I have a CMD windows flashing every so often

Maybe the occasional audio or video file.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-08-2021

Ran by timja (22-08-2021 18:15:07)

Running from C:UserstimjaDesktop

Windows 10 Home Version Dev 21996.1 (X64) (2021-06-22 02:17:00)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3623259656-3639657945-3203993032-500 – Administrator – Disabled)

DefaultAccount (S-1-5-21-3623259656-3639657945-3203993032-503 – Limited – Disabled)

Guest (S-1-5-21-3623259656-3639657945-3203993032-501 – Limited – Disabled)

timja (S-1-5-21-3623259656-3639657945-3203993032-1001 – Administrator – Enabled) => C:Userstimja

WDAGUtilityAccount (S-1-5-21-3623259656-3639657945-3203993032-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM…7-Zip) (Version: 19.00 – Igor Pavlov)

Adobe After Effects 2021 (HKLM-x32…AEFT_18_1) (Version: 18.1 – Adobe Inc.)

Adobe Audition 2021 (HKLM-x32…AUDT_14_1) (Version: 14.1 – Adobe Inc.)

Adobe Lightroom Classic (HKLM-x32…LTRM_10_0) (Version: 10.0 – Adobe Inc.)

Adobe Photoshop 2021 (HKLM-x32…PHSP_22_4_1) (Version: 22.4.1.211 – Adobe Inc.)

Adobe Photoshop 2021 Patch (HKLM-x32…{86AB4DA9-6987-419F-A237-66EB38496854}) (Version: 1.0.0 – OSTeam)

Adobe Premiere Pro 2021 (HKLM-x32…{2B1EBFAA-E2D6-494D-9E24-DA06217F5FA2}) (Version: 1.0.0 – IGI)

Adobe Premiere Rush (HKLM-x32…RUSH_1_5_29) (Version: 1.5.29 – Adobe Inc.)

Allavsoft 3.23.7.7873 (HKLM-x32…{6EBED4D8-13D9-4370-8D44-B57DDB7A787C}_is1) (Version:  – Allavsoft Corporation)

AMD Chipset Software (HKLM-x32…AMD_Chipset_IODrivers) (Version: 2.17.25.506 – Advanced Micro Devices, Inc.)

AMD Software (HKLM…AMD Catalyst Install Manager) (Version: 21.5.2 – Advanced Micro Devices, Inc.)

AMD_Chipset_Drivers (HKLM-x32…{9bbdaa84-1315-4bcf-ac55-57449b4228f1}) (Version: 2.17.25.506 – Advanced Micro Devices, Inc.) Hidden

AnyDesk (HKLM-x32…AnyDesk) (Version: ad 6.3.2 – AnyDesk Software GmbH)

AppLogLibSetup (HKLM-x32…{52FB0C8F-DF05-4C61-AEB6-18C55F8C385F}) (Version: 1.0.3.0 – Brother Industries Ltd.) Hidden

AS4 ACPI Driver (HKLM-x32…{FDA6853C-2E76-4C5A-8341-F7B974BA134F}) (Version: 1.2.0.0046 – Advanced Micro Devices, Inc.) Hidden

Backup and Sync from Google (HKLM…{A0397FA8-34ED-4A41-A8C9-30EE0B89C464}) (Version: 3.56.3802.7766 – Google, Inc.)

Branding64 (HKLM…{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 – Advanced Micro Devices, Inc.) Hidden

BrLauncher (HKLM-x32…{42D26B47-887C-45FC-BCAE-0BE485C5C0BB}) (Version: 2.0.11.0 – Brother Industries Ltd.) Hidden

BrLogRx (HKLM-x32…{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 – Brother Industries Ltd.) Hidden

Brother iPrint&Scan (HKLM-x32…{42D72ABA-773E-467A-8A64-4765E990EB75}) (Version: 9.0.0.123 – Brother Industries, Ltd.) Hidden

Brother iPrint&Scan (HKLM-x32…{85f204b0-595c-4801-8648-a69062f9ce1b}) (Version: 9.0.0.123 – Brother Industries, Ltd.)

Brother PowerENGAGE (HKLM-x32…{3CE8B8E8-B33B-453C-BB7A-821ED6E18A24}) (Version: 1.0.27 – Aviata, Inc.)

Brother Printer Driver (HKLM-x32…{35E7339E-FD1F-4B0B-B216-24BFCDAFC8B4}) (Version: 1.8.0.0 – Brother Industries Ltd.) Hidden

Brother Scanner Driver (HKLM-x32…{D1BF1A40-B582-4533-A908-0D582D747A21}) (Version: 1.0.26.1 – Brother Industries Ltd.) Hidden

BrSupportTools (HKLM-x32…{32F47565-84B1-42CC-B09A-4CDDD9A32F94}) (Version: 1.0.20.0 – Brother Industries Ltd.) Hidden

ControlCenter4 (HKLM-x32…{9091B952-8719-49C3-9CC7-6E20EC61081F}) (Version: 4.6.6.1 – Brother Industries, Ltd.) Hidden

ControlCenter4 CSDK (HKLM-x32…{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Version: 4.6.1.1 – Brother Industries, Ltd.) Hidden

Equalizer APO (HKLM…EqualizerAPO) (Version: 1.2.1 – )

GIMP 2.10.24 (HKLM…GIMP-2_is1) (Version: 2.10.24 – The GIMP Team)

Google Chrome (HKLM-x32…Google Chrome) (Version: 92.0.4515.159 – Google LLC)

HowToGuide (HKLM-x32…{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 – Brother Industries Ltd.) Hidden

HP Support Assistant (HKLM-x32…{54ECA61C-83AE-4EE3-A9F7-848155A33386}) (Version: 8.8.34.31 – HP Inc.)

HP Support Solutions Framework (HKLM-x32…{FF81F9EB-61C1-48A4-8EE5-45C5D61BC0E0}) (Version: 12.19.53.13 – HP Inc.)

HP Wireless Button Driver (HKLM-x32…{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 – Hewlett-Packard)

HttpToUsbBridge (HKLM-x32…{2316FF8E-7DEC-4EB9-A50D-64C304A25469}) (Version: 1.5.30.1 – Brother Industries Ltd.)

Intel® C++ Redistributables on Intel® 64 (HKLM-x32…{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 – Intel Corporation)

Malwarebytes version 4.4.5.130 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.5.130 – Malwarebytes)

Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 92.0.902.78 – Microsoft Corporation)

Microsoft Edge WebView2 Runtime (HKLM-x32…Microsoft EdgeWebView) (Version: 92.0.902.78 – Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.40664 (HKLM-x32…{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.40664 (HKLM-x32…{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 – Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.25.28508 (HKLM-x32…{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 – Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.23.27820 (HKLM-x32…{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 – Microsoft Corporation)

NetworkRepairTool (HKLM-x32…{86E68F57-FAFE-4052-BDD4-3B90C38236AE}) (Version: 1.2.16.0 – Brother Industries, Ltd.) Hidden

Peace (HKLM…Peace) (Version: 1.5.9.1 – P.E. Verbeek)

PowerENGAGE (HKLM-x32…{400A01BF-E908-4393-BD39-31E386377BDA}) (Version: 3.2.16 – Aviata, Inc.) Hidden

Raspberry Pi Imager (HKUS-1-5-21-3623259656-3639657945-3203993032-1001…Raspberry Pi Imager) (Version: 1.6.2 – Raspberry Pi)

Realtek Card Reader (HKLM-x32…{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.370.87 – Realtek Semiconductor Corp.)

Realtek High Definition Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7917 – Realtek Semiconductor Corp.)

REALTEK Wireless LAN Driver (HKLM-x32…{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.62 – REALTEK Semiconductor Corp.)

ScannerUtilityInstaller (HKLM-x32…{D65C0754-7790-427F-AD73-D7C644260F57}) (Version: 1.19.9.1 – Brother) Hidden

SoftwareUpdateNotification (HKLM-x32…{E28A6F15-BFBE-4D20-8B5F-6EABAA1E545E}) (Version: 1.0.14.0 – Brother Industries, Ltd.) Hidden

Spotify (HKUS-1-5-21-3623259656-3639657945-3203993032-1001…Spotify) (Version: 1.1.66.578.gc54d0f69 – Spotify AB)

StatusMonitor (HKLM-x32…{9D3555A9-C100-45A0-BE3E-33C62D9B2B9A}) (Version: 1.25.4.0 – Brother Industries, Ltd.) Hidden

Stremio (HKUS-1-5-21-3623259656-3639657945-3203993032-1001…Stremio) (Version: 4.4.142 – Smart Code Ltd)

Synaptics ClickPad Driver (HKLM…SynTPDeinstKey) (Version: 19.3.31.31 – Synaptics Incorporated)

Transmission 3.00 (bb6b5a062e) (x64) (HKLM…{B206C51C-27D2-4251-95E2-B4B28DE80633}) (Version: 3.00.0 – Transmission Project)

UsbRepairTool (HKLM-x32…{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 – Brother Industries, Ltd.) Hidden

Packages:

=========

Messenger -> C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nnt [2021-08-18] (Facebook Inc) [Startup Task]

Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-21] (Microsoft Studios) [MS Ad]

Microsoft To Do -> C:Program FilesWindowsAppsMicrosoft.Todos_0.50.42141.0_x64__8wekyb3d8bbwe [2021-08-18] (Microsoft Corporation)

Microsoft.UI.Xaml.CBS -> C:WindowsSystemAppsMicrosoft.UI.Xaml.CBS_8wekyb3d8bbwe [2021-06-21] (Microsoft Platform Extensions)

Paint -> C:Program FilesWindowsAppsMicrosoft.Paint_10.2104.17.0_x64__8wekyb3d8bbwe [2021-06-21] (Microsoft Corporation)

Photos Media Engine Add-on -> C:Program FilesWindowsAppsMicrosoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-07-17] (Microsoft Corporation)

Power Automate -> C:Program FilesWindowsAppsMicrosoft.PowerAutomateDesktop_1.0.65.0_x64__8wekyb3d8bbwe [2021-06-21] (Microsoft Corporation)

Windows Notepad -> C:Program FilesWindowsAppsMicrosoft.WindowsNotepad_10.2103.6.0_x64__8wekyb3d8bbwe [2021-06-24] (Microsoft Corporation)

Windows Security -> C:Program FilesWindowsAppsMicrosoft.SecHealthUI_1000.21996.1.0_neutral__8wekyb3d8bbwe [2021-06-21] (Microsoft Corporation)

Windows Terminal -> C:Program FilesWindowsAppsMicrosoft.WindowsTerminal_1.9.1942.0_x64__8wekyb3d8bbwe [2021-07-27] (Microsoft Corporation) [Startup Task]

Windows Web Experience Pack -> C:Program FilesWindowsAppsMicrosoftWindows.Client.WebExperience_321.13900.0.9_x64__cw5n1h2txyewy [2021-07-27] (Microsoft Windows)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKUS-1-5-21-3623259656-3639657945-3203993032-1001_ClassesCLSID{C591CFEA-E432-495d-A0BE-58E4CCD87B17}ShellOpenCommand -> C:Program FilesSynapticsSynTPSynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:Program FilesGoogleDrivegoogledrivesync64.dll [2021-06-18] (Google LLC -> Google)

ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:Program FilesGoogleDrivegoogledrivesync64.dll [2021-06-18] (Google LLC -> Google)

ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:Program FilesGoogleDrivegoogledrivesync64.dll [2021-06-18] (Google LLC -> Google)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:Program FilesGoogleDrivecontextmenu64.dll [2021-06-18] (Google LLC -> Google)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2021-06-24] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:Program FilesGoogleDrivecontextmenu64.dll [2021-06-18] (Google LLC -> Google)

ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:WindowsSystem32atiacm64.dll [2021-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2021-06-24] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-08-18 09:16 – 2021-08-18 09:18 – 054230016 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildaddon.node

2021-06-21 19:57 – 2021-06-21 19:59 – 000763392 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildkeytar.node

2021-06-21 19:57 – 2021-06-21 19:59 – 000750080 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildlogging.node

2021-06-21 19:57 – 2021-06-21 19:59 – 001037824 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildspellchecker_win.node

2021-08-18 09:16 – 2021-08-18 09:19 – 001218560 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildsysteminfo.node

2021-06-21 19:57 – 2021-06-21 19:59 – 000614912 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildwindows.applicationmodel.node

2021-06-21 19:57 – 2021-06-21 19:59 – 000523776 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildwindows.data.xml.dom.node

2021-06-21 19:57 – 2021-06-21 19:59 – 000202240 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildwindows.networking.pushnotifications.node

2021-06-21 19:57 – 2021-06-21 19:59 – 001144832 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildwindows.storage.node

2021-06-21 19:57 – 2021-06-21 19:59 – 000681984 _____ () [File not signed] ?C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappresourcesapp.asar.unpackedbuildwindows.ui.notifications.node

2016-11-25 10:18 – 2016-11-25 10:18 – 000139264 _____ () [File not signed] C:Program Files (x86)BrotherBrUtilitiesBrLogAPI.dll

2021-01-29 19:40 – 2021-01-29 19:40 – 000537600 _____ () [File not signed] C:Program Files (x86)Browny02BrMonitor.dll

2017-04-05 09:53 – 2017-11-07 19:55 – 000137728 _____ () [File not signed] C:Program Files (x86)ControlCenter4BrCcAssoc.dll

2017-01-27 15:39 – 2017-08-18 11:23 – 000087552 _____ () [File not signed] C:Program Files (x86)ControlCenter4BrCcDlgRc.dll

2017-01-27 15:39 – 2017-08-18 11:23 – 017974784 _____ () [File not signed] C:Program Files (x86)ControlCenter4BrCcGrImg.dll

2017-01-27 15:33 – 2017-11-07 20:04 – 000087040 _____ () [File not signed] C:Program Files (x86)ControlCenter4BrCcLUsa.dll

2017-04-05 09:53 – 2017-11-07 19:55 – 000440832 _____ () [File not signed] C:Program Files (x86)ControlCenter4Track.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000017920 _____ () [File not signed] C:Program FilesAMDCNextCNextlibEGL.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 003567616 _____ () [File not signed] C:Program FilesAMDCNextCNextlibGLESv2.dll

2021-08-22 10:58 – 2021-08-22 10:58 – 000114176 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242_ctypes.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000172544 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242_elementtree.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 002255872 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242_hashlib.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000032256 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242_multiprocessing.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000046080 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242_psutil_windows.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000047616 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242_socket.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 002825216 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242_ssl.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000026112 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242_yappi.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000080896 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242bz2.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000015872 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242common.time34.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000007680 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242hashobjs_ext.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000301568 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242PIL._imaging.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 000168448 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242pyexpat.pyd

2021-08-22 10:58 – 2021-08-22 10:58 – 001084416 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242pysqlite2._sqlite.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000548864 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242pythoncom27.dll

2021-08-22 10:59 – 2021-08-22 10:59 – 000137728 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242pywintypes27.dll

2021-08-22 10:59 – 2021-08-22 10:59 – 000010752 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242select.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000020992 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242thumbnails_ext.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000689664 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242unicodedata.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000119808 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242usb_ext.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000128512 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32api.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000438784 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32com.shell.shell.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000011776 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32crypt.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000023040 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32event.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000149504 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32file.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000223232 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32gui.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000048128 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32inet.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000029696 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32pdh.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000027648 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32pipe.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000044032 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32process.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000020480 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32profile.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000136192 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32security.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000026624 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242win32ts.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000034304 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242windows.conditional.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000037888 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242windows.connectivity.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000071680 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242windows.device_monitor.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000103936 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242windows.volumes.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000019968 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242windows.winwrap.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 001325056 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wx._controls_.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 001489408 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wx._core_.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 001007104 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wx._gdi_.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000103424 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wx._html2.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 000916992 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wx._misc_.pyd

2021-08-22 10:59 – 2021-08-22 10:59 – 001039872 _____ () [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wx._windows_.pyd

2021-07-27 17:12 – 2005-04-22 13:36 – 000143360 _____ () [File not signed] C:Windowssystem32BrSNMP64.dll

2016-04-12 10:07 – 2016-04-12 10:07 – 000067584 _____ (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)BrotherAppLogLibBrBFLogI.dll

2021-07-27 17:12 – 2016-11-01 11:27 – 000090112 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32BrNetSti.dll

2021-07-27 22:08 – 2019-02-21 12:00 – 000078336 _____ (Igor Pavlov) [File not signed] C:Program Files7-Zip7-zip.dll

2021-08-22 10:58 – 2021-08-22 10:58 – 003043328 _____ (Python Software Foundation) [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242python27.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000057856 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsaudioqtaudio_windows.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000031744 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqgif.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000039424 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqicns.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000031744 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqico.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000414720 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqjpeg.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000025088 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqsvg.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000024576 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqtga.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000023552 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqwbmp.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000532992 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqwebp.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 001441792 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsplatformsqwindows.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 001189888 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginssqldriversqsqlite.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000134656 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsstylesqwindowsvistastyle.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 006184448 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Core.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 006867456 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Gui.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000735232 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Multimedia.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000120832 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5MultimediaQuick.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 001104896 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Network.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000325120 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Positioning.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 003668480 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Qml.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000517120 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5QmlModels.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000051712 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5QmlWorkerScript.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 004228608 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Quick.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000171008 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5QuickControls2.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 001085440 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5QuickTemplates2.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000480256 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5RemoteObjects.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000205824 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Sql.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000329728 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Svg.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000127488 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebChannel.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000390656 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebEngine.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 095598080 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebEngineCore.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 005587968 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Widgets.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000462848 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WinExtras.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000188928 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Xml.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 002878464 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5XmlPatterns.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000055808 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtGraphicalEffectsprivateqtgraphicaleffectsprivate.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000059392 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtGraphicalEffectsqtgraphicaleffectsplugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000262144 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtMultimediadeclarative_multimedia.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000017920 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQmlqmlplugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000017920 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuick.2qtquick2plugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000284160 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickControls.2qtquickcontrols2plugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000333824 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickControlsqtquickcontrolsplugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000136704 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickDialogsdialogplugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000090112 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickLayoutsqquicklayoutsplugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000313856 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickTemplates.2qtquicktemplates2plugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000017920 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickWindow.2windowplugin.dll

2021-03-09 19:48 – 2021-03-09 19:48 – 000091648 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtWebEngineqtwebengineplugin.dll

2021-08-22 10:59 – 2021-08-22 10:59 – 000202240 _____ (wxWidgets development team) [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wxbase30u_net_vc90_x64.dll

2021-08-22 10:59 – 2021-08-22 10:59 – 002831872 _____ (wxWidgets development team) [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wxbase30u_vc90_x64.dll

2021-08-22 10:59 – 2021-08-22 10:59 – 001654784 _____ (wxWidgets development team) [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wxmsw30u_adv_vc90_x64.dll

2021-08-22 10:59 – 2021-08-22 10:59 – 006542336 _____ (wxWidgets development team) [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wxmsw30u_core_vc90_x64.dll

2021-08-22 10:59 – 2021-08-22 10:59 – 000773632 _____ (wxWidgets development team) [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wxmsw30u_html_vc90_x64.dll

2021-08-22 10:59 – 2021-08-22 10:59 – 000137216 _____ (wxWidgets development team) [File not signed] C:UserstimjaAppDataLocalTemp_MEI90242wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalnvdimm.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootMinimal{53966cb1-4d46-4166-bf23-c522403cd495} => “”=”ScmDisk”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworknvdimm.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootNetwork{53966cb1-4d46-4166-bf23-c522403cd495} => “”=”ScmDisk”

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKUS-1-5-21-3623259656-3639657945-3203993032-1001…localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2021-05-30 06:30 – 2021-08-21 23:34 – 000000852 _____ C:Windowssystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLMSystemCurrentControlSetControlSession ManagerEnvironmentPath -> %INTEL_DEV_REDIST%redistintel64compiler;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;%SYSTEMROOT%System32OpenSSH

HKUS-1-5-21-3623259656-3639657945-3203993032-1001Control PanelDesktopWallpaper -> C:UserstimjaAppDataRoamingMicrosoftWindowsThemesTranscodedWallpaper

DNS Servers: 192.168.0.1

HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM…StartupApprovedRun32: => “Hollings”

HKUS-1-5-21-3623259656-3639657945-3203993032-1001…StartupApprovedRun: => “OneDrive”

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{D0F73CD6-AEB8-44D3-AE86-39540A30F40C}C:userstimjaappdataroamingspotifyspotify.exe] => (Allow) C:userstimjaappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [UDP Query User{C3F58C2D-5FA5-4196-8966-F3330DBB39A5}C:userstimjaappdataroamingspotifyspotify.exe] => (Allow) C:userstimjaappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{136A6092-73DE-4A62-98B8-21F16C9FDB80}] => (Allow) C:Program Files (x86)AnyDeskAnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)

FirewallRules: [{5AE16DDE-0755-49B1-87BA-90FC165A92BE}] => (Allow) C:Program Files (x86)AnyDeskAnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)

FirewallRules: [{5786BB5E-B9B1-40FF-BA50-6380A1C73668}] => (Allow) C:Program Files (x86)AnyDeskAnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)

FirewallRules: [{55A6033B-5A34-4AE1-9A62-FC7DC4DE1011}] => (Allow) C:Program Files (x86)AnyDeskAnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)

FirewallRules: [{B2B2E3F5-7CD3-4A93-947F-6701A461A797}] => (Allow) C:Program Files (x86)AnyDeskAnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)

FirewallRules: [{469F9FE4-2D3C-4383-80AC-8B47070B3925}] => (Allow) C:Program Files (x86)AnyDeskAnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)

FirewallRules: [TCP Query User{E34BF3A3-0554-4C49-9FB4-8512CD906535}C:program filesgooglechromeapplicationchrome.exe] => (Allow) C:program filesgooglechromeapplicationchrome.exe (Google LLC -> Google LLC)

FirewallRules: [UDP Query User{8AF2FA65-B9FD-4FCD-8140-E2A3A8B0E562}C:program filesgooglechromeapplicationchrome.exe] => (Allow) C:program filesgooglechromeapplicationchrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

22-08-2021 10:29:05 Restore Point Created by FRST

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:

==================

Error: (08/22/2021 05:16:12 PM) (Source: MsiInstaller) (EventID: 11706) (User: DESKTOP-RTUMSPU)

Description: Product: PowerENGAGE — Error 1706. An installation package for the product PowerENGAGE cannot be found. Try the installation again using a valid copy of the installation package ‘PowerENGAGE-3.2.16.msi’.

Error: (08/22/2021 11:16:13 AM) (Source: MsiInstaller) (EventID: 11706) (User: DESKTOP-RTUMSPU)

Description: Product: PowerENGAGE — Error 1706. An installation package for the product PowerENGAGE cannot be found. Try the installation again using a valid copy of the installation package ‘PowerENGAGE-3.2.16.msi’.

Error: (08/22/2021 10:58:29 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )

Description: Start Broadcast Receiver Server…

Error: (08/22/2021 10:58:29 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )

Description: Wait Workflow Commands request from device.

Error: (08/22/2021 10:58:29 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )

Description: Start Server…

Error: (08/22/2021 10:58:29 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )

Description: Start Server…

Error: (08/22/2021 10:58:29 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )

Description: Host.AddressList[1]: 127.0.0.1

Error: (08/22/2021 10:58:29 AM) (Source: WorkflowAppControl) (EventID: 32767) (User: )

Description: Host.AddressList[0]: ::1

System errors:

=============

Error: (08/22/2021 06:05:27 PM) (Source: Server) (EventID: 2505) (User: )

Description: The server could not bind to the transport DeviceNetBT_Tcpip_{E49CFF9C-7712-40F6-B7D4-8299F3F02952} because another computer on the network has the same name.  The server could not start.

Error: (08/22/2021 11:00:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The HP Support Solutions Framework Service service failed to start due to the following error: 

The system cannot find the file specified.

Error: (08/22/2021 10:58:01 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)

Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:Windowssystem32Rtlihvs.dll

Error: (08/22/2021 10:58:01 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)

Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:Windowssystem32Rtlihvs.dll

Error: (08/22/2021 10:57:17 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (08/22/2021 10:57:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The BrYNSvc service terminated unexpectedly.  It has done this 1 time(s).

Error: (08/22/2021 10:57:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Brother Workflow Application Controller service terminated unexpectedly.  It has done this 1 time(s).

Error: (08/22/2021 10:57:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Brother USB Application Controller service terminated unexpectedly.  It has done this 1 time(s).

Windows Defender:

================Event[0]

Date: 2021-08-22 18:10:07

Description: 

Microsoft Defender Antivirus has detected malware or other potentially unwanted software.

For more information please see the following:

Name: Trojan:Win32/AgentTesla!ml

Severity: Severe

Category: Trojan

Path: file:_C:UserstimjaAppDataRoamingiscsicli.exe

Detection Origin: Local machine

Detection Type: FastPath

Detection Source: System

Process Name: Unknown

Security intelligence Version: AV: 1.347.217.0, AS: 1.347.217.0, NIS: 1.347.217.0

Engine Version: AM: 1.1.18500.9, NIS: 1.1.18500.9 ਍

Event[1]

Date: 2021-08-22 18:08:53

Description: 

N/A

Event[2]

Date: 2021-08-22 11:15:26

Description: 

N/A

Event[3]

Date: 2021-08-22 11:13:34

Description: 

N/A

Event[4]

Date: 2021-08-22 11:13:33

Description: 

N/A

Event[0]

Date: 2021-08-21 21:16:45

Description: 

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version: 

Previous security intelligence Version: 1.345.741.0

Update Source: Microsoft Update Server

Security intelligence Type: AntiVirus

Update Type: Full

Current Engine Version: 

Previous Engine Version: 1.1.18400.5

Error code: 0x80070643

Error description: Fatal error during installation.  ਍

Event[1]

Date: 2021-08-21 21:16:41

Description: 

N/A

Event[2]

Date: 2021-08-21 21:16:41

Description: 

N/A

Event[3]

Date: 2021-08-21 21:16:41

Description: 

N/A

Event[4]

Date: 2021-08-18 09:11:25

Description: 

N/A

==================== Memory info =========================== 

BIOS: American Megatrends Inc. F.54 05/27/2019

Motherboard: HP 80B0

Processor: AMD A10-8700P Radeon R6, 10 Compute Cores 4C+6G

Percentage of memory in use: 49%

Total physical RAM: 7628.07 MB

Available physical RAM: 3824.96 MB

Total Virtual: 8844.07 MB

Available Virtual: 3217.22 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.19 GB) (Free:49.81 GB) NTFS

?Volume{d9872285-5446-4149-b0d5-163c2222f1a6} () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS

?Volume{241113a0-619a-4cf4-bd98-3e3a793c047e} () (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================

Disk: 0 (Size: 111.8 GB) (Disk ID: 72C7F7F0)

Partition: GPT.

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2021

Ran by timja (administrator) on DESKTOP-RTUMSPU (HP HP Pavilion Notebook) (22-08-2021 18:12:53)

Running from C:UserstimjaDesktop

Loaded Profiles: timja

Platform: Windows 10 Home Version Dev 21996.1 (X64) Language: English (United States)

Default browser: Chrome

Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonIPCBoxAdobeIPCBroker.exe

(Adobe Inc. -> Adobe Systems Incorporated) C:Program FilesAdobeAdobe Creative Cloud ExperienceCCXProcess.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:Program FilesAMDCNextCNextamdow.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:Program FilesAMDCNextCNextAMDRSServ.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:Program FilesAMDCNextCNextAMDRSSrcExt.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:Program FilesAMDCNextCNextcncmd.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:Program FilesAMDCNextCNextRadeonSoftware.exe

(Advanced Micro Devices, Inc. -> AMD) C:WindowsSystem32DriverStoreFileRepositoryͨ456.inf_amd64_fc65705fd5034968B367348atieclxx.exe

(Advanced Micro Devices, Inc. -> AMD) C:WindowsSystem32DriverStoreFileRepositoryͨ456.inf_amd64_fc65705fd5034968B367348atiesrxx.exe

(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:Program Files (x86)ControlCenter4BrCcUxSys.exe

(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:Program Files (x86)ControlCenter4BrCtrlCntr.exe

(Brother Industries, Ltd.) [File not signed] C:Program Files (x86)brotherBrUtilitiesBrLogRx.exe

(Brother Industries, Ltd.) [File not signed] C:Program Files (x86)brotheriPrint&ScaniPSNotifier.exe

(Brother Industries, Ltd.) [File not signed] C:Program Files (x86)brotherSoftwareUpdateNotificationSoftwareUpdateNotificationService.exe

(Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrYNSvc.exe

(Facebook Inc) C:Program FilesWindowsAppsFACEBOOK.317180B0BB486_1180.4.112.0_x64__8xx8rvfyw5nntappArchonappMessenger.exe <5>

(Google LLC -> ) C:Program FilesGoogleDrivegoogledrivesync.exe <2>

(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.36.102GoogleCrashHandler.exe

(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.36.102GoogleCrashHandler64.exe

(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdateGoogleUpdate.exe

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe

(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.SecHealthUI_1000.21996.1.0_neutral__8wekyb3d8bbweSecHealthUI.exe

(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbweWinStore.App.exe

(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.XboxGamingOverlay_5.721.8052.0_x64__8wekyb3d8bbweGameBar.exe

(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.XboxGamingOverlay_5.721.8052.0_x64__8wekyb3d8bbweGameBarFTServer.exe

(Microsoft Windows -> ) C:WindowsSystem32AggregatorHost.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsImmersiveControlPanelSystemSettings.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32oobeUserOOBEBroker.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32SecurityHealthHost.exe <2>

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32wlanext.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystemAppsMicrosoftWindows.Client.CBS_cw5n1h2txyewySearchHost.exe

(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:WindowsSystem32amdfendrsr.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2107.4-0MsMpEng.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2107.4-0NisSrv.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderScansMsMpEngCP.exe

(Microsoft) [File not signed] C:Program Files (x86)brotheriPrint&ScanUSBAppControl.exe

(Microsoft) [File not signed] C:Program Files (x86)brotheriPrint&ScanWorkflowAppControl.exe

(Node.js Foundation -> Node.js) C:Program FilesAdobeAdobe Creative Cloud Experiencelibsnode.exe

(philandro Software GmbH -> AnyDesk Software GmbH) C:Program Files (x86)AnyDeskAnyDesk.exe <2>

(Realtek Semiconductor Corp -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARtkAudioService64.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVBg64.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARtkNGUI64.exe

(Spotify AB -> Spotify Ltd) C:UserstimjaAppDataRoamingSpotifySpotify.exe <6>

(Synaptics Incorporated -> Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPEnh.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPEnhService.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Run: [RTHDVCPL] => C:Program FilesRealtekAudioHDARtkNGUI64.exe [8899592 2016-08-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM-x32…Run: [M17A] => C:Windowstwain_32Brimm17aCommonTwDsUiLaunch.exe [85928 2020-11-03] (Microsoft Windows Hardware Compatibility Publisher -> )

HKLM-x32…Run: [ControlCenter4] => C:Program Files (x86)ControlCenter4BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)

HKLM-x32…Run: [BrStsMon00] => C:Program Files (x86)Browny02BrotherBrStMonW.exe [3140608 2021-01-29] (Brother Industries, Ltd.) [File not signed]

HKLM-x32…Run: [BrotherSoftwareUpdateNotification] => C:Program Files (x86)BrotherSoftwareUpdateNotificationSoftwareUpdateNotificationService.exe [3588608 2021-04-02] (Brother Industries, Ltd.) [File not signed]

HKLM-x32…Run: [Adobe CCXProcess] => C:Program Files (x86)AdobeAdobe Creative Cloud ExperienceCCXProcess.exe [129288 2021-07-27] (Adobe Inc. -> )

HKUS-1-5-21-3623259656-3639657945-3203993032-1001…Run: [GoogleDriveSync] => C:Program FilesGoogleDrivegoogledrivesync.exe [49925280 2021-06-18] (Google LLC -> )

HKUS-1-5-21-3623259656-3639657945-3203993032-1001…Run: [Spotify] => C:UserstimjaAppDataRoamingSpotifySpotify.exe [24731784 2021-08-21] (Spotify AB -> Spotify Ltd)

HKLMSoftwareMicrosoftActive SetupInstalled Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:Program FilesGoogleChromeApplication92.0.4515.159Installerchrmstp.exe [2021-08-18] (Google LLC -> Google LLC)

HKLMSoftware…WinlogonGPExtensions: [{8472C2C4-6B70-4301-A20D-A6CEA5F82B7E}] -> C:WindowsSystem32StartTileData.dll [2021-05-30] (Microsoft Windows -> Microsoft Corporation)

Startup: C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupAnyDesk.lnk [2021-07-27]

ShortcutTarget: AnyDesk.lnk -> C:Program Files (x86)AnyDeskAnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)

Startup: C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupiPSNotifier.lnk [2021-07-27]

ShortcutTarget: iPSNotifier.lnk -> C:Program Files (x86)brotheriPrint&ScaniPSNotifier.exe (Brother Industries, Ltd.) [File not signed]

GroupPolicy: Restriction ? <==== ATTENTION

Policies: C:ProgramDataNTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A9D40C1-D82F-4590-B89F-B8621A5C04C6} – System32TasksAMDInstallLauncher => C:Program FilesAMDCIMBin64InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {185C0080-80D9-4AD5-AC77-D5A1737D4415} – System32TasksHewlett-PackardHP Support AssistantPC Health Analysis => C:Program Files (x86)Hewlett-PackardHP Support FrameworkHPSF.exe

Task: {2130C22E-77AE-48A3-A22E-CDFEB1ACD1C4} – System32TasksMicrosoftWindowsShellThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:WindowsSystem32Themes.SsfDownload.ScheduledTask.dll [200704 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

Task: {32640BCC-0CDD-4EE1-B0D7-6EA868F380FF} – System32TasksModifyLinkUpdate => C:Program FilesAMDCIMBin64InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {4BEAE2DC-6445-4A13-A117-66A30B921BC2} – System32Tasksmicrosoftwindowscapabilityaccessmanagermaintenancetasks => %windir%system32rundll32.exe %windir%system32CapabilityAccessManager.dll,CapabilityAccessManagerDoStoreMaintenance

Task: {664D8BA7-12D3-4DE2-BF97-17B398DBE7E7} – System32TasksHewlett-PackardHP Support AssistantHP Support Solutions Framework Updater => C:Program Files (x86)Hewlett-PackardHP Support SolutionsModulesHPSSFUpdater.exe

Task: {68D53284-7C96-4B3A-A0BF-DB3ACB31FFA7} – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [154456 2021-06-21] (Google LLC -> Google LLC)

Task: {69538137-FAD3-4A06-B585-4CBAB31C2D34} – System32TasksHewlett-PackardHP Support AssistantHP Support Assistant Quick Start => C:Program Files (x86)Hewlett-PackardHP Support FrameworkHPSF.exe

Task: {757C93AC-6640-4805-8046-132AB33B899C} – System32TasksHewlett-PackardHP Support AssistantProduct Configurator => C:Program Files (x86)Hewlett-PackardHP Support FrameworkResourcesProductConfig.exe

Task: {769514FB-79F5-4BD1-A1D2-4AD2AB9B448C} – System32TasksHewlett-PackardHP Support AssistantHP Support Solutions Framework Report => C:Program Files (x86)Hewlett-PackardHP Support SolutionsModulesHPSFReport.exe

Task: {7A451C20-4138-4B74-AD44-8887A8CC5728} – System32TasksStartDVR => C:Program FilesAMDCNextCNextRSServCmd.exe [268576 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {86B10458-1E47-431E-A801-036137FB1449} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cache Maintenance => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2107.4-0MpCmdRun.exe [673816 2021-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {9AAF2671-876F-4954-8672-EEE5FC1836E0} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Scheduled Scan => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2107.4-0MpCmdRun.exe [673816 2021-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {9AE56D21-71E0-4496-BF31-24657BB51475} – System32TasksStartCN => C:Program FilesAMDCNextCNextcncmd.exe [62752 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {A457BDE9-4F1E-4755-9EF8-3C27E96A85C4} – System32TasksMicrosoftWindowsKernelLa57Cleanup => C:Windowssystem32la57setup.exe

Task: {A5764F8C-87F6-4EF5-9D34-8811EB3D69DB} – System32TasksPowerENGAGE => Command(1): msiexec -> /f {400A01BF-E908-4393-BD39-31E386377BDA} /quiet /qn

Task: {A5764F8C-87F6-4EF5-9D34-8811EB3D69DB} – System32TasksPowerENGAGE => Command(2): PowerENGAGE.exe -> scheduled-run

Task: {B24F9AFF-D6E6-4587-B79D-51AE29FFF79A} – System32TasksMicrosoftWindowsAppListBackupBackup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:Windowssystem32AppListBackupLauncher.dll [110592 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

Task: {B7984298-C844-4F77-B93F-D9A556E1F233} – System32TasksMicrosoftWindowsManagementProvisioningMdmDiagnosticsCleanup => C:Windowssystem32MdmDiagnosticsTool.exe [90112 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

Task: {CAA005BD-1BC2-490A-863A-A033DF894770} – System32TasksAMDLinkUpdate => C:Program FilesAMDCIMBin64InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {CF262300-8230-4AE8-B98C-525ED0177AE6} – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [154456 2021-06-21] (Google LLC -> Google LLC)

Task: {D6E7DF8B-95A9-4D2A-8FF9-584B9C48AC9D} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Verification => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2107.4-0MpCmdRun.exe [673816 2021-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {D6FF11E2-1AFF-45BC-838C-893DE86CBAB2} – System32TasksHewlett-PackardHP Support AssistantOpt-in For HP Support Assistant Quick Start => C:Program Files (x86)Hewlett-PackardHP Support FrameworkHPSF_Utils.exe

Task: {EA1563C2-4969-4DE1-8892-6D110A6EDE34} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cleanup => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2107.4-0MpCmdRun.exe [673816 2021-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {F5EDD82A-5B6E-466B-98D0-02BE1A7A7F27} – System32TasksMicrosoftWindowsPrintingPrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:WindowsSystem32PrinterCleanupTask.dll [118784 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

TcpipParameters: [DhcpNameServer] 192.168.0.1

Tcpip..Interfaces{671ceb4c-6256-4589-a91f-b17d27829d37}: [DhcpNameServer] 192.168.0.1

Tcpip..Interfaces{e49cff9c-7712-40f6-b7d4-8299f3f02952}: [DhcpNameServer] 192.168.0.1

Edge: 

=======

Edge Profile: C:UserstimjaAppDataLocalMicrosoftEdgeUser DataDefault [2021-08-22]

Chrome: 

=======

CHR Profile: C:UserstimjaAppDataLocalGoogleChromeUser DataDefault [2021-08-22]

CHR Notifications: Default -> hxxps://voice.google.com; hxxps://www.facebook.com

CHR Extension: (Docs) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2021-06-21]

CHR Extension: (AdGuard AdBlocker) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionsbgnkhhnnamicmpeenaelnjfhikgbkllg [2021-06-21]

CHR Extension: (YouTube) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2021-06-21]

CHR Extension: (Bookmarks Organizer) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionscjdenbocfdbjohomdaojaokiffjbnaca [2021-06-21]

CHR Extension: (Google News) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionsdllkocilcinkggkchnjgegijklcililc [2021-06-21]

CHR Extension: (Checker Plus for Google Calendar™) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionshkhggnncdpfibdhinjiegagmopldibha [2021-07-27]

CHR Extension: (Kassi – Kodi/XBMC Remote Control) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionsjgannjdjlpnoibphpbmmfjkejcfhcmjp [2021-06-21]

CHR Extension: (Yatzy Solitaire by ludado.com) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionskmehockolmoneccdakfkjcomhbmnmgll [2021-06-21]

CHR Extension: (Application Launcher For Drive (by Google)) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionslmjegmlicamnimmfhcmpkclmigmmcbeh [2021-06-22]

CHR Extension: (Chrome Web Store Payments) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2021-06-21]

CHR Extension: (Checker Plus for Gmail™) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionsoeopbcgkkoapgobdbedcemjljbihmemj [2021-06-21]

CHR Extension: (SABconnect++) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionsokphadhbbjadcifjplhifajfacbkkbod [2021-06-21]

CHR Extension: (Gmail) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2021-06-21]

CHR Extension: (Chrome Media Router) – C:UserstimjaAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-27]

CHR HKUS-1-5-21-3623259656-3639657945-3203993032-1001SOFTWAREGoogleChromeExtensions…ChromeExtension: [apdfllckaahabafndbhieahigkjlhalf] – C:UserstimjaAppDataLocalGoogleDriveuser_defaultapdfllckaahabafndbhieahigkjlhalf_live.crx [2021-06-22]

CHR HKUS-1-5-21-3623259656-3639657945-3203993032-1001SOFTWAREGoogleChromeExtensions…ChromeExtension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

CHR HKLM-x32…ChromeExtension: [dhancbnhabhandieicagelcddkdfgoif] – C:Program Files (x86)AllavsoftVideo Downloader Converterextensions3.23.7.7873BVDChromeExt.crx [2021-08-03]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AnyDesk; C:Program Files (x86)AnyDeskAnyDesk.exe [3765992 2021-07-27] (philandro Software GmbH -> AnyDesk Software GmbH)

R3 BrYNSvc; C:Program Files (x86)Browny02BrYNSvc.exe [320000 2021-01-29] (Brother Industries, Ltd.) [File not signed]

S3 FrameServerMonitor; C:Windowssystem32FrameServerMonitor.dll [319488 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

S3 hpqcaslwmiex; C:Program Files (x86)HPSharedhpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)

R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [7497336 2021-08-21] (Malwarebytes Inc -> Malwarebytes)

S3 McpManagementService; C:WindowsSystem32McpManagementService.dll [319488 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

S3 NPSMSvc; C:WindowsSystem32npsm.dll [233472 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

S3 NPSMSvc; C:WindowsSysWOW64npsm.dll [163840 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

R2 USBAppControl; C:Program Files (x86)BrotheriPrint&ScanUSBAppControl.exe [12288 2021-03-01] (Microsoft) [File not signed]

R3 WdNisSvc; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2107.4-0NisSrv.exe [2727416 2021-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WinDefend; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2107.4-0MsMpEng.exe [136656 2021-07-27] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WorkflowAppControl; C:Program Files (x86)BrotheriPrint&ScanWorkflowAppControl.exe [20480 2021-03-01] (Microsoft) [File not signed]

S2 HPSupportSolutionsFrameworkService; “C:Program Files (x86)Hewlett-PackardHP Support SolutionsHPSupportSolutionsFrameworkService.exe” [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AMDSAFD; C:WindowsSystem32DriverStoreFileRepositoryamdsafd.inf_amd64_8e2568524f674315amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)

R3 AMDXE; C:WindowsSystem32driversamdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

S0 ebdrv; C:WindowsSystem32driversevbda.sys [3440440 2021-05-30] (Microsoft Windows -> Marvell Semiconductor Inc.)

S0 ebdrv0; C:WindowsSystem32driversevbd0a.sys [3423056 2021-05-30] (Microsoft Windows -> QLogic Corporation)

S3 ExecutionContext; C:WindowsSystem32DriversExecutionContext.sys [61440 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

S3 HidSpiCx; C:WindowsSystem32driversHidSpiCx.sys [118784 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

R0 IntelPMT; C:WindowsSystem32driversIntelPMT.sys [74224 2021-05-30] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)

R2 MBAMChameleon; C:WindowsSystem32DriversMbamChameleon.sys [210344 2021-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)

S0 MbamElam; C:WindowsSystem32DRIVERSMbamElam.sys [19912 2021-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R3 MBAMSwissArmy; C:WindowsSystem32Driversmbamswissarmy.sys [248992 2021-07-27] (Malwarebytes Inc -> Malwarebytes)

S0 megasas35i; C:WindowsSystem32driversmegasas35i.sys [100152 2021-05-30] (Microsoft Windows -> Broadcom Inc)

S0 mpi3drvi; C:WindowsSystem32driversmpi3drvi.sys [87376 2021-05-30] (Microsoft Windows -> Broadcom Limited)

R3 MpKsl93fef6b6; C:ProgramDataMicrosoftWindows DefenderDefinition Updates{31DED114-570F-4EC3-BE4E-4D094032FC8A}MpKslDrv.sys [130296 2021-08-22] (Microsoft Windows -> Microsoft Corporation)

S3 NDKPerf; C:WindowsSystem32driversNDKPerf.sys [78160 2021-05-30] (Microsoft Windows -> )

S0 nvmedisk; C:WindowsSystem32driversnvmedisk.sys [82256 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

R3 RSP2STOR; C:Windowssystem32DRIVERSRtsP2Stor.sys [301784 2015-05-15] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)

U5 RTSPER; C:WindowsSystem32DriversRTSPER.sys [752856 2015-05-29] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)

U5 RTSUER; C:WindowsSystem32DriversRTSUER.sys [402136 2015-05-27] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)

R3 tap0901; C:WindowsSystem32driverstap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)

S3 Usb4DeviceRouter; C:WindowsSystem32DriverStoreFileRepositoryusb4devicerouter.inf_amd64_ab7d366e61a14495Usb4DeviceRouter.sys [831824 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

S3 Usb4HostRouter; C:WindowsSystem32DriverStoreFileRepositoryusb4hostrouter.inf_amd64_1953eb700efb9117Usb4HostRouter.sys [541008 2021-05-30] (Microsoft Windows -> Microsoft Corporation)

S0 WdBoot; C:WindowsSystem32driverswdWdBoot.sys [49568 2021-07-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

R0 WdFilter; C:WindowsSystem32driverswdWdFilter.sys [434424 2021-07-27] (Microsoft Windows -> Microsoft Corporation)

R3 WdNisDrv; C:WindowsSystem32driverswdWdNisDrv.sys [78072 2021-07-27] (Microsoft Windows -> Microsoft Corporation)

R3 WirelessButtonDriver64; C:WindowsSystem32driversWirelessButtonDriver64.sys [30384 2015-06-23] (Hewlett-Packard Company -> HP Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-22 18:12 – 2021-08-22 18:13 – 000023552 _____ C:UserstimjaDesktopFRST.txt

2021-08-22 11:10 – 2021-08-22 11:10 – 000255928 _____ (Malwarebytes) C:Windowssystem32Drivers674537D0.sys

2021-08-22 11:09 – 2021-08-22 14:16 – 000000000 ____D C:UserstimjaDesktopmbar

2021-08-22 11:09 – 2021-08-22 14:16 – 000000000 ____D C:ProgramDataMalwarebytes’ Anti-Malware (portable)

2021-08-22 11:07 – 2021-08-22 11:07 – 014178840 _____ (Malwarebytes Corp.) C:UserstimjaDesktopmbar-1.10.3.1001.exe

2021-08-22 10:58 – 2021-08-22 10:58 – 000210344 _____ (Malwarebytes) C:Windowssystem32DriversMbamChameleon.sys

2021-08-22 10:56 – 2021-08-22 11:21 – 000017821 _____ C:UserstimjaDesktopNew Text Document.txt

2021-08-22 10:55 – 2021-08-22 10:55 – 008553680 _____ (Malwarebytes) C:UserstimjaDesktopadwcleaner_8.3.0.exe

2021-08-22 09:56 – 2021-08-22 10:00 – 000000258 __RSH C:ProgramDatantuser.pol

2021-08-22 09:56 – 2021-08-22 09:56 – 000000066 _____ C:UserstimjaDesktoprufus.ini

2021-08-22 09:26 – 2021-08-22 09:26 – 001181752 _____ (Akeo Consulting) C:UserstimjaDesktoprufus-3.15p.exe

2021-08-22 09:25 – 2021-08-22 09:50 – 000000000 ____D C:UserstimjaDesktopWindows 11 build 21996.1  x64  [TheWindowsForum.com]

2021-08-22 07:50 – 2021-08-22 07:50 – 002300928 _____ (Farbar) C:UserstimjaDesktopFRST64.exe

2021-08-22 07:48 – 2021-08-22 07:49 – 000001908 _____ C:Windowsdiagwrn.xml

2021-08-22 07:48 – 2021-08-22 07:49 – 000001908 _____ C:Windowsdiagerr.xml

2021-08-22 07:48 – 2021-08-22 07:49 – 000000000 ___HD C:$WINDOWS.~BT

2021-08-21 22:18 – 2021-08-22 18:13 – 000000000 ____D C:FRST

2021-08-18 19:37 – 2021-08-18 19:37 – 000000000 ____D C:UserstimjaCreative Cloud Files

2021-08-18 09:00 – 2021-08-18 09:51 – 000000000 ____D C:Windowssystem32MRT

2021-08-03 20:02 – 2021-08-03 20:02 – 000012317 _____ C:Windowssystem32Driversrtkhdasetting.zip

2021-08-03 20:02 – 2021-08-03 20:02 – 000001832 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsB&O Play.lnk

2021-08-03 20:02 – 2021-08-03 20:02 – 000000000 ____D C:WindowsSysWOW64RTCOM

2021-08-03 20:02 – 2021-08-03 20:02 – 000000000 ____D C:Windowssystem32SRSLabs

2021-08-03 20:02 – 2021-08-03 20:02 – 000000000 ____D C:ProgramDataSRS Labs

2021-08-03 20:02 – 2021-08-03 20:02 – 000000000 ____D C:Program FilesRealtek

2021-08-03 20:01 – 2021-08-03 20:02 – 000000000 ___HD C:Program Files (x86)Temp

2021-08-03 20:01 – 2016-08-26 09:18 – 072520720 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoRes64.dat

2021-08-03 20:01 – 2016-08-26 09:18 – 006947183 _____ C:Windowssystem32DriversRTAIODAT.DAT

2021-08-03 20:01 – 2016-08-26 09:18 – 005293064 _____ (Realtek Semiconductor Corp.) C:Windowssystem32DriversRTKVHD64.sys

2021-08-03 20:01 – 2016-08-26 09:18 – 003283248 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkApi64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 003203592 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtPgEx64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 003134720 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RltkAPO64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 002895104 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTSnMg64.cpl

2021-08-03 20:01 – 2016-08-26 09:18 – 002706864 _____ (DTS, Inc.) C:Windowssystem32sltech64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 002203752 _____ (DTS, Inc.) C:Windowssystem32slcnt64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 002073096 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoInstII64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 001607136 _____ (Conexant Systems Inc.) C:Windowssystem32CX64APO.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 001529144 _____ (Conexant Systems Inc.) C:Windowssystem32CX64Proxy.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 001435144 _____ (Synopsys, Inc.) C:Windowssystem32SRRPTR64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 001360520 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTCOM64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 001041744 _____ (DTS, Inc.) C:Windowssystem32sl3apo64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 001001800 _____ (Sound Research, Corp.) C:Windowssystem32SEHDHF64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000864344 _____ (Sound Research, Corp.) C:WindowsSysWOW64SEHDHF32.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000858200 _____ (Sound Research, Corp.) C:Windowssystem32SEHDRA64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000854032 _____ (Sound Research, Corp.) C:Windowssystem32SECOMN64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000725944 _____ (Sound Research, Corp.) C:WindowsSysWOW64SECOMN32.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000689888 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtDataProc64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000574760 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAC64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000532384 _____ (SRS Labs, Inc.) C:Windowssystem32SRSTSX64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000498648 _____ (Sound Research, Corp.) C:Windowssystem32SEAPO64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000467160 _____ (Synopsys, Inc.) C:Windowssystem32SRAPO64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000438696 _____ (Conexant Systems, Inc.) C:Windowssystem32CAF64APO2.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000387320 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEP64A.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000381416 _____ (Synopsys, Inc.) C:Windowssystem32SRCOM64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000343712 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtlCPAPI64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000341152 _____ (Synopsys, Inc.) C:WindowsSysWOW64SRCOM.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000341152 _____ (Synopsys, Inc.) C:Windowssystem32SRCOM.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000321720 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DHT64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000321720 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DAA64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000258864 _____ (TODO: ) C:Windowssystem32slprp64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000214832 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEED64A.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000192984 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCfg64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000166208 _____ (SRS Labs, Inc.) C:Windowssystem32SRSWOW64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000122320 _____ (Real Sound Lab SIA) C:Windowssystem32CONEQMSAPOGUILibrary.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000118600 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAR64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000112496 _____ (Conexant Systems, Inc.) C:Windowssystem32Caf64api.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000110984 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEL64A.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000088352 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEG64A.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000023696 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCoLDR64.dll

2021-08-03 20:01 – 2016-08-26 09:18 – 000005604 _____ C:Windowssystem32cxapo.lncs

2021-08-03 20:01 – 2016-08-26 09:18 – 000000736 _____ C:Windowssystem32cxapo.prop

2021-08-03 20:01 – 2016-04-11 13:38 – 002838232 _____ (Realtek Semiconductor Corp.) C:WindowsRtlExUpd.dll

2021-08-03 19:59 – 2021-08-03 19:59 – 000000000 ____D C:WindowsLastGood.Tmp

2021-08-03 19:59 – 2015-09-21 00:34 – 004738672 _____ (Realtek Semiconductor Corporation ) C:Windowssystem32Driversrtwlane.sys

2021-08-03 19:59 – 2015-09-21 00:34 – 001148160 _____ (Realtek Semiconductor Corp. ) C:Windowssystem32Rtlihvs.dll

2021-08-03 19:58 – 2021-08-03 19:58 – 000000095 _____ C:WindowsHPSetLog.txt

2021-08-03 19:58 – 2010-12-01 09:31 – 000451072 _____ C:WindowsSysWOW64ISSRemoveSP.exe

2021-08-03 19:10 – 2021-08-03 19:20 – 000000000 ____D C:UserstimjaAppDataRoamingAllavsoft

2021-08-03 19:10 – 2021-08-03 19:12 – 000001383 _____ C:UsersPublicDesktopAllavsoft.lnk

2021-08-03 19:10 – 2021-08-03 19:10 – 000000000 ____D C:UserstimjaDocumentsAllavsoft

2021-08-03 19:10 – 2021-08-03 19:10 – 000000000 ____D C:UserstimjaAppDataRoamingMicrosoftWindowsStart MenuProgramsAllavsoft

2021-08-03 19:10 – 2021-08-03 19:10 – 000000000 ____D C:Program Files (x86)Allavsoft

2021-08-03 19:07 – 2021-08-22 10:59 – 000000000 ____D C:UserstimjaAppDataLocalSpotify

2021-08-03 19:07 – 2021-08-03 19:07 – 000001850 _____ C:UserstimjaDesktopSpotify.lnk

2021-08-03 19:07 – 2021-08-03 19:07 – 000001836 _____ C:UserstimjaAppDataRoamingMicrosoftWindowsStart MenuProgramsSpotify.lnk

2021-08-03 19:06 – 2021-08-22 18:05 – 000000000 ____D C:UserstimjaAppDataRoamingSpotify

2021-08-03 18:58 – 2021-08-03 19:39 – 000001875 _____ C:UserstimjaDesktopPeace.lnk

2021-08-03 18:58 – 2021-08-03 18:58 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPeace

2021-08-03 18:38 – 2021-08-03 18:38 – 000000000 ____D C:UserstimjaAppDataRoamingMicrosoftWindowsStart MenuProgramsEqualizer APO 1.2.1

2021-08-03 18:38 – 2021-08-03 18:38 – 000000000 ____D C:Program FilesEqualizerAPO

2021-08-03 18:38 – 2021-08-03 18:38 – 000000000 ____D C:Program Files (x86)Adobe]

2021-07-28 00:08 – 2021-07-28 00:08 – 000000000 ____D C:UserstimjaAppDataLocalRaspberry Pi

2021-07-27 22:20 – 2021-07-27 22:17 – 000001107 _____ C:UserstimjaDesktopAdobe Premiere Rush 1.5.lnk

2021-07-27 22:17 – 2021-07-27 22:17 – 000001107 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAdobe Premiere Rush 1.5.lnk

2021-07-27 22:08 – 2021-07-27 22:08 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuPrograms7-Zip

2021-07-27 22:08 – 2021-07-27 22:08 – 000000000 ____D C:Program Files7-Zip

2021-07-27 21:58 – 2021-07-27 21:58 – 000001085 _____ C:UserstimjaDesktopAdobe Lightroom Classic.lnk

2021-07-27 21:58 – 2021-07-27 21:58 – 000001085 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAdobe Lightroom Classic.lnk

2021-07-27 21:56 – 2021-07-27 21:44 – 000001250 _____ C:UserstimjaDesktopAdobe After Effects 2021.lnk

2021-07-27 21:56 – 2021-07-27 21:39 – 000001082 _____ C:UserstimjaDesktopAdobe Audition 2021.lnk

2021-07-27 21:55 – 2021-07-27 22:18 – 000000000 ____D C:UserstimjaDocumentsAdobe

2021-07-27 21:44 – 2021-07-27 21:44 – 000001250 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAdobe After Effects 2021.lnk

2021-07-27 21:40 – 2021-07-27 22:18 – 000000000 ____D C:UsersPublicDocumentsAdobe

2021-07-27 21:39 – 2021-07-27 21:39 – 000001082 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAdobe Audition 2021.lnk

2021-07-27 18:03 – 2021-07-27 18:04 – 000000000 ____D C:UserstimjaAppDataRoamingControlCenter4

2021-07-27 18:03 – 2021-07-27 18:03 – 000000000 ____D C:UserstimjaAppDataLocalLowAMD

2021-07-27 18:00 – 2021-08-22 18:05 – 000003126 _____ C:Windowssystem32TasksAMDInstallLauncher

2021-07-27 18:00 – 2021-08-22 18:05 – 000003078 _____ C:Windowssystem32TasksAMDLinkUpdate

2021-07-27 18:00 – 2021-08-22 10:58 – 000065536 _____ C:Windowspsp_storage.bin

2021-07-27 18:00 – 2021-07-27 18:08 – 000000000 ____D C:UserstimjaAppDataLocalAMD

2021-07-27 18:00 – 2021-07-27 18:00 – 000003488 _____ C:Windowssystem32TasksModifyLinkUpdate

2021-07-27 18:00 – 2021-07-27 18:00 – 000003160 _____ C:Windowssystem32TasksStartCN

2021-07-27 18:00 – 2021-07-27 18:00 – 000003080 _____ C:Windowssystem32TasksStartDVR

2021-07-27 18:00 – 2021-07-27 18:00 – 000000000 ____D C:Windowssystem32AMD

2021-07-27 18:00 – 2021-07-27 18:00 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAMD Radeon Software

2021-07-27 18:00 – 2021-07-27 18:00 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAMD Link For Windows

2021-07-27 18:00 – 2021-07-27 18:00 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAMD Bug Report Tool

2021-07-27 17:59 – 2021-05-11 14:00 – 002260008 _____ (AMD Inc.) C:WindowsSysWOW64AMDBugReportTool.exe

2021-07-27 17:58 – 2021-06-17 10:59 – 001857224 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe

2021-07-27 17:58 – 2021-06-17 10:59 – 001857224 _____ C:Windowssystem32vulkaninfo.exe

2021-07-27 17:58 – 2021-06-17 10:59 – 001437904 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe

2021-07-27 17:58 – 2021-06-17 10:59 – 001437904 _____ C:WindowsSysWOW64vulkaninfo.exe

2021-07-27 17:58 – 2021-06-17 10:59 – 001093096 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll

2021-07-27 17:58 – 2021-06-17 10:59 – 001093096 _____ C:Windowssystem32vulkan-1.dll

2021-07-27 17:58 – 2021-06-17 10:59 – 000946280 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll

2021-07-27 17:58 – 2021-06-17 10:59 – 000946280 _____ C:WindowsSysWOW64vulkan-1.dll

2021-07-27 17:58 – 2021-06-17 10:59 – 000735944 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32Rapidfire64.dll

2021-07-27 17:58 – 2021-06-17 10:59 – 000620240 _____ (Advanced Micro Devices, Inc.) C:WindowsSysWOW64Rapidfire.dll

2021-07-27 17:58 – 2021-06-17 10:59 – 000089808 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32mcl64.dll

2021-07-27 17:58 – 2021-06-17 10:59 – 000045784 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32RapidFireServer64.dll

2021-07-27 17:58 – 2021-06-17 10:59 – 000042696 _____ (Advanced Micro Devices, Inc.) C:WindowsSysWOW64RapidFireServer.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000820424 _____ (AMD) C:Windowssystem32atieclxx.exe

2021-07-27 17:58 – 2021-06-17 10:58 – 000495824 _____ C:Windowssystem32GameManager64.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000492248 _____ C:Windowssystem32dgtrayicon.exe

2021-07-27 17:58 – 2021-06-17 10:58 – 000455368 _____ C:Windowssystem32atieah64.exe

2021-07-27 17:58 – 2021-06-17 10:58 – 000431824 _____ C:Windowssystem32EEURestart.exe

2021-07-27 17:58 – 2021-06-17 10:58 – 000379088 _____ C:WindowsSysWOW64GameManager32.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000350912 _____ C:WindowsSysWOW64atieah32.exe

2021-07-27 17:58 – 2021-06-17 10:58 – 000345824 _____ C:Windowssystem32clinfo.exe

2021-07-27 17:58 – 2021-06-17 10:58 – 000244432 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32atig6txx.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000212168 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64atigktxx.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000186064 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32mantle64.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000166104 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32atisamu64.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000165600 _____ (AMD) C:Windowssystem32atimuixx.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000165584 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32mantleaxl64.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000155856 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64mantle32.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000141520 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64mantleaxl32.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000140000 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64atisamu32.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000124624 _____ C:Windowssystem32atidxx64.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000074448 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64mcl32.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000019248 _____ (Microsoft Corporation) C:WindowsSysWOW64detoured.dll

2021-07-27 17:58 – 2021-06-17 10:58 – 000019248 _____ (Microsoft Corporation) C:Windowssystem32detoured.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 081573080 _____ C:Windowssystem32amd_comgr.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 067162320 _____ C:WindowsSysWOW64amd_comgr32.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 005800160 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32amfrt64.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 005519584 _____ (Advanced Micro Devices, Inc.) C:WindowsSysWOW64amfrt32.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 001748176 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32atiadlxx.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 001534664 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32atiacm64.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 001330904 _____ (Advanced Micro Devices, Inc.) C:WindowsSysWOW64atiadlxy.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 001330904 _____ (Advanced Micro Devices, Inc.) C:WindowsSysWOW64atiadlxx.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000940256 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32amdlvr64.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000767712 _____ (Advanced Micro Devices, Inc.) C:WindowsSysWOW64amdlvr32.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000467664 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32atidemgy.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000465632 _____ C:Windowssystem32amdlogum.exe

2021-07-27 17:58 – 2021-06-17 10:57 – 000181456 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32aticfx64.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000157712 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64aticfx32.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000134864 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32amdxc64.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000114904 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64amdxc32.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000106712 _____ C:WindowsSysWOW64atidxx32.dll

2021-07-27 17:58 – 2021-06-17 10:57 – 000069320 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32ati2erec.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 072480992 _____ (Advanced Micro Devices Inc.) C:Windowssystem32amdhip64.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 001685072 _____ (AMD) C:Windowssystem32amf-mft-mjpeg-decoder64.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 001364432 _____ (AMD) C:WindowsSysWOW64amf-mft-mjpeg-decoder32.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 000488672 _____ C:Windowssystem32amdgfxinfo64.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 000379104 _____ C:WindowsSysWOW64amdgfxinfo32.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 000201512 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32amdihk64.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 000169072 _____ (Advanced Micro Devices, Inc.) C:WindowsSysWOW64amdihk32.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 000129696 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32atimpc64.dll

2021-07-27 17:58 – 2021-06-17 10:56 – 000107704 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64atimpc32.dll

2021-07-27 17:58 – 2021-06-17 10:55 – 000546272 _____ C:Windowssystem32amdmiracast.dll

2021-07-27 17:58 – 2021-06-17 10:55 – 000135400 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32amdave64.dll

2021-07-27 17:58 – 2021-06-17 10:55 – 000129680 _____ (Advanced Micro Devices, Inc. ) C:Windowssystem32amdpcom64.dll

2021-07-27 17:58 – 2021-06-17 10:55 – 000119744 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64amdave32.dll

2021-07-27 17:58 – 2021-06-17 10:55 – 000107704 _____ (Advanced Micro Devices, Inc. ) C:WindowsSysWOW64amdpcom32.dll

2021-07-27 17:58 – 2021-06-17 09:37 – 003471376 _____ C:WindowsSysWOW64atiumdva.cap

2021-07-27 17:58 – 2021-06-17 09:37 – 003437632 _____ C:Windowssystem32atiumd6a.cap

2021-07-27 17:58 – 2021-06-17 09:37 – 000558136 _____ C:WindowsSysWOW64atiapfxx.blb

2021-07-27 17:58 – 2021-06-17 09:37 – 000558136 _____ C:Windowssystem32atiapfxx.blb

2021-07-27 17:58 – 2021-06-17 09:37 – 000204952 _____ C:WindowsSysWOW64ativvsvl.dat

2021-07-27 17:58 – 2021-06-17 09:37 – 000204952 _____ C:Windowssystem32ativvsvl.dat

2021-07-27 17:58 – 2021-06-17 09:37 – 000157144 _____ C:WindowsSysWOW64ativvsva.dat

2021-07-27 17:58 – 2021-06-17 09:37 – 000157144 _____ C:Windowssystem32ativvsva.dat

2021-07-27 17:58 – 2021-06-17 09:37 – 000154384 _____ C:Windowssystem32samu_krnl_ci.sbin

2021-07-27 17:58 – 2021-06-17 09:37 – 000138832 _____ C:Windowssystem32samu_krnl_isv_ci.sbin

2021-07-27 17:58 – 2021-06-17 09:37 – 000128048 _____ C:Windowssystem32kapp_ci.sbin

2021-07-27 17:58 – 2021-06-17 09:37 – 000121168 _____ C:Windowssystem32kapp_si.sbin

2021-07-27 17:58 – 2021-06-17 09:37 – 000012344 _____ C:Windowssystem32brandingWS_RSX.bmp

2021-07-27 17:58 – 2021-06-17 09:37 – 000012344 _____ C:Windowssystem32brandingRSX.bmp

2021-07-27 17:58 – 2021-06-17 09:37 – 000011014 _____ C:Windowssystem32atiacmLocalisation.ini

2021-07-27 17:58 – 2021-06-17 09:37 – 000000822 _____ C:Windowssystem32branding.bmp

2021-07-27 17:58 – 2021-06-17 09:36 – 059164696 _____ C:Windowssystem32amdxc64.so

2021-07-27 17:58 – 2021-06-17 09:36 – 000076237 _____ C:Windowssystem32AMDKernelEvents.man

2021-07-27 17:58 – 2021-04-30 09:53 – 000517536 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32amdfendrsr.exe

2021-07-27 17:58 – 2021-04-30 09:53 – 000117448 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32Driversamdfendr.sys

2021-07-27 17:58 – 2021-01-18 11:27 – 000247216 _____ (Advanced Micro Devices) C:Windowssystem32DriversAtihdWT6.sys

2021-07-27 17:58 – 2020-07-27 03:41 – 000062056 _____ (Advanced Micro Devices, Inc.) C:Windowssystem32Driversamdxe.sys

2021-07-27 17:57 – 2021-08-03 22:14 – 000000000 ____D C:UserstimjaAppDataLocallicense

2021-07-27 17:57 – 2021-07-27 17:57 – 000000000 ____D C:UserstimjaAppDataLocalCEF

2021-07-27 17:56 – 2021-08-21 23:40 – 000000000 ____D C:UserstimjaAppDataLocalCrashDumps

2021-07-27 17:56 – 2021-07-27 17:56 – 000001064 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAdobe Photoshop 2021.lnk

2021-07-27 17:56 – 2021-07-27 17:56 – 000001052 _____ C:UserstimjaDesktopAdobe Photoshop 2021.lnk

2021-07-27 17:56 – 2021-07-27 17:55 – 000548352 _____ (Microsoft Corporation) C:UserstimjaAppDataRoamingiscsicli.exe

2021-07-27 17:55 – 2021-08-22 11:14 – 000000000 ____D C:UserstimjaAppDataRoamingCached files

2021-07-27 17:54 – 2021-07-27 22:17 – 000000000 ____D C:Program FilesAdobe

2021-07-27 17:54 – 2021-07-27 21:44 – 000000000 ____D C:Program FilesCommon FilesAdobe

2021-07-27 17:53 – 2021-07-27 22:16 – 000000000 ____D C:UserstimjaAppDataLocalAdobe

2021-07-27 17:53 – 2021-07-27 22:16 – 000000000 ____D C:ProgramDataAdobe

2021-07-27 17:52 – 2021-08-13 19:08 – 000000000 ____D C:UserstimjaAppDataLocalAMD_Common

2021-07-27 17:52 – 2021-07-27 21:42 – 000000000 ____D C:Program Files (x86)Adobe

2021-07-27 17:52 – 2021-07-27 18:03 – 000000000 ____D C:ProgramDataAMD

2021-07-27 17:52 – 2021-07-27 18:00 – 000000000 ____D C:Program FilesAMD

2021-07-27 17:52 – 2021-07-27 17:52 – 000000000 ____D C:UserstimjaAppDataLocalRadeonInstaller

2021-07-27 17:42 – 2021-08-03 20:03 – 000000000 ____D C:Program Files (x86)AnyDesk

2021-07-27 17:42 – 2021-08-03 17:54 – 000000000 ____D C:UserstimjaAppDataRoamingAnyDesk

2021-07-27 17:42 – 2021-07-27 17:42 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAnyDesk

2021-07-27 17:42 – 2021-07-27 17:42 – 000000000 ____D C:ProgramDataAnyDesk

2021-07-27 17:24 – 2021-07-27 17:24 – 000002226 _____ C:UserstimjaAppDataLocalrecently-used.xbel

2021-07-27 17:17 – 2021-07-27 17:17 – 000000000 ____D C:UserstimjaAppDataLocalNuance

2021-07-27 17:17 – 2021-07-27 17:17 – 000000000 ____D C:ProgramDataNuance

2021-07-27 17:16 – 2021-07-27 17:17 – 000000000 ____D C:UserstimjaAppDataLocalBrother

2021-07-27 17:16 – 2021-07-27 17:16 – 000003642 _____ C:Windowssystem32TasksPowerENGAGE

2021-07-27 17:16 – 2021-07-27 17:16 – 000000000 ____D C:UserstimjaAppDataRoamingPowerENGAGE

2021-07-27 17:15 – 2021-08-21 23:17 – 000000000 ____D C:Program Files (x86)PowerENGAGE

2021-07-27 17:15 – 2021-07-27 18:04 – 000000000 ____D C:ProgramDataControlCenter4

2021-07-27 17:15 – 2021-07-27 17:18 – 000000000 ____D C:Program Files (x86)ControlCenter4

2021-07-27 17:15 – 2021-07-27 17:15 – 000000000 ____D C:UserstimjaAppDataRoamingBrother

2021-07-27 17:15 – 2021-07-27 17:15 – 000000000 ____D C:Program Files (x86)ControlCenter4 CSDK

2021-07-27 17:15 – 2021-07-27 17:15 – 000000000 ____D C:Program Files (x86)Browny02

2021-07-27 17:14 – 2021-07-27 17:15 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBrother

2021-07-27 17:12 – 2016-11-01 11:27 – 000090112 _____ (Brother Industries, Ltd.) C:Windowssystem32BrNetSti.dll

2021-07-27 17:12 – 2015-06-16 21:39 – 000252928 _____ (brother) C:Windowssystem32NSSRH64.dll

2021-07-27 17:12 – 2013-07-03 11:46 – 000065024 _____ (Brother Industries,Ltd) C:Windowssystem32Brnsplg.dll

2021-07-27 17:12 – 2013-03-08 15:45 – 000059904 _____ (Brother Industries,Ltd.) C:Windowssystem32BrWiaNCp.dll

2021-07-27 17:12 – 2005-04-22 13:36 – 000143360 _____ C:Windowssystem32BrSNMP64.dll

2021-07-27 17:11 – 2021-07-27 17:12 – 000000000 ____D C:ProgramDataBrother

2021-07-27 17:08 – 2021-07-27 17:08 – 000000000 ____D C:stremio-cache

2021-07-27 16:43 – 2021-07-27 18:08 – 000000000 ____D C:UserstimjaAppDataLocalcache

2021-07-27 16:43 – 2021-07-27 16:43 – 000000000 ____D C:UserstimjaAppDataRoamingstremio

2021-07-27 16:42 – 2021-07-27 16:42 – 000000000 ____D C:UserstimjaAppDataRoamingMicrosoftWindowsStart MenuProgramsStremio

2021-07-27 16:42 – 2021-07-27 16:42 – 000000000 ____D C:UserstimjaAppDataLocalSmart Code ltd

2021-07-27 16:21 – 2021-07-27 17:15 – 000000000 ____D C:Program Files (x86)brother

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-22 18:14 – 2021-05-30 06:32 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft

2021-08-22 18:12 – 2021-05-30 06:32 – 000000000 ____D C:WindowsSystemTemp

2021-08-22 18:07 – 2021-06-21 19:27 – 000000000 ____D C:Program Files (x86)Google

2021-08-22 18:05 – 2021-06-21 22:13 – 000000000 ____D C:Windowssystem32SleepStudy

2021-08-22 11:10 – 2021-06-24 23:41 – 000000000 ____D C:ProgramDataMalwarebytes

2021-08-22 11:07 – 2021-06-21 19:24 – 000803404 _____ C:Windowssystem32PerfStringBackup.INI

2021-08-22 11:07 – 2021-05-30 06:31 – 000000000 ____D C:WindowsINF

2021-08-22 10:59 – 2021-06-22 19:41 – 000000000 ___RD C:UserstimjaGoogle Drive

2021-08-22 10:58 – 2021-06-21 22:13 – 000012288 ___SH C:DumpStack.log.tmp

2021-08-22 10:58 – 2021-06-21 22:13 – 000000006 ____H C:WindowsTasksSA.DAT

2021-08-22 10:58 – 2021-05-30 06:23 – 000524288 _____ C:Windowssystem32configBBI

2021-08-22 09:56 – 2021-05-30 06:32 – 000000000 ___HD C:Windowssystem32GroupPolicy

2021-08-22 09:56 – 2021-05-30 06:32 – 000000000 ____D C:WindowsSysWOW64GroupPolicy

2021-08-22 07:50 – 2021-05-30 06:32 – 000000000 ____D C:WindowsAppReadiness

2021-08-22 07:49 – 2021-06-21 23:13 – 000000000 ____D C:WindowsPanther

2021-08-21 23:17 – 2021-06-21 19:22 – 000000000 ____D C:UserstimjaAppDataLocalD3DSCache

2021-08-21 22:28 – 2021-05-30 06:32 – 000000000 ___HD C:Program FilesWindowsApps

2021-08-21 22:17 – 2021-06-24 23:42 – 000002033 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk

2021-08-21 22:16 – 2021-06-24 23:42 – 000160176 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys

2021-08-21 22:04 – 2021-06-21 22:40 – 000000000 ____D C:ProgramDataHewlett-Packard

2021-08-21 22:04 – 2021-06-21 22:39 – 000000000 ____D C:Program Files (x86)Hewlett-Packard

2021-08-21 21:08 – 2021-06-21 22:14 – 000002440 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk

2021-08-18 19:37 – 2021-06-21 19:20 – 000000000 ____D C:Userstimja

2021-08-18 19:05 – 2021-06-21 19:29 – 000002247 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk

2021-08-18 09:08 – 2021-06-21 19:22 – 000000000 ____D C:UserstimjaAppDataLocalPackages

2021-08-18 09:01 – 2021-06-21 22:14 – 000003480 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineUA

2021-08-18 09:01 – 2021-06-21 22:14 – 000003356 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineCore

2021-08-03 22:16 – 2021-06-21 19:22 – 000000000 ____D C:UserstimjaAppDataRoamingAdobe

2021-08-03 20:06 – 2021-06-21 22:40 – 000000000 ____D C:Windowssystem32TasksHewlett-Packard

2021-08-03 20:01 – 2021-06-21 22:45 – 000000000 ___HD C:Program Files (x86)InstallShield Installation Information

2021-08-03 20:01 – 2021-06-21 22:45 – 000000000 ____D C:Program Files (x86)Realtek

2021-08-03 20:00 – 2021-06-21 22:42 – 000000000 ____D C:SwSetup

2021-08-03 19:55 – 2021-06-21 20:11 – 000000000 ____D C:UserstimjaAppDataLocaltransmission

2021-08-03 18:02 – 2021-06-21 19:28 – 000003420 _____ C:Windowssystem32TasksGoogleUpdateTaskMachineUA

2021-08-03 18:02 – 2021-06-21 19:28 – 000003296 _____ C:Windowssystem32TasksGoogleUpdateTaskMachineCore

2021-07-27 18:12 – 2021-06-21 22:14 – 000000000 ____D C:Windowssystem32Driverswd

2021-07-27 18:07 – 2021-05-30 06:32 – 000000000 ___RD C:WindowsImmersiveControlPanel

2021-07-27 18:02 – 2021-06-24 23:42 – 000248992 _____ (Malwarebytes) C:Windowssystem32Driversmbamswissarmy.sys

2021-07-27 17:59 – 2021-06-21 22:55 – 000000000 ____D C:ProgramDataPackage Cache

2021-07-27 17:53 – 2021-06-21 22:55 – 000000000 ____D C:AMD

2021-07-27 17:53 – 2021-05-30 06:32 – 000000000 ____D C:Program FilesCommon Filesmicrosoft shared

2021-07-27 17:25 – 2021-07-17 14:26 – 000000000 ____D C:UserstimjaAppDataLocalbabl-0.1

==================== Files in the root of some directories ========

2021-07-27 17:56 – 2021-07-27 17:55 – 000548352 _____ (Microsoft Corporation) C:UserstimjaAppDataRoamingiscsicli.exe

2021-07-27 17:24 – 2021-07-27 17:24 – 000002226 _____ () C:UserstimjaAppDataLocalrecently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Source link

Comments are closed.