Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows cannot find hewhwhud.exe


  • This topic is locked This topic is locked
8 replies to this topic

#1 Voughn

Voughn

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 08 June 2018 - 04:58 PM

Windows throws me the following error frequently. Can someone help me fix this?
I have attached an image for reference

Thanks in advance

Attached Files



BC AdBot (Login to Remove)

 


#2 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,767 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:19 PM

Posted 08 June 2018 - 05:08 PM

Welcome ::

 

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure that under Optional Scans, there is a checkmark on Addition.txt.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The tool will also produce another log (Addition.txt ). Please attach this to your reply.

 


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#3 Voughn

Voughn
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 08 June 2018 - 05:29 PM

Here are the logs.

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06.06.2018 01
Ran by janzel voughn (administrator) on LAPTOP-M3DVGDAC (09-06-2018 06:10:45)
Running from C:\Users\janzel voughn\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Loaded Profiles: janzel voughn (Available Profiles: defaultuser0 & janzel voughn)
Platform: Windows 10 Home Single Language Version 1709 16299.431 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.596.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\Lenovo\LenovoUtility\utility.exe
(Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.80.474.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
(Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Lenovo) C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.16299.428_none_1704c21831ffb4a8\TiWorker.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [916184 2014-07-03] (Conexant Systems, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-05] (Intel Corporation)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2016-10-12] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110008 2015-07-21] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492472 2015-07-21] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1526481084-1814454459-2157822748-1001\...\Run: [Google Update] => C:\Users\janzel voughn\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe [601680 2018-06-07] (Google Inc.)
HKU\S-1-5-21-1526481084-1814454459-2157822748-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> none
Startup: C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dwgjdwuv.lnk [2018-03-14]
ShortcutTarget: dwgjdwuv.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Startup: C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2018-06-07]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Rainmeter)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{660c0da1-b249-4045-89d5-55ff4ada8f6c}: [DhcpNameServer] 150.204.1.2
Tcpip\..\Interfaces\{c70681b1-4a0d-49bd-94d6-74f20dd3c630}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-1526481084-1814454459-2157822748-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1526481084-1814454459-2157822748-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1526481084-1814454459-2157822748-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-06-01] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-05-15] (Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-05-15] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-01] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-01] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-01] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-06-01] (Microsoft Corporation)
FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-05-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-05-15] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-05-18] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1526481084-1814454459-2157822748-1001: @tools.google.com/Google Update;version=3 -> C:\Users\janzel voughn\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-06-07] (Google Inc.)
FF Plugin HKU\S-1-5-21-1526481084-1814454459-2157822748-1001: @tools.google.com/Google Update;version=9 -> C:\Users\janzel voughn\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-06-07] (Google Inc.)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [666608 2016-03-22] (Lenovo)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3697352 2017-01-29] (Microsoft Corporation)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [143584 2016-09-21] (ELAN Microelectronics Corp.)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1210352 2016-03-23] (Lenovo)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-15] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-05] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373680 2017-05-26] (Intel Corporation)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-07-01] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-15] (NVIDIA Corporation)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [189048 2016-05-16] (Realtek Semiconductor Corp.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
S2 ImControllerInstallerService; "X:\windows\System32\ImController.InfInstaller.exe" [X]
S2 ImControllerService; "X:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe" [X]
S4 McProxy; "C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-13] (CyberLink)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\System32\drivers\Dot4.sys [151968 2012-10-19] (Windows ® Win 7 DDK provider)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [41040 2016-09-21] (ELAN Microelectronic Corp.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [26560 2017-10-11] (Windows ® Win 7 DDK provider)
S3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-10-11] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [735552 2016-05-16] (Realtek Semiconductor Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [416472 2016-05-17] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3118848 2016-05-12] (Realtek Semiconductor Corp.)
R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [6813664 2017-05-19] (Realtek Semiconductor Corporation )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (QUALCOMM Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-06-09 06:10 - 2018-06-09 06:10 - 000000000 ____D C:\FRST
2018-06-09 05:22 - 2018-06-09 05:22 - 007372496 _____ (Malwarebytes) C:\Users\janzel voughn\Desktop\adwcleaner_7.2.0.exe
2018-06-09 05:18 - 2018-06-09 05:18 - 000000375 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2018-06-08 01:20 - 2018-06-08 01:42 - 000000000 ____D C:\WINDOWS\CUR_DIR
2018-06-08 00:52 - 2018-02-10 12:40 - 002873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll.backup
2018-06-08 00:52 - 2017-09-29 21:42 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxinit.dll.backup
2018-06-07 23:19 - 2018-06-07 23:19 - 000000279 _____ C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recycle Bin.lnk
2018-06-07 22:33 - 2018-06-07 22:33 - 000000000 ____D C:\WINDOWS\pss
2018-06-07 22:00 - 2018-06-07 22:00 - 000000000 ____D C:\Users\janzel voughn\Documents\Rainmeter
2018-06-07 22:00 - 2018-06-07 22:00 - 000000000 ____D C:\Users\janzel voughn\AppData\Roaming\Rainmeter
2018-06-07 21:59 - 2018-06-07 21:59 - 000001754 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2018-06-07 21:59 - 2018-06-07 21:59 - 000000000 ____D C:\Program Files\Rainmeter
2018-06-07 03:01 - 2018-06-07 21:38 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\Opera Software
2018-06-07 01:53 - 2018-06-07 01:44 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-06-07 01:36 - 2018-06-09 05:13 - 000002599 _____ C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary.lnk
2018-06-07 01:33 - 2018-06-07 01:36 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\Google
2018-06-07 01:33 - 2018-06-07 01:33 - 000003698 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1526481084-1814454459-2157822748-1001UA
2018-06-07 01:33 - 2018-06-07 01:33 - 000003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1526481084-1814454459-2157822748-1001Core
2018-06-01 18:19 - 2018-06-01 18:19 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\ElevatedDiagnostics
2018-05-24 22:29 - 2018-05-24 22:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-05-24 22:28 - 2018-05-24 22:28 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-24 22:28 - 2018-05-24 22:28 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-05-24 22:26 - 2018-05-04 17:37 - 000278448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Notifier.exe
2018-05-20 22:59 - 2018-05-20 22:59 - 000000000 ___HD C:\ProgramData\CanonBJ
2018-05-18 22:44 - 2018-05-18 22:44 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\NVIDIA
2018-05-17 23:57 - 2018-05-17 23:57 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\DBG
2018-05-15 21:58 - 2018-05-15 21:58 - 000000000 ____D C:\Users\janzel voughn\Documents\CyberLink
2018-05-15 21:58 - 2018-05-15 21:58 - 000000000 ____D C:\Users\janzel voughn\AppData\Roaming\CyberLink
2018-05-15 20:09 - 2015-04-29 02:06 - 000043256 _____ C:\WINDOWS\system32\oemlogo.bmp
2018-05-15 20:08 - 2018-05-25 14:02 - 000000000 ____D C:\Windows.old
2018-05-15 20:08 - 2018-05-15 20:08 - 000000000 ____D C:\WINDOWS\InfusedApps
2018-05-15 20:07 - 2018-05-15 20:07 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-05-15 20:05 - 2018-05-15 20:05 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-05-15 20:03 - 2018-05-15 20:03 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2018-05-15 20:03 - 2018-05-15 20:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\Lenovo
2018-05-15 20:03 - 2018-05-15 04:23 - 000000000 ____D C:\Program Files\Elantech
2018-05-15 20:02 - 2018-05-15 20:02 - 000000000 ____D C:\WINDOWS\Setup
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\tk-TM
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\te-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\sw-KE
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\si-LK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\prs-AF
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\or-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\mn-MN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ky-KG
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\km-KH
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\is-IS
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\id-ID
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\bn-BD
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\be-BY
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\as-IN
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\am-ET
2018-05-15 19:56 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\OCR
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\Program Files\MSBuild
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-05-15 19:56 - 2018-05-15 19:56 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\winrm
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\WCN
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\slmgr
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\0409
2018-05-15 19:54 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\DigitalLocker
2018-05-15 19:50 - 2018-06-06 07:24 - 000835056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-05-15 19:50 - 2018-06-06 07:24 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-15 19:48 - 2018-05-15 19:43 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2018-05-15 19:48 - 2018-05-15 19:43 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2018-05-15 19:48 - 2018-05-15 19:43 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2018-05-15 19:48 - 2018-05-15 19:43 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2018-05-15 19:47 - 2018-06-09 05:15 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-05-15 19:47 - 2018-06-09 05:13 - 000000000 ___RD C:\Program Files (x86)
2018-05-15 19:47 - 2018-06-08 01:42 - 000000000 ____D C:\WINDOWS\Cursors
2018-05-15 19:47 - 2018-06-08 01:05 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-05-15 19:47 - 2018-06-07 02:12 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-05-15 19:47 - 2018-06-07 01:56 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-05-15 19:47 - 2018-06-01 18:32 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-05-15 19:47 - 2018-06-01 18:02 - 000000000 ___HD C:\Program Files\WindowsApps
2018-05-15 19:47 - 2018-05-17 00:35 - 000000000 ____D C:\WINDOWS\appcompat
2018-05-15 19:47 - 2018-05-15 20:09 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-05-15 19:47 - 2018-05-15 20:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-05-15 19:47 - 2018-05-15 20:08 - 000000000 __RHD C:\Users\Public\Libraries
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ___RD C:\Program Files\Windows Defender
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\TextInput
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\migwiz
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\Provisioning
2018-05-15 19:47 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-05-15 19:47 - 2018-05-15 19:56 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ___SD C:\WINDOWS\system32\dsc
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\SysWOW64\com
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\setup
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\system32\com
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\WINDOWS\IME
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\Program Files\Common Files\system
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-05-15 19:47 - 2018-05-15 19:54 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ___SD C:\WINDOWS\system32\UNP
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ___SD C:\WINDOWS\system32\Nui
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\system32\icsxml
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\system32\ias
2018-05-15 19:47 - 2018-05-15 19:48 - 000000000 ____D C:\WINDOWS\system32\downlevel
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 __SHD C:\Program Files\Windows Sidebar
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 __RSD C:\WINDOWS\media
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\Web
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\Vss
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\tracing
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\TAPI
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SystemResources
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SystemApps
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\winevt
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\ras
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\IME
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\hydrogen
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\DDFs
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\System
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SKB
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\security
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\schemas
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\SchCache
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\Resources
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\rescache
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\PLA
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\Performance
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\ModemLogs
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\L2Schemas
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\InputMethod
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\Globalization
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\Branding
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\addins
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\Program Files\Windows Security
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\Program Files\Windows Portable Devices
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\Program Files\windows nt
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\Program Files\Common Files\Services
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\Program Files (x86)\windows nt
2018-05-15 19:47 - 2018-05-15 19:47 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2018-05-15 19:47 - 2018-05-15 19:43 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2018-05-15 19:47 - 2018-05-15 19:43 - 000215943 _____ C:\WINDOWS\system32\dssec.dat
2018-05-15 19:47 - 2018-05-15 19:43 - 000017572 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2018-05-15 19:47 - 2018-05-15 19:43 - 000004096 _____ C:\WINDOWS\system32\config\VSMIDK
2018-05-15 19:47 - 2018-05-15 19:43 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2018-05-15 19:47 - 2018-05-15 19:43 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT
2018-05-15 19:47 - 2018-05-15 04:47 - 000000000 ____D C:\WINDOWS\Registration
2018-05-15 19:47 - 2018-05-15 04:37 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-05-15 19:47 - 2018-05-15 04:37 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2018-05-15 19:47 - 2018-05-15 04:28 - 000000000 ____D C:\WINDOWS\system32\spool
2018-05-15 19:47 - 2018-05-15 04:21 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-05-15 19:47 - 2018-05-15 04:21 - 000000000 ____D C:\ProgramData\USOPrivate
2018-05-15 19:47 - 2018-05-15 04:17 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-05-15 19:47 - 2018-05-15 04:17 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-05-15 19:47 - 2018-05-15 04:15 - 000000000 ____D C:\WINDOWS\Help
2018-05-15 19:45 - 2018-06-07 22:44 - 000000000 ____D C:\WINDOWS\INF
2018-05-15 19:31 - 2018-06-08 01:06 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-05-15 19:23 - 2018-06-09 06:03 - 092798976 _____ C:\WINDOWS\system32\config\SOFTWARE
2018-05-15 19:23 - 2018-06-09 06:03 - 019398656 _____ C:\WINDOWS\system32\config\SYSTEM
2018-05-15 19:23 - 2018-06-09 06:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-05-15 19:23 - 2018-06-09 06:03 - 000524288 _____ C:\WINDOWS\system32\config\DEFAULT
2018-05-15 19:23 - 2018-06-09 06:03 - 000057344 _____ C:\WINDOWS\system32\config\SECURITY
2018-05-15 19:23 - 2018-06-07 01:46 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-05-15 19:23 - 2018-05-15 20:08 - 000028672 _____ C:\WINDOWS\system32\config\SAM
2018-05-15 19:23 - 2018-05-15 20:01 - 000000000 ____D C:\WINDOWS\servicing
2018-05-15 19:23 - 2018-05-15 19:47 - 000000000 ____D C:\WINDOWS\system32\SMI
2018-05-15 19:23 - 2018-05-15 04:42 - 000000000 ____D C:\WINDOWS\Panther
2018-05-15 17:21 - 2018-05-15 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2018-05-15 17:21 - 2018-05-15 17:21 - 000000000 ____D C:\Program Files (x86)\7-Zip
2018-05-15 17:12 - 2018-05-15 17:12 - 000000000 ____D C:\Users\janzel voughn\AppData\Roaming\Sun
2018-05-15 17:12 - 2018-05-15 17:11 - 000098760 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2018-05-15 17:11 - 2018-05-15 17:11 - 000000000 ____D C:\ProgramData\Oracle
2018-05-15 17:11 - 2018-05-15 17:11 - 000000000 ____D C:\Program Files (x86)\Java
2018-05-15 04:59 - 2018-05-15 21:58 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\CyberLink
2018-05-15 04:52 - 2018-05-15 04:56 - 000002398 _____ C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-05-15 04:50 - 2018-06-01 18:13 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\PlaceholderTileLogoFolder
2018-05-15 04:50 - 2018-05-15 15:20 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\MicrosoftEdge
2018-05-15 04:49 - 2018-05-15 04:49 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\Comms
2018-05-15 04:48 - 2018-05-15 04:48 - 000000000 ____D C:\Users\janzel voughn\AppData\Roaming\Intel Corporation
2018-05-15 04:47 - 2018-05-15 04:47 - 000000000 ____D C:\Users\janzel voughn\AppData\Roaming\Macromedia
2018-05-15 04:47 - 2018-05-15 04:47 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\Power2Go8
2018-05-15 04:47 - 2018-05-15 04:47 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-05-15 04:46 - 2018-05-15 04:46 - 000000000 ____D C:\Users\Public\Lenovo App Explorer
2018-05-15 04:45 - 2018-05-15 07:38 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\Publishers
2018-05-15 04:44 - 2018-06-01 18:13 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\Packages
2018-05-15 04:44 - 2018-05-15 04:44 - 000000020 ___SH C:\Users\janzel voughn\ntuser.ini
2018-05-15 04:44 - 2018-05-15 04:44 - 000000000 ____D C:\Users\janzel voughn\AppData\Roaming\Adobe
2018-05-15 04:44 - 2018-05-15 04:44 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\VirtualStore
2018-05-15 04:44 - 2018-05-15 04:44 - 000000000 ____D C:\Users\janzel voughn\AppData\Local\ConnectedDevicesPlatform
2018-05-15 04:41 - 2018-05-15 04:41 - 000000000 _SHDL C:\Users\Default User
2018-05-15 04:41 - 2018-05-15 04:41 - 000000000 _SHDL C:\Users\All Users
2018-05-15 04:40 - 2018-06-09 06:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-05-15 04:40 - 2018-05-15 04:40 - 000002566 _____ C:\WINDOWS\System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-15 04:40 - 2018-05-15 04:40 - 000000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2018-05-15 04:40 - 2018-05-15 04:40 - 000000000 ____D C:\WINDOWS\System32\Tasks\CyberLink
2018-05-15 04:39 - 2018-06-09 05:19 - 000905346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-15 04:39 - 2018-05-15 04:39 - 000015992 _____ C:\Users\defaultuser0\Desktop\Removed Apps.html
2018-05-15 04:37 - 2018-05-15 04:37 - 000022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-05-15 04:32 - 2018-05-15 04:44 - 000000000 ____D C:\Users\janzel voughn
2018-05-15 04:32 - 2018-05-15 04:38 - 000000000 ____D C:\Users\defaultuser0
2018-05-15 04:31 - 2018-05-15 04:31 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-05-15 04:23 - 2018-05-15 04:23 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-05-15 04:21 - 2018-05-15 04:21 - 000000000 ____D C:\ProgramData\USOShared
2018-05-15 04:16 - 2018-05-15 04:16 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2018-05-15 04:16 - 2018-05-15 04:16 - 000000000 ____D C:\WINDOWS\Cnxt
2018-05-15 04:16 - 2018-05-15 04:16 - 000000000 ____D C:\Program Files\Realtek
2018-05-15 04:15 - 2018-05-15 04:28 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-05-15 04:15 - 2018-05-15 04:28 - 000000000 ____D C:\ProgramData\Conexant
2018-05-15 04:15 - 2018-05-15 04:23 - 000000000 ____D C:\Program Files\CONEXANT
2018-05-15 04:15 - 2018-05-15 04:15 - 001701376 _____ (TODO: <Company name>) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2018-05-15 04:15 - 2016-12-29 21:16 - 006384576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-05-15 04:15 - 2016-12-29 21:16 - 002475968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-05-15 04:15 - 2016-12-29 21:16 - 001762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-05-15 04:15 - 2016-12-29 21:16 - 000546752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-05-15 04:15 - 2016-12-29 21:16 - 000392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-05-15 04:15 - 2016-12-29 21:16 - 000147000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll
2018-05-15 04:15 - 2016-12-29 21:16 - 000083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-05-15 04:15 - 2016-12-29 21:16 - 000069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-05-15 04:15 - 2016-12-22 07:59 - 007651057 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-05-15 04:14 - 2018-06-09 06:04 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-05-15 04:14 - 2018-05-15 04:28 - 000000000 ____D C:\ProgramData\Realtek
2018-05-15 04:14 - 2018-05-15 04:24 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-05-15 04:14 - 2018-05-15 04:23 - 000000000 ____D C:\Program Files\Intel
2018-05-15 04:14 - 2018-05-15 04:14 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2018-05-15 04:14 - 2018-05-15 04:14 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ETDSMBus_01011.Wdf
2018-05-15 04:14 - 2018-05-15 04:14 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2018-05-15 04:14 - 2017-05-26 05:12 - 000103888 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2018-05-15 04:14 - 2017-05-26 05:12 - 000099792 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2018-05-15 04:13 - 2018-03-13 13:02 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-05-15 04:10 - 2018-06-09 05:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-05-15 04:10 - 2018-05-15 04:34 - 000222832 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-05-15 03:04 - 2018-05-15 20:09 - 000000000 ___HD C:\$SysReset
2018-05-12 06:51 - 2018-05-12 06:51 - 000000000 ____D C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber
2018-05-11 02:09 - 2018-05-03 15:57 - 000599448 ____N (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-05-11 02:09 - 2018-05-03 15:56 - 001092016 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-05-11 02:09 - 2018-05-03 15:56 - 000924648 ____N (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-05-11 02:09 - 2018-05-03 15:54 - 000748448 ____N (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-05-11 02:09 - 2018-05-03 15:54 - 000608160 ____N (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-05-11 02:09 - 2018-05-03 15:53 - 000461216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-05-11 02:09 - 2018-05-03 15:52 - 001568160 ____N (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-05-11 02:09 - 2018-05-03 15:52 - 001415296 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-05-11 02:09 - 2018-05-03 15:52 - 000137112 ____N (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-05-11 02:09 - 2018-05-03 15:51 - 001056152 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-05-11 02:09 - 2018-05-03 15:50 - 001206688 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-05-11 02:09 - 2018-05-03 15:50 - 000664992 ____N (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-05-11 02:09 - 2018-05-03 15:50 - 000423328 ____N (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-05-11 02:09 - 2018-05-03 15:50 - 000069536 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-05-11 02:09 - 2018-05-03 15:49 - 000035232 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-05-11 02:09 - 2018-05-03 15:48 - 002002336 ____N (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-05-11 02:09 - 2018-05-03 15:48 - 000272288 ____N (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-05-11 02:09 - 2018-05-03 15:48 - 000077216 ____N (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-05-11 02:09 - 2018-05-03 15:47 - 008600472 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-05-11 02:09 - 2018-05-03 15:47 - 001209760 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-05-11 02:09 - 2018-05-03 15:45 - 002395040 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-05-11 02:09 - 2018-05-03 15:45 - 000711936 ____N (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-05-11 02:09 - 2018-05-03 15:43 - 000373664 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-05-11 02:09 - 2018-05-03 15:41 - 000540064 ____N (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-05-11 02:09 - 2018-05-03 15:38 - 002574240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-05-11 02:09 - 2018-05-03 15:37 - 000749984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-05-11 02:09 - 2018-05-03 15:37 - 000408992 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-05-11 02:09 - 2018-05-03 15:36 - 007675792 ____N (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-05-11 02:09 - 2018-05-03 15:36 - 002710736 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-05-11 02:09 - 2018-05-03 15:36 - 000437664 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-05-11 02:09 - 2018-05-03 15:36 - 000247200 ____N (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-05-11 02:09 - 2018-05-03 15:35 - 002472864 ____N (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-05-11 02:09 - 2018-05-03 15:35 - 000358496 ____N (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-05-11 02:09 - 2018-05-03 15:34 - 021356824 ____N (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-05-11 02:09 - 2018-05-03 15:34 - 000070864 ____N (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-05-11 02:09 - 2018-05-03 15:32 - 001054280 ____N (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-05-11 02:09 - 2018-05-03 14:36 - 025254400 ____N (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-05-11 02:09 - 2018-05-03 14:31 - 006092672 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-05-11 02:09 - 2018-05-03 14:31 - 002193688 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-05-11 02:09 - 2018-05-03 14:29 - 000285144 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-05-11 02:09 - 2018-05-03 14:28 - 000061024 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-05-11 02:09 - 2018-05-03 14:26 - 001057824 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-05-11 02:09 - 2018-05-03 14:25 - 020290248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-05-11 02:09 - 2018-05-03 14:19 - 003663360 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-05-11 02:09 - 2018-05-03 14:19 - 001300992 ____N (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-05-11 02:09 - 2018-05-03 14:19 - 000496640 ____N (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-05-11 02:09 - 2018-05-03 14:18 - 000584192 ____N (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-05-11 02:09 - 2018-05-03 14:18 - 000400896 ____N (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-05-11 02:09 - 2018-05-03 14:18 - 000206848 ____N (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-05-11 02:09 - 2018-05-03 14:18 - 000064000 ____N (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2018-05-11 02:09 - 2018-05-03 14:17 - 007545344 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-05-11 02:09 - 2018-05-03 14:16 - 023674880 ____N (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-05-11 02:09 - 2018-05-03 14:16 - 000331264 ____N (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-05-11 02:09 - 2018-05-03 14:16 - 000172544 ____N (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-05-11 02:09 - 2018-05-03 14:16 - 000143872 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-05-11 02:09 - 2018-05-03 14:16 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-05-11 02:09 - 2018-05-03 14:16 - 000033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-05-11 02:09 - 2018-05-03 14:16 - 000023552 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-05-11 02:09 - 2018-05-03 14:15 - 000118272 ____N (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-05-11 02:09 - 2018-05-03 14:15 - 000055808 ____N (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2018-05-11 02:09 - 2018-05-03 14:14 - 000675328 ____N (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-05-11 02:09 - 2018-05-03 14:14 - 000093696 ____N (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-05-11 02:09 - 2018-05-03 14:13 - 000276480 ____N (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-05-11 02:09 - 2018-05-03 14:12 - 000816128 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-05-11 02:09 - 2018-05-03 14:12 - 000672768 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-05-11 02:09 - 2018-05-03 14:12 - 000403968 ____N (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-05-11 02:09 - 2018-05-03 14:11 - 000595456 ____N (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-05-11 02:09 - 2018-05-03 14:09 - 008068608 ____N (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-05-11 02:09 - 2018-05-03 14:09 - 004723712 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-05-11 02:09 - 2018-05-03 14:09 - 003405824 ____N (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-05-11 02:09 - 2018-05-03 14:09 - 003334144 ____N (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-05-11 02:09 - 2018-05-03 14:09 - 002784256 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-05-11 02:09 - 2018-05-03 14:09 - 002086400 ____N (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-05-11 02:09 - 2018-05-03 14:09 - 001548288 ____N (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-05-11 02:09 - 2018-05-03 14:08 - 001597952 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-05-11 02:09 - 2018-05-03 14:08 - 000808960 ____N (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-05-11 02:09 - 2018-05-03 14:07 - 001822720 ____N (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-05-11 02:09 - 2018-05-03 14:05 - 000389120 ____N (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2018-05-11 02:09 - 2018-05-03 14:04 - 000030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-05-11 02:09 - 2018-05-03 14:03 - 000050176 ____N (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-05-11 02:09 - 2018-05-03 14:02 - 000584192 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2018-05-11 02:09 - 2018-05-03 14:00 - 002902528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-05-11 02:09 - 2018-05-03 14:00 - 000473088 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-05-11 02:09 - 2018-05-03 14:00 - 000162304 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-05-11 02:09 - 2018-05-03 13:59 - 018924544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-05-11 02:09 - 2018-05-03 13:58 - 006467072 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-05-11 02:09 - 2018-05-03 13:58 - 000155648 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-05-11 02:09 - 2018-05-03 13:57 - 019354624 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-05-11 02:09 - 2018-05-03 13:57 - 000150528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-05-11 02:09 - 2018-05-03 13:57 - 000098304 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-05-11 02:09 - 2018-05-03 13:57 - 000079360 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-05-11 02:09 - 2018-05-03 13:56 - 002677248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-05-11 02:09 - 2018-05-03 13:56 - 000268288 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-05-11 02:09 - 2018-05-03 13:56 - 000078336 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2018-05-11 02:09 - 2018-05-03 13:55 - 000459776 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-05-11 02:09 - 2018-05-03 13:54 - 000365568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-05-11 02:09 - 2018-05-03 13:53 - 006060544 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-05-11 02:09 - 2018-05-03 13:53 - 000531968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-05-11 02:09 - 2018-05-03 13:52 - 003662848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-05-11 02:09 - 2018-05-03 13:52 - 000664064 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-05-11 02:09 - 2018-05-03 13:52 - 000463872 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-05-11 02:09 - 2018-05-03 13:51 - 002869760 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-05-11 02:09 - 2018-05-03 13:51 - 001560064 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-05-11 02:09 - 2018-05-03 13:50 - 001474560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-05-11 02:09 - 2018-05-03 13:48 - 000328704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2018-05-11 02:09 - 2018-04-16 06:07 - 001463344 ____N (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-05-11 02:09 - 2018-04-16 06:04 - 000779952 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-05-11 02:09 - 2018-04-16 06:03 - 000128408 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2018-05-11 02:09 - 2018-04-16 05:57 - 000279968 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-05-11 02:09 - 2018-04-16 05:51 - 002513920 ____N (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-05-11 02:09 - 2018-04-16 05:50 - 001925760 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-05-11 02:09 - 2018-04-16 05:49 - 001954056 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-05-11 02:09 - 2018-04-16 05:49 - 000382368 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-05-11 02:09 - 2018-04-16 05:48 - 005859248 ____N (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-05-11 02:09 - 2018-04-16 05:48 - 001638424 ____N (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-05-11 02:09 - 2018-04-16 05:47 - 000398744 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-05-11 02:09 - 2018-04-16 05:38 - 003180720 ____N (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-05-11 02:09 - 2018-04-16 05:38 - 000979360 ____N (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-05-11 02:09 - 2018-04-16 05:34 - 000230304 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-05-11 02:09 - 2018-04-16 05:33 - 000362904 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-05-11 02:09 - 2018-04-16 05:32 - 003904296 ____N (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-05-11 02:09 - 2018-04-16 05:32 - 001416392 ____N (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-05-11 02:09 - 2018-04-16 05:30 - 002268024 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-05-11 02:09 - 2018-04-16 05:29 - 001779936 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-05-11 02:09 - 2018-04-16 05:28 - 000688064 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-05-11 02:09 - 2018-04-16 05:26 - 007384576 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-05-11 02:09 - 2018-04-16 05:26 - 002711176 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-05-11 02:09 - 2018-04-16 05:26 - 001506200 ____N (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-05-11 02:09 - 2018-04-16 05:25 - 001430768 ____N (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2018-05-11 02:09 - 2018-04-16 05:23 - 001101208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-05-11 02:09 - 2018-04-16 04:47 - 001929712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-05-11 02:09 - 2018-04-16 04:47 - 001615712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-05-11 02:09 - 2018-04-16 04:47 - 001490856 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-05-11 02:09 - 2018-04-16 04:47 - 001433360 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-05-11 02:09 - 2018-04-16 04:47 - 001323336 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-05-11 02:09 - 2018-04-16 04:47 - 000649304 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-05-11 02:09 - 2018-04-16 04:47 - 000311192 ____N (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-05-11 02:09 - 2018-04-16 04:38 - 003485392 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-05-11 02:09 - 2018-04-16 04:38 - 001123464 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-05-11 02:09 - 2018-04-16 04:37 - 000747416 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-05-11 02:09 - 2018-04-16 04:35 - 002462704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-05-11 02:09 - 2018-04-16 04:34 - 006482664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-05-11 02:09 - 2018-04-16 04:34 - 001524776 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-05-11 02:09 - 2018-04-16 04:34 - 001456104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-05-11 02:09 - 2018-04-16 04:34 - 001017048 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-05-11 02:09 - 2018-04-16 04:16 - 003995136 ____N (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2018-05-11 02:09 - 2018-04-16 04:15 - 003490816 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2018-05-11 02:09 - 2018-04-16 04:14 - 000250368 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-05-11 02:09 - 2018-04-16 04:14 - 000202240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-05-11 02:09 - 2018-04-16 04:14 - 000175616 ____N (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-05-11 02:09 - 2018-04-16 04:14 - 000133632 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-05-11 02:09 - 2018-04-16 04:14 - 000121856 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-05-11 02:09 - 2018-04-16 04:14 - 000096768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-05-11 02:09 - 2018-04-16 04:14 - 000084992 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2018-05-11 02:09 - 2018-04-16 04:13 - 002890240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-05-11 02:09 - 2018-04-16 04:12 - 017160704 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-05-11 02:09 - 2018-04-16 04:12 - 013704704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-05-11 02:09 - 2018-04-16 04:12 - 000169472 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-05-11 02:09 - 2018-04-16 04:11 - 000531456 ____N (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-05-11 02:09 - 2018-04-16 04:10 - 001498112 ____N (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-05-11 02:09 - 2018-04-16 04:10 - 000371712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-05-11 02:09 - 2018-04-16 04:10 - 000363008 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-05-11 02:09 - 2018-04-16 04:10 - 000316928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-05-11 02:09 - 2018-04-16 04:09 - 000503296 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-05-11 02:09 - 2018-04-16 04:09 - 000153600 ____N (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2018-05-11 02:09 - 2018-04-16 04:08 - 006576128 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-05-11 02:09 - 2018-04-16 04:08 - 003181568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-05-11 02:09 - 2018-04-16 04:08 - 000859648 ____N (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2018-05-11 02:09 - 2018-04-16 04:08 - 000246272 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-11 02:09 - 2018-04-16 04:08 - 000181760 ____N (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2018-05-11 02:09 - 2018-04-16 04:08 - 000169472 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 012689920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 008031744 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 005195776 ____N (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 003367936 ____N (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 001495552 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 001425408 ____N (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000837632 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000792064 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000658432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000598528 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000386560 ____N (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000308736 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000225280 ____N (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-05-11 02:09 - 2018-04-16 04:07 - 000158208 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000112640 ____N (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2018-05-11 02:09 - 2018-04-16 04:07 - 000096256 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2018-05-11 02:09 - 2018-04-16 04:06 - 013660672 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-05-11 02:09 - 2018-04-16 04:06 - 011924480 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-05-11 02:09 - 2018-04-16 04:06 - 000820224 ____N (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2018-05-11 02:09 - 2018-04-16 04:06 - 000721920 ____N (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-05-11 02:09 - 2018-04-16 04:06 - 000421376 ____N (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2018-05-11 02:09 - 2018-04-16 04:06 - 000377856 ____N (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-05-11 02:09 - 2018-04-16 04:05 - 004113408 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-05-11 02:09 - 2018-04-16 04:05 - 000863744 ____N (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2018-05-11 02:09 - 2018-04-16 04:05 - 000526336 ____N (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2018-05-11 02:09 - 2018-04-16 04:05 - 000456704 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2018-05-11 02:09 - 2018-04-16 04:05 - 000324608 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-05-11 02:09 - 2018-04-16 04:04 - 012833280 ____N (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 002523136 ____N (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 002490880 ____N (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 002464768 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 002209280 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 001342464 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 001236480 ____N (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 001230848 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 001057792 ____N (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 000982016 ____N (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-05-11 02:09 - 2018-04-16 04:04 - 000965632 ____N (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 000884736 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 000648704 ____N (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 000621056 ____N (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 000576512 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 000559104 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 000556544 ____N (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2018-05-11 02:09 - 2018-04-16 04:04 - 000524800 ____N (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 004772352 ____N (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 004385280 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 004248064 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 003287040 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 003177472 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 002976256 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 002857984 ____N (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 002814976 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 002741248 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 002628608 ____N (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 002462208 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 002413568 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 001353728 ____N (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 000920064 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 000840192 ____N (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-05-11 02:09 - 2018-04-16 04:03 - 000826880 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-05-11 02:09 - 2018-04-16 04:03 - 000695296 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 000508928 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 000417792 ____N (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 000402432 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 000383488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 000329728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2018-05-11 02:09 - 2018-04-16 04:03 - 000197632 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2018-05-11 02:09 - 2018-04-16 04:02 - 004814336 ____N (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-05-11 02:09 - 2018-04-16 04:02 - 001669120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2018-05-11 02:09 - 2018-04-16 04:02 - 000842240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2018-05-11 02:09 - 2018-04-16 04:02 - 000462336 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-05-11 02:09 - 2018-04-16 04:01 - 001509888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-05-11 02:09 - 2018-04-16 04:00 - 002223616 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-05-11 02:09 - 2018-04-16 04:00 - 001739264 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-05-11 02:09 - 2018-04-16 04:00 - 000726016 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-05-11 02:09 - 2018-04-16 03:58 - 000125952 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2018-05-11 02:08 - 2018-05-03 15:53 - 000300448 ____N (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-05-11 02:08 - 2018-05-03 15:48 - 000793960 ____N (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-05-11 02:08 - 2018-05-03 15:43 - 000702568 ____N (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2018-05-11 02:08 - 2018-05-03 14:44 - 000595448 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2018-05-11 02:08 - 2018-05-03 14:43 - 000594056 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-05-11 02:08 - 2018-05-03 14:39 - 000212896 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-05-11 02:08 - 2018-05-03 14:16 - 000231936 ____N (Microsoft Corporation) C:\WINDOWS\system32\aadauthhelper.dll
2018-05-11 02:08 - 2018-05-03 14:16 - 000201728 ____N (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-05-11 02:08 - 2018-05-03 14:16 - 000041984 ____N (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2018-05-11 02:08 - 2018-05-03 14:15 - 000194048 ____N (Microsoft Corporation) C:\WINDOWS\system32\itircl.dll
2018-05-11 02:08 - 2018-05-03 14:14 - 000623616 ____N (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-05-11 02:08 - 2018-05-03 14:13 - 000253440 ____N (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2018-05-11 02:08 - 2018-05-03 14:12 - 000657408 ____N (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-05-11 02:08 - 2018-05-03 14:09 - 008432640 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-05-11 02:08 - 2018-05-03 14:09 - 001856000 ____N (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-05-11 02:08 - 2018-05-03 14:09 - 001344000 ____N (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-05-11 02:08 - 2018-05-03 14:06 - 003630080 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2018-05-11 02:08 - 2018-05-03 14:05 - 001717248 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-05-11 02:08 - 2018-05-03 14:05 - 000483840 ____N (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2018-05-11 02:08 - 2018-05-03 14:03 - 000067584 ____N (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2018-05-11 02:08 - 2018-05-03 14:03 - 000012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2018-05-11 02:08 - 2018-05-03 13:57 - 000162304 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\itircl.dll
2018-05-11 02:08 - 2018-05-03 13:57 - 000155136 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadauthhelper.dll
2018-05-11 02:08 - 2018-05-03 13:57 - 000019456 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-05-11 02:08 - 2018-05-03 13:53 - 007813120 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-05-11 02:08 - 2018-05-03 13:53 - 000540672 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-05-11 02:08 - 2018-05-03 13:50 - 001587712 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-05-11 02:08 - 2018-05-03 13:49 - 003430400 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2018-05-11 02:08 - 2018-05-03 13:48 - 001353728 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-05-11 02:08 - 2018-05-03 13:48 - 000408576 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2018-05-11 02:08 - 2018-05-03 13:47 - 000026624 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2018-05-11 02:08 - 2018-04-16 05:49 - 000563632 ____N (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2018-05-11 02:08 - 2018-04-16 05:33 - 001269616 ____N (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-05-11 02:08 - 2018-04-16 05:29 - 001873944 ____N (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2018-05-11 02:08 - 2018-04-16 05:29 - 000198440 ____N (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2018-05-11 02:08 - 2018-04-16 05:25 - 000661920 ____N (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2018-05-11 02:08 - 2018-04-16 05:25 - 000327008 ____N (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2018-05-11 02:08 - 2018-04-16 05:25 - 000092032 ____N (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2018-05-11 02:08 - 2018-04-16 05:24 - 000063656 ____N (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2018-05-11 02:08 - 2018-04-16 04:38 - 000444280 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2018-05-11 02:08 - 2018-04-16 04:36 - 002386832 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-05-11 02:08 - 2018-04-16 04:36 - 001575896 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2018-05-11 02:08 - 2018-04-16 04:36 - 000832648 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2018-05-11 02:08 - 2018-04-16 04:36 - 000543920 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-05-11 02:08 - 2018-04-16 04:34 - 000572312 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2018-05-11 02:08 - 2018-04-16 04:34 - 000279472 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2018-05-11 02:08 - 2018-04-16 04:34 - 000166408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2018-05-11 02:08 - 2018-04-16 04:34 - 000077552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2018-05-11 02:08 - 2018-04-16 04:34 - 000052248 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2018-05-11 02:08 - 2018-04-16 04:15 - 000674304 ____N (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2018-05-11 02:08 - 2018-04-16 04:14 - 000436224 ____N (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2018-05-11 02:08 - 2018-04-16 04:14 - 000101888 ____N (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll
2018-05-11 02:08 - 2018-04-16 04:14 - 000078336 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProv2faHelper.dll
2018-05-11 02:08 - 2018-04-16 04:13 - 000084992 ____N C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2018-05-11 02:08 - 2018-04-16 04:12 - 000164864 ____N (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-05-11 02:08 - 2018-04-16 04:12 - 000126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2018-05-11 02:08 - 2018-04-16 04:11 - 000301056 ____N (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-05-11 02:08 - 2018-04-16 04:11 - 000182272 ____N (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2018-05-11 02:08 - 2018-04-16 04:11 - 000143872 ____N (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2018-05-11 02:08 - 2018-04-16 04:11 - 000129536 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2018-05-11 02:08 - 2018-04-16 04:11 - 000125440 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2018-05-11 02:08 - 2018-04-16 04:11 - 000113664 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2018-05-11 02:08 - 2018-04-16 04:11 - 000109568 ____N (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 001576960 ____N (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 000571904 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 000271872 ____N (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 000225280 ____N (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 000220672 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 000218112 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 000192000 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 000120320 ____N (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2018-05-11 02:08 - 2018-04-16 04:10 - 000074240 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2018-05-11 02:08 - 2018-04-16 04:09 - 000408064 ____N (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-05-11 02:08 - 2018-04-16 04:09 - 000145408 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-05-11 02:08 - 2018-04-16 04:09 - 000090624 ____N (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2018-05-11 02:08 - 2018-04-16 04:09 - 000037888 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000703488 ____N (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000627712 ____N (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000583680 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000535552 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000490496 ____N (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000448000 ____N (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000358400 ____N (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000262656 ____N (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-05-11 02:08 - 2018-04-16 04:08 - 000059904 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000702464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000477184 ____N (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000406016 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000319488 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000312832 ____N (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000252928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000179712 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000124928 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2018-05-11 02:08 - 2018-04-16 04:07 - 000044032 ____N (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2018-05-11 02:08 - 2018-04-16 04:06 - 000899072 ____N (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-05-11 02:08 - 2018-04-16 04:06 - 000392192 ____N (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2018-05-11 02:08 - 2018-04-16 04:06 - 000139264 ____N (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2018-05-11 02:08 - 2018-04-16 04:05 - 000626176 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2018-05-11 02:08 - 2018-04-16 04:05 - 000516608 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2018-05-11 02:08 - 2018-04-16 04:04 - 000997376 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2018-05-11 02:08 - 2018-04-16 04:04 - 000976896 ____N (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2018-05-11 02:08 - 2018-04-16 04:03 - 001224704 ____N (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2018-05-11 02:08 - 2018-04-16 04:03 - 000825856 ____N (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2018-05-11 02:08 - 2018-04-16 04:03 - 000697344 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2018-05-11 02:08 - 2018-04-16 04:02 - 000440832 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2018-05-11 02:08 - 2018-04-16 04:01 - 000531968 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2018-05-11 02:08 - 2018-04-16 04:01 - 000518144 ____N (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2018-05-11 02:08 - 2018-04-16 04:01 - 000366592 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2018-05-11 02:08 - 2018-04-16 04:01 - 000194560 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2018-05-11 02:08 - 2018-04-16 04:01 - 000048128 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2018-05-11 02:08 - 2018-04-16 04:00 - 000682496 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2018-05-11 02:08 - 2018-04-16 04:00 - 000669184 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2018-05-11 02:08 - 2018-04-16 04:00 - 000496640 ____N (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2018-05-11 02:08 - 2018-04-16 04:00 - 000356352 ____N (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2018-05-11 02:08 - 2018-04-16 04:00 - 000252416 ____N (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2018-05-11 02:08 - 2018-04-16 04:00 - 000231936 ____N (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2018-05-11 02:08 - 2018-04-16 04:00 - 000215552 ____N (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2018-05-11 02:08 - 2018-04-16 04:00 - 000058880 ____N (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2018-05-11 02:08 - 2018-04-16 03:59 - 001332736 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2018-05-11 02:08 - 2018-04-16 03:59 - 000971264 ____N (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-05-11 02:08 - 2018-04-16 03:58 - 001472000 ____N (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2018-05-11 02:08 - 2017-11-26 21:26 - 000048112 ____N (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-06-09 06:04 - 2017-10-19 07:33 - 000000000 __SHD C:\Users\janzel voughn\IntelGraphicsProfiles
2018-06-09 05:25 - 2016-07-16 19:47 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-06-07 23:21 - 2017-10-22 16:40 - 000000000 ___HD C:\Users\janzel voughn\Desktop\Files
2018-06-07 01:57 - 2016-10-12 01:58 - 000000000 ____D C:\ProgramData\McAfee
2018-06-07 01:57 - 2016-10-12 01:58 - 000000000 ____D C:\Program Files\mcafee
2018-06-07 01:57 - 2016-10-12 01:58 - 000000000 ____D C:\Program Files\Common Files\McAfee
2018-06-07 01:57 - 2016-10-12 01:58 - 000000000 ____D C:\Program Files (x86)\McAfee
2018-06-01 18:30 - 2016-10-12 01:48 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-05-18 23:03 - 2016-10-12 01:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
2018-05-15 21:58 - 2016-10-12 02:04 - 000000000 ____D C:\ProgramData\CyberLink
2018-05-15 20:08 - 2018-02-20 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-05-15 20:08 - 2018-02-11 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-05-15 20:08 - 2017-12-10 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 6.0
2018-05-15 20:08 - 2017-10-19 07:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-05-15 20:07 - 2017-12-20 01:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garena
2018-05-15 20:07 - 2016-10-12 02:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant
2018-05-15 19:42 - 2017-12-08 22:46 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2018-05-15 19:42 - 2017-09-29 21:42 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2018-05-15 19:39 - 2017-09-29 21:41 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2018-05-15 19:36 - 2017-09-29 21:41 - 000073112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-05-15 19:36 - 2017-09-29 21:41 - 000020888 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2018-05-15 17:12 - 2017-10-22 17:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-05-15 04:56 - 2017-10-19 07:35 - 000000000 ___RD C:\Users\janzel voughn\OneDrive
2018-05-15 04:44 - 2017-12-10 11:05 - 000000000 ___RD C:\Users\janzel voughn\3D Objects
2018-05-15 04:44 - 2016-07-30 01:27 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-05-15 04:38 - 2017-12-27 13:04 - 000000000 ____D C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Playpark
2018-05-15 04:28 - 2017-10-19 03:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-05-15 04:28 - 2016-10-12 02:59 - 000000000 ____D C:\ProgramData\OneKey Recovery
2018-05-15 04:28 - 2016-10-12 02:54 - 000000000 ____D C:\ProgramData\Lenovo
2018-05-15 04:28 - 2016-10-12 02:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2018-05-15 04:28 - 2016-10-12 02:48 - 000000000 ____D C:\ProgramData\Dolby
2018-05-15 04:28 - 2016-10-12 02:47 - 000000000 ____D C:\ProgramData\Intel
2018-05-15 04:28 - 2016-10-12 02:47 - 000000000 ____D C:\Program Files (x86)\Realtek
2018-05-15 04:28 - 2016-10-12 02:44 - 000000000 ____D C:\ProgramData\NVIDIA
2018-05-15 04:28 - 2016-10-12 02:44 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-05-15 04:28 - 2016-10-12 02:08 - 000000000 ____D C:\Users\Public\CyberLink
2018-05-15 04:28 - 2016-10-12 02:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 8
2018-05-15 04:28 - 2016-10-12 02:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2018-05-15 04:28 - 2016-10-12 02:03 - 000000000 ____D C:\ProgramData\Package Cache
2018-05-15 04:28 - 2016-10-12 02:01 - 000000000 ____D C:\ProgramData\Temp
2018-05-15 04:28 - 2016-10-12 02:01 - 000000000 ____D C:\ProgramData\install_clap
2018-05-15 04:28 - 2016-10-12 01:57 - 000000000 ____D C:\Users\Default\AppData\Local\Host App Service
2018-05-15 04:28 - 2016-10-12 01:57 - 000000000 ____D C:\Users\Default User\AppData\Local\Host App Service
2018-05-15 04:27 - 2016-10-12 02:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-05-15 04:27 - 2016-10-12 02:04 - 000000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2018-05-15 04:26 - 2016-10-12 01:57 - 000000000 ____D C:\Program Files (x86)\Lenovo
2018-05-15 04:24 - 2016-10-12 02:41 - 000000000 ____D C:\Program Files (x86)\Intel
2018-05-15 04:24 - 2016-10-12 02:04 - 000000000 ____D C:\Program Files (x86)\CyberLink
2018-05-15 04:24 - 2016-10-12 01:58 - 000000000 ____D C:\Program Files\mcafee.com
2018-05-15 04:24 - 2016-10-12 01:57 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-05-15 04:24 - 2016-10-12 01:47 - 000000000 ____D C:\Program Files\Microsoft Office 15
2018-05-15 04:23 - 2016-10-12 01:57 - 000000000 ____D C:\Program Files\Lenovo
2018-05-14 23:50 - 2017-11-24 12:57 - 000000000 ____D C:\Users\janzel voughn\Documents\ViberDownloads
2018-05-14 17:33 - 2017-10-28 15:57 - 000000000 ____D C:\Users\janzel voughn\Downloads\Compressed
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-05-15 04:10
==================== End of FRST.txt ============================

 

Attached Files



#4 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,767 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:19 PM

Posted 08 June 2018 - 05:45 PM

There is no sign of malware in those logs.

 

 

  • Highlight the entire content of the quote box below.

Start::
Startup: C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dwgjdwuv.lnk [2018-03-14]
C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\dwgjdwuv
End::

  • Right click on the highlighted text and select Copy.
  • Start FRST (FRST64) with Administrator privileges
  • Press the Fix button. FRST will process the lines copied above from the clipboard.
  • When finished, a log file (Fixlog.txt) will pop up and saved in the same location the tool was ran from.

Please copy and paste its contents in your next reply.
 

  • Download AdwCleaner and move it to your Desktop
  • Right-click on AdwCleaner.exe and select Spcusrh.pngRun as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users)
  • Accept the EULA (I accept), then click on Scan
  • Let the scan complete. Once it's done, make sure that every item listed in the different tabs is checked and click on the Clean button. This will kill all active processes
    5ace519a6ff4a_Dashboard-firstrun.png.567
  • Once the cleaning process is complete, AdwCleaner will ask to restart your computer, do it
  • After the restart, a log will open when logging in. Please copy/paste the content of that log in your next reply

 


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#5 Voughn

Voughn
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 08 June 2018 - 05:55 PM

Still no sign sadly.
 
Fix result of Farbar Recovery Scan Tool (x64) Version: 06.06.2018 01
Ran by janzel voughn (09-06-2018 06:49:10) Run:1
Running from C:\Users\janzel voughn\Desktop
Loaded Profiles: janzel voughn (Available Profiles: defaultuser0 & janzel voughn)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Startup: C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dwgjdwuv.lnk [2018-03-14]
C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\dwgjdwuv
*****************
C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dwgjdwuv.lnk => moved successfully
"C:\Users\janzel voughn\AppData\Roaming\Microsoft\Windows\dwgjdwuv" => not found
==== End of Fixlog 06:49:10 ====
 
 
 
 
# -------------------------------
# Malwarebytes AdwCleaner 7.2.0.0
# -------------------------------
# Build:    06-05-2018
# Database: 2018-06-07.1
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    06-09-2018
# Duration: 00:00:14
# OS:       Windows 10 Home Single Language
# Scanned:  41201
# Detected: 0

***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.

AdwCleaner[S00].txt - [1640 octets] - [02/05/2018 20:07:58]
AdwCleaner[C00].txt - [1669 octets] - [02/05/2018 20:08:33]
AdwCleaner[S01].txt - [1283 octets] - [02/05/2018 20:13:33]
AdwCleaner[C01].txt - [1388 octets] - [02/05/2018 20:14:31]
AdwCleaner[S02].txt - [1283 octets] - [02/05/2018 20:20:00]
AdwCleaner[C02].txt - [1388 octets] - [02/05/2018 20:23:09]
AdwCleaner[S03].txt - [2390 octets] - [09/06/2018 05:24:28]
AdwCleaner[C03].txt - [2388 octets] - [09/06/2018 05:25:09]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S04].txt ##########


#6 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,767 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:19 PM

Posted 08 June 2018 - 06:53 PM

Still no sign sadly.

 

What do you mean?


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#7 Voughn

Voughn
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 08 June 2018 - 07:02 PM

I restarted just now, it doesn't pop up anymore. I really appreciate your help. Many thanks!



#8 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,767 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:19 PM

Posted 08 June 2018 - 07:06 PM

Congratulations.

 

Use this application to remove quarantined items.

 

Please download DelFix by Xplode and save to your Desktop.

  • Double-click on delfix.exe to run the tool.
    Vista/Windows 7/8/10 users right-click and select Run As Administrator.
  • Put a check mark next to these items:
    - Remove disinfection tools
    - Create registry backup
    delfix.jpg
    .
  • Click the "Run" button.
  • When the tool has finished, it will create and open a log report (DelFix.txt)

 

Since there are no signs of infection anymore , I guess we're done here.
 
Windows Updates
 
Keeping Windows up to date is one of the first steps in having a safe and secure system.


Keeping your programs up-to-date
 
As for safe browsing habits, you can find tons of guides, tutorials, articles, etc. online that will highlight the basics you need to follow (only visit websites you trust, do not click on ads, do not download files from untrusted sources, use a password manager, always verify the URL of a website and make sure it's correctly typed, etc.), and even what you can do if you want to take it a step further (create a fake email address for spam emails, browse the web in a privacy mode, etc.). Here are a few:

As you can see, there are plenty of resources out there. Simply Googling "good browsing habits" or "safe browsing habits" should allow you to find a lot of them.
 
Other recommendations
 
It's your job to be careful when browsing the web and downloading files if you don't want to get infected. Therefore, if you use your brain (common sense) when browsing the web, downloading programs and files, etc., you have far less chances to get infected by a malware. If for example you're not sure if a website is legitimate or not, or if a file is safe to download and execute, or if a program looks "too good" to be free, I suggest you to avoid going to that website, downloading that file or using that program.
Here are a few guides, tutorials, articles, etc. that you could read in order to learn more about computer protection and security to improve your current computer protection setup but also improve your good web browsing and computer usage practices :

Best regards. :)


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#9 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,767 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:19 PM

Posted 09 June 2018 - 09:41 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users