Computer lags until I open task manager
I have a jam with my computer, but the issue is, I don't know what it is exactly. Whenever I play games, with only the game up, my computer sometimes lags really bad. When I go to task manager to see what's wrong and go back to the game, the lag stops. I've tried this with many different approaches such as alt+tab out and then back in the game, opening a different application, and the only thing that worked is opening Task Manager. I looked this up online and I kept seeing that it was most likely malware stopping it's operations to not be detected.
I got frustrated as nothing I tried to do worked and I full reset my PC files and all. When I got back in, I went straight to discord and steam with norton security on, and that's the only place I went. I open up a game, and it lags again, until I open up task manager. I recently learned that the only thing that doesn't wipe in a hard reset is System 32, so I fear that it might be in there as a Trojan. I don't want to mess with it anymore, because I was told that if I deleted anything that wasn't the virus in there I would lose my computer for good. I've been at this for months now, and I'm so stressed out, because I don't know how bad the virus really is. I'd really be overjoyed more than I have been in the past few months combined when all the virus is gone, so if anyone can maybe help, PLEASE help. Thank you in advance!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2020 01
Ran by willi (administrator) on LAPTOP-39MEDTSF (Acer Nitro AN515-53) (16-07-2020 19:56:56)
Running from C:\Users\willi\Downloads
Loaded Profiles: willi
Platform: Windows 10 Home Version 1903 18362.900 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\NitroSense Service\PSAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\NitroSense Service\PSAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\NitroSense Service\PSSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated -> acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Acer Incorporated -> TODO: <Company name>) C:\Program Files\Acer\User Experience Improvement Program\Plugin\AppMonitor\AppMonitorPlugIn.exe
(Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Discord Inc. -> Discord Inc.) C:\Users\willi\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\willi\AppData\Local\Gaijin\Program Files (x86)\NetAgent\.obsolete\gjagent.exe.41
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <19>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel® Extreme Tuning Utility -> Intel® Corporation) C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b5d4c82c67b39358\igfxCUIService.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b5d4c82c67b39358\igfxEM.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b5d4c82c67b39358\igfxext.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b5d4c82c67b39358\IntelCpHDCPSvc.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b5d4c82c67b39358\IntelCpHeciSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e335ebb186115025\RstMwService.exe
(Intel® Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel® Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel® Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\willi\AppData\Local\Microsoft\OneDrive\20.114.0607.0002\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\willi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.20.4.57\NortonSecurity.exe <2>
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.20.4.57\nsWscSvc.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [876032 2017-10-13] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [320584 2018-02-13] (Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-20] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [RazerCortex] => "C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe" -autorun
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\Run: [Discord] => C:\Users\willi\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-06-09] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3377440 2020-07-10] (Valve -> Valve Corporation)
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\Run: [Gaijin.Net Updater] => C:\Users\willi\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2350824 2020-07-15] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\Run: [GoogleChromeAutoLaunch_6187D69D3231ADED00B7FED1EDB33F2B] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3513072 2020-06-12] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\willi\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\willi\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\RunOnce: [Uninstall 20.084.0426.0007\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\willi\AppData\Local\Microsoft\OneDrive\20.084.0426.0007\amd64"
HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\RunOnce: [Uninstall 20.084.0426.0007] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\willi\AppData\Local\Microsoft\OneDrive\20.084.0426.0007"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-07-04] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2020-07-11]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {016F78D2-D75A-460E-A962-7AA01AB32BFD} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [479024 2017-12-14] (Acer Incorporated -> )
Task: {047343A0-91E9-4FEE-95CE-50790C6CAF49} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [17688 2019-11-16] (Acer Incorporated -> )
Task: {0A8AD440-1005-4899-84D7-D2ED5D99775E} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.20.4.57\SymErr.exe [117056 2020-06-03] (Symantec Corporation -> Symantec Corporation)
Task: {1E62C774-30C3-450C-81FC-178B87A0347E} - System32\Tasks\NitroSense => C:\Program Files (x86)\Acer\NitroSense Service\PSLauncher.exe [580400 2018-01-31] (Acer Incorporated -> Acer Incorporated)
Task: {2605AC62-DBD9-478E-8533-B0710B664049} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [521152 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3C2FB7CA-BEB1-48A8-8CE0-8364C1B978A2} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {3CF4F17F-937B-4EE7-831C-CA4F21A0A898} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [446256 2019-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {4DA645E1-B50A-4991-BD45-09DC816CD91D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864640 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {61EB3818-1B2A-42E5-816D-91B05D4D270D} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.20.4.57\SymErr.exe [117056 2020-06-03] (Symantec Corporation -> Symantec Corporation)
Task: {71ACC579-F2D1-49DD-A62E-683E08A40E3E} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2162728 2020-06-03] (Symantec Corporation -> Symantec Corporation)
Task: {76AE7361-A708-4CA0-B6FA-0A0FBCA0616E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-04] (Google LLC -> Google LLC)
Task: {787EF367-35B6-4E6E-A7F1-1A53EBEA58A0} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920752 2017-10-30] (Acer Incorporated -> )
Task: {822DAEEA-B6B2-41A0-B678-88108DFA4A0C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8AF5ECD6-3BA3-4FC8-A2F1-22090F7EADC6} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-20] (Corel Corporation -> Corel Corporation)
Task: {91F31E61-0794-4B7B-8F44-1F5D875815DD} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9638B2CF-350F-4CD2-B9ED-31E59ECA5705} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.20.4.57\WSCStub.exe [644472 2020-06-03] (Symantec Corporation -> Symantec Corporation)
Task: {9C9FADF9-ADAE-4379-9F76-5669D02B398F} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [215856 2017-09-13] (Acer Incorporated -> TODO: <Company name>)
Task: {9F0F6F97-FF18-4C3D-B49F-D33667167AC9} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [417072 2017-12-13] (Acer Incorporated -> Acer Incorporated)
Task: {A56BF599-844E-4E16-85F7-BEBD977607FA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964544 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ADFF27CD-B287-4C10-8247-311682007F55} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2770736 2019-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {AE0DA3CB-2810-4153-BBF6-41D94753A7B8} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AEAC171F-BCDD-4622-9A4C-5442609D2F34} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AF191A0C-4A14-4E81-9846-615CE472EB13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-04] (Google LLC -> Google LLC)
Task: {BE554911-B7F8-4F90-BE84-4BFB29B083D1} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-20] (Corel Corporation -> Corel Corporation)
Task: {D22F886F-0480-47AE-96A0-B834A55263F6} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2814096 2020-02-20] (Corel Corporation -> Corel Corporation)
Task: {D323E8E6-9596-40E3-B018-F46353B9B777} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4645168 2017-10-30] (Acer Incorporated -> )
Task: {E80D2F72-15EC-4300-889E-E847FFF07DDD} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474368 2019-09-25] (Acer Incorporated -> Acer Incorporated)
Task: {E87F3799-26FF-4DF1-AC0C-BCB2116FD4F0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EF4620AA-7737-456A-8671-2F9B7FCC4969} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [65064 2020-03-16] (Acer Incorporated -> Acer)
Task: {EF49E5D7-D7DA-4F89-A79D-427838D53571} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.20.4.57\SymErr.exe [117056 2020-06-03] (Symantec Corporation -> Symantec Corporation)
Task: {F7A6A212-135B-4745-9AD4-851A498EB852} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2017-10-30] (Acer Incorporated -> )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2e6b1770-8da3-4615-a276-0db99f30954f}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-492743285-2916852742-538587359-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-492743285-2916852742-538587359-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
FireFox:
========
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2020-07-04] [hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (English (US) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-en-US@firefox.mozilla.org [2020-07-04] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2020-07-04] [Legacy]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default [2020-07-16]
CHR Notifications: Default -> hxxps://www.girlsaskguys.com; hxxps://www.reddit.com
CHR HomePage: Default -> hxxps://www.google.com/
CHR NewTab: Default -> Not-active:"chrome-extension://embphknneakipabfiipdgklmpllaibmh/homePageRedirect.html"
CHR DefaultSearchURL: Default -> hxxps://www.solitaire-web-app.com/solitaire/images/icons/icon_512x512.png
CHR Extension: (Slides) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-04]
CHR Extension: (Norton Password Manager) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\admmjipmmciaobhojoghlmleefbicajg [2020-07-09]
CHR Extension: (Docs) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-04]
CHR Extension: (Google Drive) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-07-04]
CHR Extension: (Solitaire Web App) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aplnlgfifelfpddfbmnmfgcbalhmfofj [2020-07-04]
CHR Extension: (YouTube) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-07-04]
CHR Extension: (Honey) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2020-07-09]
CHR Extension: (Improve YouTube! (Open-Source for YouTube)) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnomihfieiccainjcjblhegjgglakjdd [2020-07-04]
CHR Extension: (Space 2) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dppioefgnilecmpdjigboccmefagjgoh [2020-07-04]
CHR Extension: (Norton Home Page) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\embphknneakipabfiipdgklmpllaibmh [2020-07-06]
CHR Extension: (ZenMate Free VPN – Best VPN for Chrome) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2020-07-09]
CHR Extension: (Sheets) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-04]
CHR Extension: (Norton Safe Web) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2020-07-06]
CHR Extension: (Google Docs Offline) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-07-04]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-07-04]
CHR Extension: (Web Quake) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibkbfanmkmadbbgggonficloplenbefh [2020-07-04]
CHR Extension: (Ball And Wall) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcmmmjjfnehcoglgiddaebjngdbgpiih [2020-07-04]
CHR Extension: (Solitaire) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkbhppfbabandkdmgjmifahoabeodiep [2020-07-04]
CHR Extension: (GeoArena Online) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkaebkjfpfbkeckpmbpopddlgbpkkfdo [2020-07-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-04]
CHR Extension: (Gmail) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-07-04]
CHR Extension: (Chrome Media Router) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-04]
CHR Extension: (\) - C:\Users\willi\AppData\Local\Google\Chrome\User Data\Default\Extensions\plkplgmhfkkhokgkdkblfcnfeccpippe [2020-07-04]
CHR Profile: C:\Users\willi\AppData\Local\Google\Chrome\User Data\System Profile [2020-07-04]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved murky listed separately.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2019-08-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-04] (Malwarebytes Inc -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268968 2017-11-30] (Intel® Wireless Connectivity Solutions -> )
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.20.4.57\NortonSecurity.exe [344760 2020-06-03] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.20.4.57\nsWscSvc.exe [1055960 2020-06-03] (Symantec Corporation -> Symantec Corporation)
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
S2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [874472 2020-03-04] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
R3 PSSvc; C:\Program Files (x86)\Acer\NitroSense Service\PSSvc.exe [716592 2018-01-31] (Acer Incorporated -> Acer Incorporated)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [466224 2019-09-26] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [508208 2019-09-26] (Acer Incorporated -> Acer Incorporated)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [980568 2020-03-04] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [283224 2020-06-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-06-24] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [291056 2020-06-12] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [532864 2020-06-05] (Razer USA Ltd. -> Razer Inc.)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [299824 2017-09-13] (Acer Incorporated -> acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe [18232 2016-08-25] (Intel® Extreme Tuning Utility -> Intel® Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3758760 2017-11-30] (Intel® Wireless Connectivity Solutions -> Intel® Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.20.2.57\Definitions\BASHDefs\20200714.001\BHDrvx64.sys [1952136 2020-06-22] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614040.039\ccSetx64.sys [192376 2020-06-03] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516784 2020-07-04] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154288 2020-07-05] (Symantec Corporation -> Symantec Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-07-04] (Malwarebytes Corporation -> Malwarebytes)
R3 ETDI2C; C:\WINDOWS\System32\drivers\ETDI2C.sys [218184 2017-11-16] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.20.2.57\Definitions\IPSDefs\20200716.061\IDSvia64.sys [1451016 2020-07-02] (Symantec Corporation -> Symantec Corporation)
S3 IntcAudioBus; C:\WINDOWS\System32\drivers\IntcAudioBus.sys [254496 2018-01-14] (Intel® Smart Sound Technology -> Intel® Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation -> Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-07-15] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197264 2020-07-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-07-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-07-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131232 2020-07-15] (Malwarebytes Inc -> Malwarebytes)
U5 Netwtw06; C:\Windows\System32\Drivers\Netwtw06.sys [8614888 2017-12-01] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_7c33dbc36b403ada\nvlddmkm.sys [23287696 2020-03-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [53752 2019-04-30] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2020-03-04] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [51776 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0067; C:\WINDOWS\System32\drivers\RzDev_0067.sys [52288 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0306; C:\WINDOWS\System32\drivers\RzDev_0306.sys [52504 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1614040.039\SRTSP64.SYS [889648 2020-06-03] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1614040.039\SRTSPX64.SYS [50864 2020-06-03] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1614040.039\SYMEFASI64.SYS [1964552 2020-06-03] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1614040.039\SymELAM.sys [25024 2020-06-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [99848 2020-07-04] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.20.2.57\SymPlatform\SymEvnt.sys [712368 2020-01-06] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1614040.039\Ironx64.SYS [316656 2020-06-03] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1614040.039\symnets.sys [575280 2020-06-03] (Symantec Corporation -> Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614040.039\wpCtrlDrv.sys [1013656 2020-06-03] (Symantec Corporation -> Symantec Corporation)
S3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [54400 2016-08-16] (Intel Corporation -> Intel Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-16 19:56 - 2020-07-16 19:58 - 000033541 _____ C:\Users\willi\Downloads\FRST.txt
2020-07-16 19:55 - 2020-07-16 19:58 - 000000000 ____D C:\FRST
2020-07-16 19:54 - 2020-07-16 19:54 - 002292736 _____ (Farbar) C:\Users\willi\Downloads\FRST64.exe
2020-07-16 12:57 - 2020-07-16 12:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2020-07-15 23:43 - 2020-07-15 23:43 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-15 23:42 - 2020-07-15 23:43 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-15 19:49 - 2020-07-15 19:49 - 000000000 ____D C:\Users\willi\Downloads\Degrees of Lewdity 0.2.15.2
2020-07-15 19:46 - 2020-07-15 19:46 - 009479594 _____ C:\Users\willi\Downloads\Degrees of Lewdity 0.2.15.2.zip
2020-07-15 19:39 - 2020-07-15 19:39 - 009479682 _____ C:\Users\willi\Downloads\Degrees of Lewdity 0.2.15.1.zip
2020-07-15 17:59 - 2020-07-15 17:59 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-07-15 17:59 - 2020-07-15 17:59 - 000216056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-07-15 17:59 - 2020-07-15 17:59 - 000197264 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-07-15 17:59 - 2020-07-15 17:59 - 000131232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-07-15 17:59 - 2020-07-15 17:59 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-07-11 21:48 - 2020-07-11 21:48 - 000000875 _____ C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PoP_V0.12.0.lnk
2020-07-11 20:24 - 2020-07-11 21:04 - 000000000 ____D C:\Users\willi\OneDrive\Documents\PoP_V0.12.0.1_win_Data
2020-07-11 20:24 - 2020-07-11 20:24 - 000000000 ____D C:\Users\willi\AppData\LocalLow\DefaultCompany
2020-07-11 20:20 - 2020-07-11 20:25 - 000000000 ____D C:\Users\willi\AppData\Local\WinZip
2020-07-11 20:20 - 2020-07-11 20:21 - 000000000 ____D C:\ProgramData\WinZip
2020-07-11 20:20 - 2020-07-11 20:20 - 000003662 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2020-07-11 20:20 - 2020-07-11 20:20 - 000003660 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2020-07-11 20:20 - 2020-07-11 20:20 - 000003660 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2020-07-11 20:20 - 2020-07-11 20:20 - 000002091 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip.lnk
2020-07-11 20:20 - 2020-07-11 20:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2020-07-11 20:19 - 2020-07-11 20:20 - 000000000 ____D C:\Program Files\WinZip
2020-07-11 20:19 - 2020-07-11 20:19 - 000959280 _____ (WinZip Computing) C:\Users\willi\Downloads\winzip24.exe
2020-07-11 20:19 - 2020-07-11 20:19 - 000000000 ____D C:\ProgramData\UniqueId
2020-07-11 20:13 - 2020-07-11 20:13 - 400870583 _____ C:\Users\willi\Downloads\PoP_V0.12.0.1_win.rar
2020-07-10 23:34 - 2020-07-10 23:34 - 000022832 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_488381677300469.dll
2020-07-10 23:33 - 2020-07-10 23:33 - 000000000 ____D C:\Users\willi\AppData\Roaming\fltk.org
2020-07-10 23:33 - 2020-07-10 23:33 - 000000000 ____D C:\ProgramData\WarThunder
2020-07-10 23:33 - 2020-07-10 23:33 - 000000000 ____D C:\ProgramData\fltk.org
2020-07-09 20:11 - 2020-07-09 20:11 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2020-07-08 21:55 - 2020-07-08 21:56 - 753162016 _____ (Gaijin Entertainment ) C:\Users\willi\Downloads\WarThunderCDK_2020_04_20__21_27 (3).exe
2020-07-08 21:50 - 2020-07-08 21:51 - 753162016 _____ (Gaijin Entertainment ) C:\Users\willi\Downloads\WarThunderCDK_2020_04_20__21_27 (2).exe
2020-07-08 21:30 - 2020-07-08 22:00 - 000001813 _____ C:\Users\Public\Desktop\WTAssetViewer.lnk
2020-07-08 21:30 - 2020-07-08 22:00 - 000001813 _____ C:\ProgramData\Desktop\WTAssetViewer.lnk
2020-07-08 21:30 - 2020-07-08 22:00 - 000001803 _____ C:\Users\Public\Desktop\WTMissionEditor.lnk
2020-07-08 21:30 - 2020-07-08 22:00 - 000001803 _____ C:\ProgramData\Desktop\WTMissionEditor.lnk
2020-07-08 21:30 - 2020-07-08 22:00 - 000001791 _____ C:\Users\Public\Desktop\LocationEd.lnk
2020-07-08 21:30 - 2020-07-08 22:00 - 000001791 _____ C:\ProgramData\Desktop\LocationEd.lnk
2020-07-08 21:30 - 2020-07-08 22:00 - 000000000 ____D C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2020-07-08 21:22 - 2020-07-08 21:23 - 753162016 _____ (Gaijin Entertainment ) C:\Users\willi\Downloads\WarThunderCDK_2020_04_20__21_27 (1).exe
2020-07-08 21:02 - 2020-07-08 21:10 - 753162016 _____ (Gaijin Entertainment ) C:\Users\willi\Downloads\WarThunderCDK_2020_04_20__21_27.exe
2020-07-08 14:07 - 2020-07-08 14:18 - 000000000 ____D C:\Users\willi\AppData\Local\Razer
2020-07-08 14:06 - 2020-07-08 14:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2020-07-08 14:04 - 2020-07-08 14:04 - 000000000 ____D C:\Program Files\Razer
2020-07-08 14:03 - 2020-07-08 14:11 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2020-07-08 14:03 - 2020-07-08 14:03 - 000000000 ____D C:\Program Files\Razer Chroma SDK
2020-07-08 14:01 - 2020-07-13 01:59 - 000000000 ____D C:\Program Files (x86)\Razer
2020-07-08 14:00 - 2020-07-08 14:04 - 000000000 ____D C:\ProgramData\Razer
2020-07-08 13:58 - 2020-07-08 13:58 - 004789584 _____ (Razer Inc.) C:\Users\willi\Downloads\RazerSynapseInstaller_V1.0.131.167.exe
2020-07-05 21:37 - 2020-07-05 21:37 - 000000000 ____D C:\Users\willi\Downloads\Audio_Visualizer
2020-07-05 21:36 - 2020-07-05 21:36 - 013603063 _____ C:\Users\willi\Downloads\Audio_Visualizer.zip
2020-07-05 21:34 - 2020-07-05 21:34 - 000000000 ____D C:\Users\willi\AppData\Roaming\AudioVisualizerApp
2020-07-05 19:52 - 2020-07-05 19:52 - 000000000 ____D C:\Users\willi\AppData\Local\OneDrive
2020-07-05 19:45 - 2020-07-11 10:07 - 000000000 ____D C:\Users\willi\AppData\Local\CrashDumps
2020-07-05 19:03 - 2020-07-08 14:07 - 000000000 ____D C:\Users\willi\AppData\Roaming\Synapse3
2020-07-05 19:03 - 2020-07-05 19:03 - 000000000 ____D C:\temp
2020-07-05 13:37 - 2020-07-05 13:37 - 002510856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-07-05 12:24 - 2020-07-16 00:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security
2020-07-05 12:17 - 2020-07-05 13:41 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2020-07-05 12:17 - 2020-07-05 12:17 - 000003376 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2020-07-05 00:23 - 2020-07-05 00:23 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-07-05 00:23 - 2020-07-05 00:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-07-04 15:51 - 2020-07-04 15:51 - 000000000 ____D C:\Users\willi\AppData\Roaming\NVIDIA
2020-07-04 15:22 - 2020-07-04 15:22 - 000000016 _____ C:\Users\willi\stop
2020-07-04 15:22 - 2020-07-04 15:22 - 000000016 _____ C:\Users\willi\delete
2020-07-04 15:22 - 2020-07-04 15:22 - 000000000 ____D C:\Users\willi\AppData\Local\mbam
2020-07-04 15:21 - 2020-07-04 15:21 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-07-04 15:21 - 2020-07-04 15:21 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-07-04 15:21 - 2020-07-04 15:21 - 000002025 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-07-04 15:21 - 2020-07-04 15:20 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-07-04 15:21 - 2020-07-04 15:20 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-07-04 15:20 - 2020-07-04 15:20 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-07-04 15:20 - 2020-07-04 15:20 - 000000000 ____D C:\Program Files\Malwarebytes
2020-07-04 15:19 - 2020-07-04 15:19 - 001965536 _____ (Malwarebytes) C:\Users\willi\Downloads\MBSetup-106724.106724-consumer.exe
2020-07-04 14:10 - 2020-07-05 12:44 - 000000000 ____D C:\Program Files\Common Files\AV
2020-07-04 12:53 - 2020-07-04 12:53 - 000000000 ____D C:\Users\willi\OneDrive\Documents\My Games
2020-07-04 12:53 - 2020-07-04 12:53 - 000000000 ____D C:\Users\willi\AppData\Roaming\EasyAntiCheat
2020-07-04 12:53 - 2020-07-04 12:53 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-07-04 12:52 - 2020-07-04 12:52 - 000000000 ____D C:\Program Files\UNP
2020-07-04 12:44 - 2020-07-05 12:17 - 000002412 _____ C:\Users\Public\Desktop\Norton Security.lnk
2020-07-04 12:44 - 2020-07-05 12:17 - 000002412 _____ C:\ProgramData\Desktop\Norton Security.lnk
2020-07-04 12:42 - 2020-07-05 12:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2020-07-04 12:37 - 2020-07-04 12:37 - 000000000 ____D C:\Users\willi\AppData\Local\Gaijin
2020-07-04 12:37 - 2020-07-04 12:37 - 000000000 ____D C:\ProgramData\Gaijin
2020-07-04 12:33 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2020-07-04 12:33 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2020-07-04 12:33 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2020-07-04 12:33 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2020-07-04 12:33 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2020-07-04 12:33 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2020-07-04 12:33 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2020-07-04 12:33 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2020-07-04 12:33 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2020-07-04 12:33 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2020-07-04 12:33 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2020-07-04 12:33 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2020-07-04 12:33 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2020-07-04 12:33 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2020-07-04 12:33 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2020-07-04 12:33 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2020-07-04 12:33 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2020-07-04 12:33 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2020-07-04 12:33 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2020-07-04 12:33 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2020-07-04 12:33 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2020-07-04 12:33 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2020-07-04 12:33 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2020-07-04 12:33 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2020-07-04 12:33 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2020-07-04 12:33 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2020-07-04 12:33 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2020-07-04 12:33 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2020-07-04 12:33 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2020-07-04 12:33 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2020-07-04 12:33 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2020-07-04 12:33 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2020-07-04 12:33 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2020-07-04 12:33 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2020-07-04 12:33 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2020-07-04 12:33 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2020-07-04 12:33 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2020-07-04 12:33 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2020-07-04 12:33 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2020-07-04 12:33 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2020-07-04 12:33 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2020-07-04 12:33 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2020-07-04 12:33 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2020-07-04 12:33 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2020-07-04 12:33 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2020-07-04 12:33 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2020-07-04 12:33 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2020-07-04 12:33 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2020-07-04 12:33 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2020-07-04 12:33 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2020-07-04 12:33 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2020-07-04 12:33 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2020-07-04 12:33 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2020-07-04 12:33 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2020-07-04 12:33 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2020-07-04 12:33 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2020-07-04 12:33 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2020-07-04 12:33 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2020-07-04 12:33 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2020-07-04 12:33 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2020-07-04 12:33 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2020-07-04 12:33 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2020-07-04 12:33 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2020-07-04 12:33 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2020-07-04 12:33 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2020-07-04 12:33 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2020-07-04 12:33 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2020-07-04 12:33 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2020-07-04 12:33 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2020-07-04 12:33 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2020-07-04 12:33 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2020-07-04 12:33 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2020-07-04 12:33 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2020-07-04 12:33 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2020-07-04 12:33 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2020-07-04 12:33 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2020-07-04 12:33 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2020-07-04 12:33 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2020-07-04 12:33 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2020-07-04 12:33 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2020-07-04 12:33 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2020-07-04 12:33 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2020-07-04 12:33 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2020-07-04 12:33 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2020-07-04 12:33 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2020-07-04 12:33 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2020-07-04 12:33 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2020-07-04 12:33 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2020-07-04 12:33 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2020-07-04 12:33 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2020-07-04 12:33 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2020-07-04 12:33 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2020-07-04 12:33 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2020-07-04 12:33 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2020-07-04 12:33 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2020-07-04 12:33 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2020-07-04 12:33 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2020-07-04 12:33 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2020-07-04 12:33 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2020-07-04 12:33 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2020-07-04 12:33 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2020-07-04 12:33 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2020-07-04 12:33 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2020-07-04 12:33 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2020-07-04 12:33 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2020-07-04 12:33 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2020-07-04 12:33 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2020-07-04 12:33 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2020-07-04 12:33 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2020-07-04 12:33 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2020-07-04 12:33 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2020-07-04 12:33 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2020-07-04 12:33 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2020-07-04 12:33 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2020-07-04 12:33 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2020-07-04 12:33 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2020-07-04 12:33 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2020-07-04 12:33 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2020-07-04 12:33 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2020-07-04 12:33 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2020-07-04 12:33 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2020-07-04 12:33 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2020-07-04 12:33 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2020-07-04 12:33 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2020-07-04 12:33 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2020-07-04 12:33 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2020-07-04 12:33 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2020-07-04 12:33 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2020-07-04 12:33 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2020-07-04 12:33 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2020-07-04 12:33 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2020-07-04 12:33 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2020-07-04 12:33 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2020-07-04 12:33 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2020-07-04 12:33 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2020-07-04 12:33 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2020-07-04 12:33 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2020-07-04 12:33 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2020-07-04 12:33 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2020-07-04 12:33 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2020-07-04 12:33 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2020-07-04 12:33 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2020-07-04 12:33 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2020-07-04 12:33 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2020-07-04 12:33 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2020-07-04 12:33 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2020-07-04 12:33 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2020-07-04 12:33 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2020-07-04 12:33 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2020-07-04 12:33 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2020-07-04 12:33 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2020-07-04 12:33 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2020-07-04 12:33 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2020-07-04 12:33 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2020-07-04 12:33 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2020-07-04 12:33 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2020-07-04 12:33 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2020-07-04 12:33 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2020-07-04 12:33 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2020-07-04 12:33 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2020-07-04 12:33 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2020-07-04 12:33 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2020-07-04 12:33 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2020-07-04 12:33 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2020-07-04 12:33 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2020-07-04 12:33 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2020-07-04 12:33 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2020-07-04 04:54 - 2020-07-05 13:46 - 000842664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-04 04:53 - 2020-07-04 04:53 - 000004890 _____ C:\WINDOWS\system32\Tasks\AcerCMUpdateTask2.1.16258
2020-07-04 04:53 - 2020-07-04 04:53 - 000000000 ____D C:\WINDOWS\oem
2020-07-04 04:51 - 2020-07-11 10:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-07-04 04:51 - 2020-07-04 04:51 - 000022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2020-07-04 04:51 - 2020-07-04 04:51 - 000003852 _____ C:\WINDOWS\system32\Tasks\ACCAgent
2020-07-04 04:51 - 2020-07-04 04:51 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-04 04:51 - 2020-07-04 04:51 - 000003176 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-04 04:51 - 2020-07-04 04:51 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-04 04:51 - 2020-07-04 04:51 - 000002956 _____ C:\WINDOWS\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-04 04:51 - 2020-07-04 04:51 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-04 04:51 - 2020-07-04 04:51 - 000002838 _____ C:\WINDOWS\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-04 04:51 - 2020-07-04 04:51 - 000002820 _____ C:\WINDOWS\system32\Tasks\ACC
2020-07-04 04:51 - 2020-07-04 04:51 - 000002786 _____ C:\WINDOWS\system32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-04 04:51 - 2020-07-04 04:51 - 000002768 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2020-07-04 04:51 - 2020-07-04 04:51 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-07-04 04:51 - 2020-07-04 04:51 - 000002630 _____ C:\WINDOWS\system32\Tasks\Acer Collection Monitor Application
2020-07-04 04:51 - 2020-07-04 04:51 - 000002596 _____ C:\WINDOWS\system32\Tasks\Acer Collection Application
2020-07-04 04:51 - 2020-07-04 04:51 - 000002328 _____ C:\WINDOWS\system32\Tasks\ACCBackgroundApplication
2020-07-04 04:51 - 2020-07-04 04:51 - 000002186 _____ C:\WINDOWS\system32\Tasks\NitroSense
2020-07-04 04:51 - 2020-07-04 04:51 - 000000000 _SHDL C:\Users\Default User
2020-07-04 04:51 - 2020-07-04 04:51 - 000000000 _SHDL C:\Users\All Users
2020-07-04 04:51 - 2020-07-04 04:51 - 000000000 _SHDL C:\Documents and Settings
2020-07-04 04:51 - 2020-07-04 04:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Intel
2020-07-04 04:51 - 2020-07-04 04:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-07-04 04:51 - 2020-07-04 03:16 - 000005404 _____ C:\WINDOWS\system32\Tasks\Software Update Application
2020-07-04 04:51 - 2020-07-04 02:59 - 000002706 _____ C:\WINDOWS\system32\Tasks\UbtFrameworkService
2020-07-04 04:45 - 2020-07-04 04:52 - 000000000 ___HD C:\OEM
2020-07-04 04:32 - 2020-07-04 04:32 - 000000000 ____D C:\WINDOWS\system32\Intel
2020-07-04 04:32 - 2020-07-04 04:32 - 000000000 ____D C:\WINDOWS\system32\cAVS
2020-07-04 04:32 - 2020-07-04 04:32 - 000000000 ____D C:\WINDOWS\Firmware
2020-07-04 04:30 - 2020-07-04 04:30 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-07-04 04:29 - 2020-07-11 15:43 - 000000000 ____D C:\WINDOWS\OCR
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\WINDOWS\Setup
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\ProgramData\ssh
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\Program Files\MSBuild
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-07-04 04:29 - 2020-07-04 04:29 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\winrm
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\slmgr
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\0409
2020-07-04 04:28 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\DigitalLocker
2020-07-04 04:25 - 2020-06-05 16:03 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-07-04 04:25 - 2020-06-05 16:03 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-07-04 04:24 - 2020-07-04 04:42 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-07-04 04:24 - 2020-07-04 04:21 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2020-07-04 04:24 - 2020-07-04 04:21 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2020-07-04 04:24 - 2020-07-04 04:21 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2020-07-04 04:24 - 2020-07-04 04:21 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2020-07-04 04:24 - 2020-07-04 04:21 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-07-04 04:24 - 2020-07-04 04:21 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-07-04 04:24 - 2020-07-04 04:21 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2020-07-04 04:24 - 2020-07-04 04:21 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2020-07-04 04:24 - 2020-07-04 04:21 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2020-07-04 04:24 - 2020-07-04 04:21 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2020-07-04 04:24 - 2020-07-04 04:21 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2020-07-04 04:24 - 2020-07-04 04:21 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2020-07-04 04:23 - 2020-07-16 19:51 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-07-04 04:23 - 2020-07-16 14:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-07-04 04:23 - 2020-07-15 00:36 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-04 04:23 - 2020-07-09 15:21 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-07-04 04:23 - 2020-07-08 19:27 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2020-07-04 04:23 - 2020-07-08 14:03 - 000000000 ___RD C:\Program Files (x86)
2020-07-04 04:23 - 2020-07-06 22:49 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-07-04 04:23 - 2020-07-05 13:39 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-07-04 04:23 - 2020-07-04 12:33 - 000000000 ____D C:\WINDOWS\appcompat
2020-07-04 04:23 - 2020-07-04 04:51 - 000000000 ____D C:\WINDOWS\Registration
2020-07-04 04:23 - 2020-07-04 04:46 - 000000000 ____D C:\WINDOWS\system32\spool
2020-07-04 04:23 - 2020-07-04 04:46 - 000000000 ____D C:\WINDOWS\Resources
2020-07-04 04:23 - 2020-07-04 04:45 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-04 04:23 - 2020-07-04 04:29 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-04 04:23 - 2020-07-04 04:29 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-07-04 04:23 - 2020-07-04 04:29 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ___SD C:\WINDOWS\system32\dsc
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\setup
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\MUI
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\system32\Com
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\WINDOWS\IME
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\Program Files\Windows Defender
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-07-04 04:23 - 2020-07-04 04:28 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 __RSD C:\WINDOWS\Media
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ___SD C:\WINDOWS\system32\Nui
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\TextInput
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\ti-et
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\ta-lk
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\ta-in
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\si-lk
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\my-mm
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\Keywords
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\icsxml
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\ias
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\downlevel
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\am-et
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\Provisioning
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\L2Schemas
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\IdentityCRL
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-07-04 04:23 - 2020-07-04 04:24 - 000000000 ____D C:\WINDOWS\Cursors
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 __SHD C:\Program Files\Windows Sidebar
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 __RHD C:\Users\Public\Libraries
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\Web
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\WaaS
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\Vss
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\tracing
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\TAPI
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SystemApps
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\winevt
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\ras
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\IME
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\DriverState
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\System
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SKB
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\security
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\schemas
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\SchCache
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\rescache
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\PLA
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\Performance
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\ModemLogs
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\InputMethod
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\Globalization
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\Containers
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\Branding
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\addins
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\ProgramData\USOShared
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files\Windows Security
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files\Windows NT
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files\Common Files\Services
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files (x86)\Windows NT
2020-07-04 04:23 - 2020-07-04 04:23 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2020-07-04 04:23 - 2020-07-04 04:16 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-07-04 04:23 - 2020-07-04 04:16 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-07-04 04:23 - 2020-07-04 04:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2020-07-04 04:23 - 2020-07-04 04:13 - 000000000 ____D C:\WINDOWS\Help
2020-07-04 04:23 - 2020-07-04 03:17 - 000000000 ____D C:\WINDOWS\ServiceState
2020-07-04 04:23 - 2020-07-04 02:56 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-07-04 04:23 - 2020-07-04 02:55 - 000000000 ____D C:\ProgramData\USOPrivate
2020-07-04 04:22 - 2020-07-09 20:11 - 000000000 ____D C:\WINDOWS\INF
2020-07-04 04:16 - 2020-07-16 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-04 04:16 - 2020-07-04 04:16 - 000000102 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
2020-07-04 04:16 - 2020-07-04 04:16 - 000000000 ____D C:\ProgramData\Dolby
2020-07-04 04:16 - 2020-07-04 04:16 - 000000000 ____D C:\Program Files\Dolby
2020-07-04 04:15 - 2020-07-04 04:46 - 000000000 ____D C:\ProgramData\Intel
2020-07-04 04:15 - 2020-07-04 04:46 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2020-07-04 04:15 - 2020-07-04 04:46 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-07-04 04:15 - 2020-07-04 04:44 - 000000000 ____D C:\Program Files\Intel
2020-07-04 04:15 - 2020-07-04 04:43 - 000000000 ___HD C:\Intel
2020-07-04 04:15 - 2020-07-04 04:15 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2020-07-04 04:15 - 2020-07-04 04:15 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-07-04 04:15 - 2020-07-04 04:15 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-07-04 04:15 - 2020-07-04 04:15 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-07-04 04:15 - 2020-07-04 04:15 - 000000000 ____D C:\Program Files\Realtek
2020-07-04 04:15 - 2020-07-04 04:15 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2020-07-04 04:15 - 2020-07-04 04:15 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2020-07-04 04:13 - 2020-07-16 19:59 - 000000000 ____D C:\ProgramData\NVIDIA
2020-07-04 04:13 - 2020-07-04 04:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-07-04 04:13 - 2020-07-04 04:45 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-07-04 04:13 - 2020-07-04 04:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-07-04 04:13 - 2020-03-04 14:25 - 005571056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-07-04 04:13 - 2020-03-04 14:25 - 002630968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-07-04 04:13 - 2020-03-04 14:25 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-07-04 04:13 - 2020-03-04 14:25 - 000660792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-07-04 04:13 - 2020-03-04 14:25 - 000447464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-07-04 04:13 - 2020-03-04 14:25 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-07-04 04:13 - 2020-03-04 14:25 - 000074552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-07-04 04:13 - 2020-03-04 00:47 - 008978037 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-07-04 04:13 - 2020-02-23 11:14 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-07-04 04:12 - 2020-06-10 22:23 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-07-04 04:10 - 2020-07-11 10:06 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2020-07-04 04:10 - 2020-07-11 10:00 - 082051072 _____ C:\WINDOWS\system32\config\SOFTWARE
2020-07-04 04:10 - 2020-07-05 22:14 - 017039360 _____ C:\WINDOWS\system32\config\SYSTEM
2020-07-04 04:10 - 2020-07-05 22:14 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2020-07-04 04:10 - 2020-07-05 22:14 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-07-04 04:10 - 2020-07-05 22:14 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY
2020-07-04 04:10 - 2020-07-05 22:14 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2020-07-04 04:10 - 2020-07-05 00:23 - 000000000 ____D C:\WINDOWS\servicing
2020-07-04 04:10 - 2020-07-04 04:23 - 000000000 ____D C:\WINDOWS\system32\SMI
2020-07-04 04:10 - 2020-07-04 04:10 - 000000000 __SHD C:\IntelOptaneData
2020-07-04 04:09 - 2020-07-16 12:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-07-04 04:09 - 2020-07-04 04:52 - 000000000 ____D C:\WINDOWS\Panther
2020-07-04 04:09 - 2020-07-04 04:48 - 000258048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-04 04:09 - 2020-07-04 04:09 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-07-04 03:29 - 2020-07-04 03:29 - 008539767 _____ C:\Users\willi\Downloads\Degrees of Lewdity 0.2.14.3.zip
2020-07-04 03:29 - 2020-07-04 03:29 - 000000000 ____D C:\Users\willi\Downloads\Degrees of Lewdity 0.2.14.3
2020-07-04 03:20 - 2020-07-08 21:38 - 000000000 ____D C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-07-04 03:17 - 2020-07-04 03:17 - 000000000 ____D C:\Users\willi\AppData\Local\Comms
2020-07-04 03:16 - 2020-07-04 03:16 - 000003066 _____ C:\WINDOWS\system32\Tasks\Power Button
2020-07-04 03:16 - 2020-07-04 03:16 - 000002992 _____ C:\WINDOWS\system32\Tasks\Quick Access
2020-07-04 03:12 - 2020-07-04 03:12 - 000000000 ____D C:\Users\willi\AppData\Local\CEF
2020-07-04 03:11 - 2020-07-04 03:11 - 000000000 ____D C:\Users\willi\AppData\Local\Steam
2020-07-04 03:10 - 2020-07-04 03:13 - 000000000 ____D C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2020-07-04 03:09 - 2020-07-16 19:49 - 000000000 ____D C:\Program Files (x86)\Steam
2020-07-04 03:09 - 2020-07-04 03:09 - 000001036 _____ C:\Users\Public\Desktop\Steam.lnk
2020-07-04 03:09 - 2020-07-04 03:09 - 000001036 _____ C:\ProgramData\Desktop\Steam.lnk
2020-07-04 03:09 - 2020-07-04 03:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-07-04 03:07 - 2020-07-09 20:13 - 000000000 ____D C:\Users\willi\AppData\Local\D3DSCache
2020-07-04 03:07 - 2020-07-04 03:07 - 001573568 _____ C:\Users\willi\Downloads\SteamSetup.exe
2020-07-04 03:06 - 2020-07-16 19:47 - 000000000 ____D C:\Users\willi\AppData\Roaming\discord
2020-07-04 03:06 - 2020-07-04 03:07 - 000000000 ____D C:\Users\willi\AppData\Local\SquirrelTemp
2020-07-04 03:06 - 2020-07-04 03:06 - 062625080 _____ (Discord Inc.) C:\Users\willi\Downloads\DiscordSetup.exe
2020-07-04 03:06 - 2020-07-04 03:06 - 000000000 ____D C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-07-04 03:06 - 2020-07-04 03:06 - 000000000 ____D C:\Users\willi\AppData\Local\Discord
2020-07-04 03:04 - 2020-07-04 03:15 - 000000000 ____D C:\Users\willi\AppData\Local\Google
2020-07-04 03:04 - 2020-07-04 03:04 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-07-04 03:04 - 2020-07-04 03:04 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-07-04 03:04 - 2020-07-04 03:04 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-04 03:04 - 2020-07-04 03:04 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-07-04 03:04 - 2020-07-04 03:04 - 000002336 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-07-04 03:04 - 2020-07-04 03:04 - 000000000 ____D C:\Program Files (x86)\Google
2020-07-04 03:02 - 2020-07-04 03:02 - 000000000 ___HD C:\OneDriveTemp
2020-07-04 03:02 - 2020-07-04 03:02 - 000000000 ____D C:\Users\willi\AppData\Local\CareCenter
2020-07-04 03:02 - 2019-11-15 23:44 - 000000121 ____R C:\Users\willi\OneDrive\Documents\William's Notebook.url
2020-07-04 03:01 - 2020-07-15 20:33 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-492743285-2916852742-538587359-1001
2020-07-04 03:01 - 2020-07-15 20:33 - 000000000 ___RD C:\Users\willi\OneDrive
2020-07-04 03:01 - 2020-07-04 04:02 - 000000000 ____D C:\Users\willi\AppData\Local\PlaceholderTileLogoFolder
2020-07-04 03:01 - 2020-07-04 03:01 - 000000000 ____D C:\Users\willi\AppData\Roaming\Intel Corporation
2020-07-04 03:00 - 2020-07-04 14:25 - 000000000 ____D C:\Users\willi\AppData\Local\NVIDIA Corporation
2020-07-04 03:00 - 2020-07-04 03:00 - 000001333 _____ C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HD Audio Manager.lnk
2020-07-04 03:00 - 2020-07-04 03:00 - 000000000 ____D C:\Users\willi\AppData\Local\OEM
2020-07-04 03:00 - 2020-07-04 03:00 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-07-04 02:59 - 2020-07-05 22:09 - 000000000 ____D C:\Users\willi\AppData\Local\Packages
2020-07-04 02:59 - 2020-07-04 03:50 - 000000000 ____D C:\Users\willi\AppData\Local\Publishers
2020-07-04 02:59 - 2020-07-04 03:18 - 000000000 ____D C:\ProgramData\Packages
2020-07-04 02:59 - 2020-07-04 02:59 - 000001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\ExpressVPN.lnk
2020-07-04 02:59 - 2020-07-04 02:59 - 000000000 ___RD C:\Users\willi\3D Objects
2020-07-04 02:59 - 2020-07-04 02:59 - 000000000 ___HD C:\Users\willi\MicrosoftEdgeBackups
2020-07-04 02:59 - 2020-07-04 02:59 - 000000000 ___HD C:\ProgramData\O949
2020-07-04 02:59 - 2020-07-04 02:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Oem
2020-07-04 02:59 - 2020-07-04 02:59 - 000000000 ____D C:\Users\willi\AppData\Roaming\Adobe
2020-07-04 02:59 - 2020-07-04 02:59 - 000000000 ____D C:\Users\willi\AppData\Local\VirtualStore
2020-07-04 02:59 - 2020-07-04 02:59 - 000000000 ____D C:\Users\willi\AppData\Local\MicrosoftEdge
2020-07-04 02:59 - 2020-07-04 02:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Acer
2020-07-04 02:58 - 2020-07-11 10:02 - 000000000 __SHD C:\Users\willi\IntelGraphicsProfiles
2020-07-04 02:58 - 2020-07-04 19:02 - 000000000 ____D C:\Users\willi\AppData\Local\ConnectedDevicesPlatform
2020-07-04 02:58 - 2020-07-04 02:59 - 000000000 ____D C:\Users\willi\AppData\Local\Intel
2020-07-04 02:58 - 2020-07-04 02:58 - 000000000 ____D C:\Users\willi\AppData\Roaming\Intel
2020-07-04 02:56 - 2020-07-15 20:33 - 000002367 _____ C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-04 02:56 - 2020-07-11 10:01 - 000000000 ____D C:\Users\willi
2020-07-04 02:56 - 2020-07-04 02:56 - 000000020 ___SH C:\Users\willi\ntuser.ini
2020-07-04 00:27 - 2020-07-04 04:47 - 000000000 ___HD C:\$SysReset
2020-06-18 18:42 - 2020-06-10 01:06 - 000079376 _____ (Razer Inc) C:\WINDOWS\system32\RazerS3Coinstaller.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-07-15 19:43 - 2019-01-08 17:46 - 000000000 ____D C:\Users\willi\Downloads\Degrees of Lewdity
2020-07-06 22:51 - 2018-07-18 02:12 - 000000000 ____D C:\ProgramData\Package Cache
2020-07-04 19:08 - 2018-07-18 02:49 - 000000000 ____D C:\ProgramData\Acer
2020-07-04 19:06 - 2018-07-18 02:58 - 000000000 ____D C:\ProgramData\Norton
2020-07-04 12:44 - 2018-07-18 02:58 - 000099848 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2020-07-04 12:44 - 2018-07-18 02:58 - 000008616 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2020-07-04 04:50 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2020-07-04 04:46 - 2018-07-18 02:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\NSx64
2020-07-04 04:46 - 2018-07-18 02:58 - 000000000 ____D C:\Users\Public\Symantec
2020-07-04 04:46 - 2018-07-18 02:58 - 000000000 ____D C:\ProgramData\NortonInstaller
2020-07-04 04:46 - 2018-07-18 02:58 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
2020-07-04 04:46 - 2018-07-18 02:53 - 000000000 ____D C:\ProgramData\SplitMediaLabs
2020-07-04 04:46 - 2018-07-18 02:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
2020-07-04 04:46 - 2018-07-18 02:53 - 000000000 ____D C:\Program Files (x86)\SplitmediaLabs
2020-07-04 04:46 - 2018-07-18 02:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-07-04 04:46 - 2018-07-18 02:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-07-04 04:46 - 2018-07-18 02:40 - 000000000 ____D C:\WINDOWS\IAStorAfsService
2020-07-04 04:46 - 2018-07-18 02:39 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-07-04 04:46 - 2018-07-18 02:35 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2020-07-04 04:46 - 2018-07-18 02:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-07-04 04:46 - 2018-07-18 02:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2020-07-04 04:46 - 2018-07-18 02:13 - 000000000 ____D C:\WINDOWS\NAPP_Dism_Log
2020-07-04 04:45 - 2018-07-18 02:12 - 000000000 ____D C:\Program Files (x86)\Intel
2020-07-04 04:45 - 2018-07-18 02:10 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-07-04 04:44 - 2018-07-18 02:58 - 000000000 ____D C:\Program Files\Norton Security
2020-07-04 04:43 - 2018-07-18 02:58 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2020-07-04 04:43 - 2018-07-18 02:48 - 000000000 ____D C:\Program Files\Acer
2020-07-04 04:43 - 2018-07-18 02:34 - 000000000 ____D C:\Program Files\Common Files\Intel
2020-07-04 03:16 - 2018-07-18 02:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2020-07-04 03:06 - 2018-07-18 02:30 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-07-04 03:03 - 2018-07-18 02:48 - 000000000 ____D C:\ProgramData\OEM
2020-07-04 02:59 - 2018-07-18 02:49 - 000000000 ____D C:\Program Files (x86)\Acer
2020-07-04 02:59 - 2018-07-18 02:08 - 000000000 __RHD C:\Users\Public\AccountPictures
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by willi (16-07-2020 19:59:45)
Running from C:\Users\willi\Downloads
Windows 10 Home Version 1903 18362.900 (X64) (2020-07-04 09:52:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-492743285-2916852742-538587359-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-492743285-2916852742-538587359-503 - Limited - Disabled)
Guest (S-1-5-21-492743285-2916852742-538587359-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-492743285-2916852742-538587359-504 - Limited - Disabled)
willi (S-1-5-21-492743285-2916852742-538587359-1001 - Administrator - Enabled) => C:\Users\willi
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton Security (Enabled - Up to date) {1122B19A-E671-38EC-8EAC-87048FD4528D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
FW: Norton Security (Enabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3034 - Acer Incorporated)
Acer Collection (HKLM-x32\...\{8CD449EA-BBA0-477F-AFF9-9AF6E8C50EF2}) (Version: 1.01.3011 - Acer Incorporated)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Jumpstart (HKLM-x32\...\{E3930B59-5669-4BAB-A329-D56C1427C613}) (Version: 3.3.19180.100 - Acer)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3028 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.03.3005 - Acer Incorporated)
Discord (HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{4A02DCED-C2B0-4DD3-87BD-7D8E68D6AF3C}) (Version: 0.8.6.75 - Dolby Laboratories, Inc.)
ExpressVPN (HKLM-x32\...\{878F6EB4-73BF-4A1E-9A92-6DDF9EDC8A8B}) (Version: 2.2.19325.10 - Acer)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{55d73ea7-6354-42db-8831-02d048ae57f8}) (Version: 10.1.17541.8066 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1805.12.0.1097 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4939 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.0.2.1086 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel® Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel® Wireless Bluetooth® (HKLM-x32\...\{00000030-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.30.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{64f650eb-cb37-4658-9131-7db4820f10be}) (Version: 20.20.0 - Intel Corporation)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\OneDriveSetup.exe) (Version: 20.114.0607.0002 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mozilla Firefox 57.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 57.0.2 (x86 en-US)) (Version: 57.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.2 - Mozilla)
NitroSense Service (HKLM-x32\...\{6FC78E80-6385-43D6-8A43-FA80094F1A2E}) (Version: 3.01.3000 - Acer Incorporated)
Norton Security (HKLM-x32\...\NGC) (Version: 22.20.4.57 - Symantec Corporation)
NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation)
NVIDIA Graphics Driver 388.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.73 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.5.0630.061222 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.21304 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8907.1 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Viscera Cleanup Detail: alpha v0.25
(HKLM\...\UDK-94f7d425-6ddb-44b3-8b39-26743a614af0) (Version: - RuneStorm
)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
War Thunder CDK 0.2 (HKLM-x32\...\{ed8deea4-29fe-1932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
War Thunder Launcher 1.0.3.243 (HKU\S-1-5-21-492743285-2916852742-538587359-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WinZip 24.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24127}) (Version: 24.0.14033 - Corel Corporation)
XSplit Gamecaster (HKLM-x32\...\{6653CF8C-38BE-4F69-8AB8-77E20E4F841E}) (Version: 2.8.1607.2032 - SplitmediaLabs)
Packages:
=========
Acer Collection -> C:\Program Files\WindowsApps\acerincorporated.acercollection_1.1.3013.0_x64__48frkmn4z8aw4 [2020-07-04] (Acer Incorporated)
Acer Product Registration -> C:\Program Files\WindowsApps\acerincorporated.acerregistration_2.0.3013.0_x64__48frkmn4z8aw4 [2020-07-04] (Acer Incorporated)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.39.4.0_x86__kgqvnymyfvs32 [2020-07-04] (king.com)
Farm Heroes Saga -> C:\Program Files\WindowsApps\king.com.FarmHeroesSaga_5.40.3.0_x86__kgqvnymyfvs32 [2020-07-04] (king.com)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-07-04] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.13001.20266.0_x86__8wekyb3d8bbwe [2020-07-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-07-04] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-07-04] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.13001.20266.0_x86__8wekyb3d8bbwe [2020-07-09] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.13001.20266.0_x86__8wekyb3d8bbwe [2020-07-09] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13001.20266.0_x86__8wekyb3d8bbwe [2020-07-09] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.13001.20266.0_x86__8wekyb3d8bbwe [2020-07-09] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.13001.20266.0_x86__8wekyb3d8bbwe [2020-07-09] (Microsoft Corporation)
Microsoft Remote Desktop -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.1.1215.0_x86__8wekyb3d8bbwe [2020-07-04] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-07-04] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.13001.20266.0_x86__8wekyb3d8bbwe [2020-07-09] (Microsoft Corporation)
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-07-04] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
NitroSense_V31 -> C:\Program Files\WindowsApps\AcerIncorporated.NitroSenseV31_3.1.2000.0_x64__48frkmn4z8aw4 [2020-07-04] (Acer Incorporated)
PhotoDirector for acer -> C:\Program Files\WindowsApps\cyberlinkcorp.ac.photodirectorforacerdesktop_8.0.5229.0_x64__ypz87dpxkv292 [2020-07-04] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\cyberlinkcorp.ac.powerdirectorforacerdesktop_14.0.4304.0_x64__ypz87dpxkv292 [2020-07-04] (CYBERLINK COM CORP)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c [2020-07-15] (Skype) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0 [2020-07-11] (Spotify AB) [Startup Task]
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2020-07-04] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved dusky listed separately.)
CustomCLSID: HKU\S-1-5-21-492743285-2916852742-538587359-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.4.57\buShell.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.4.57\buShell.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.4.57\buShell.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.4.57\buShell.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.4.57\buShell.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.4.57\buShell.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.4.57\buShell.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.4.57\NavShExt.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-20] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.4.57\NavShExt.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-04] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-20] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b5d4c82c67b39358\igfxDTCM.dll [2018-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-03-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.4.57\buShell.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-04] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.4.57\NavShExt.dll [2020-06-03] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-20] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Ball And Wall.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kcmmmjjfnehcoglgiddaebjngdbgpiih
ShortcutWithArgument: C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Solitaire.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=lkbhppfbabandkdmgjmifahoabeodiep
ShortcutWithArgument: C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Space 2.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dppioefgnilecmpdjigboccmefagjgoh
ShortcutWithArgument: C:\Users\willi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Web Quake.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=ibkbfanmkmadbbgggonficloplenbefh
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 08:46 - 2017-09-29 08:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Intel\Intel® Management Engine Components\iCLS\;C:\Program Files\Intel\Intel® Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL;C:\Program Files\Intel\Intel® Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT;C:\Program Files\Intel\Intel® Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Users\willi\AppData\Local\Microsoft\WindowsApps;
HKU\S-1-5-21-492743285-2916852742-538587359-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "IAStorIcon"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{41511941-C9B0-4D0A-8305-82C84606B16D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{797B8B9E-B1E6-4D78-B76E-B8F380028383}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FE7AC8B0-A2E5-4E20-AFA9-91916DBA37F1}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs Limited -> SplitmediaLabs)
FirewallRules: [{6DD0B3B5-3942-4922-AF4C-6113057B5F6C}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs Limited -> SplitmediaLabs)
FirewallRules: [{2FD3AC3E-0276-4760-9DB0-42EC284A564D}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel® Wireless Connectivity Solutions -> )
FirewallRules: [{CA8A7CE8-FABF-4E8B-822F-B790BFBEEDE5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A5F9D600-C93B-44D3-B277-443EA7015C28}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{19875248-EE7D-4368-9543-623A4CB0F96E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{858FFED8-AC74-441A-806C-84F509B83126}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{2FE815A7-91BB-44EE-9F72-879D7D22FE34}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{5A26DD22-60A2-4EC3-A942-459410C3F61C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{6E89BA21-10AC-4747-BF6E-BA6D414BAA3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{F29D7403-64E4-40C0-A9FD-9D88DA34D48D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3F45D46C-2072-47E1-B222-5E583EE4EA19}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{924AA025-9CA8-46D1-8C7D-E935E7224B43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{0DB97A86-34AB-4EF3-938C-378F7FE703EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{C7D43351-3F0C-49C6-85B0-BC121A7A7730}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{7087A6C3-A9B4-498D-B189-17400EF4C7E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3F39891C-0051-4059-ADE6-A010BBEE7AEA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13001.20266.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6530878E-A2BD-4F20-B798-174DB9E4B31A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2B66B97E-E493-42C5-B0AC-2A8B7910C7E2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{F1019CF8-7EC5-4048-AAC5-E35DC56F9A6C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5D6ACB63-6793-4B09-9D48-CBBE303512AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5D5A973D-1229-45C3-8121-4B8688AE8926}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C8A05B3A-0D2B-4144-BEAA-45DDF10E5C98}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{01588EA5-CD08-41AF-ACCF-40916EB4139E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FBCDBC92-595E-45AD-9C8D-397E314F2052}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{115915AE-162E-4900-A71D-EBB12C1C4CBB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BED72A92-7012-4C30-A60E-CC9353B64AC9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.137.690.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7CE8271A-8A3D-4CB4-A12C-096B54253F11}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B7961A1B-6258-4749-BB2C-97030E414D08}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{739F2C60-5AC4-49D7-969A-E774D2293B42}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{553A56E8-B2E6-4436-BD7F-FD31B3933375}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
07-07-2020 17:12:22 Scheduled Checkpoint
15-07-2020 23:41:49 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (07/16/2020 03:18:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Taskmgr.exe version 10.0.18362.693 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: aa60
Start Time: 01d65bae0fcce074
Termination Time: 6
Application Path: C:\Windows\System32\Taskmgr.exe
Report Id: 942dc426-7b4f-4f79-aa1d-82916f0aa72b
Faulting package full name:
Faulting package-relative application ID:
Hang type: Cross-thread
Error: (07/13/2020 08:31:49 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SkypeBackgroundHost.exe version 8.56.0.102 stopped interacting with Windows and was closed. To see if more expect about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 7160
Start Time: 01d6591f1312741c
Termination Time: 4294967295
Application Path: C:\Program Files\WindowsApps\microsoft.skypeapp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
Report Id: c2ac6c0f-93dd-44cd-a3ac-242dd0e0d1e6
Faulting package full name: Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
Hang type: Quiesce
Error: (07/13/2020 09:03:26 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SkypeApp.exe version 8.56.0.102 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 21a8
Start Time: 01d657945d2d78bc
Termination Time: 4294967295
Application Path: C:\Program Files\WindowsApps\microsoft.skypeapp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
Report Id: b5022baf-a36f-4c99-a4d3-26a81d3ed8ce
Faulting package full name: Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c
Faulting package-relative application ID: App
Hang type: Quiesce
Error: (07/13/2020 09:02:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SkypeBackgroundHost.exe version 8.56.0.102 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 21c0
Start Time: 01d657945d3ba4d0
Termination Time: 4294967295
Application Path: C:\Program Files\WindowsApps\microsoft.skypeapp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
Report Id: 04144adf-a62e-4928-ba6f-957eb1d8624b
Faulting package full name: Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
Hang type: Quiesce
Error: (07/11/2020 10:07:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RAVBg64.exe, version: 1.0.296.1, time stamp: 0x5d9d9331
Faulting module name: RAVBg64.exe, version: 1.0.296.1, time stamp: 0x5d9d9331
Exception code: 0xc000041d
Fault offset: 0x0000000000013ac9
Faulting process id: 0x2414
Faulting application start time: 0x01d657946bdd6543
Faulting application path: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Faulting module path: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Report Id: 2b40b66c-c1ab-4a83-902d-2f0e4f337c69
Faulting package full name:
Faulting package-relative application ID:
Error: (07/11/2020 10:07:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RAVBg64.exe, version: 1.0.296.1, time stamp: 0x5d9d9331
Faulting module name: RAVBg64.exe, version: 1.0.296.1, time stamp: 0x5d9d9331
Exception code: 0xc0000005
Fault offset: 0x0000000000013ac9
Faulting process id: 0x2414
Faulting application start time: 0x01d657946bdd6543
Faulting application path: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Faulting module path: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Report Id: 6cee2879-78d1-41e7-b9a8-aa7af1da70d5
Faulting package full name:
Faulting package-relative application ID:
Error: (07/11/2020 10:03:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: RAVBg64.exe, version: 1.0.296.1, time stamp: 0x5d9d9331
Faulting module name: RAVBg64.exe, version: 1.0.296.1, time stamp: 0x5d9d9331
Exception code: 0xc0000005
Fault offset: 0x0000000000030aa1
Faulting process id: 0x272c
Faulting application start time: 0x01d657946ac84708
Faulting application path: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Faulting module path: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Report Id: d5e83e93-b746-427a-9ec9-4abf4ae5258b
Faulting package full name:
Faulting package-relative application ID:
Error: (07/10/2020 11:03:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: YourPhone.exe, version: 1.20062.97.0, time stamp: 0x5f03c4da
Faulting module name: ntdll.dll, version: 10.0.18362.815, time stamp: 0xb29ecf52
Exception code: 0xc0000374
Fault offset: 0x00000000000f9229
Faulting process id: 0x6efc
Faulting application start time: 0x01d6565ba55835cc
Faulting application path: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20062.97.0_x64__8wekyb3d8bbwe\YourPhone.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: 78c2d4bf-225e-489c-9c4f-9cbb10f87850
Faulting package full name: Microsoft.YourPhone_1.20062.97.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: App
System errors:
=============
Error: (07/16/2020 08:02:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly. It has done this 3 time(s). The following corrective action will be miserroneous in 10000 milliseconds: Run the configured recovery program.
Error: (07/16/2020 08:02:43 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The NVIDIA Display Container LS service terminated with the following error:
A generic mumble executable returned a result that indicates failure.
Error: (07/16/2020 08:02:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 8000 milliseconds: Restart the service.
Error: (07/16/2020 08:02:35 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The NVIDIA Display Container LS service terminated with the following error:
A generic command executable returned a result that indicates failure.
Error: (07/16/2020 08:02:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be miserroneous in 6000 milliseconds: Restart the service.
Error: (07/16/2020 08:02:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The NVIDIA Display Container LS service terminated with the following error:
A generic command executable returned a result that indicates failure.
Error: (07/16/2020 08:02:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly. It has done this 3 time(s). The following corrective action will be taken in 10000 milliseconds: Run the configured recovery program.
Error: (07/16/2020 08:02:18 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The NVIDIA Display Container LS service terminated with the following error:
A generic command executable returned a result that indicates failure.
CodeIntegrity:
===================================
Date: 2020-07-16 12:07:56.809
Description:
Code Integrity positive that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.4.57\symamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-16 12:07:56.803
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.4.57\symamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-16 12:07:56.746
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.4.57\symamsi.dll that did not meet the Windows signing composed requirements.
Date: 2020-07-16 12:07:56.740
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.4.57\symamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-16 12:07:56.724
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.4.57\symamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-15 17:59:56.598
Description:
Code Integrity positive that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.4.57\symamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-15 11:57:11.781
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.4.57\symamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-07-15 11:57:11.775
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.4.57\symamsi.dll that did not meet the Windows signing composed requirements.
==================== Memory info ===========================
BIOS: Insyde Corp. V1.19 07/13/2018
Motherboard: CFL Freed_CFS
Processor: Intel® Core™ i5-8300H CPU @ 2.30GHz
Percentage of memory in use: 81%
Total physical RAM: 8034.3 MB
Available physical RAM: 1459.82 MB
Total Virtual: 23530.87 MB
Available Virtual: 9020.89 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:930.39 GB) (Free:819.47 GB) NTFS
\\?\Volume{8c860d13-6cde-4fb9-aca1-cfe9fc24caf8}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.52 GB) NTFS
\\?\Volume{f218fe5c-997e-4170-96a4-455f39c6d92b}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.03 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: C2DF8662)
Partition: GPT.
==================== End of Addition.txt =======================
Sincery All Tips collection
SRC: https://www.bleepingcomputer.com/forums/t/726303/computer-lags-until-i-open-task-manager/
powered by Blogger News Poster
0 Response to "Computer lags until I open task manager - Virus, Trojan, Spyware, and Malware Removal Help"
Post a Comment