2020-08-12 17:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2020-08-12 17:44 - 2020-08-12 17:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2020-08-12 17:44 - 2020-08-12 17:44 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL

2020-08-12 17:44 - 2020-08-12 17:44 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL

2020-08-12 17:44 - 2020-08-12 17:44 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL

2020-08-12 17:44 - 2020-08-12 17:44 - 002138280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL

2020-08-12 17:44 - 2020-08-12 17:44 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001740800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001654312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001420320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi

2020-08-12 17:44 - 2020-08-12 17:44 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000738064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL

2020-08-12 17:44 - 2020-08-12 17:44 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000675040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL

2020-08-12 17:44 - 2020-08-12 17:44 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000564488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL

2020-08-12 17:44 - 2020-08-12 17:44 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL

2020-08-12 17:44 - 2020-08-12 17:44 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys

2020-08-12 17:44 - 2020-08-12 17:44 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys

2020-08-12 17:44 - 2020-08-12 17:44 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys

2020-08-12 17:44 - 2020-08-12 17:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe

2020-08-12 17:44 - 2020-08-12 17:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll

2020-08-12 17:44 - 2020-08-12 17:44 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin

2020-08-12 17:44 - 2020-08-12 17:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin

2020-08-12 17:43 - 2020-08-12 17:43 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 009932088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 007915864 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 007850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 007583272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 007270728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 005283776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin

2020-08-12 17:43 - 2020-08-12 17:43 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 003806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 003368616 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002766952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002717696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 002698048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002471936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002260312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 002085632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2020-08-12 17:43 - 2020-08-12 17:43 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 001482568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2020-08-12 17:43 - 2020-08-12 17:43 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000823744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000822800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS

2020-08-12 17:43 - 2020-08-12 17:43 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2020-08-12 17:43 - 2020-08-12 17:43 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe

2020-08-12 17:43 - 2020-08-12 17:43 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll

2020-08-12 17:43 - 2020-08-12 17:43 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll

2020-08-12 17:36 - 2020-08-12 17:37 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe

2020-08-12 17:36 - 2020-08-12 17:37 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe

2020-07-20 13:08 - 2020-07-20 13:08 - 000913656 _____ C:\Users\mckin\OneDrive\Documents\IMG_20200720_0002.pdf

2020-07-20 12:58 - 2020-07-20 12:59 - 000246820 _____ C:\Users\mckin\OneDrive\Documents\IMG_20200720_0001.pdf

2020-07-18 20:05 - 2020-07-18 20:05 - 000104451 _____ C:\Users\mckin\OneDrive\Documents\FRST.txt

2020-07-18 10:16 - 2020-07-18 20:05 - 000046189 _____ C:\Users\mckin\OneDrive\Documents\Addition.txt

2020-07-18 09:59 - 2020-08-14 20:17 - 000000000 ____D C:\FRST

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-08-14 20:26 - 2018-08-31 09:22 - 000000512 _____ C:\Users\Public\amdsfhdcd.bin

2020-08-14 20:25 - 2019-01-04 12:09 - 000000000 ____D C:\Users\mckin\AppData\Local\DP_Tower_3.7

2020-08-14 20:22 - 2019-03-18 21:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2020-08-14 20:06 - 2019-01-03 13:40 - 000000000 ___RD C:\Users\mckin\OneDrive

2020-08-14 19:58 - 2019-06-21 15:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy

2020-08-14 16:00 - 2019-04-29 10:38 - 000000000 ____D C:\Users\mckin\AppData\Local\SquirrelTemp

2020-08-14 14:17 - 2019-06-21 16:05 - 000004166 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{82C98F3A-F861-4825-865D-F4A99D1C2801}

2020-08-14 12:55 - 2019-01-04 12:09 - 000000000 ____D C:\ProgramData\TMDP_Log

2020-08-14 12:38 - 2018-09-18 18:19 - 000000000 ____D C:\Users\mckin\AppData\Local\Packages

2020-08-14 12:36 - 2019-03-18 21:52 - 000000000 ___HD C:\Program Files\WindowsApps

2020-08-14 12:36 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\AppReadiness

2020-08-14 12:26 - 2019-01-03 13:58 - 000000000 ____D C:\Users\mckin\AppData\Local\ElevatedDiagnostics

2020-08-14 10:30 - 2019-06-21 16:06 - 000840852 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2020-08-14 10:30 - 2019-03-18 21:50 - 000000000 ____D C:\WINDOWS\INF

2020-08-14 10:28 - 2019-03-18 21:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM

2020-08-14 10:25 - 2019-06-21 16:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2020-08-14 10:25 - 2019-03-18 21:37 - 001310720 _____ C:\WINDOWS\system32\config\BBI

2020-08-14 10:18 - 2019-03-18 21:37 - 000000000 ____D C:\WINDOWS\CbsTemp

2020-08-14 08:20 - 2019-06-21 16:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Samsung

2020-08-13 23:14 - 2020-02-13 09:10 - 000000000 ____D C:\ProgramData\CanonIJPLM

2020-08-13 15:38 - 2019-06-21 16:05 - 000004564 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier

2020-08-13 15:38 - 2019-03-18 21:56 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2020-08-13 15:38 - 2019-03-18 21:56 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2020-08-13 15:36 - 2020-07-14 11:36 - 004510264 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe

2020-08-13 15:36 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed

2020-08-13 15:36 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\Macromed

2020-08-13 08:21 - 2018-09-18 18:19 - 000000000 ___RD C:\Users\mckin\3D Objects

2020-08-13 08:21 - 2018-09-01 01:18 - 000000000 __RHD C:\Users\Public\AccountPictures

2020-08-13 08:20 - 2019-09-13 12:07 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive

2020-08-13 08:20 - 2019-06-21 15:57 - 000447536 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\SystemResources

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\setup

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\oobe

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\migwiz

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\system32\Dism

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\ShellExperiences

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\Provisioning

2020-08-13 08:20 - 2019-03-18 21:52 - 000000000 ____D C:\WINDOWS\bcastdvr

2020-08-13 08:20 - 2019-03-18 21:37 - 000000000 ____D C:\WINDOWS\servicing

2020-08-12 21:00 - 2019-01-04 14:26 - 000000010 _____ C:\Users\mckin\AppData\Local\sponge.last.runtime.cache

2020-08-12 18:41 - 2020-06-23 21:17 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk

2020-08-12 18:41 - 2020-06-23 21:17 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk

2020-08-12 18:41 - 2020-06-23 21:17 - 000002276 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk

2020-08-12 12:29 - 2019-09-13 12:07 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task

2020-08-12 12:29 - 2019-09-13 12:07 - 000002174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2020-08-11 12:47 - 2020-01-30 20:06 - 000000000 ____D C:\Users\mckin\AppData\Roaming\Messenger

2020-08-11 12:33 - 2019-01-04 11:46 - 000000000 ____D C:\ProgramData\Trend Micro

2020-08-11 12:29 - 2020-01-22 18:50 - 000000000 ____D C:\Users\mckin\AppData\Local\CrashDumps

2020-08-10 15:15 - 2019-01-03 20:26 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2020-08-08 18:31 - 2019-01-09 22:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office

2020-08-07 16:48 - 2018-04-11 16:38 - 000000359 _____ C:\WINDOWS\win.ini

2020-07-17 09:03 - 2020-07-05 11:30 - 000000000 ____D C:\Users\mckin\AppData\Roaming\discord

==================== Files in the root of some directories ========

2019-01-04 11:51 - 2020-01-22 11:27 - 000000036 _____ () C:\Users\mckin\AppData\Local\housecall.guid.cache

2019-01-04 14:26 - 2020-08-12 21:00 - 000000010 _____ () C:\Users\mckin\AppData\Local\sponge.last.runtime.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================