Virus, Trojan, Spyware, and Malware Removal Help

Listed below are the FRST scans earlier than the Trojan was detected by Kaspersky:

Extra.txt

Extra scan results of Farbar Restoration Scan Instrument (x64) Model: 14-12-2020

Ran by Mitch (26-12-2020 23:27:39)

Working from C:UsersMitchDownloads

Home windows 10 House Model 1909 18363.1256 (X64) (2020-11-28 22:38:45)

Boot Mode: Regular

==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-414993718-2087581297-3140943001-500 – Administrator – Disabled)

DefaultAccount (S-1-5-21-414993718-2087581297-3140943001-503 – Restricted – Disabled)

Visitor (S-1-5-21-414993718-2087581297-3140943001-501 – Restricted – Disabled)

Mitch (S-1-5-21-414993718-2087581297-3140943001-1001 – Administrator – Enabled) => C:UsersMitch

WDAGUtilityAccount (S-1-5-21-414993718-2087581297-3140943001-504 – Restricted – Disabled)

==================== Safety Middle ========================

(If an entry is included within the fixlist, it is going to be eliminated.)

AV: Norton Safety (Enabled – Updated) {1122B19A-E671-38EC-8EAC-87048FD4528D}

AV: Norton Safety (Enabled – Updated) {A2708B76-6835-6565-CB96-694212954A75}

AV: ESET Safety (Enabled – Updated) {89B55CC4-3881-78B2-11E2-479AE0371896}

AV: Home windows Defender (Disabled – Old-fashioned) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Kaspersky Safety Cloud (Enabled – Updated) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}

AV: Malwarebytes (Enabled – Updated) {23007AD3-69FE-687C-2629-D584AFFAF72B}

AV: Norton Safety (Enabled – Updated) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}

FW: Norton Safety (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

FW: Norton Safety (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}

FW: Kaspersky Safety Cloud (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}

FW: Norton Safety (Enabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}

FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Put in Applications ======================

(Solely the adware applications with “Hidden” flag could possibly be added to the fixlist to unhide them. The adware applications must be uninstalled manually.)

AppLogLibSetup (HKLM-x32…{52FB0C8F-DF05-4C61-AEB6-18C55F8C385F}) (Model: 1.0.3.0 – Brother Industries Ltd.) Hidden

Battle.web (HKLM-x32…Battle.web) (Model: – Blizzard Leisure)

Battlefield 3™ (HKLM-x32…{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Model: 1.6.0.0 – Digital Arts)

BrLauncher (HKLM-x32…{42D26B47-887C-45FC-BCAE-0BE485C5C0BB}) (Model: 2.0.11.0 – Brother Industries Ltd.) Hidden

BrLogRx (HKLM-x32…{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Model: 1.0.3.1 – Brother Industries Ltd.) Hidden

Brother iPrint&Scan (HKLM-x32…{0FD7FDFD-3B49-41F7-A524-CDD5CA13151D}) (Model: 6.1.2.0 – Brother Industries, Ltd.) Hidden

Brother iPrint&Scan (HKLM-x32…{afdb0438-8933-4088-ab20-0795d9d49940}) (Model: 6.1.2.0 – Brother Industries, Ltd.)

Brother PowerENGAGE (HKLM-x32…{3CE8B8E8-B33B-453C-BB7A-821ED6E18A24}) (Model: 1.0.27 – Aviata, Inc.)

Brother Printer Driver (HKLM-x32…{EAD4E66C-102F-4ED0-85B5-A1C9037A6E8B}) (Model: 1.7.0.0 – Brother Industries Ltd.) Hidden

Brother Scanner Driver (HKLM-x32…{CE1E9BB4-0414-4541-A4A9-1578D8E53F21}) (Model: 1.0.24.1 – Brother Industries Ltd.) Hidden

BrSupportTools (HKLM-x32…{32F47565-84B1-42CC-B09A-4CDDD9A32F94}) (Model: 1.0.20.0 – Brother Industries Ltd.) Hidden

Name of Responsibility Black Ops Chilly Warfare (HKLM-x32…Name of Responsibility Black Ops Chilly Warfare) (Model: – Blizzard Leisure)

Name of Responsibility Trendy Warfare (HKLM-x32…Name of Responsibility Trendy Warfare) (Model: – Blizzard Leisure)

ControlCenter4 (HKLM-x32…{9091B952-8719-49C3-9CC7-6E20EC61081F}) (Model: 4.6.6.1 – Brother Industries, Ltd.) Hidden

ControlCenter4 CSDK (HKLM-x32…{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Model: 4.6.1.1 – Brother Industries, Ltd.) Hidden

ENE IO Driver (HKLM-x32…{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Model: 3.0.0 – ENE TECHNOLOGY INC.) Hidden

ENE RGB HAL (HKLM…{89FE0EE6-082A-4F34-825F-690821CE1740}) (Model: 1.00.14 – Ene Tech.) Hidden

ENE RGB HAL (HKLM-x32…{543a34bd-9582-4e0f-a351-c999aa780e20}) (Model: 1.00.14 – Ene Tech.) Hidden

ENE_DRAM_RGB_AURA42 (HKLM…{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Model: 1.00.02 – Ene Tech.) Hidden

ENE_DRAM_RGB_AURA42 (HKLM-x32…{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Model: 1.00.02 – Ene Tech.) Hidden

ENE_EHD_M2_HAL (HKLM…{1CD178C9-BB49-4E59-9DA6-3C152E2A9844}) (Model: 1.00.01 – ENE TECHNOLOGY INC.) Hidden

ENE_EHD_M2_HAL (HKLM-x32…{fe81cfd3-9db4-409d-b0f9-26707d1423c6}) (Model: 1.00.01 – ENE TECHNOLOGY INC.) Hidden

ESET Safety (HKLM…{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Model: 14.0.22.0 – ESET, spol. s r.o.)

GameInput Redistributable (HKLM-x32…{7E52156F-18FE-B953-BEA9-6BE6A77AFDFF}) (Model: 10.1.19041.3906 – Microsoft Company)

Google Chrome (HKLM-x32…Google Chrome) (Model: 87.0.4280.88 – Google LLC)

Google Replace Helper (HKLM-x32…{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Model: 1.3.36.51 – Google LLC) Hidden

HowToGuide (HKLM-x32…{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Model: 1.0.1.0 – Brother Industries Ltd.) Hidden

HttpToUsbBridge (HKLM-x32…{9623A934-C56A-476A-B683-39AAD8D9BBA1}) (Model: 1.2.23.1 – Brother Industries Ltd.)

Intel® Chipset System Software program (HKLM-x32…{66879245-162d-47f5-bac4-840156a7c01e}) (Model: 10.1.18263.8193 – Intel® Company)

Intel® Excessive Tuning Utility (HKLM-x32…{a52e99c3-4440-4ee8-b9f7-3e0a4033bbc4}) (Model: 7.0.1.4 – Intel Company)

Intel® Fast Storage Know-how (HKLM…{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Model: 17.8.0.1065 – Intel Company)

Intel® Serial IO (HKLM…{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Model: 30.100.1915.1 – Intel Company)

Intel® Optane™ Pinning Explorer Extensions (HKLM…{4487026C-A32C-4FF5-858E-8DB890814949}) (Model: 17.8.0.1065 – Intel Company)

Kaspersky Safety Cloud (HKLM-x32…{63129F5E-8EC5-41BA-A4CF-47966CE84953}) (Model: 21.2.16.590 – Kaspersky) Hidden

Kaspersky Safety Cloud (HKLM-x32…InstallWIX_{63129F5E-8EC5-41BA-A4CF-47966CE84953}) (Model: 21.2.16.590 – Kaspersky)

Kaspersky VPN (HKLM-x32…{221FA56C-0A92-4E58-98FD-CAF82237540C}) (Model: 21.2.16.590 – Kaspersky) Hidden

Kaspersky VPN (HKLM-x32…InstallWIX_{221FA56C-0A92-4E58-98FD-CAF82237540C}) (Model: 21.2.16.590 – Kaspersky)

Killer Efficiency Driver Suite UWD (HKLM…{0F5A4EDC-19F5-4760-9537-4D661E1F4CF5}) (Model: 2.2.1398 – Rivet Networks)

Malwarebytes model 4.3.0.98 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Model: 4.3.0.98 – Malwarebytes)

Microsoft 365 Apps for enterprise – en-us (HKLM…O365ProPlusRetail – en-us) (Model: 16.0.13426.20404 – Microsoft Company)

Microsoft Edge (HKLM-x32…Microsoft Edge) (Model: 87.0.664.66 – Microsoft Company)

Microsoft Edge Replace (HKLM-x32…Microsoft Edge Replace) (Model: 1.3.139.59 – )

Microsoft OneDrive (HKU.DEFAULT…OneDriveSetup.exe) (Model: 18.151.0729.0013 – Microsoft Company)

Microsoft OneDrive (HKUS-1-5-21-414993718-2087581297-3140943001-1001…OneDriveSetup.exe) (Model: 20.201.1005.0009 – Microsoft Company)

Microsoft Groups (HKUS-1-5-21-414993718-2087581297-3140943001-1001…Groups) (Model: 1.3.00.28779 – Microsoft Company)

Microsoft Replace Well being Instruments (HKLM…{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Model: 2.70.0.0 – Microsoft Company)

Microsoft Visible C++ 2008 Redistributable – x64 9.0.21022 (HKLM…{350AA351-21FA-3270-8B7A-835434E766AD}) (Model: 9.0.21022 – Microsoft Company)

Microsoft Visible C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Model: 9.0.30729.6161 – Microsoft Company)

Microsoft Visible C++ 2008 Redistributable – x86 9.0.21022 (HKLM-x32…{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Model: 9.0.21022 – Microsoft Company)

Microsoft Visible C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Model: 9.0.30729 – Microsoft Company)

Microsoft Visible C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Model: 9.0.30729.6161 – Microsoft Company)

Microsoft Visible C++ 2010 x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Model: 10.0.40219 – Microsoft Company)

Microsoft Visible C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Model: 10.0.40219 – Microsoft Company)

Microsoft Visible C++ 2013 Redistributable (x64) – 12.0.40664 (HKLM-x32…{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Model: 12.0.40664.0 – Microsoft Company)

Microsoft Visible C++ 2013 Redistributable (x86) – 12.0.40664 (HKLM-x32…{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Model: 12.0.40664.0 – Microsoft Company)

Microsoft Visible C++ 2015-2019 Redistributable (x64) – 14.28.29325 (HKLM-x32…{33628a12-6787-4b9f-95a1-92449f69fae0}) (Model: 14.28.29325.2 – Microsoft Company)

Microsoft Visible C++ 2015-2019 Redistributable (x86) – 14.28.29325 (HKLM-x32…{d7a6435f-ac9a-4af6-8fdc-ca130d13fac9}) (Model: 14.28.29325.2 – Microsoft Company)

MSI Afterburner 4.6.2 (HKLM-x32…Afterburner) (Model: 4.6.2 – MSI Co., LTD)

MSI App Participant (HKLM…BlueStacks_msi2) (Model: 4.150.10.6302 – BlueStack Techniques, Inc.)

MSI NBFoundation Service (HKLM-x32…{949A5329-B6AF-444F-BCDC-1F39F516D40C}) (Model: 1.0.2001.2101 – MSI) Hidden

MSI NBFoundation Service (HKLM-x32…InstallShield_{949A5329-B6AF-444F-BCDC-1F39F516D40C}) (Model: 1.0.2001.2101 – MSI)

MSI SDK (HKLM-x32…{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Model: 1.0.0.58 – MSI)

MSI True Coloration (HKLM…{B4A2776D-59CD-4193-A19D-DE15CB7FC5AA}) (Model: 3.0.32.0 – Portrait Shows, Inc.)

NetworkRepairTool (HKLM-x32…{86E68F57-FAFE-4052-BDD4-3B90C38236AE}) (Model: 1.2.16.0 – Brother Industries, Ltd.) Hidden

Norton Safety (HKLM-x32…NGC) (Model: 22.20.5.39 – Symantec Company)

NVAPI Monitor plugin for NvContainer (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Model: 1.27 – NVIDIA Company) Hidden

NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Model: 1.1.4923.29214634 – NVIDIA Company)

NVIDIA GeForce Expertise 3.20.5.70 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Model: 3.20.5.70 – NVIDIA Company)

NVIDIA Graphics Driver 457.30 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Model: 457.30 – NVIDIA Company)

NVIDIA HD Audio Driver 1.3.38.35 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Model: 1.3.38.35 – NVIDIA Company)

NVIDIA PhysX System Software program 9.19.0218 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Model: 9.19.0218 – NVIDIA Company)

NVIDIA USBC Driver 1.45.831.832 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Model: 1.45.831.832 – NVIDIA Company)

NvModuleTracker (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Model: 6.14.24033.38719 – NVIDIA Company) Hidden

Workplace 16 Click on-to-Run Extensibility Element (HKLM…{90160000-008C-0000-1000-0000000FF1CE}) (Model: 16.0.13426.20404 – Microsoft Company) Hidden

Workplace 16 Click on-to-Run Licensing Element (HKLM…{90160000-007E-0000-1000-0000000FF1CE}) (Model: 16.0.13426.20404 – Microsoft Company) Hidden

Workplace 16 Click on-to-Run Localization Element (HKLM…{90160000-008C-0409-1000-0000000FF1CE}) (Model: 16.0.13426.20404 – Microsoft Company) Hidden

Origin (HKLM-x32…Origin) (Model: 10.5.90.45798 – Digital Arts, Inc.)

PowerENGAGE (HKLM-x32…{400A01BF-E908-4393-BD39-31E386377BDA}) (Model: 3.2.16 – Aviata, Inc.) Hidden

PunkBuster Providers (HKLM-x32…PunkBusterSvc) (Model: 0.991 – Even Stability, Inc.)

Realtek Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Model: 6.0.8881.1 – Realtek Semiconductor Corp.)

Realtek Card Reader (HKLM-x32…{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Model: 10.0.18362.31252 – Realtek Semiconductor Corp.)

RivaTuner Statistics Server 7.2.3 (HKLM-x32…RTSS) (Model: 7.2.3 – Unwinder)

ScannerUtilityInstaller (HKLM-x32…{D65C0754-7790-427F-AD73-D7C644260F57}) (Model: 1.19.9.1 – Brother) Hidden

SoftwareUpdateNotification (HKLM-x32…{34F12379-C924-41E6-921D-51C71217F58C}) (Model: 1.0.9.0 – Brother Industries, Ltd.) Hidden

StatusMonitor (HKLM-x32…{40578A7A-6E36-457F-A4F0-45BC37EB61FD}) (Model: 1.20.1.0 – Brother Insutries Ltd.) Hidden

SteelSeries Engine 3.18.15 (HKLM…SteelSeries Engine 3) (Model: 3.18.15 – SteelSeries ApS)

Groups Machine-Large Installer (HKLM-x32…{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Model: 1.3.0.26064 – Microsoft Company)

UsbRepairTool (HKLM-x32…{F8762A81-32B5-4144-9F3C-9274F515A651}) (Model: 1.4.0.0 – Brother Industries, Ltd.) Hidden

Venice Unleashed model 1.0 (HKUS-1-5-21-414993718-2087581297-3140943001-1001…VeniceUnleashed_is1) (Model: 1.0 – )

Zoom (HKUS-1-5-21-414993718-2087581297-3140943001-1001…ZoomUMX) (Model: 5.4.3 (58891.1115) – Zoom Video Communications, Inc.)

Packages:

=========

AudioDirector for MSI -> C:Program FilesWindowsAppsCyberLink.AudioDirectorforMSI_7.0.9105.0_x64__jtmmp2jxy9gb6 [2020-02-23] (CyberLink)

ColorDirector for MSI -> C:Program FilesWindowsAppsCyberLink.ColorDirectorforMSI_5.0.8107.0_x64__jtmmp2jxy9gb6 [2020-02-23] (CyberLink)

DragonCenter -> C:Program FilesWindowsApps9426MICRO-STARINTERNATION.DragonCenter_2.0.96.0_x64__kzh8wxbdkxb8p [2020-12-16] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]

Intel® Graphics Management Panel -> C:Program FilesWindowsAppsAppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-12-01] (INTEL CORP)

Killer Management Middle -> C:Program FilesWindowsAppsRivetNetworks.KillerControlCenter_2.2.3267.0_x64__rh07ty8m5nkag [2020-12-01] (Rivet Networks LLC) [Startup Task]

LinkedIn -> C:Program FilesWindowsApps7EE7776C.LinkedInforWindows_2.0.1.0_neutral__w1wdnht996qgy [2020-02-23] (LinkedIn)

Microsoft Promoting SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Promoting.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-12-01] (Microsoft Company) [MS Ad]

Microsoft Promoting SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Promoting.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-12-01] (Microsoft Company) [MS Ad]

Microsoft Distant Desktop -> C:Program FilesWindowsAppsMicrosoft.RemoteDesktop_10.2.1646.0_x64__8wekyb3d8bbwe [2020-12-16] (Microsoft Company)

Microsoft Solitaire Assortment -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-12-04] (Microsoft Studios) [MS Ad]

Microsoft Sudoku -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSudoku_2.2.10190.0_x64__8wekyb3d8bbwe [2020-12-01] (Microsoft Studios) [MS Ad]

Microsoft Final Phrase Video games -> C:Program FilesWindowsAppsMicrosoft.Studios.Wordament_3.8.904.0_x64__8wekyb3d8bbwe [2020-12-01] (Microsoft Studios) [MS Ad]

Music Maker Jam -> C:Program FilesWindowsAppsMAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-12-01] (MAGIX)

Nahimic -> C:Program FilesWindowsAppsA-Volute.Nahimic_1.5.4.0_x64__w2gh52qy24etm [2020-12-21] (A-Volute)

NVIDIA Management Panel -> C:Program FilesWindowsAppsNVIDIACorp.NVIDIAControlPanel_8.1.959.0_x64__56jybvy8sckqj [2020-11-28] (NVIDIA Corp.)

PhotoDirector 10 Important for MSI -> C:Program FilesWindowsAppsCyberLink.PhotoDirector10EssentialforMSI_10.0.2326.0_x64__jtmmp2jxy9gb6 [2020-02-23] (CyberLink)

PowerDirector 17 Important for MSI -> C:Program FilesWindowsAppsCyberLink.PowerDirector17EssentialforMSI_17.0.2712.0_x64__jtmmp2jxy9gb6 [2020-02-23] (CyberLink)

Realtek Audio Management -> C:Program FilesWindowsAppsRealtekSemiconductorCorp.RealtekAudioControl_1.16.228.0_x64__dt26b99r8h8gj [2020-12-01] (Realtek Semiconductor Corp)

Translator -> C:Program FilesWindowsAppsMicrosoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2020-12-01] (Microsoft Company)

==================== Customized CLSID (Whitelisted): ==============

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file is not going to be moved except listed individually.)

CustomCLSID: HKUS-1-5-21-414993718-2087581297-3140943001-1001_ClassesCLSID{19A6E644-14E6-4A60-B8D7-DD20610A871D}InprocServer32 -> C:UsersMitchAppDataLocalMicrosoftTeamsMeetingAddin1.0.20244.4x64Microsoft.Groups.AddinLoader.dll (Microsoft Company -> Microsoft Company)

CustomCLSID: HKUS-1-5-21-414993718-2087581297-3140943001-1001_ClassesCLSID{80172dde-4e20-4df0-81a2-0a48553e80bb}localserver32 -> C:UsersMitchAppDataLocalNhNotifSysnahimicnahimicNotifSys.exe (A-Volute SAS -> A-Volute)

CustomCLSID: HKUS-1-5-21-414993718-2087581297-3140943001-1001_ClassesCLSID{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}InprocServer32 -> C:UsersMitchAppDataLocalMicrosoftTeamsMeetingAddin1.0.20244.4x64Microsoft.Groups.AddinLoader.dll (Microsoft Company -> Microsoft Company)

ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:Program FilesIntelOptaneShellExtensionsOptaneShellExt.dll [2019-12-09] (Intel® Fast Storage Know-how -> )

ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:Program FilesESETESET SecurityshellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)

ContextMenuHandlers1: [Kaspersky Anti-Virus 21.2] -> {9B9F6E01-A5CF-4269-B245-CFF66A7DAEBD} => C:Program Information (x86)Kaspersky LabKaspersky Safety Cloud 21.2x64shellex.dll [2020-12-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)

ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:Program FilesESETESET SecurityshellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)

ContextMenuHandlers2: [Kaspersky Anti-Virus 21.2] -> {9B9F6E01-A5CF-4269-B245-CFF66A7DAEBD} => C:Program Information (x86)Kaspersky LabKaspersky Safety Cloud 21.2x64shellex.dll [2020-12-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)

ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-11-30] (Malwarebytes Company -> Malwarebytes)

ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:Program FilesIntelOptaneShellExtensionsOptaneShellExt.dll [2019-12-09] (Intel® Fast Storage Know-how -> )

ContextMenuHandlers4: [Kaspersky Anti-Virus 21.2] -> {9B9F6E01-A5CF-4269-B245-CFF66A7DAEBD} => C:Program Information (x86)Kaspersky LabKaspersky Safety Cloud 21.2x64shellex.dll [2020-12-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WindowsSystem32DriverStoreFileRepositorynvmii.inf_amd64_323ec550858ed703nvshext.dll [2020-11-07] (NVIDIA Company -> NVIDIA Company)

ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:Program FilesNorton SecurityEngine22.20.5.39buShell.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:Program FilesESETESET SecurityshellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)

ContextMenuHandlers6: [Kaspersky Anti-Virus 21.2] -> {9B9F6E01-A5CF-4269-B245-CFF66A7DAEBD} => C:Program Information (x86)Kaspersky LabKaspersky Safety Cloud 21.2x64shellex.dll [2020-12-26] (Kaspersky Lab JSC -> AO Kaspersky Lab)

ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-11-30] (Malwarebytes Company -> Malwarebytes)

ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:Program FilesNorton SecurityEngine22.20.5.39NavShExt.dll [2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

==================== Codecs (Whitelisted) ====================

(If an entry is included within the fixlist, the registry merchandise will likely be restored to default or eliminated. The file is not going to be moved.)

HKLM…Drivers32: [VIDC.RTV1] => C:Windowssystem32rtvcvfw64.dll [246272 2012-09-28] () [File not signed]

HKLM…Drivers32: [VIDC.RTV1] => C:WindowsSysWOW64rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2016-11-25 10:18 – 2016-11-25 10:18 – 000139264 _____ () [File not signed] C:Program Information (x86)BrotherBrUtilitiesBrLogAPI.dll

2017-03-22 17:21 – 2018-01-18 15:39 – 000519168 _____ () [File not signed] C:Program Information (x86)Browny02BrMonitor.dll

2016-10-04 14:25 – 2018-01-18 15:39 – 001720832 _____ () [File not signed] C:Program Information (x86)Browny02BrotherBrStMonWRes.dll

2017-04-05 09:53 – 2017-11-07 19:55 – 000137728 _____ () [File not signed] C:Program Information (x86)ControlCenter4BrCcAssoc.dll

2017-01-27 15:39 – 2017-08-18 11:23 – 000087552 _____ () [File not signed] C:Program Information (x86)ControlCenter4BrCcDlgRc.dll

2017-01-27 15:39 – 2017-08-18 11:23 – 017974784 _____ () [File not signed] C:Program Information (x86)ControlCenter4BrCcGrImg.dll

2017-01-27 15:33 – 2017-11-07 20:04 – 000087040 _____ () [File not signed] C:Program Information (x86)ControlCenter4BrCcLUsa.dll

2017-04-05 09:53 – 2017-11-07 19:55 – 000440832 _____ () [File not signed] C:Program Information (x86)ControlCenter4Track.dll

2020-12-04 15:00 – 2020-12-15 15:05 – 000015360 _____ () [File not signed] C:Program Information (x86)OriginlibEGL.DLL

2020-12-04 15:00 – 2020-12-15 15:05 – 003090944 _____ () [File not signed] C:Program Information (x86)OriginlibGLESv2.dll

2020-12-16 14:00 – 2005-04-22 13:36 – 000143360 _____ () [File not signed] C:Windowssystem32BrSNMP64.dll

2016-04-12 10:07 – 2016-04-12 10:07 – 000067584 _____ (Brother Industries, Ltd.) [File not signed] C:Program Information (x86)BrotherAppLogLibBrBFLogI.dll

2020-12-16 14:00 – 2016-11-01 11:27 – 000090112 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32BrNetSti.dll

2020-06-10 15:44 – 2020-06-10 15:44 – 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:Program FilesSteelSeriesSteelSeries Engine 3HIDDLL.dll

2020-06-10 15:44 – 2020-06-10 15:44 – 002284032 _____ (Holtek) [File not signed] C:Program FilesSteelSeriesSteelSeries Engine 3ISPDLL.dll

2019-11-13 14:05 – 2019-11-13 14:05 – 000000000 ____L (Microsoft Company) C:Program FilesMicrosoft OfficerootOffice16AppVIsvSubsystems64.dll

2019-11-13 14:05 – 2019-11-13 14:05 – 000000000 ____L (Microsoft Company) C:Program FilesMicrosoft OfficerootOffice16c2r64.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000002560 _____ (The ICU Mission) [File not signed] C:Program Information (x86)Originicudt58.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 001252864 _____ (The ICU Mission) [File not signed] C:Program Information (x86)Originicuuc58.dll

2020-12-04 15:00 – 2020-12-15 15:05 – 001282048 _____ (The OpenSSL Mission, hxxp://www.openssl.org/) [File not signed] C:Program Information (x86)OriginLIBEAY32.dll

2020-12-04 15:00 – 2020-12-15 15:05 – 000279040 _____ (The OpenSSL Mission, hxxp://www.openssl.org/) [File not signed] C:Program Information (x86)Originssleay32.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000030208 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)Originimageformatsqgif.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000032768 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)Originimageformatsqico.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000256512 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)Originimageformatsqjpeg.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000026112 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)Originimageformatsqtga.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000305152 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)Originimageformatsqtiff.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000025600 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)Originimageformatsqwbmp.dll

2020-12-04 15:00 – 2020-12-15 15:05 – 001611264 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)Originplatformsqwindows.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 005487104 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Core.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 005841920 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Gui.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000709120 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Multimedia.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 001179136 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Network.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000207360 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Positioning.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000310272 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5PrintSupport.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 003513344 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Qml.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 003390976 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Quick.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000068096 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5QuickWidgets.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000045568 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5TextToSpeech.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000116224 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5WebChannel.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 054071296 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5WebEngineCore.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000211456 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5WebEngineWidgets.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000146432 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5WebSockets.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 005089792 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Widgets.dll

2020-12-15 15:05 – 2020-12-15 15:05 – 000184832 _____ (The Qt Firm Ltd) [File not signed] C:Program Information (x86)OriginQt5Xml.dll

==================== Alternate Knowledge Streams (Whitelisted) ========

==================== Protected Mode (Whitelisted) ==================

(If an entry is included within the fixlist, it is going to be faraway from the registry. The “AlternateShell” will likely be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”

==================== Affiliation (Whitelisted) =================

==================== Web Explorer (Whitelisted) ==========

HKUS-1-5-21-414993718-2087581297-3140943001-1001SoftwareMicrosoftInternet ExplorerMain,Begin Web page = hxxp://www.msn.com/?laptop=NMTE

HKUS-1-5-21-414993718-2087581297-3140943001-1001SoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://www.msn.com/?laptop=NMTE

BHO: Skype for Enterprise Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootOffice16OCHelper.dll [2020-12-07] (Microsoft Company -> Microsoft Company)

BHO: Microsoft OneDrive for Enterprise Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:Program FilesMicrosoft OfficerootOffice16GROOVEEX.DLL [2020-12-07] (Microsoft Company -> Microsoft Company)

BHO-x32: Skype for Enterprise Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16OCHelper.dll [2020-12-03] (Microsoft Company -> Microsoft Company)

BHO-x32: Microsoft OneDrive for Enterprise Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16GROOVEEX.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

Handler: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

Handler: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

Handler: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

Handler: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2020-12-05] (Microsoft Company -> Microsoft Company)

(If an entry is included within the fixlist, it is going to be faraway from the registry.)

IE trusted website: HKUS-1-5-21-414993718-2087581297-3140943001-1001…sharepoint.com -> hxxps://michiganstate-files.sharepoint.com

==================== Hosts content material: =========================

(If wanted Hosts: directive could possibly be included within the fixlist to reset Hosts.)

2019-03-18 23:49 – 2019-03-18 23:49 – 000000824 _____ C:Windowssystem32driversetchosts

==================== Different Areas ===========================

(At present there is no such thing as a computerized repair for this part.)

HKUS-1-5-21-414993718-2087581297-3140943001-1001Control PanelDesktopWallpaper -> C:WindowsSystem32oobeinfoWallpaperbackgroundDefault.jpg

DNS Servers: 192.168.2.1

HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )

Home windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled objects ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file is not going to be moved except listed individually.)

FirewallRules: [{53209604-3BC1-4C88-A936-CCB3923DFF11}] => (Permit) C:Program FilesBlueStacks_msi2HD-Participant.exe (BlueStack Techniques, Inc. -> BlueStack Techniques, Inc.)

FirewallRules: [{909A1F0C-4476-48BB-AF91-A62FB1C1E8A0}] => (Permit) C:UsersMitchAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

FirewallRules: [{92760237-ACAE-477A-9E8E-3448243D94D7}] => (Permit) C:UsersMitchAppDataRoamingZoombinairhost.exe => No File

FirewallRules: [{E81E24B0-4D88-4E57-BB33-1BA078574469}] => (Permit) C:UsersMitchAppDataRoamingZoombinairhost.exe => No File

FirewallRules: [{38FE6ED3-7A0A-4632-AFAA-F0DB2E06624E}] => (Permit) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)

FirewallRules: [{E9B936B7-53E1-4DDE-9270-A31327B26D71}] => (Permit) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)

FirewallRules: [{E2B42F07-8D45-47C9-ACE7-059E620960E8}] => (Permit) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)

FirewallRules: [{BDDAF097-ABFD-48C2-ADFC-09613F662DF8}] => (Permit) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)

FirewallRules: [{6BE895EC-C89E-49F6-9517-5266FB0152DC}] => (Permit) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Company -> NVIDIA Company)

FirewallRules: [{C9D31883-316A-41D0-B9A9-E8B4BEF2F923}] => (Permit) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Company -> NVIDIA Company)

FirewallRules: [{7C197532-F1D6-41F0-A462-16FA80D54A6C}] => (Permit) C:Program FilesGoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

FirewallRules: [{C8A21090-2CC4-414D-95C6-2E3145C21FB1}] => (Permit) C:WindowsSysWOW64PnkBstrA.exe (Even Stability, Inc. -> )

FirewallRules: [{05EC3222-84C5-451C-84AA-3F3C1F2CDBDE}] => (Permit) C:WindowsSysWOW64PnkBstrA.exe (Even Stability, Inc. -> )

FirewallRules: [{12055AC8-354E-40A8-8FD3-152B56E41688}] => (Permit) C:WindowsSysWOW64PnkBstrB.exe (Even Stability, Inc. -> )

FirewallRules: [{F3E23426-20D4-4B15-9DDF-43EE295A23BF}] => (Permit) C:WindowsSysWOW64PnkBstrB.exe (Even Stability, Inc. -> )

FirewallRules: [{5ADC4817-A6D0-4E8D-B41A-E40FA58E2974}] => (Permit) C:Program Information (x86)Origin GamesBattlefield 3bf3.exe (Digital Arts -> EA Digital Illusions CE AB)

FirewallRules: [{A4DC5E84-EF5F-4C48-AE9F-CBB3419DB798}] => (Permit) C:Program Information (x86)Origin GamesBattlefield 3bf3.exe (Digital Arts -> EA Digital Illusions CE AB)

FirewallRules: [{953C4D56-CFC3-4E6B-B2D3-F11A5452ACA3}] => (Permit) C:Program FilesMicrosoft OfficerootOffice16outlook.exe (Microsoft Company -> Microsoft Company)

FirewallRules: [{6D2AFEF4-6F2C-4980-8CB4-37D3DFF71BA0}] => (Permit) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Company -> Microsoft Company)

FirewallRules: [{E8192A61-2FB1-497A-BC1D-833B0D9343D6}] => (Permit) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Company -> Microsoft Company)

FirewallRules: [{FDCC6D87-9E2D-4EBF-A180-143A5EAF208B}] => (Permit) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Company -> Microsoft Company)

FirewallRules: [{DB8E2180-FDD9-4CA3-9EA8-1D7629825D31}] => (Permit) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Company -> Microsoft Company)

FirewallRules: [{0D4CEBA8-0D70-454F-A294-FF5D650BF53D}] => (Permit) C:UsersMitchDownloadsInstallwlan_wiz.wlan_assistantwaw.exe () [File not signed]

FirewallRules: [{F5D730A2-6668-4908-9C28-06B9DE36D7C2}] => (Permit) LPort=54925

FirewallRules: [{CB75BF45-8F48-4C62-A3FB-9BE5C3117544}] => (Permit) LPort=54950

FirewallRules: [{F201F25D-95D4-46FA-9594-C59EAC30F322}] => (Permit) LPort=54955

FirewallRules: [{9F85E9A0-52E5-455E-BD6F-CCFC1A80C467}] => (Permit) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)

FirewallRules: [{E7DCB679-86D0-49F5-AA4A-9334708E7987}] => (Permit) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)

FirewallRules: [{E588B689-A205-4308-9200-7A489A448B45}] => (Permit) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)

FirewallRules: [{750BFC62-EAF2-41BC-950E-7E05B5DFA1C0}] => (Permit) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)

FirewallRules: [{1F0E29D6-2AE0-4E09-BCF3-5AF82688132B}] => (Permit) LPort=32682

==================== Restore Factors =========================

15-12-2020 20:13:20 Home windows Replace

25-12-2020 20:36:51 Scheduled Checkpoint

==================== Defective System Supervisor Units ============

==================== Occasion log errors: ========================

Utility errors:

==================

Error: (12/26/2020 11:28:11 PM) (Supply: Brother BrLog) (EventID: 1001) (Person: )

Description: MTDLL BrtMTDLL: [2020/12/26 23:28:11.761]: [00017616]: Error GetInkSupplyType Ship ( ErrCode == 5 )

Error: (12/26/2020 11:28:04 PM) (Supply: Brother BrLog) (EventID: 1001) (Person: )

Description: MTDLL BrtMTDLL: [2020/12/26 23:28:04.410]: [00017616]: Error GetInkSupplyType Ship ( ErrCode == 5 )

Error: (12/26/2020 11:27:57 PM) (Supply: Brother BrLog) (EventID: 1001) (Person: )

Description: MTDLL BrtMTDLL: [2020/12/26 23:27:57.333]: [00017616]: Error GetInkSupplyType Ship ( ErrCode == 5 )

Error: (12/26/2020 11:27:14 PM) (Supply: Brother BrLog) (EventID: 1001) (Person: )

Description: MTDLL BrtMTDLL: [2020/12/26 23:27:14.266]: [00017616]: Error GetInkSupplyType Ship ( ErrCode == 5 )

Error: (12/26/2020 11:27:07 PM) (Supply: Brother BrLog) (EventID: 1001) (Person: )

Description: MTDLL BrtMTDLL: [2020/12/26 23:27:07.170]: [00017616]: Error GetInkSupplyType Ship ( ErrCode == 5 )

Error: (12/26/2020 11:26:59 PM) (Supply: Brother BrLog) (EventID: 1001) (Person: )

Description: MTDLL BrtMTDLL: [2020/12/26 23:26:59.942]: [00017616]: Error GetInkSupplyType Ship ( ErrCode == 5 )

Error: (12/26/2020 11:26:09 PM) (Supply: Brother BrLog) (EventID: 1001) (Person: )

Description: MTDLL BrtMTDLL: [2020/12/26 23:26:09.878]: [00017616]: Error GetInkSupplyType Ship ( ErrCode == 5 )

Error: (12/26/2020 11:26:02 PM) (Supply: Brother BrLog) (EventID: 1001) (Person: )

Description: MTDLL BrtMTDLL: [2020/12/26 23:26:02.805]: [00017616]: Error GetInkSupplyType Ship ( ErrCode == 5 )

System errors:

=============

Error: (12/26/2020 11:25:39 PM) (Supply: Service Management Supervisor) (EventID: 7006) (Person: )

Description: The ScRegSetValueExW name failed for Begin with the next error:

Entry is denied.

Error: (12/26/2020 10:07:53 PM) (Supply: Service Management Supervisor) (EventID: 7011) (Person: )

Description: A timeout (30000 milliseconds) was reached whereas ready for a transaction response from the BrYNSvc service.

Error: (12/26/2020 09:53:33 PM) (Supply: Service Management Supervisor) (EventID: 7011) (Person: )

Description: A timeout (30000 milliseconds) was reached whereas ready for a transaction response from the BrYNSvc service.

Error: (12/26/2020 09:06:14 PM) (Supply: Service Management Supervisor) (EventID: 7011) (Person: )

Description: A timeout (30000 milliseconds) was reached whereas ready for a transaction response from the BrYNSvc service.

Error: (12/26/2020 08:16:19 PM) (Supply: DCOM) (EventID: 10010) (Person: MSI)

Description: The server Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca didn’t register with DCOM throughout the required timeout.

Error: (12/26/2020 06:17:46 PM) (Supply: Service Management Supervisor) (EventID: 7011) (Person: )

Description: A timeout (30000 milliseconds) was reached whereas ready for a transaction response from the BrYNSvc service.

Error: (12/26/2020 06:05:32 PM) (Supply: DCOM) (EventID: 10010) (Person: MSI)

Description: The server Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca didn’t register with DCOM throughout the required timeout.

Error: (12/26/2020 03:47:52 PM) (Supply: Service Management Supervisor) (EventID: 7011) (Person: )

Description: A timeout (30000 milliseconds) was reached whereas ready for a transaction response from the BrYNSvc service.

Home windows Defender:

===================================

Date: 2020-12-15 15:06:50.950

Description:

Home windows Defender Antivirus has encountered an error making an attempt to load safety intelligence and can try reverting again to a known-good model.

Safety intelligence Tried: Present

Error Code: 0x80070002

Error description: The system can not discover the file specified.

Safety intelligence model: 0.0.0.0;0.0.0.0

Engine model: 0.0.0.0

CodeIntegrity:

===================================

Date: 2020-12-26 23:27:04.114

Description:

Home windows is unable to confirm the picture integrity of the file DeviceHarddiskVolume5Program FilesESETESET Securityeamsi.dll as a result of file hash couldn’t be discovered on the system. A latest {hardware} or software program change may need put in a file that’s signed incorrectly or broken, or that is likely to be malicious software program from an unknown supply.

Date: 2020-12-26 23:27:04.110

Description:

Code Integrity decided {that a} course of (DeviceHarddiskVolume5WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume5Program Information (x86)Kaspersky LabKaspersky Safety Cloud 21.2x64antimalware_provider.dll that didn’t meet the Home windows signing stage necessities.

Date: 2020-12-26 23:27:04.097

Description:

Code Integrity decided {that a} course of (DeviceHarddiskVolume5WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume5Program FilesNorton SecurityEngine22.20.5.39symamsi.dll that didn’t meet the Home windows signing stage necessities.

Date: 2020-12-26 23:27:03.635

Description:

Date: 2020-12-26 23:27:03.617

Description:

Date: 2020-12-26 23:27:03.601

Description:

Date: 2020-12-26 23:27:02.655

Description:

Date: 2020-12-26 23:27:02.642

Description:

==================== Reminiscence data ===========================

BIOS: American Megatrends Inc. E17E9IMS.10B 08/18/2020

Motherboard: Micro-Star Worldwide Co., Ltd. MS-17E9

Processor: Intel® Core i7-10750H CPU @ 2.60GHz

Proportion of reminiscence in use: 86%

Complete bodily RAM: 16204.21 MB

Accessible bodily RAM: 2209.13 MB

Complete Digital: 39756.21 MB

Accessible Digital: 15986.19 MB

==================== Drives ================================

Drive c: (Home windows) (Mounted) (Complete:475.64 GB) (Free:119.01 GB) NTFS

Drive d: (Knowledge) (Mounted) (Complete:909.63 GB) (Free:909.45 GB) NTFS

?Quantity{4efc5031-efc4-42b8-82e8-ae897adac704} (WinRE instruments) (Mounted) (Complete:0.88 GB) (Free:0.43 GB) NTFS

?Quantity{58bfbc07-6f6b-46b1-8e7c-03fb48dfb1e7} (BIOS_RVY) (Mounted) (Complete:21.88 GB) (Free:0.68 GB) NTFS

?Quantity{77531c74-4e15-4129-8402-971e7fb8f05a} (SYSTEM) (Mounted) (Complete:0.29 GB) (Free:0.26 GB) FAT32

==================== MBR & Partition Desk ====================

==========================================================

Disk: 0 (Measurement: 476.9 GB) (Disk ID: 828A5470)

Partition: GPT.

==========================================================

Disk: 1 (Measurement: 931.5 GB) (Disk ID: 828A5416)

Partition: GPT.

==================== Finish of Addition.txt =======================

FRST.txt

Scan results of Farbar Restoration Scan Instrument (FRST) (x64) Model: 14-12-2020

Ran by Mitch (administrator) on MSI (Micro-Star Worldwide Co., Ltd. GE75 Raider 10SF) (26-12-2020 23:25:03)

Working from C:UsersMitchDownloads

Loaded Profiles: Mitch

Platform: Home windows 10 House Model 1909 18363.1256 (X64) Language: English (United States)

Default browser: Edge

Boot Mode: Regular

==================== Processes (Whitelisted) =================

(If an entry is included within the fixlist, the method will likely be closed. The file is not going to be moved.)

(A-Volute -> Nahimic) C:WindowsSystem32NahimicService.exe

(A-Volute -> Nahimic) C:WindowsSystem32NahimicSvc64.exe

(A-Volute -> Nahimic) C:WindowsSysWOW64NahimicSvc32.exe

(A-Volute SAS -> A-Volute) C:UsersMitchAppDataLocalNhNotifSysnahimicnahimicNotifSys.exe

(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:Program Information (x86)ControlCenter4BrCcUxSys.exe

(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:Program Information (x86)ControlCenter4BrCtrlCntr.exe

(Brother Industries, Ltd.) [File not signed] C:Program Information (x86)BrotherBrUtilitiesBrLogRx.exe

(Brother Industries, Ltd.) [File not signed] C:Program Information (x86)BrotherSoftwareUpdateNotificationSoftwareUpdateNotificationService.exe

(Brother Industries, Ltd.) [File not signed] C:Program Information (x86)Browny02BrotherBrStMonW.exe

(Brother Industries, Ltd.) [File not signed] C:Program Information (x86)Browny02BrYNSvc.exe

(Digital Arts, Inc. -> ) C:Program Information (x86)OriginQtWebEngineProcess.exe

(Digital Arts, Inc. -> Digital Arts) C:Program Information (x86)OriginOrigin.exe

(Digital Arts, Inc. -> Digital Arts) C:Program Information (x86)OriginOriginWebHelperService.exe

(ESET, spol. s r.o. -> ESET) C:Program FilesESETESET Securityegui.exe

(ESET, spol. s r.o. -> ESET) C:Program FilesESETESET SecurityeguiProxy.exe

(ESET, spol. s r.o. -> ESET) C:Program FilesESETESET Securityekrn.exe

(Even Stability, Inc. -> ) C:WindowsSysWOW64PnkBstrA.exe

(Google LLC -> Google LLC) C:Program Information (x86)GoogleUpdate1.3.36.52GoogleCrashHandler.exe

(Google LLC -> Google LLC) C:Program Information (x86)GoogleUpdate1.3.36.52GoogleCrashHandler64.exe

(Google LLC -> Google LLC) C:Program FilesGoogleChromeApplicationchrome.exe <97>

(Intel Company -> Intel® Company) C:WindowsSysWOW64XtuService.exe

(Intel® Embedded Subsystems and IP Blocks Group -> Intel Company) C:WindowsSystem32DriverStoreFileRepositorydal.inf_amd64_ffc75848a6342fdfjhi_service.exe

(Intel® pGFX -> Intel Company) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_ba5b1813656e5c27igfxCUIService.exe

(Intel® pGFX -> Intel Company) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_ba5b1813656e5c27igfxEM.exe

(Intel® pGFX -> Intel Company) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_ba5b1813656e5c27igfxext.exe

(Intel® pGFX -> Intel Company) C:WindowsSystem32DriverStoreFileRepositoryiigd_dch.inf_amd64_3e62be9c39fb0007IntelCpHDCPSvc.exe

(Intel® pGFX -> Intel Company) C:WindowsSystem32DriverStoreFileRepositoryiigd_dch.inf_amd64_3e62be9c39fb0007IntelCpHeciSvc.exe

(Intel® Fast Storage Know-how -> Intel Company) C:Program FilesIntelIntel® Fast Storage TechnologyIAStorDataMgrSvc.exe

(Intel® Fast Storage Know-how -> Intel Company) C:Program FilesIntelIntel® Fast Storage TechnologyIAStorIcon.exe

(Intel® Fast Storage Know-how -> Intel Company) C:WindowsSystem32DriverStoreFileRepositoryiaahcic.inf_amd64_48973fc6c96c696aRstMwService.exe

(Kaspersky Lab JSC -> Kaspersky) C:UsersMitchDownloadsks4.021.2.16.590en_es_25350.exe <2>

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembam.exe

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe

(Microsoft Company -> Microsoft Company) C:Program Information (x86)Microsoft GameInputx64gameinputsvc.exe <2>

(Microsoft Company -> Microsoft Company) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe

(Microsoft Company -> Microsoft Company) C:Program FilesMicrosoft OfficerootOffice16lync.exe

(Microsoft Company -> Microsoft Company) C:UsersMitchAppDataLocalMicrosoftOneDriveOneDrive.exe

(Microsoft Company -> Microsoft Company) C:UsersMitchAppDataLocalMicrosoftTeamscurrentTeams.exe <9>

(Microsoft Company) C:Program FilesWindowsAppsMicrosoft.GamingApp_2012.1004.3.0_x64__8wekyb3d8bbweXboxAppServices.exe

(Microsoft Company) C:Program FilesWindowsAppsMicrosoft.GamingApp_2012.1004.3.0_x64__8wekyb3d8bbweXboxPcApp.exe

(Microsoft Company) C:Program FilesWindowsAppsMicrosoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbweGamingServices.exe

(Microsoft Company) C:Program FilesWindowsAppsMicrosoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbweGamingServicesNet.exe

(Microsoft Company) C:Program FilesWindowsAppsMicrosoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbweWinStore.App.exe

(Microsoft Company) C:Program FilesWindowsAppsMicrosoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbweGameBar.exe

(Microsoft Company) C:Program FilesWindowsAppsMicrosoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbweGameBarFTServer.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsImmersiveControlPanelSystemSettings.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32dllhost.exe <3>

(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32msiexec.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32perfmon.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32rundll32.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32smartscreen.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32SnippingTool.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32Taskmgr.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32wlanext.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSysWOW64msiexec.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsSysWOW64wbemWmiPrvSE.exe

(Microsoft Home windows -> Microsoft Company) C:WindowsWinSxSamd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1190_none_1716e3ef2a15f08cTiWorker.exe

(Microsoft) [File not signed] C:Program Information (x86)BrotheriPrint&ScanUSBAppControl.exe

(Microsoft) [File not signed] C:Program Information (x86)BrotheriPrint&ScanWorkflowAppControl.exe

(MICRO-STAR INTERNATIONAL CO., LTD) C:Program FilesWindowsApps9426MICRO-STARINTERNATION.DragonCenter_2.0.96.0_x64__kzh8wxbdkxb8pDCv2DCv2.exe

(Micro-Star Worldwide CO., LTD. -> ) C:Program Information (x86)MSIMSI NBFoundation ServiceSendevsvc.exe

(Micro-Star Worldwide CO., LTD. -> Micro-Star Worldwide Co., Ltd.) C:Program Information (x86)MSIMSI NBFoundation ServiceMSIAPService.exe

(Micro-Star Worldwide CO., LTD. -> Micro-Star Worldwide Co., Ltd.) C:Program Information (x86)MSIMSI NBFoundation ServiceOmApSvcBroker.exe

(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.) C:Program Information (x86)MSIOne Dragon CenterMSI.CentralServer.exe

(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.) C:Program Information (x86)MSIOne Dragon CenterMSI_Central_Service.exe

(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.) C:Program Information (x86)MSIOne Dragon CenterMystic_LightLightKeeperService.exe

(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.) C:Program Information (x86)MSIOne Dragon CenterMystic_LightMystic_Light_Service.exe

(Micro-Star Worldwide Co., Ltd.) [File not signed] C:WindowsSysWOW64MSIService.exe

(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:Program FilesNorton SecurityEngine22.20.5.39nsWscSvc.exe

(NVIDIA Company -> Node.js) C:Program Information (x86)NVIDIA CorporationNvNodeNVIDIA Net Helper.exe

(NVIDIA Company -> NVIDIA Company) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe <3>

(NVIDIA Company -> NVIDIA Company) C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA Share.exe <3>

(NVIDIA Company -> NVIDIA Company) C:Program FilesNVIDIA CorporationShadowPlaynvsphelper64.exe

(NVIDIA Company -> NVIDIA Company) C:WindowsSystem32DriverStoreFileRepositorynvmii.inf_amd64_323ec550858ed703Display.NvContainerNVDisplay.Container.exe <2>

(PORTRAIT DISPLAYS, INC. -> Portrait Shows, Inc) C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColorHelper.exe

(PORTRAIT DISPLAYS, INC. -> Portrait Shows, Inc.) C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColor.exe

(PORTRAIT DISPLAYS, INC. -> Portrait Shows, Inc.) C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColorService.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:WindowsSystem32RtkAudUService64.exe <2>

(Rivet Networks LLC -> Rivet Networks LLC) C:WindowsSystem32driversRivetNetworksKillerKNDBWM.exe

(Rivet Networks LLC -> Rivet Networks LLC) C:WindowsSystem32driversRivetNetworksKillerKSPS.exe

(Rivet Networks LLC -> Rivet Networks LLC) C:WindowsSystem32driversRivetNetworksKillerxTendUtility.exe

(Rivet Networks LLC -> Rivet Networks) C:WindowsSystem32driversRivetNetworksKillerKillerAnalyticsService.exe

(Rivet Networks LLC -> Rivet Networks) C:WindowsSystem32driversRivetNetworksKillerKillerNetworkService.exe

(Rivet Networks LLC -> Rivet Networks, LLC.) C:WindowsSystem32driversRivetNetworksKillerKNDBWMService.exe

(Rivet Networks LLC -> Rivet Networks, LLC.) C:WindowsSystem32driversRivetNetworksKillerKSPSService.exe

(Rivet Networks LLC -> Rivet Networks, LLC.) C:WindowsSystem32driversRivetNetworksKillerxTendUtilityService.exe

(SteelSeries ApS -> SteelSeries ApS) C:Program FilesSteelSeriesSteelSeries Engine 3SteelSeriesEngine3.exe

(Symantec Company -> Symantec Company) C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included within the fixlist, the registry merchandise will likely be restored to default or eliminated. The file is not going to be moved.)

HKLM…Run: [IAStorIcon] => C:Program FilesIntelIntel® Fast Storage TechnologyIAStorIcon.exe [321112 2019-12-09] (Intel® Fast Storage Know-how -> Intel Company)

HKLM…Run: [RtkAudUService] => C:WindowsSystem32RtkAudUService64.exe [1141552 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM…Run: [MsiTrueColor] => C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColor.exe [5984384 2020-02-16] (PORTRAIT DISPLAYS, INC. -> Portrait Shows, Inc.)

HKLM…Run: [egui] => C:Program FilesESETESET Securityecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)

HKLM-x32…Run: [TeamsMachineInstaller] => C:Program Information (x86)Groups InstallerTeams.exe [101284632 2020-09-16] (Microsoft Company -> Microsoft Company)

HKLM-x32…Run: [M17A] => C:Windowstwain_32Brimm17aCommonTwDsUiLaunch.exe [86128 2020-03-27] (Microsoft Home windows {Hardware} Compatibility Writer -> )

HKLM-x32…Run: [ControlCenter4] => C:Program Information (x86)ControlCenter4BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)

HKLM-x32…Run: [BrStsMon00] => C:Program Information (x86)Browny02BrotherBrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [File not signed]

HKLM-x32…Run: [BrotherSoftwareUpdateNotification] => C:Program Information (x86)BrotherSoftwareUpdateNotificationSoftwareUpdateNotificationService.exe [3581952 2017-04-05] (Brother Industries, Ltd.) [File not signed]

HKUS-1-5-21-414993718-2087581297-3140943001-1001…Run: [EADM] => C:Program Information (x86)OriginOrigin.exe [3145504 2020-12-15] (Digital Arts, Inc. -> Digital Arts)

HKUS-1-5-21-414993718-2087581297-3140943001-1001…Run: [com.squirrel.Teams.Teams] => C:UsersMitchAppDataLocalMicrosoftTeamsUpdate.exe [2452664 2020-12-10] (Microsoft third Celebration Utility Element -> Microsoft Company)

HKUS-1-5-21-414993718-2087581297-3140943001-1001…Run: [Lync] => C:Program FilesMicrosoft OfficerootOffice16lync.exe [26327872 2020-12-25] (Microsoft Company -> Microsoft Company)

HKLMSoftwareMicrosoftActive SetupInstalled Elements: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:Program FilesGoogleChromeApplication87.0.4280.88Installerchrmstp.exe [2020-12-02] (Google LLC -> Google LLC)

Startup: C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupSteelSeries Engine 3.lnk [2020-12-21]

ShortcutTarget: SteelSeries Engine 3.lnk -> C:Program FilesSteelSeriesSteelSeries Engine 3SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)

==================== Scheduled Duties (Whitelisted) ============

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file is not going to be moved except listed individually.)

Job: {0065F264-706B-484A-BAFF-356213A9B51A} – System32TasksNVIDIA GeForce Expertise SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Expertise.exe [3301176 2020-10-20] (NVIDIA Company -> NVIDIA Company)

Job: {0C5ACBEA-DF4A-4810-8D9F-24AEDCE57832} – System32TasksMicrosoftOfficeOffice Function Updates Logon => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [143720 2020-12-25] (Microsoft Company -> Microsoft Company)

Job: {0C884781-3BA6-426E-A1C2-822544B9DA64} – System32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-10-17] (NVIDIA Company -> NVIDIA Company) -> -d “C:Program FilesNVIDIA CorporationNvBackendNvBatteryBoostCheck” -l 3 -f C:ProgramDataNVIDIANvContainerBatteryBoostCheck.log

Job: {0deb9160-9ab2-4f21-9893-7e90bb743d6d} – no filepath

Job: {16817101-1fab-47ad-a487-ae199213a498} – no filepath

Job: {188F8EEE-3C36-4A38-8C40-720516A655DD} – System32TasksMSI Job Host – DisplayID => C:Program Information (x86)MSIOne Dragon CenterMSI.NotifyServer.exe [74384 2020-09-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.)

Job: {18E9AAF3-C711-4CF9-BA84-CAA62205AC46} – System32TasksMSI Job Host – Detect_Monitor => C:Program Information (x86)MSIOne Dragon CenterMSI.NotifyServer.exe [74384 2020-09-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.)

Job: {1A166AA8-482B-4308-9F25-B3517DF5A40F} – System32TasksNorton SecurityNorton Safety Autofix => C:Program FilesNorton SecurityEngine22.20.5.39SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Job: {22bbc54e-bbde-4c23-83b7-badfc77915fa} – no filepath

Job: {2306aafb-8f9e-4aac-b013-0fad9234039c} – no filepath

Job: {29F2B9AB-BCC7-4DA8-8018-26F015AD88A2} – System32TasksOneDC_Updater => C:UsersMitchDocumentstempOneDC_UpdaterOneDC_Updater.exe [720504 2020-01-20] (Micro-Star Worldwide CO., LTD. -> Micro-Star Worldwide Co., Ltd.) <==== ATTENTION

Job: {2b31add6-8828-41f5-8358-33b0a429a140} – no filepath

Job: {45FB0010-5116-4559-A169-54F1A276BFA1} – System32TasksMicrosoftOfficeOfficeTelemetryAgentLogOn2016 => C:Program FilesMicrosoft OfficerootOffice16msoia.exe [5142960 2020-12-07] (Microsoft Company -> Microsoft Company)

Job: {48b09268-5ff2-4cdc-b107-9c1636c197d1} – no filepath

Job: {49D876C7-2F2E-4B27-98C2-2A529F27492B} – System32TasksNahimicSvc32Run => C:WindowsSysWOW64NahimicSvc32.exe [822704 2020-11-04] (A-Volute -> Nahimic)

Job: {556a484b-3923-442d-b496-9ced0369d863} – no filepath

Job: {5891EAC0-CC32-47C3-8D4B-1E9A0B509A67} – System32TasksGoogleUpdateTaskMachineCore => C:Program Information (x86)GoogleUpdateGoogleUpdate.exe [155592 2020-11-28] (Google LLC -> Google LLC)

Job: {5B7248A1-7AB6-42CA-BE41-90EC1B3F2007} – System32TasksMSISW_Host => C:WindowsSysWOW64muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)

Job: {5d019375-6fc5-4088-89c8-d516b2113181} – no filepath

Job: {7177F499-E6F3-4C1F-8258-C04EEA2A61C3} – System32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Company -> NVIDIA Company)

Job: {71FD5CFF-F958-4554-BA45-F7807E9533A5} – System32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1128424 2020-10-19] (NVIDIA Company -> NVIDIA Company)

Job: {77AA54A5-7BB9-4F4F-9E83-836FDF2AE897} – System32TasksNorton SecurityNorton Safety Error Processor => C:Program FilesNorton SecurityEngine22.20.5.39SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Job: {77E8068B-F982-42E2-95FC-4919B31DE5B9} – System32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1128424 2020-10-19] (NVIDIA Company -> NVIDIA Company)

Job: {79119D4B-33D8-46A0-8B7D-9D30AD185D2B} – System32TasksMicrosoftOfficeOffice Automated Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [23054216 2020-12-19] (Microsoft Company -> Microsoft Company)

Job: {85128FB9-72B1-4B7D-8406-CBD867D9D222} – System32TasksNahimicSvc64Run => C:Windowssystem32NahimicSvc64.exe [1066416 2020-11-04] (A-Volute -> Nahimic)

Job: {86F9166B-FF23-41E2-B0E8-B3F3208D006E} – System32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-10-17] (NVIDIA Company -> NVIDIA Company) -> -d “C:Program FilesNVIDIA CorporationNvDriverUpdateCheck” -l 3 -f C:ProgramDataNVIDIANvContainerDriverUpdateCheck.log

Job: {8A90063E-F7C1-4657-822D-7F2A44611D7F} – System32TasksMicrosoftOfficeOffice Function Updates => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [143720 2020-12-25] (Microsoft Company -> Microsoft Company)

Job: {975E5E08-3B76-4EB7-90F5-58B1B8C06AEB} – System32TasksOmApSvcBroker => C:Program Information (x86)MSIMSI NBFoundation ServiceOmApSvcBroker.exe [984696 2020-01-09] (Micro-Star Worldwide CO., LTD. -> Micro-Star Worldwide Co., Ltd.)

Job: {98AA668D-4570-45F6-A395-11717F297B1A} – System32TasksNorton SecurityNorton Safety Error Analyzer => C:Program FilesNorton SecurityEngine22.20.5.39SymErr.exe [117192 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc)

Job: {9EDE697C-1434-4108-A0F6-3445E0FA323A} – System32TasksMicrosoftOfficeOfficeTelemetryAgentFallBack2016 => C:Program FilesMicrosoft OfficerootOffice16msoia.exe [5142960 2020-12-07] (Microsoft Company -> Microsoft Company)

Job: {9F2E4B54-2F85-42DF-BB25-C9AA1653D708} – System32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1128424 2020-10-19] (NVIDIA Company -> NVIDIA Company)

Job: {A0BBE498-BC78-463D-BEA1-44BC997EEE99} – System32TasksNorton WSC Integration => C:Program FilesNorton SecurityEngine22.20.5.39WSCStub.exe [644608 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Job: {A300489E-BA7D-4C84-BF99-6E7CDAC51E79} – System32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Company -> NVIDIA Company)

Job: {A55A3DC5-4579-4362-ABCE-FFED310384E7} – System32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program Information (x86)NVIDIA CorporationNvNodenvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Company -> NVIDIA Company)

Job: {a5906fde-2549-4338-939d-cf6cb48adde1} – no filepath

Job: {AD970BE6-1D1E-4BF4-87E2-90ECB0704688} – System32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1128424 2020-10-19] (NVIDIA Company -> NVIDIA Company)

Job: {B84D8A71-0107-410B-868A-3B5C71A79D38} – System32TasksNahimicTask32 => C:Windowssystem32..SysWOW64NahimicSvc32.exe [822704 2020-11-04] (A-Volute -> Nahimic)

Job: {CE99201E-2684-49C2-9C40-3719CA19226C} – System32TasksGoogleUpdateTaskMachineUA => C:Program Information (x86)GoogleUpdateGoogleUpdate.exe [155592 2020-11-28] (Google LLC -> Google LLC)

Job: {CEE6C5B9-474E-4792-9271-A69E2F71EB8D} – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [23054216 2020-12-19] (Microsoft Company -> Microsoft Company)

Job: {DD150CB1-1A96-44D4-A60B-56D6B464B836} – System32TasksPowerENGAGE => Command(1): msiexec -> /f {400A01BF-E908-4393-BD39-31E386377BDA} /quiet /qn

Job: {DD150CB1-1A96-44D4-A60B-56D6B464B836} – System32TasksPowerENGAGE => Command(2): PowerENGAGE.exe -> scheduled-run

Job: {DD18FFE2-D1C7-466F-8AB3-8500E2BB9E10} – System32TasksNahimicTask64 => C:Windowssystem32.NahimicSvc64.exe [1066416 2020-11-04] (A-Volute -> Nahimic)

Job: {DE46E8AB-F003-4124-81FA-F51F603B7B00} – System32TasksRemediationAntimalwareMigrationTask => C:Program FilesCommon FilesAVNorton SecurityUpgrade.exe [2162328 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

Job: {F8AA673B-59AA-459C-9336-DDA0E4C9A316} – System32TasksIntelIntel Telemetry 2 (x86) => C:Program Information (x86)IntelTelemetry 2.0lrio.exe [1652536 2018-11-05] (Intel® Software program -> Intel Company)

Job: {FA56FB6B-FDFE-45B2-B459-04C6464D17E3} – System32TasksMSILEDKeeper2_Host => C:Program Information (x86)MSIOne Dragon CenterMystic_LightLEDKeeper2.exe [1373360 2020-01-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.)

Job: {fd2016c6-83e0-4a34-91dc-f1875c753a1b} – no filepath

(If an entry is included within the fixlist, the duty (.job) file will likely be moved. The file which is operating by the duty is not going to be moved.)

==================== Web (Whitelisted) ====================

(If an merchandise is included within the fixlist, if it’s a registry merchandise it is going to be eliminated or restored to default.)

TcpipParameters: [DhcpNameServer] 192.168.2.1

Tcpip..Interfaces{5c27590f-4534-4150-ac22-5c5488523a87}: [DhcpNameServer] 192.168.1.1

Tcpip..Interfaces{d87f6055-1d6b-419f-b69a-fa9f10ce6a93}: [DhcpNameServer] 192.168.2.1

Edge:

======

Edge Profile: C:UsersMitchAppDataLocalMicrosoftEdgeUser DataDefault [2020-12-24]

FireFox:

========

FF Plugin: @microsoft.com/SharePoint,model=14.0 -> C:Program FilesMicrosoft OfficerootOffice16NPSPWRAP.DLL [2020-12-03] (Microsoft Company -> Microsoft Company)

FF Plugin-x32: @microsoft.com/Lync,model=15.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2020-12-07] (Microsoft Company -> Microsoft Company)

FF Plugin-x32: @microsoft.com/SharePoint,model=14.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16NPSPWRAP.DLL [2020-12-03] (Microsoft Company -> Microsoft Company)

Chrome:

=======

CHR Profile: C:UsersMitchAppDataLocalGoogleChromeUser DataDefault [2020-12-26]

CHR Notifications: Default -> hxxps://tomato-timer.com; hxxps://www.netflix.com

CHR Extension: (Slides) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2020-11-28]

CHR Extension: (Docs) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2020-11-28]

CHR Extension: (Google Drive) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2020-11-28]

CHR Extension: (YouTube) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-28]

CHR Extension: (uBlock Origin) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionscjpalhdlnbpafiamejdnhcphjbkeiagm [2020-12-04]

CHR Extension: (Sheets) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2020-11-28]

CHR Extension: (Google Docs Offline) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-28]

CHR Extension: (Chrome Net Retailer Funds) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2020-11-28]

CHR Extension: (Gmail) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2020-11-28]

CHR Extension: (Chrome Media Router) – C:UsersMitchAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-28]

==================== Providers (Whitelisted) ===================

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file is not going to be moved except listed individually.)

R3 BrYNSvc; C:Program Information (x86)Browny02BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [File not signed]

R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [9105800 2020-12-01] (Microsoft Company -> Microsoft Company)

R2 ekrn; C:Program FilesESETESET Securityekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)

R3 ekrnEpfw; C:Program FilesESETESET Securityekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)

S3 FvSvc; C:Program FilesNVIDIA CorporationFrameViewSDKnvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Company -> NVIDIA)

S3 KAPSService; C:WindowsSystem32driversRivetNetworksKillerKAPSService.exe [73720 2020-04-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 Killer Analytics Service; C:WindowsSystem32driversRivetNetworksKillerKillerAnalyticsService.exe [1775624 2020-04-24] (Rivet Networks LLC -> Rivet Networks)

R2 Killer Community Service; C:WindowsSystem32driversRivetNetworksKillerKillerNetworkService.exe [2663152 2020-04-24] (Rivet Networks LLC -> Rivet Networks)

S3 Killer Wifi Optimization Service; C:WindowsSystem32driversRivetNetworksKillerKAPSService.exe [73720 2020-04-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 KillerSmartphoneSleepService; C:WindowsSystem32driversRivetNetworksKillerKSPSService.exe [73728 2020-04-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R3 KNDBWM; C:WindowsSystem32driversRivetNetworksKillerKNDBWMService.exe [73720 2020-04-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 LightKeeperService; C:Program Information (x86)MSIOne Dragon CenterMystic_LightLightKeeperService.exe [83600 2020-01-07] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.)

R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [7456464 2020-12-13] (Malwarebytes Inc -> Malwarebytes)

R2 Micro Star SCM; C:WindowsSysWOW64MSIService.exe [160768 2009-07-09] (Micro-Star Worldwide Co., Ltd.) [File not signed]

R2 MSI Basis Service; C:Program Information (x86)MSIMSI NBFoundation ServiceMSIAPService.exe [58832 2019-12-05] (Micro-Star Worldwide CO., LTD. -> Micro-Star Worldwide Co., Ltd.)

R2 MSITrueColorService; C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColorService.exe [205440 2020-02-16] (PORTRAIT DISPLAYS, INC. -> Portrait Shows, Inc.)

R2 MSI_Central_Service; C:Program Information (x86)MSIOne Dragon CenterMSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.)

R2 Mystic_Light_Service; C:Program Information (x86)MSIOne Dragon CenterMystic_LightMystic_Light_Service.exe [34992 2019-11-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.)

R2 NahimicService; C:Windowssystem32NahimicService.exe [2719664 2020-11-04] (A-Volute -> Nahimic)

R2 NortonSecurity; C:Program FilesNorton SecurityEngine22.20.5.39NortonSecurity.exe [344760 2020-07-23] (Symantec Company -> Symantec Company)

R2 nsWscSvc; C:Program FilesNorton SecurityEngine22.20.5.39nsWscSvc.exe [1056096 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

S3 Origin Consumer Service; C:Program Information (x86)OriginOriginClientService.exe [2523448 2020-12-15] (Digital Arts, Inc. -> Digital Arts)

R2 Origin Net Helper Service; C:Program Information (x86)OriginOriginWebHelperService.exe [3478336 2020-12-15] (Digital Arts, Inc. -> Digital Arts)

R2 PnkBstrA; C:WindowsSysWOW64PnkBstrA.exe [76152 2020-12-04] (Even Stability, Inc. -> )

R2 Sendevsvc; C:Program Information (x86)MSIMSI NBFoundation ServiceSendevsvc.exe [306808 2019-05-07] (Micro-Star Worldwide CO., LTD. -> )

S3 SteelSeriesUpdateService; C:Program FilesSteelSeriesSteelSeries Engine 3SteelSeriesUpdateService.exe [32648 2020-12-21] (SteelSeries ApS -> )

R2 USBAppControl; C:Program Information (x86)BrotheriPrint&ScanUSBAppControl.exe [12288 2020-08-04] (Microsoft) [File not signed]

S3 WdNisSvc; C:Program FilesWindows DefenderNisSrv.exe [4098056 2019-03-18] (Microsoft Company -> Microsoft Company)

S3 WinDefend; C:Program FilesWindows DefenderMsMpEng.exe [113992 2019-03-18] (Microsoft Company -> Microsoft Company)

R2 WorkflowAppControl; C:Program Information (x86)BrotheriPrint&ScanWorkflowAppControl.exe [20480 2020-08-04] (Microsoft) [File not signed]

S2 xTendSoftAPService; C:WindowsSystem32driversRivetNetworksKillerxTendSoftAPService.exe [73744 2020-04-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 xTendUtilityService; C:WindowsSystem32driversRivetNetworksKillerxTendUtilityService.exe [73736 2020-04-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 NVDisplay.ContainerLocalSystem; C:WindowsSystem32DriverStoreFileRepositorynvmii.inf_amd64_323ec550858ed703Display.NvContainerNVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramDatapercentNVIDIANVDisplay.ContainerLocalSystem.log -l 3 -d C:WindowsSystem32DriverStoreFileRepositorynvmii.inf_amd64_323ec550858ed703Display.NvContainerpluginsLocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystemLocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file is not going to be moved except listed individually.)

S3 AppleLowerFilter; C:WindowsSystem32driversAppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert construct,131474841775766162 -> Apple Inc.)

R1 BHDrvx64; C:Program FilesNorton SecurityNortonData22.19.8.65DefinitionsBASHDefs20201215.001BHDrvx64.sys [1991536 2020-11-19] (Symantec Company -> Broadcom)

R2 BlueStacksDrv_msi2; C:Program FilesBlueStacks_msi2BstkDrv_msi2.sys [315768 2019-12-12] (Bluestack Techniques, Inc -> Bluestack System Inc.)

S3 BthA2dp; C:WindowsSystem32driversBthA2dp.sys [231936 2019-10-06] (Microsoft Company) [File not signed]

R1 ccSet_NGC; C:WindowsSystem32driversNGCx641614050.027ccSetx64.sys [192248 2020-07-23] (Symantec Company -> Symantec Company)

R1 eamonm; C:WindowsSystem32DRIVERSeamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)

R0 edevmon; C:WindowsSystem32DRIVERSedevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)

R1 eeCtrl; C:Program Information (x86)Frequent FilesSymantec SharedEENGINEeeCtrl64.sys [516960 2020-11-27] (Symantec Company -> Broadcom)

S0 eelam; C:WindowsSystem32DRIVERSeelam.sys [15288 2020-10-22] (Microsoft Home windows Early Launch Anti-malware Writer -> ESET)

R1 ehdrv; C:Windowssystem32DRIVERSehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)

R2 ekbdflt; C:Windowssystem32DRIVERSekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)

R1 EneTechIo; C:Windowssystem32driversene.sys [19968 2019-10-17] (Microsoft Home windows {Hardware} Compatibility Writer -> )

R1 epfw; C:Windowssystem32DRIVERSepfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)

R1 epfwwfp; C:Windowssystem32DRIVERSepfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)

R3 EraserUtilRebootDrv; C:Program Information (x86)Frequent FilesSymantec SharedEENGINEEraserUtilRebootDrv.sys [154464 2020-12-14] (Symantec Company -> Broadcom)

R1 ESProtectionDriver; C:Windowssystem32driversmbae64.sys [153312 2020-12-13] (Malwarebytes Company -> Malwarebytes)

R1 IDSVia64; C:Program FilesNorton SecurityNortonData22.19.8.65DefinitionsIPSDefs20201225.061IDSvia64.sys [1478496 2020-11-27] (Symantec Company -> Broadcom)

R3 KfeCoSvc; C:WindowsSystem32driversRivetNetworksKillerKfeCo10X64.sys [187632 2020-04-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R1 klflt; C:Windowssystem32DRIVERSklflt.sys [523576 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R3 KLIF; C:WindowsSystem32DRIVERSklif.sys [1025336 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R2 MBAMChameleon; C:WindowsSystem32DriversMbamChameleon.sys [220160 2020-12-13] (Malwarebytes Inc -> Malwarebytes)

S0 MbamElam; C:WindowsSystem32DRIVERSMbamElam.sys [19912 2020-12-13] (Microsoft Home windows Early Launch Anti-malware Writer -> Malwarebytes)

R3 MBAMFarflt; C:WindowsSystem32DRIVERSfarflt.sys [197792 2020-12-19] (Malwarebytes Inc -> Malwarebytes)

R3 MBAMProtection; C:Windowssystem32DRIVERSmbam.sys [77496 2020-12-19] (Malwarebytes Inc -> Malwarebytes)

R3 MBAMSwissArmy; C:WindowsSystem32Driversmbamswissarmy.sys [248968 2020-12-13] (Malwarebytes Inc -> Malwarebytes)

R3 MBAMWebProtection; C:Windowssystem32DRIVERSmwac.sys [139424 2020-12-19] (Malwarebytes Inc -> Malwarebytes)

R3 msihid; C:WindowsSystem32driversmsihid.sys [48328 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)

R3 Nahimic_Mirroring; C:WindowsSystem32driversNahimic_Mirroring.sys [85592 2020-01-27] (A-Volute -> Home windows ® Win 7 DDK supplier)

S3 RTCore64; C:Program Information (x86)MSI AfterburnerRTCore64.sys [24000 2019-09-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> )

R3 SRTSP; C:WindowsSystem32driversNGCx641614050.027SRTSP64.SYS [889704 2020-07-23] (Symantec Company -> Symantec Company)

R1 SRTSPX; C:WindowsSystem32driversNGCx641614050.027SRTSPX64.SYS [50920 2020-07-23] (Symantec Company -> Symantec Company)

R3 ssdevfactory; C:WindowsSystem32driversssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)

R3 ssps2; C:WindowsSystem32driversssps2.sys [43184 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)

S3 STTub30; C:WindowsSystem32DriversSTTub30.sys [54104 2019-12-23] (STMicroelectronics -> STMicroelectronics)

R0 SymEFASI; C:WindowsSystem32driversNGCx641614050.027SYMEFASI64.SYS [1964384 2020-07-23] (Symantec Company -> Symantec Company)

S0 SymELAM; C:WindowsSystem32driversNGCx641614050.027SymELAM.sys [25080 2020-07-23] (Microsoft Home windows Early Launch Anti-malware Writer -> Broadcom Company)

R3 SymEvent; C:Windowssystem32DriversSYMEVENT64x86.SYS [99848 2020-02-23] (Symantec Company -> Symantec Company)

R3 SymEvnt; C:Program FilesNorton SecurityNortonData22.19.8.65SymPlatformSymEvnt.sys [712368 2020-02-11] (Symantec Company -> Symantec Company)

R1 SymIRON; C:WindowsSystem32driversNGCx641614050.027Ironx64.SYS [316488 2020-07-23] (Symantec Company -> Symantec Company)

R1 SymNetS; C:WindowsSystem32driversNGCx641614050.027symnets.sys [575328 2020-07-23] (Symantec Company -> Symantec Company)

S3 ThrottleStop; C:UsersMitchAppDataLocalTempThrottleStop.sys [50216 2020-12-19] (TechPowerUp LLC -> ) <==== ATTENTION

S3 WdBoot; C:Windowssystem32driversWdBoot.sys [46472 2019-03-18] (Microsoft Home windows Early Launch Anti-malware Writer -> Microsoft Company)

S3 WdFilter; C:Windowssystem32driversWdFilter.sys [333784 2019-03-18] (Microsoft Home windows -> Microsoft Company)

S3 WdNisDrv; C:WindowsSystem32DriversWdNisDrv.sys [62432 2019-03-18] (Microsoft Home windows -> Microsoft Company)

R3 WINIO; C:Program Information (x86)MSIMSI NBFoundation ServiceKernCoreLib64.sys [25656 2018-11-15] (Micro-Star Worldwide CO., LTD. -> )

S3 wpCtrlDrv_NGC; C:WindowsSystem32driversNGCx641614050.027wpCtrlDrv.sys [1013792 2020-07-23] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included within the fixlist, it is going to be faraway from the registry. The file is not going to be moved except listed individually.)

==================== Three months (created) (Whitelisted) =========

(If an entry is included within the fixlist, the file/folder will likely be moved.)

2020-12-26 23:26 – 2020-12-26 23:26 – 000257208 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_arkmon.sys

2020-12-26 23:26 – 2020-12-26 23:26 – 000207352 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_mark.sys

2020-12-26 23:26 – 2020-12-26 23:26 – 000117456 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_klbg.sys

2020-12-26 23:26 – 2020-12-26 23:26 – 000003240 _____ C:Windowssystem32TasksKaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}

2020-12-26 23:25 – 2020-12-26 23:25 – 000099152 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklupd_klif_kimul.sys

2020-12-26 23:25 – 2020-12-26 23:25 – 000002177 _____ C:UsersPublicDesktopKaspersky Safety Cloud.lnk

2020-12-26 23:25 – 2020-12-26 23:25 – 000002177 _____ C:ProgramDataDesktopKaspersky Safety Cloud.lnk

2020-12-26 23:25 – 2020-12-26 23:25 – 000001162 _____ C:UsersPublicDesktopKaspersky VPN.lnk

2020-12-26 23:25 – 2020-12-26 23:25 – 000001162 _____ C:ProgramDataDesktopKaspersky VPN.lnk

2020-12-26 23:25 – 2020-12-26 23:25 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPN

2020-12-26 23:25 – 2020-12-26 23:25 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Safety Cloud

2020-12-26 23:25 – 2020-12-26 23:25 – 000000000 ____D C:ProgramDataKaspersky Lab

2020-12-26 23:25 – 2020-12-26 23:25 – 000000000 ____D C:Program Information (x86)Kaspersky Lab

2020-12-26 23:25 – 2020-10-21 23:12 – 000110176 _____ (Kaspersky Lab ZAO) C:Windowssystem32klfphc.dll

2020-12-26 23:25 – 2020-10-21 23:11 – 001025336 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklif.sys

2020-12-26 23:25 – 2020-10-21 23:11 – 000523576 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklflt.sys

2020-12-26 23:19 – 2020-12-26 23:19 – 002889704 _____ (Kaspersky) C:UsersMitchDownloadsks4.021.2.16.590en_es_25350.exe

2020-12-26 23:17 – 2020-12-26 23:17 – 000000000 ____D C:UsersMitchDownloadsFRST-OlderVersion

2020-12-26 21:40 – 2020-12-26 21:40 – 000000000 ____D C:Windowssystem32TasksRemediation

2020-12-26 08:54 – 2020-12-26 08:54 – 005930517 _____ C:UsersMitchDownloadsdocument.pdf

2020-12-26 00:23 – 2020-12-26 00:23 – 000003284 _____ C:Windowssystem32TasksMSI Job Host – Detect_Monitor

2020-12-26 00:23 – 2020-12-26 00:23 – 000003268 _____ C:Windowssystem32TasksMSI Job Host – DisplayID

2020-12-24 20:08 – 2020-12-24 20:08 – 000001264 _____ C:UsersMitchDesktopVU Consumer.lnk

2020-12-24 20:08 – 2020-12-24 20:08 – 000000000 ____D C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsVenice Unleashed

2020-12-24 20:08 – 2020-12-24 20:08 – 000000000 ____D C:UsersMitchAppDataLocalVeniceUnleashed

2020-12-24 20:00 – 2020-12-24 20:00 – 080771016 _____ ( ) C:UsersMitchDownloadsvu.exe

2020-12-24 02:41 – 2020-12-24 02:41 – 001152665 _____ C:UsersMitchDownloads155aprilbroadberry.pdf

2020-12-21 23:28 – 2020-12-21 23:28 – 000564562 _____ C:UsersMitchDownloadsbeverages-01-00104.pdf

2020-12-19 18:13 – 2020-12-19 18:13 – 001747654 _____ C:UsersMitchDownloadsThrottleStop_9.2.zip

2020-12-19 17:24 – 2020-12-19 17:24 – 000197792 _____ (Malwarebytes) C:Windowssystem32Driversfarflt.sys

2020-12-19 17:24 – 2020-12-19 17:24 – 000139424 _____ (Malwarebytes) C:Windowssystem32Driversmwac.sys

2020-12-19 17:24 – 2020-12-19 17:24 – 000077496 _____ (Malwarebytes) C:Windowssystem32Driversmbam.sys

2020-12-18 23:36 – 2020-12-18 23:36 – 000027983 _____ C:UsersMitchDownloadsPosting Spanish on Fb.pdf

2020-12-18 21:55 – 2020-12-18 21:55 – 000126195 _____ C:UsersMitchDownloads3.8 HW Half A (2).pdf

2020-12-18 20:09 – 2020-12-18 20:09 – 000323389 _____ C:UsersMitchDownloadsMitch David 3 Ultimate (1).pdf

2020-12-18 19:16 – 2020-12-18 19:16 – 000126195 _____ C:UsersMitchDownloads3.8 HW Half A (1).pdf

2020-12-18 10:06 – 2020-12-18 10:06 – 014445131 _____ C:UsersMitchDownloadsdrive-download-20201218T150440Z-001.zip

2020-12-18 10:05 – 2020-12-18 10:05 – 025694238 _____ C:UsersMitchDownloadsdrive-download-20201218T150502Z-001.zip

2020-12-18 10:05 – 2020-12-18 10:05 – 006471095 _____ C:UsersMitchDownloadsdrive-download-20201218T150549Z-001.zip

2020-12-18 09:57 – 2020-12-18 09:57 – 000024672 _____ C:UsersMitchDownloadsArticle.pdf

2020-12-18 09:54 – 2020-12-18 09:54 – 000020190 _____ C:UsersMitchDownloadsReflection 2.pdf

2020-12-18 09:48 – 2020-12-18 09:48 – 000022489 _____ C:UsersMitchDownloadsVirutal Museum.pdf

2020-12-18 09:40 – 2020-12-18 09:40 – 000021114 _____ C:UsersMitchDownloadsTurkish evolution.pdf

2020-12-18 08:41 – 2020-12-18 08:41 – 000255049 _____ C:UsersMitchDownloadsSpanish 101 Ultimate.pdf

2020-12-18 08:38 – 2020-12-18 08:39 – 000323389 _____ C:UsersMitchDownloadsMitch David 3 Ultimate.pdf

2020-12-17 21:10 – 2020-12-17 21:10 – 000000000 ____D C:UsersMitchDocumentsCall Of Responsibility Black Ops Chilly Warfare

2020-12-17 21:10 – 2020-12-17 21:10 – 000000000 ____D C:ProgramDataActivision

2020-12-17 21:09 – 2020-12-17 21:09 – 000000000 ____D C:UsersMitchAppDataLocalActivision

2020-12-17 18:29 – 2020-12-17 18:29 – 043802532 _____ C:UsersMitchDownloadsOct 8 Bedbug Case Examine.pptx

2020-12-17 18:08 – 2020-12-17 18:08 – 021737178 _____ C:UsersMitchDownloadsOct 22 Bodily-Mechanical Management.pptx

2020-12-17 17:33 – 2020-12-17 17:33 – 024768218 _____ C:UsersMitchDownloadsOct 20 Cultural Management.pptx

2020-12-17 17:33 – 2020-12-17 17:33 – 010533241 _____ C:UsersMitchDownloadsOct 15 Choice-Making in IPM.pptx

2020-12-17 17:32 – 2020-12-17 17:32 – 000001104 _____ C:UsersPublicDesktopCall of Responsibility Black Ops Chilly Warfare.lnk

2020-12-17 17:32 – 2020-12-17 17:32 – 000001104 _____ C:ProgramDataDesktopCall of Responsibility Black Ops Chilly Warfare.lnk

2020-12-17 17:32 – 2020-12-17 17:32 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCall of Responsibility Black Ops Chilly Warfare

2020-12-17 16:25 – 2020-12-20 12:42 – 000000000 ____D C:Program Information (x86)Name of Responsibility Black Ops Chilly Warfare

2020-12-17 02:58 – 2020-12-17 02:58 – 000371125 _____ C:UsersMitchDownloadsExam-2 (5).pdf

2020-12-17 02:57 – 2020-12-17 02:57 – 000307849 _____ C:UsersMitchDownloadsExam 2 Mitch David (3).pdf

2020-12-17 02:41 – 2020-12-17 02:41 – 000606866 _____ C:UsersMitchDownloadsFinal-2020.pdf

2020-12-17 02:41 – 2020-12-17 02:41 – 000339252 _____ C:UsersMitchDownloadsEPT_302_Final_Mitch_David_Updated_1.pdf

2020-12-17 02:40 – 2020-12-17 02:40 – 000000000 ____D C:UsersMitchAppDataRoamingControlCenter4

2020-12-16 14:21 – 2020-12-16 14:21 – 004038392 _____ C:UsersMitchDownloadsReview-2.pdf

2020-12-16 14:21 – 2020-12-16 14:21 – 003210511 _____ C:UsersMitchDownloadsReview-1.pdf

2020-12-16 14:20 – 2020-12-16 14:20 – 002014477 _____ C:UsersMitchDownloadsReview-3.pdf

2020-12-16 14:05 – 2020-12-26 20:05 – 000000000 ____D C:Program Information (x86)PowerENGAGE

2020-12-16 14:05 – 2020-12-16 14:05 – 000003642 _____ C:Windowssystem32TasksPowerENGAGE

2020-12-16 14:05 – 2020-12-16 14:05 – 000000000 ____D C:UsersMitchAppDataRoamingPowerENGAGE

2020-12-16 14:01 – 2020-12-16 14:19 – 000000000 ____D C:Program Information (x86)Browny02

2020-12-16 14:01 – 2020-12-16 14:05 – 000000000 ____D C:ProgramDataControlCenter4

2020-12-16 14:01 – 2020-12-16 14:05 – 000000000 ____D C:Program Information (x86)ControlCenter4

2020-12-16 14:01 – 2020-12-16 14:01 – 000002128 _____ C:UsersPublicDesktopBrother Artistic Middle.lnk

2020-12-16 14:01 – 2020-12-16 14:01 – 000002128 _____ C:ProgramDataDesktopBrother Artistic Middle.lnk

2020-12-16 14:01 – 2020-12-16 14:01 – 000001692 _____ C:UsersPublicDesktopBrother Utilities.lnk

2020-12-16 14:01 – 2020-12-16 14:01 – 000001692 _____ C:ProgramDataDesktopBrother Utilities.lnk

2020-12-16 14:01 – 2020-12-16 14:01 – 000000964 _____ C:UsersPublicDesktopBrother iPrint&Scan.lnk

2020-12-16 14:01 – 2020-12-16 14:01 – 000000964 _____ C:ProgramDataDesktopBrother iPrint&Scan.lnk

2020-12-16 14:01 – 2020-12-16 14:01 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBrother

2020-12-16 14:01 – 2020-12-16 14:01 – 000000000 ____D C:Program Information (x86)ControlCenter4 CSDK

2020-12-16 14:00 – 2020-12-16 14:19 – 000000000 ____D C:ProgramDataBrother

2020-12-16 14:00 – 2016-11-01 11:27 – 000090112 _____ (Brother Industries, Ltd.) C:Windowssystem32BrNetSti.dll

2020-12-16 14:00 – 2015-06-16 21:39 – 000252928 _____ (brother) C:Windowssystem32NSSRH64.dll

2020-12-16 14:00 – 2013-07-03 11:46 – 000065024 _____ (Brother Industries,Ltd) C:Windowssystem32Brnsplg.dll

2020-12-16 14:00 – 2013-03-08 15:45 – 000059904 _____ (Brother Industries,Ltd.) C:Windowssystem32BrWiaNCp.dll

2020-12-16 14:00 – 2005-04-22 13:36 – 000143360 _____ C:Windowssystem32BrSNMP64.dll

2020-12-16 13:52 – 2020-12-16 14:01 – 000000000 ____D C:Program Information (x86)Brother

2020-12-16 13:52 – 2020-12-16 13:52 – 000000000 ____D C:UsersMitchDownloadsInstall

2020-12-16 13:47 – 2020-12-16 13:47 – 478621640 _____ (SOURCENEXT CORPORATION) C:UsersMitchDownloadsY17C_C1_UWL_PP-usa-inst-D2.EXE

2020-12-16 12:53 – 2020-12-16 12:53 – 046892172 _____ C:UsersMitchDownloadsPolish Populism.pdf

2020-12-16 12:44 – 2020-12-16 12:47 – 000000000 ____D C:UsersMitchDesktopResources

2020-12-16 06:19 – 2020-12-16 06:19 – 001248471 _____ C:UsersMitchDownloadssbcDocument (2).pdf

2020-12-15 23:40 – 2020-12-15 18:40 – 000336700 _____ C:UsersMitchDesktopHandwritten 1.pdf

2020-12-15 23:40 – 2020-12-15 18:40 – 000163617 _____ C:UsersMitchDesktopSpanish 1.pdf

2020-12-15 20:23 – 2020-12-26 09:28 – 000003112 _____ C:Windowssystem32TasksNahimicTask32

2020-12-15 20:23 – 2020-12-26 09:28 – 000003092 _____ C:Windowssystem32TasksNahimicTask64

2020-12-15 20:23 – 2020-12-15 20:23 – 000002389 _____ C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsNahimic Companion.lnk

2020-12-15 20:23 – 2020-12-15 20:23 – 000000000 ____D C:WindowsLastGood.Tmp

2020-12-15 20:23 – 2020-12-15 20:23 – 000000000 ____D C:UsersMitchAppDataLocalNhNotifSys

2020-12-15 18:51 – 2020-12-15 18:51 – 007533636 _____ C:UsersMitchDownloadsMN1-5homework (1).pdf

2020-12-15 18:40 – 2020-12-15 18:40 – 000500579 _____ C:UsersMitchDownloadsReading_and_Writing_1.zip

2020-12-15 17:35 – 2020-12-15 17:35 – 000000000 ____D C:UsersMitchAppDataRoamingSkype

2020-12-13 23:56 – 2020-12-13 23:56 – 008816188 _____ C:UsersMitchDownloadsnhatbook-Why-the-West-rules-for-now-Ian-Morris-2010.pdf

2020-12-13 20:10 – 2020-12-13 20:10 – 000320086 _____ C:UsersMitchDownloadscaffeine-relateddeaths2017.pdf

2020-12-13 17:23 – 2020-12-13 17:23 – 000549540 _____ C:WindowsMinidump121320-13765-01.dmp

2020-12-13 08:31 – 2020-12-13 08:31 – 000220160 _____ (Malwarebytes) C:Windowssystem32DriversMbamChameleon.sys

2020-12-13 08:25 – 2020-12-13 08:25 – 000248968 _____ (Malwarebytes) C:Windowssystem32Driversmbamswissarmy.sys

2020-12-13 08:25 – 2020-12-13 08:24 – 000019912 _____ (Malwarebytes) C:Windowssystem32DriversMbamElam.sys

2020-12-13 01:04 – 2020-12-13 08:30 – 000000000 ____D C:WindowsCryptoGuard

2020-12-13 01:04 – 2020-12-13 08:29 – 000000000 ____D C:ProgramDataHitmanPro.Alert

2020-12-11 00:22 – 2020-12-11 00:22 – 000090504 _____ C:UsersMitchDownloadsFRST (1).txt

2020-12-11 00:22 – 2020-12-11 00:22 – 000041426 _____ C:UsersMitchDownloadsAddition (1).txt

2020-12-11 00:22 – 2020-12-11 00:22 – 000039982 _____ C:UsersMitchDownloadsShortcut (1).txt

2020-12-11 00:21 – 2020-12-11 00:22 – 000002166 _____ C:UsersMitchDesktopRkill.txt

2020-12-11 00:21 – 2020-12-11 00:21 – 001802704 _____ (Bleeping Pc, LLC) C:UsersMitchDownloadsrkill.exe

2020-12-11 00:14 – 2020-12-11 00:14 – 000000000 ____D C:UsersMitchAppDataLocalOneDrive

2020-12-10 23:51 – 2020-12-26 23:22 – 000042770 _____ C:UsersMitchDownloadsShortcut.txt

2020-12-10 23:50 – 2020-12-26 23:22 – 000045223 _____ C:UsersMitchDownloadsAddition.txt

2020-12-10 23:48 – 2020-12-26 23:25 – 000037409 _____ C:UsersMitchDownloadsFRST.txt

2020-12-10 23:47 – 2020-12-26 23:25 – 000000000 ____D C:FRST

2020-12-10 23:47 – 2020-12-26 23:17 – 002286592 _____ (Farbar) C:UsersMitchDownloadsFRST64.exe

2020-12-10 23:46 – 2020-12-13 08:31 – 000000000 ____D C:ProgramDataSophos

2020-12-10 23:44 – 2020-12-10 23:44 – 306580184 _____ (Sophos Restricted) C:UsersMitchDownloadsSophosInstall.exe

2020-12-10 23:27 – 2020-12-10 23:27 – 000000000 ____H C:Windowssystem32DriversMsft_User_WpdMtpDr_01_11_00.Wdf

2020-12-10 23:26 – 2020-12-10 23:27 – 000898196 _____ C:WindowsMinidump121020-10093-01.dmp

2020-12-10 22:38 – 2020-12-10 22:38 – 000100864 _____ (Microsoft Company) C:WindowsSysWOW64ncpa.cpl

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth9.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth8.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth7.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth6.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth5.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth4.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth3.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth2.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth18.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth17.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth16.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth15.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth12.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth11.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth10.bin

2020-12-10 22:38 – 2020-12-10 22:38 – 000000315 _____ C:Windowssystem32DrtmAuth1.bin

2020-12-10 22:33 – 2020-12-10 22:33 – 000102912 _____ (Microsoft Company) C:Windowssystem32ncpa.cpl

2020-12-10 12:45 – 2020-12-10 12:45 – 000000000 ____D C:UsersMitchAppDataRoamingTeams

2020-12-10 12:20 – 2020-12-10 12:45 – 000002371 _____ C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMicrosoft Groups.lnk

2020-12-10 12:20 – 2020-12-10 12:45 – 000002363 _____ C:UsersMitchDesktopMicrosoft Groups.lnk

2020-12-10 12:20 – 2020-12-10 12:20 – 000000000 ____D C:UsersMitchAppDataRoamingMicrosoft Groups

2020-12-10 12:19 – 2020-12-10 12:20 – 000000000 ____D C:UsersMitchAppDataLocalSquirrelTemp

2020-12-10 12:18 – 2020-12-10 12:18 – 000000080 ___SH C:bootTel.dat

2020-12-10 00:48 – 2020-12-10 00:48 – 000002499 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOneDrive for Enterprise.lnk

2020-12-10 00:48 – 2020-12-10 00:48 – 000002463 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsSkype for Enterprise.lnk

2020-12-10 00:48 – 2020-12-10 00:48 – 000002400 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOneNote.lnk

2020-12-10 00:48 – 2020-12-10 00:48 – 000000000 ____D C:Program Information (x86)Groups Installer

2020-12-09 21:55 – 2020-12-09 21:55 – 000371125 _____ C:UsersMitchDownloadsExam-2_4.pdf

2020-12-09 21:54 – 2020-12-09 21:54 – 000371125 _____ C:UsersMitchDownloadsExam-2 (4).pdf

2020-12-09 03:58 – 2020-12-09 03:59 – 138094406 _____ C:UsersMitchDownloadsCh13 Part2.mp4.zip

2020-12-09 03:17 – 2020-12-09 03:17 – 000159837 _____ C:UsersMitchDownloadsEPT 302 Design Mission Mitch David.pdf

2020-12-08 23:04 – 2020-12-08 23:04 – 000084736 _____ C:UsersMitchDownloadsOverall Design Mission (1) (2).pdf

2020-12-08 19:36 – 2020-12-08 19:36 – 000087165 _____ C:UsersMitchDownloadsCMSE_DataScience_PlanningGuide_25June2020 (1).pdf

2020-12-08 19:26 – 2020-12-08 19:26 – 000087165 _____ C:UsersMitchDownloadsCMSE_DataScience_PlanningGuide_25June2020.pdf

2020-12-08 18:10 – 2020-12-08 18:10 – 153590182 _____ C:UsersMitchDownloadsCh13 Part1.mp4.zip

2020-12-08 17:52 – 2020-12-09 04:09 – 000116111 _____ C:UsersMitchDownloadsCh13 Excel Follow Issues Pupil.xlsx

2020-12-08 17:52 – 2020-12-08 17:52 – 000122129 _____ C:UsersMitchDownloadsCh13.pdf

2020-12-08 17:51 – 2020-12-08 17:51 – 000371125 _____ C:UsersMitchDownloadsExam-2 (3).pdf

2020-12-08 17:46 – 2020-12-08 17:46 – 000346536 _____ C:UsersMitchDownloadsHW5.pdf

2020-12-08 17:45 – 2020-12-08 17:45 – 000334825 _____ C:UsersMitchDownloadsHW7.pdf

2020-12-08 17:45 – 2020-12-08 17:45 – 000315594 _____ C:UsersMitchDownloadsHW6.pdf

2020-12-08 17:34 – 2020-12-08 17:34 – 000371125 _____ C:UsersMitchDownloadsExam-2 (2).pdf

2020-12-08 17:34 – 2020-12-08 17:34 – 000351301 _____ C:UsersMitchDownloadsHW1.pdf

2020-12-08 16:28 – 2020-12-08 16:28 – 001248501 _____ C:UsersMitchDownloadssbcDocument (1).pdf

2020-12-08 14:56 – 2020-12-08 14:56 – 000307849 _____ C:UsersMitchDownloadsExam 2 Mitch David (2).pdf

2020-12-08 14:43 – 2020-12-08 14:43 – 000371125 _____ C:UsersMitchDownloadsExam-2 (1).pdf

2020-12-08 12:24 – 2020-12-08 12:27 – 000203342 _____ C:UsersMitchDownloadsRabies Appointment Proof.pdf

2020-12-08 12:19 – 2020-12-08 12:19 – 000204219 _____ C:UsersMitchDownloadsRabies Vaccine.pdf

2020-12-08 12:17 – 2020-12-08 12:17 – 000000000 ____D C:UsersMitchAppDataLocalLowTemp

2020-12-08 12:14 – 2020-12-08 12:14 – 000147725 _____ C:UsersMitchDownloadsR_AVS_prd_923918594.PDF.PDF

2020-12-08 00:22 – 2020-12-08 00:22 – 001248501 _____ C:UsersMitchDownloadssbcDocument.pdf

2020-12-07 23:07 – 2020-12-25 01:13 – 000019968 _____ C:UsersMitchDownloadsTechnical GPA Calculation Spreadsheet – Copy.xls

2020-12-07 23:02 – 2020-12-25 01:13 – 000026624 _____ C:UsersMitchDownloadsTechnical GPA Calculation Spreadsheet.xls

2020-12-07 20:12 – 2020-12-07 20:12 – 000043502 _____ C:UsersMitchDownloadsStatement_11_25_2020 (1).PDF

2020-12-07 13:42 – 2020-12-07 13:42 – 000202075 _____ C:UsersMitchDownloadsHW 9.pdf

2020-12-07 13:42 – 2020-12-07 13:42 – 000202075 _____ C:UsersMitchDownloadsHW 9 (1).pdf

2020-12-06 22:10 – 2020-12-06 22:10 – 000084736 _____ C:UsersMitchDownloadsOverall Design Mission (1).pdf

2020-12-06 22:10 – 2020-12-06 22:10 – 000084736 _____ C:UsersMitchDownloadsOverall Design Mission (1) (1).pdf

2020-12-06 22:09 – 2020-12-06 22:09 – 000085568 _____ C:UsersMitchDownloadsOverall Design Mission.pdf

2020-12-06 20:59 – 2020-12-06 20:59 – 198112178 _____ C:UsersMitchDownloadsUntitled Circuit.csv

2020-12-06 15:37 – 2020-12-06 15:37 – 009293946 _____ C:UsersMitchDownloadsEPT302 notes.pdf

2020-12-06 13:48 – 2020-12-06 13:48 – 000049601 _____ C:UsersMitchDownloadsSpanish-Handout.pdf

2020-12-06 13:44 – 2020-12-06 13:44 – 000010315 _____ C:UsersMitchDownloadscpub-Distant-Distant-CmsRdsh (2).rdp

2020-12-06 13:43 – 2020-12-06 13:43 – 000010315 _____ C:UsersMitchDownloadscpub-Distant-Distant-CmsRdsh (1).rdp

2020-12-06 13:23 – 2020-12-06 13:23 – 000010315 _____ C:UsersMitchDownloadscpub-Distant-Distant-CmsRdsh.rdp

2020-12-06 13:22 – 2020-12-06 13:22 – 000002494 _____ C:UsersMitchDownloadsgateway.rdp

2020-12-06 09:57 – 2020-12-06 09:57 – 000307849 _____ C:UsersMitchDownloadsExam 2 Mitch David (1).pdf

2020-12-06 08:34 – 2020-12-06 08:34 – 000454158 _____ C:UsersMitchDownloadsMitch David.pdf

2020-12-06 08:33 – 2020-12-06 08:33 – 000312289 _____ C:UsersMitchDownloadsEPT Examination.zip

2020-12-06 08:30 – 2020-12-06 08:30 – 000317024 _____ C:UsersMitchDownloadsExam-1-2020.pdf

2020-12-06 08:20 – 2020-12-06 08:20 – 000371125 _____ C:UsersMitchDownloadsExam-2.pdf

2020-12-05 14:13 – 2020-12-05 14:13 – 006861688 _____ (Cadence Design Techniques, Inc.) C:UsersMitchDownloadsOrCADTrial.exe

2020-12-05 14:13 – 2020-12-05 14:13 – 000000000 ____D C:UsersMitchAppDataRoamingCadence

2020-12-05 11:53 – 2020-12-05 11:53 – 000000000 ____D C:UsersMitchAppDataLocalINetHistory

2020-12-04 23:45 – 2020-12-04 23:45 – 000126195 _____ C:UsersMitchDownloads3.8 HW Half A.pdf

2020-12-04 23:06 – 2020-12-04 23:06 – 007533636 _____ C:UsersMitchDownloadsMN1-5homework.pdf

2020-12-04 21:09 – 2020-12-24 23:43 – 000000000 ____D C:ProgramDataEA Logs

2020-12-04 21:09 – 2020-12-19 20:25 – 000348360 _____ C:WindowsSysWOW64PnkBstrB.xtr

2020-12-04 21:09 – 2020-12-04 21:09 – 000000000 ____D C:UsersMitchDocumentsBattlefield 3

2020-12-04 21:09 – 2020-12-04 21:09 – 000000000 ____D C:UsersMitchAppDataLocalPunkBuster

2020-12-04 21:09 – 2020-12-04 21:09 – 000000000 ____D C:ProgramDataEA Core

2020-12-04 15:33 – 2020-12-19 20:25 – 000348360 _____ C:WindowsSysWOW64PnkBstrB.exe

2020-12-04 15:33 – 2020-12-19 20:24 – 000280904 _____ C:WindowsSysWOW64PnkBstrB.ex0

2020-12-04 15:33 – 2020-12-04 21:14 – 000076152 _____ C:WindowsSysWOW64PnkBstrA.exe

2020-12-04 15:33 – 2020-12-04 15:33 – 000001250 _____ C:UsersPublicDesktopBattlefield 3.lnk

2020-12-04 15:33 – 2020-12-04 15:33 – 000001250 _____ C:ProgramDataDesktopBattlefield 3.lnk

2020-12-04 15:33 – 2020-12-04 15:33 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBattlefield 3

2020-12-04 15:02 – 2020-12-24 20:11 – 000000000 ____D C:Program Information (x86)Origin Video games

2020-12-04 15:00 – 2020-12-25 20:42 – 000000000 ____D C:Program Information (x86)Origin

2020-12-04 15:00 – 2020-12-04 21:09 – 000000000 ____D C:ProgramDataElectronic Arts

2020-12-04 15:00 – 2020-12-04 15:00 – 000001069 _____ C:UsersPublicDesktopOrigin.lnk

2020-12-04 15:00 – 2020-12-04 15:00 – 000001069 _____ C:ProgramDataDesktopOrigin.lnk

2020-12-04 15:00 – 2020-12-04 15:00 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsOrigin

2020-12-04 13:59 – 2020-12-26 23:00 – 000000000 ____D C:ProgramDataOrigin

2020-12-04 13:59 – 2020-12-26 13:14 – 000000000 ____D C:UsersMitchAppDataLocalOrigin

2020-12-04 13:59 – 2020-12-25 23:01 – 000000000 ____D C:UsersMitchAppDataRoamingOrigin

2020-12-04 13:59 – 2020-12-04 13:59 – 000000000 ____D C:UsersMitch.QtWebEngineProcess

2020-12-04 13:59 – 2020-12-04 13:59 – 000000000 ____D C:UsersMitch.Origin

2020-12-04 13:57 – 2020-12-04 13:57 – 063644512 _____ (Digital Arts) C:UsersMitchDownloadsOriginThinSetup.exe

2020-12-04 12:00 – 2020-12-04 12:00 – 010797791 _____ C:UsersMitchDownloadsMN1-5classroom (2).pdf

2020-12-03 21:04 – 2020-12-03 21:04 – 000022882 _____ C:UsersMitchDownloadsmessage.txt

2020-12-03 12:52 – 2020-12-03 12:52 – 002507278 _____ C:UsersMitchDownloadsPlease_DocuSign_4463_001.pdf

2020-12-03 12:52 – 2020-12-03 12:52 – 002249905 _____ C:UsersMitchDownloads4463_001.pdf

2020-12-03 12:39 – 2020-12-03 12:39 – 000055441 _____ C:UsersMitchDownloadsMySparrow – Account Particulars.pdf

2020-12-02 22:15 – 2020-12-02 22:15 – 001019065 _____ C:UsersMitchDownloadsExamples.pdf

2020-12-02 21:52 – 2020-12-02 21:52 – 061608110 _____ C:UsersMitchDownloadsTheDiscrete Arithmetic.pdf

2020-12-02 19:45 – 2020-12-02 19:46 – 000015345 _____ C:UsersMitchDownloadsChapter 14 Homework (1).xlsx

2020-12-02 19:45 – 2020-12-02 19:45 – 000015349 _____ C:UsersMitchDownloadsChapter 14 Homework.xlsx

2020-12-02 19:45 – 2020-12-02 19:45 – 000000000 ____D C:UsersMitchDocumentsCustom Workplace Templates

2020-12-02 19:32 – 2020-12-02 19:45 – 000015356 _____ C:UsersMitchDownloadsCh 14 Excel.xlsx

2020-12-02 12:49 – 2020-12-02 13:34 – 000005383 _____ C:UsersMitchDesktopBenchMark Specs.txt

2020-12-02 11:52 – 2020-12-02 11:52 – 010797791 _____ C:UsersMitchDownloadsMN1-5classroom (1).pdf

2020-12-02 11:17 – 2020-12-02 11:36 – 000007625 _____ C:UsersMitchAppDataLocalResmon.ResmonCfg

2020-12-02 11:14 – 2020-12-02 11:14 – 000000000 ____D C:UsersMitchDesktopProcess Explorer

2020-12-02 11:13 – 2020-12-02 11:13 – 002588891 _____ C:UsersMitchDownloadsProcessExplorer.zip

2020-12-01 00:06 – 2020-12-01 00:06 – 008317231 _____ C:UsersMitchDownloadsCurated_ReShade_Filters (1).zip

2020-12-01 00:03 – 2020-12-01 00:03 – 008317231 _____ C:UsersMitchDownloadsCurated_ReShade_Filters.zip

2020-11-30 23:56 – 2020-11-30 23:56 – 008456887 _____ C:UsersMitchDownloadsreshade-shaders-nvidia.zip

2020-11-30 23:03 – 2020-11-30 23:03 – 000003940 _____ C:Windowssystem32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:03 – 2020-11-30 23:03 – 000001450 _____ C:UsersPublicDesktopGeForce Expertise.lnk

2020-11-30 23:03 – 2020-11-30 23:03 – 000001450 _____ C:ProgramDataDesktopGeForce Expertise.lnk

2020-11-30 23:03 – 2020-11-30 23:03 – 000000000 ____D C:UsersMitchAppDataLocalNVIDIA

2020-11-30 23:03 – 2020-10-20 07:56 – 002797552 _____ (NVIDIA Company) C:Windowssystem32nvspcap64.dll

2020-11-30 23:03 – 2020-10-20 07:56 – 002154984 _____ (NVIDIA Company) C:WindowsSysWOW64nvspcap.dll

2020-11-30 23:03 – 2020-10-20 07:56 – 001294832 _____ (NVIDIA Company) C:Windowssystem32NvRtmpStreamer64.dll

2020-11-30 23:02 – 2020-11-30 23:02 – 000004308 _____ C:Windowssystem32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000004106 _____ C:Windowssystem32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000003976 _____ C:Windowssystem32TasksNVIDIA GeForce Expertise SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000003894 _____ C:Windowssystem32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000003858 _____ C:Windowssystem32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000003858 _____ C:Windowssystem32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000003858 _____ C:Windowssystem32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000003858 _____ C:Windowssystem32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000003654 _____ C:Windowssystem32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

2020-11-30 23:02 – 2020-11-30 23:02 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNVIDIA Company

2020-11-30 23:02 – 2020-10-17 10:01 – 000001951 _____ C:WindowsNvContainerRecovery.bat

2020-11-30 23:02 – 2020-08-10 10:20 – 000169272 _____ (NVIDIA Company) C:Windowssystem32nvaudcap64v.dll

2020-11-30 23:02 – 2020-08-10 10:20 – 000145208 _____ (NVIDIA Company) C:WindowsSysWOW64nvaudcap32v.dll

2020-11-30 23:02 – 2020-03-11 14:26 – 000067456 _____ (NVIDIA Company) C:Windowssystem32Driversnvvhci.sys

2020-11-30 23:02 – 2020-03-06 05:03 – 000069840 _____ (NVIDIA Company) C:Windowssystem32Driversnvvad64v.sys

2020-11-30 23:02 – 2020-03-04 07:54 – 000050592 _____ (NVIDIA Company) C:Windowssystem32DriversNvModuleTracker.sys

2020-11-30 23:00 – 2020-11-30 23:00 – 127450288 _____ (NVIDIA Company New) C:UsersMitchDownloadsGeForce_Experience_v3.20.5.70.exe

2020-11-30 22:30 – 2020-11-30 22:30 – 000002023 _____ C:UsersPublicDesktopESET Banking & Cost safety.lnk

2020-11-30 22:30 – 2020-11-30 22:30 – 000002023 _____ C:ProgramDataDesktopESET Banking & Cost safety.lnk

2020-11-30 22:28 – 2020-11-30 22:28 – 000000000 ____D C:UsersMitchAppDataLocalESET

2020-11-30 22:27 – 2020-11-30 22:27 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsESET

2020-11-30 22:27 – 2020-11-30 22:27 – 000000000 ____D C:ProgramDataESET

2020-11-30 22:27 – 2020-11-30 22:27 – 000000000 ____D C:Program FilesESET

2020-11-30 22:25 – 2020-11-30 22:25 – 006341552 _____ (ESET) C:UsersMitchDownloadseset_internet_security_live_installer.exe

2020-11-30 22:00 – 2020-12-13 08:25 – 000002040 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk

2020-11-30 22:00 – 2020-12-13 08:25 – 000002028 _____ C:UsersPublicDesktopMalwarebytes.lnk

2020-11-30 22:00 – 2020-12-13 08:25 – 000002028 _____ C:ProgramDataDesktopMalwarebytes.lnk

2020-11-30 22:00 – 2020-11-30 22:00 – 000000000 ____D C:UsersMitchAppDataLocalmbam

2020-11-30 21:59 – 2020-12-13 08:24 – 000153312 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys

2020-11-30 21:59 – 2020-11-30 21:59 – 002076624 _____ (Malwarebytes) C:UsersMitchDownloadsMBSetup.exe

2020-11-30 21:59 – 2020-11-30 21:59 – 000000000 ____D C:ProgramDataMalwarebytes

2020-11-30 21:59 – 2020-11-30 21:59 – 000000000 ____D C:Program FilesMalwarebytes

2020-11-30 21:22 – 2020-11-30 21:40 – 000000000 ____D C:UsersMitchDocumentsSound recordings

2020-11-30 14:57 – 2020-11-30 14:57 – 000001938 _____ C:UsersMitchDesktopZoom.lnk

2020-11-30 13:57 – 2020-11-30 13:57 – 000307849 _____ C:UsersMitchDownloadsExam 2 Mitch David.pdf

2020-11-30 11:41 – 2020-11-30 11:41 – 010797791 _____ C:UsersMitchDownloadsMN1-5classroom.pdf

2020-11-30 11:30 – 2020-11-30 11:30 – 000000000 ____D C:UsersMitchAppDataRoamingZoom

2020-11-30 11:30 – 2020-11-30 11:30 – 000000000 ____D C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsZoom

2020-11-30 00:17 – 2020-11-30 00:17 – 000043502 _____ C:UsersMitchDownloadsStatement_11_25_2020.PDF

2020-11-29 21:28 – 2020-12-26 09:34 – 000000000 ____D C:Windowssystem32TasksNorton Safety

2020-11-29 21:22 – 2020-12-01 20:07 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsNorton Safety

2020-11-29 21:22 – 2020-11-29 21:22 – 000003376 _____ C:Windowssystem32TasksNorton WSC Integration

2020-11-29 18:03 – 2020-11-29 18:03 – 000090624 _____ (Microsoft Company) C:Windowssystem32gamingtcuihelpers.dll

2020-11-29 18:03 – 2020-11-29 18:03 – 000000000 ____D C:Program Information (x86)Home windows Kits

2020-11-29 18:03 – 2020-11-29 18:03 – 000000000 ____D C:Program Information (x86)Microsoft GameInput

2020-11-29 17:34 – 2020-11-29 17:34 – 002045952 _____ C:Windowssystem32rdpnano.dll

2020-11-29 17:34 – 2020-11-29 17:34 – 001756600 _____ (Microsoft Company) C:Windowssystem32winload.efi

2020-11-29 17:34 – 2020-11-29 17:34 – 001366144 _____ (Microsoft Company) C:Windowssystem32winresume.efi

2020-11-29 17:34 – 2020-11-29 17:34 – 000171008 _____ C:Windowssystem32FsNVSDeviceSource.dll

2020-11-29 17:34 – 2020-11-29 17:34 – 000059392 _____ C:Windowssystem32runexehelper.exe

2020-11-29 17:34 – 2020-11-29 17:34 – 000001370 _____ C:Windowssystem32ThirdPartyNoticesBySHS.txt

2020-11-29 17:34 – 2020-11-29 17:34 – 000000357 _____ C:Windowssystem32DrtmAuth14.bin

2020-11-29 17:34 – 2020-11-29 17:34 – 000000357 _____ C:Windowssystem32DrtmAuth13.bin

2020-11-29 17:19 – 2020-12-13 17:23 – 1548810948 _____ C:WindowsMEMORY.DMP

2020-11-29 17:19 – 2020-11-29 17:19 – 000536516 _____ C:WindowsMinidump112920-9953-01.dmp

2020-11-29 17:10 – 2020-11-29 17:10 – 024334112 _____ (Intel Company) C:UsersMitchDownloadsXTUSetup.exe

2020-11-29 17:10 – 2020-11-29 17:10 – 000002685 _____ C:UsersPublicDesktopIntel® Excessive Tuning Utility.lnk

2020-11-29 17:10 – 2020-11-29 17:10 – 000002685 _____ C:ProgramDataDesktopIntel® Excessive Tuning Utility.lnk

2020-11-29 17:03 – 2020-11-29 17:03 – 000000000 ____D C:ProgramDataboost_interprocess

2020-11-29 13:22 – 2020-12-19 15:48 – 000002428 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk

2020-11-29 13:22 – 2020-12-19 15:48 – 000002266 _____ C:UsersPublicDesktopMicrosoft Edge.lnk

2020-11-29 13:22 – 2020-12-19 15:48 – 000002266 _____ C:ProgramDataDesktopMicrosoft Edge.lnk

2020-11-29 03:06 – 2020-10-05 19:13 – 000835472 _____ (Adobe) C:WindowsSysWOW64FlashPlayerApp.exe

2020-11-29 03:06 – 2020-10-05 19:13 – 000179608 _____ (Adobe) C:WindowsSysWOW64FlashPlayerCPLApp.cpl

2020-11-29 03:05 – 2020-11-29 03:05 – 000000000 ____D C:ProgramDatassh

2020-11-29 01:38 – 2020-11-29 01:39 – 000000000 ____D C:Windowssystem32MRT

2020-11-29 01:37 – 2020-11-29 01:37 – 000000000 ____D C:WindowsFirmware

2020-11-29 01:37 – 2020-02-24 22:10 – 025076480 _____ (Intel Company) C:Windowssystem32mfxplugin64_hw.dll

2020-11-29 01:37 – 2020-02-24 22:10 – 003013880 _____ (Intel Company) C:Windowssystem32mfx_mft_mjpgvd_64.dll

2020-11-29 01:37 – 2020-02-24 22:10 – 002439448 _____ (Intel Company) C:WindowsSysWOW64mfx_mft_mjpgvd_32.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 021448816 _____ (Intel Company) C:Windowssystem32libmfxhw64.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 020346736 _____ (Intel Company) C:WindowsSysWOW64libmfxhw32.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 011919640 _____ (Intel Company) C:WindowsSysWOW64mfxplugin32_hw.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 003218488 _____ (Intel Company) C:Windowssystem32mfx_mft_h265ve_64.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 003212664 _____ (Intel Company) C:Windowssystem32mfx_mft_vp9ve_64.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 003198848 _____ (Intel Company) C:Windowssystem32mfx_mft_h264ve_64.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 002996096 _____ (Intel Company) C:Windowssystem32mfx_mft_encrypt_64.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 002606144 _____ (Intel Company) C:WindowsSysWOW64mfx_mft_h265ve_32.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 002601232 _____ (Intel Company) C:WindowsSysWOW64mfx_mft_vp9ve_32.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 002591936 _____ (Intel Company) C:WindowsSysWOW64mfx_mft_h264ve_32.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 002435384 _____ (Intel Company) C:WindowsSysWOW64mfx_mft_encrypt_32.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 000212512 _____ (Intel Company) C:Windowssystem32intel_gfx_api-x64.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 000184184 _____ (Intel Company) C:WindowsSysWOW64intel_gfx_api-x86.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 000147192 _____ C:WindowsSysWOW64libGLESv2.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 000137768 _____ C:WindowsSysWOW64libEGL.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 000126504 _____ (Khronos Group) C:Windowssystem32OpenCL.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 000121088 _____ C:WindowsSysWOW64libGLESv1_CM.dll

2020-11-29 01:37 – 2020-02-24 22:09 – 000111656 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll

2020-11-29 01:36 – 2020-11-29 01:36 – 000000000 ____D C:Program FilesMicrosoft Replace Well being Instruments

2020-11-29 01:36 – 2020-08-27 01:45 – 001145480 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtCOM64.dll

2020-11-29 01:36 – 2020-08-27 01:45 – 000854112 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkApi64U.dll

2020-11-29 01:36 – 2020-08-27 01:45 – 000468792 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtDataProc64.dll

2020-11-29 01:31 – 2020-11-29 01:31 – 002755584 _____ (Microsoft Company) C:WindowsSysWOW64mshtml.tlb

2020-11-29 01:31 – 2020-11-29 01:31 – 000567808 _____ (Microsoft Company) C:Windowssystem32PhotoScreensaver.scr

2020-11-29 01:31 – 2020-11-29 01:31 – 000500224 _____ (Microsoft Company) C:WindowsSysWOW64PhotoScreensaver.scr

2020-11-29 01:31 – 2020-11-29 01:31 – 000456192 _____ (Microsoft Company) C:WindowsSysWOW64appwiz.cpl

2020-11-29 01:31 – 2020-11-29 01:31 – 000421376 _____ (Microsoft Company) C:WindowsSysWOW64inetcpl.cpl

2020-11-29 01:31 – 2020-11-29 01:31 – 000204800 _____ (Microsoft Company) C:WindowsSysWOW64mpg2splt.ax

2020-11-29 01:31 – 2020-11-29 01:31 – 000072704 _____ (Microsoft Company) C:WindowsSysWOW64tdc.ocx

2020-11-29 01:30 – 2020-11-29 01:30 – 004898144 _____ (Microsoft Company) C:Windowssystem32rtmpltfm.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 003860832 _____ (Microsoft Company) C:WindowsSysWOW64rtmpltfm.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 002755584 _____ (Microsoft Company) C:Windowssystem32mshtml.tlb

2020-11-29 01:30 – 2020-11-29 01:30 – 001841152 _____ C:Windowssystem32TextInputMethodFormatter.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 001354080 _____ (Microsoft Company) C:Windowssystem32rtmpal.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 001282872 _____ (Microsoft Company) C:Windowssystem32SecConfig.efi

2020-11-29 01:30 – 2020-11-29 01:30 – 001101312 _____ C:WindowsSysWOW64TextInputMethodFormatter.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 001091936 _____ (Microsoft Company) C:Windowssystem32rtmcodecs.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 001032544 _____ (Microsoft Company) C:Windowssystem32ortcengine.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 000980320 _____ (Microsoft Company) C:WindowsSysWOW64rtmpal.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 000915296 _____ (Microsoft Company) C:WindowsSysWOW64rtmcodecs.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 000860160 _____ C:Windowssystem32MBR2GPT.EXE

2020-11-29 01:30 – 2020-11-29 01:30 – 000732000 _____ (Microsoft Company) C:WindowsSysWOW64ortcengine.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 000555008 _____ (Microsoft Company) C:Windowssystem32appwiz.cpl

2020-11-29 01:30 – 2020-11-29 01:30 – 000500736 _____ (Microsoft Company) C:Windowssystem32inetcpl.cpl

2020-11-29 01:30 – 2020-11-29 01:30 – 000415744 _____ (Microsoft Company) C:WindowsSysWOW64winspool.drv

2020-11-29 01:30 – 2020-11-29 01:30 – 000261632 _____ (Microsoft Company) C:Windowssystem32bthprops.cpl

2020-11-29 01:30 – 2020-11-29 01:30 – 000259584 _____ (Microsoft Company) C:Windowssystem32mpg2splt.ax

2020-11-29 01:30 – 2020-11-29 01:30 – 000217600 _____ (Microsoft Company) C:WindowsSysWOW64bthprops.cpl

2020-11-29 01:30 – 2020-11-29 01:30 – 000086016 _____ (Microsoft Company) C:Windowssystem32tdc.ocx

2020-11-29 01:30 – 2020-11-29 01:30 – 000059221 _____ C:Windowssystem32srms.dat

2020-11-29 01:30 – 2020-11-29 01:30 – 000056672 _____ (Microsoft Company) C:Windowssystem32rtmmvrortc.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 000055376 _____ (Microsoft Company) C:WindowsSysWOW64rtmmvrortc.dll

2020-11-29 01:30 – 2020-11-29 01:30 – 000035840 _____ C:Windowssystem32deploymentcsphelper.exe

2020-11-29 01:29 – 2020-11-29 01:29 – 004227116 _____ C:Windowssystem32DefaultHrtfs.bin

2020-11-29 01:29 – 2020-11-29 01:29 – 000540672 _____ (Microsoft Company) C:Windowssystem32winspool.drv

2020-11-29 01:29 – 2020-11-29 01:29 – 000200704 _____ C:Windowssystem32IHDS.dll

2020-11-29 01:29 – 2020-11-29 01:29 – 000164864 _____ C:Windowssystem32DataStoreCacheDumpTool.exe

2020-11-29 01:29 – 2020-11-29 01:29 – 000013312 _____ C:Windowssystem32agentactivationruntimestarter.exe

2020-11-29 01:18 – 2020-12-06 07:36 – 000000000 ____D C:Program Information (x86)RivaTuner Statistics Server

2020-11-29 01:18 – 2020-11-29 01:19 – 000000000 ____D C:WindowsSysWOW64directx

2020-11-29 01:18 – 2020-11-29 01:18 – 000000000 ____D C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsRivaTuner Statistics Server

2020-11-29 01:17 – 2020-11-29 01:17 – 022749151 _____ C:UsersMitchDownloads[Guru3D.com]-RTSS.zip

2020-11-28 23:19 – 2020-12-26 13:17 – 000000000 ____D C:ProgramDataNVIDIA

2020-11-28 23:19 – 2020-10-19 00:42 – 000069608 _____ C:Windowssystem32FvSDK_x64.dll

2020-11-28 23:19 – 2020-10-19 00:42 – 000058344 _____ C:WindowsSysWOW64FvSDK_x86.dll

2020-11-28 23:17 – 2020-11-07 12:41 – 001769688 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe

2020-11-28 23:17 – 2020-11-07 12:41 – 001769688 _____ C:Windowssystem32vulkaninfo.exe

2020-11-28 23:17 – 2020-11-07 12:41 – 001370328 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe

2020-11-28 23:17 – 2020-11-07 12:41 – 001370328 _____ C:WindowsSysWOW64vulkaninfo.exe

2020-11-28 23:17 – 2020-11-07 12:41 – 001054944 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll

2020-11-28 23:17 – 2020-11-07 12:41 – 001054944 _____ C:Windowssystem32vulkan-1.dll

2020-11-28 23:17 – 2020-11-07 12:41 – 000917728 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll

2020-11-28 23:17 – 2020-11-07 12:41 – 000917728 _____ C:WindowsSysWOW64vulkan-1.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 002096880 _____ (NVIDIA Company) C:Windowssystem32NvFBC64.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 001585560 _____ (NVIDIA Company) C:WindowsSysWOW64NvFBC.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 001506032 _____ (NVIDIA Company) C:Windowssystem32NvIFR64.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 001159920 _____ (NVIDIA Company) C:WindowsSysWOW64NvIFR.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 001027992 _____ (NVIDIA Company) C:Windowssystem32nvml.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 000816368 _____ (NVIDIA Company) C:Windowssystem32nvmcumd.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 000813464 _____ (NVIDIA Company) C:Windowssystem32nvEncodeAPI64.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 000674712 _____ C:Windowssystem32nvofapi64.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 000670616 _____ (NVIDIA Company) C:Windowssystem32NvIFROpenGL.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 000656112 _____ (NVIDIA Company) C:WindowsSysWOW64nvEncodeAPI.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 000590576 _____ (NVIDIA Company) C:Windowssystem32nvidia-smi.exe

2020-11-28 23:17 – 2020-11-07 12:38 – 000556440 _____ (NVIDIA Company) C:WindowsSysWOW64NvIFROpenGL.dll

2020-11-28 23:17 – 2020-11-07 12:38 – 000543128 _____ C:WindowsSysWOW64nvofapi.dll

2020-11-28 23:17 – 2020-11-07 12:37 – 007707544 _____ (NVIDIA Company) C:Windowssystem32nvcuvid.dll

2020-11-28 23:17 – 2020-11-07 12:37 – 006858992 _____ (NVIDIA Company) C:WindowsSysWOW64nvcuvid.dll

2020-11-28 23:17 – 2020-11-07 12:37 – 004175256 _____ (NVIDIA Company) C:WindowsSysWOW64nvcuda.dll

2020-11-28 23:17 – 2020-11-07 12:37 – 002509720 _____ (NVIDIA Company) C:Windowssystem32nvcuda.dll

2020-11-28 23:17 – 2020-11-07 12:37 – 000849648 _____ (NVIDIA Company) C:Windowssystem32MCU.exe

2020-11-28 23:17 – 2020-11-07 12:37 – 000445848 _____ (NVIDIA Company) C:Windowssystem32nvdebugdump.exe

2020-11-28 23:17 – 2020-11-06 23:01 – 000080930 _____ C:Windowssystem32nvinfo.pb

2020-11-28 23:17 – 2020-11-06 23:01 – 000038632 _____ (NVIDIA Company) C:Windowssystem32Driversnvhdap64.dll

2020-11-28 23:15 – 2020-11-28 23:16 – 647691408 _____ (NVIDIA Company) C:UsersMitchDownloads457.30-notebook-win10-64bit-international-dch-whql.exe

2020-11-28 23:11 – 2020-11-29 13:49 – 000000000 ____D C:Program FilesUNP

2020-11-28 23:03 – 2020-11-28 23:03 – 000000000 ___HD C:ProgramDataCyberLink

2020-11-28 23:02 – 2020-12-22 20:10 – 000000000 ____D C:Program Information (x86)MSI Afterburner

2020-11-28 23:02 – 2020-11-28 23:02 – 000001162 _____ C:UsersMitchDesktopMSI Afterburner.lnk

2020-11-28 23:02 – 2020-11-28 23:02 – 000000000 ____D C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI Afterburner

2020-11-28 23:00 – 2020-11-28 23:00 – 050449037 _____ C:UsersMitchDownloadsMSIAfterburnerSetup.zip

2020-11-28 22:41 – 2020-11-28 22:41 – 000000000 ____D C:UsersMitchAppDataRoamingNVIDIA

2020-11-28 22:40 – 2020-12-17 21:10 – 000000000 ____D C:UsersMitchAppDataLocalD3DSCache

2020-11-28 22:40 – 2020-11-28 23:14 – 000000000 ____D C:UsersMitchDocumentsCall of Responsibility Trendy Warfare

2020-11-28 22:40 – 2020-11-28 22:40 – 000000000 ____D C:UsersMitchansel

2020-11-28 22:38 – 2020-11-28 22:38 – 000001074 _____ C:UsersPublicDesktopCall of Responsibility Trendy Warfare.lnk

2020-11-28 22:38 – 2020-11-28 22:38 – 000001074 _____ C:ProgramDataDesktopCall of Responsibility Trendy Warfare.lnk

2020-11-28 22:38 – 2020-11-28 22:38 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCall of Responsibility Trendy Warfare

2020-11-28 20:17 – 2020-11-28 20:17 – 000000000 ____D C:UsersMitchDesktopCRU

2020-11-28 20:16 – 2020-11-28 20:17 – 000554202 _____ C:UsersMitchDownloadscru-1.4.2.zip

2020-11-28 19:56 – 2020-11-28 23:05 – 000000000 ____D C:UsersMitchAppDataRoamingsteelseries-engine-3-client

2020-11-28 18:11 – 2020-12-26 23:26 – 000000000 ____D C:Program FilesCommon FilesAV

2020-11-28 18:04 – 2020-12-25 01:54 – 000000000 ____D C:Program Information (x86)Name of Responsibility Trendy Warfare

2020-11-28 18:03 – 2020-11-28 18:03 – 000000000 ____D C:UsersMitchAppDataLocalcache

2020-11-28 18:03 – 2020-11-28 18:03 – 000000000 ____D C:ProgramDataBlizzard Leisure

2020-11-28 18:02 – 2020-12-25 23:00 – 000000000 ____D C:UsersMitchAppDataLocalBattle.web

2020-11-28 18:02 – 2020-12-24 20:23 – 000000000 ____D C:UsersMitchAppDataRoamingBattle.web

2020-11-28 18:02 – 2020-11-28 18:02 – 000000936 _____ C:UsersPublicDesktopBattle.web.lnk

2020-11-28 18:02 – 2020-11-28 18:02 – 000000936 _____ C:ProgramDataDesktopBattle.web.lnk

2020-11-28 18:02 – 2020-11-28 18:02 – 000000000 ____D C:UsersMitchAppDataLocalCEF

2020-11-28 18:02 – 2020-11-28 18:02 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBattle.web

2020-11-28 18:01 – 2020-12-10 18:44 – 000000000 ____D C:Program Information (x86)Battle.web

2020-11-28 18:00 – 2020-11-28 18:00 – 000000000 ____D C:UsersMitchAppDataLocalComms

2020-11-28 17:59 – 2020-11-28 17:59 – 000000000 ____D C:UsersMitchAppDataLocalBlizzard Leisure

2020-11-28 17:59 – 2020-11-28 17:59 – 000000000 ____D C:ProgramDataBattle.web

2020-11-28 17:58 – 2020-11-28 17:58 – 004951024 _____ (Blizzard Leisure) C:UsersMitchDownloadsBattle.net-Setup.exe

2020-11-28 17:57 – 2020-12-26 22:47 – 000000000 ____D C:ProgramDataCommon

2020-11-28 17:50 – 2020-12-03 15:56 – 000003418 _____ C:Windowssystem32TasksGoogleUpdateTaskMachineUA

2020-11-28 17:50 – 2020-12-03 15:56 – 000003294 _____ C:Windowssystem32TasksGoogleUpdateTaskMachineCore

2020-11-28 17:50 – 2020-12-02 21:56 – 000002254 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk

2020-11-28 17:50 – 2020-12-02 21:56 – 000002213 _____ C:UsersPublicDesktopGoogle Chrome.lnk

2020-11-28 17:50 – 2020-12-02 21:56 – 000002213 _____ C:ProgramDataDesktopGoogle Chrome.lnk

2020-11-28 17:50 – 2020-12-02 19:51 – 000000000 ____D C:UsersMitchAppDataLocalPlaceholderTileLogoFolder

2020-11-28 17:50 – 2020-11-28 17:54 – 000000000 ____D C:UsersMitchAppDataLocalGoogle

2020-11-28 17:50 – 2020-11-28 17:50 – 000000000 ___HD C:UsersMitchMicrosoftEdgeBackups

2020-11-28 17:50 – 2020-11-28 17:50 – 000000000 ____D C:Program FilesGoogle

2020-11-28 17:50 – 2020-11-28 17:50 – 000000000 ____D C:Program Information (x86)Google

2020-11-28 17:46 – 2020-12-10 23:08 – 000003354 _____ C:Windowssystem32TasksOneDrive Standalone Replace Job-S-1-5-21-414993718-2087581297-3140943001-1001

2020-11-28 17:46 – 2020-12-10 23:07 – 000000000 ___RD C:UsersMitchOneDrive

2020-11-28 17:46 – 2020-11-28 17:46 – 000000000 ____D C:UsersMitchAppDataRoamingIntel Company

2020-11-28 17:46 – 2020-11-28 17:46 – 000000000 ____D C:UsersMitchAppDataLocalPortrait Shows

2020-11-28 17:46 – 2020-11-28 17:46 – 000000000 ____D C:UsersMitchAppDataLocalChromaTune_MSI

2020-11-28 17:45 – 2020-11-30 23:58 – 000000000 ____D C:UsersMitchAppDataLocalNVIDIA Company

2020-11-28 17:45 – 2020-11-28 17:50 – 000000000 ____D C:UsersMitchAppDataLocalMicrosoftEdge

2020-11-28 17:45 – 2020-11-28 17:45 – 000003658 _____ C:Windowssystem32TasksOneDC_Updater

2020-11-28 17:45 – 2020-11-28 17:45 – 000000000 ____D C:UsersMitchDocumentstemp

2020-11-28 17:45 – 2020-11-28 17:45 – 000000000 ____D C:UsersMitchAppDataRoamingPortrait Shows

2020-11-28 17:44 – 2020-12-26 13:14 – 000000000 __SHD C:UsersMitchIntelGraphicsProfiles

2020-11-28 17:44 – 2020-12-20 11:55 – 000000000 ____D C:UsersMitchAppDataLocalCrashDumps

2020-11-28 17:44 – 2020-12-18 23:40 – 000000000 ____D C:UsersMitchAppDataLocalPackages

2020-11-28 17:44 – 2020-11-29 21:23 – 000000000 ___RD C:UsersMitch3D Objects

2020-11-28 17:44 – 2020-11-29 01:36 – 000003152 _____ C:Windowssystem32TasksNahimicSvc64Run

2020-11-28 17:44 – 2020-11-29 01:36 – 000003152 _____ C:Windowssystem32TasksNahimicSvc32Run

2020-11-28 17:44 – 2020-11-28 23:09 – 000000000 ____D C:UsersMitchAppDataLocalConnectedDevicesPlatform

2020-11-28 17:44 – 2020-11-28 17:45 – 000000000 ____D C:UsersMitchAppDataLocalIntel

2020-11-28 17:44 – 2020-11-28 17:44 – 000000000 ____D C:UsersMitchAppDataRoamingAdobe

2020-11-28 17:44 – 2020-11-28 17:44 – 000000000 ____D C:UsersMitchAppDataLocalLowIntel

2020-11-28 17:44 – 2020-11-28 17:44 – 000000000 ____D C:UsersMitchAppDataLocalVirtualStore

2020-11-28 17:44 – 2020-11-28 17:44 – 000000000 ____D C:UsersMitchAppDataLocalPublishers

2020-11-28 17:43 – 2020-12-26 12:07 – 000000000 ____D C:UsersMitch

2020-11-28 17:43 – 2020-12-10 23:07 – 000002370 _____ C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk

2020-11-28 17:43 – 2020-11-28 17:43 – 000000020 ___SH C:UsersMitchntuser.ini

2020-11-28 17:41 – 2020-11-29 12:34 – 000003480 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineUA

2020-11-28 17:41 – 2020-11-29 12:34 – 000003356 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineCore

2020-11-28 17:38 – 2020-12-13 17:23 – 000000000 ____D C:Windowsminidump

2020-11-28 17:38 – 2020-11-28 17:38 – 000000000 _SHDL C:Paperwork and Settings

2020-11-04 01:40 – 2020-11-04 01:40 – 000996568 _____ (A-Volute) C:Windowssystem32NhNotifSys.dll

2020-11-04 01:40 – 2020-11-04 01:40 – 000945072 _____ (Nahimic) C:Windowssystem32NAHIMICV3NSControl.dll

2020-11-04 01:40 – 2020-11-04 01:40 – 000925616 _____ (Nahimic) C:Windowssystem32NAHIMICV3NSControlExpert.dll

2020-11-04 01:40 – 2020-11-04 01:40 – 000543448 _____ (A-Volute) C:Windowssystem32NhNotifSys.exe

2020-10-26 09:28 – 2020-10-26 09:28 – 000190464 _____ (ESET) C:Windowssystem32Driversehdrv.sys

2020-10-26 09:28 – 2020-10-26 09:28 – 000160992 _____ (ESET) C:Windowssystem32Driverseamonm.sys

2020-10-26 09:28 – 2020-10-26 09:28 – 000109360 _____ (ESET) C:Windowssystem32Driversedevmon.sys

2020-10-26 09:28 – 2020-10-26 09:28 – 000107784 _____ (ESET) C:Windowssystem32Driversepfwwfp.sys

2020-10-26 09:28 – 2020-10-26 09:28 – 000070048 _____ (ESET) C:Windowssystem32Driversepfw.sys

2020-10-26 09:28 – 2020-10-26 09:28 – 000043720 _____ (ESET) C:Windowssystem32Driversekbdflt.sys

2020-10-22 14:09 – 2020-10-22 14:09 – 000015288 _____ (ESET) C:Windowssystem32Driverseelam.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 001341232 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklhk.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 000659768 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklgse.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 000300856 _____ (AO Kaspersky Lab) C:Windowssystem32Driverskneps.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 000250168 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklwtp.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 000153400 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklwfp.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 000113464 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklmouflt.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 000097080 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklpnpflt.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 000085288 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklpd.sys

2020-10-21 23:12 – 2020-10-21 23:12 – 000055592 _____ (The OpenVPN Mission) C:Windowssystem32Driverskltap.sys

2020-10-21 23:11 – 2020-10-21 23:11 – 000251608 _____ (AO Kaspersky Lab) C:Windowssystem32Driverscm_km.sys

2020-10-21 23:11 – 2020-10-21 23:11 – 000212280 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklbackupflt.sys

2020-10-21 23:11 – 2020-10-21 23:11 – 000127288 _____ (AO Kaspersky Lab) C:Windowssystem32Driverskldisk.sys

2020-10-21 23:11 – 2020-10-21 23:11 – 000113464 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklkbdflt.sys

2020-10-21 23:11 – 2020-10-21 23:11 – 000110392 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklbackupdisk.sys

2020-10-21 23:11 – 2020-10-21 23:11 – 000095544 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklim6.sys

2020-10-21 23:11 – 2020-10-21 23:11 – 000089400 ____N (AO Kaspersky Lab) C:Windowssystem32Driversklkbdflt2.sys

2020-10-21 23:11 – 2020-10-21 23:11 – 000037496 _____ (AO Kaspersky Lab) C:Windowssystem32Driversklelam.sys

2020-10-08 18:08 – 2020-10-08 18:08 – 001269312 _____ (Intel® Company) C:WindowsSysWOW64IntelOverclockingSDK.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000876096 _____ (Microsoft Company) C:WindowsSysWOW64msvcr110.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000795712 _____ C:WindowsSysWOW64IccSdk.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000669248 _____ (Intel® Company) C:WindowsSysWOW64HardwareAccess.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000535616 _____ (Microsoft Company) C:WindowsSysWOW64msvcp110.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000413760 _____ (Intel® Company) C:WindowsSysWOW64Common.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000389696 _____ (Intel® Company) C:WindowsSysWOW64XtuApplication.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000326208 _____ (Intel® Company) C:WindowsSysWOW64HardwareServices.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000155200 _____ (Intel® Company) C:WindowsSysWOW64IntelBenchmarkSDK.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000125504 _____ (Intel® Company) C:WindowsSysWOW64XtuCoreServer.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000081472 _____ (Intel® Company) C:WindowsSysWOW64XtuService.exe

2020-10-08 18:08 – 2020-10-08 18:08 – 000077888 _____ (Intel® Company) C:WindowsSysWOW64HardwareAccessInterfaces.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000076864 _____ (Intel® Company) C:WindowsSysWOW64ProfileHelperModel.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000074304 _____ (Intel® Company) C:WindowsSysWOW64PlatformDetection.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000073280 _____ (Intel® Company) C:WindowsSysWOW64XtuInterface.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000067648 _____ (Intel® Company) C:WindowsSysWOW64XtuApplicationInterfaces.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000043688 _____ (Intel Company) C:Windowssystem32Driversiocbios2.sys

2020-10-08 18:08 – 2020-10-08 18:08 – 000036928 _____ (Intel Company) C:WindowsSysWOW64PerfTuneAppMutex.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000033344 _____ (Intel® Company) C:WindowsSysWOW64HardwareServiceInterfaces.dll

2020-10-08 18:08 – 2020-10-08 18:08 – 000029760 _____ ( ) C:WindowsSysWOW64Interop.IccProxy.dll

2020-10-08 18:07 – 2020-10-08 18:07 – 000039704 _____ (Intel Company) C:Windowssystem32DriversICCWDT.sys

==================== Three months (modified) ==================

(If an entry is included within the fixlist, the file/folder will likely be moved.)

2020-12-26 23:25 – 2019-03-18 23:52 – 000000000 ___HD C:WindowsELAMBKUP

2020-12-26 23:25 – 2019-03-18 23:50 – 000000000 ____D C:WindowsINF

2020-12-26 23:25 – 2019-03-18 23:37 – 000032768 _____ C:Windowssystem32configELAM

2020-12-26 23:00 – 2019-03-18 23:52 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft

2020-12-26 19:35 – 2019-11-13 12:40 – 000000000 ____D C:Windowssystem32SleepStudy

2020-12-26 09:34 – 2019-11-13 12:46 – 000797848 _____ C:Windowssystem32PerfStringBackup.INI

2020-12-26 09:27 – 2019-11-13 12:41 – 000000006 ____H C:WindowsTasksSA.DAT

2020-12-26 00:22 – 2019-11-13 14:05 – 000000000 ____D C:Program FilesMicrosoft Workplace

2020-12-24 19:01 – 2019-03-18 23:52 – 000000000 ____D C:WindowsLiveKernelReports

2020-12-24 17:04 – 2020-02-23 22:37 – 000000000 ____D C:ProgramDataA-Volute

2020-12-23 13:54 – 2019-03-18 23:52 – 000000000 ____D C:WindowsAppReadiness

2020-12-21 17:59 – 2019-03-18 23:52 – 000000000 ___HD C:Program FilesWindowsApps

2020-12-19 17:00 – 2019-03-18 23:37 – 000786432 _____ C:Windowssystem32configBBI

2020-12-16 14:01 – 2020-02-23 22:30 – 000000000 ____D C:ProgramDataPackage Cache

2020-12-11 00:23 – 2019-03-18 23:52 – 000000000 ____D C:WindowsSystemResources

2020-12-11 00:23 – 2019-03-18 23:52 – 000000000 ____D C:WindowsShellExperiences

2020-12-11 00:23 – 2019-03-18 23:52 – 000000000 ____D C:Windowsbcastdvr

2020-12-10 23:30 – 2019-03-18 23:37 – 000000000 ____D C:WindowsCbsTemp

2020-12-10 00:48 – 2019-11-13 14:07 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace Instruments

2020-12-09 03:01 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32FxsTmp

2020-12-07 09:26 – 2019-11-13 12:40 – 000580312 _____ C:Windowssystem32FNTCACHE.DAT

2020-12-07 09:26 – 2019-03-19 01:19 – 000000000 ____D C:WindowsOCR

2020-12-04 00:31 – 2019-11-13 12:43 – 000000000 ____D C:ProgramDataPackages

2020-12-02 17:28 – 2019-03-19 01:20 – 000000000 ____D C:Program FilesWindows Photograph Viewer

2020-12-02 17:28 – 2019-03-19 01:20 – 000000000 ____D C:Program Information (x86)Home windows Photograph Viewer

2020-12-02 17:28 – 2019-03-19 01:18 – 000000000 ____D C:WindowsSysWOW64winrm

2020-12-02 17:28 – 2019-03-19 01:18 – 000000000 ____D C:WindowsSysWOW64WCN

2020-12-02 17:28 – 2019-03-19 01:18 – 000000000 ____D C:WindowsSysWOW64slmgr

2020-12-02 17:28 – 2019-03-19 01:18 – 000000000 ____D C:WindowsSysWOW64Printing_Admin_Scripts

2020-12-02 17:28 – 2019-03-19 01:18 – 000000000 ____D C:Windowssystem32winrm

2020-12-02 17:28 – 2019-03-19 01:18 – 000000000 ____D C:Windowssystem32WCN

2020-12-02 17:28 – 2019-03-19 01:18 – 000000000 ____D C:Windowssystem32slmgr

2020-12-02 17:28 – 2019-03-19 01:18 – 000000000 ____D C:Windowssystem32Printing_Admin_Scripts

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ___SD C:WindowsSysWOW64F12

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ___SD C:WindowsSysWOW64DiagSvcs

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ___SD C:Windowssystem32F12

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ___SD C:Windowssystem32dsc

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ___SD C:Windowssystem32DiagSvcs

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ___RD C:WindowsImmersiveControlPanel

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:WindowsSysWOW64oobe

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:WindowsSysWOW64Dism

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:WindowsSysWOW64Com

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32WinBioPlugIns

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32SystemResetPlatform

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32Sysprep

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32PerceptionSimulation

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32oobe

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32migwiz

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32Dism

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32Com

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:WindowsPolicyDefinitions

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:WindowsIME

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Program FilesWindows Defender

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Program FilesCommon FilesSystem

2020-12-02 17:28 – 2019-03-18 23:52 – 000000000 ____D C:Program Information (x86)Home windows Defender

2020-12-02 17:28 – 2019-03-18 23:37 – 000000000 ____D C:Windowsservicing

2020-12-01 19:45 – 2019-11-13 12:40 – 000000000 ____D C:WindowsPanther

2020-12-01 00:07 – 2020-02-23 22:34 – 000000000 ____D C:Program FilesNVIDIA Company

2020-11-30 23:06 – 2020-02-23 22:35 – 000000000 ____D C:ProgramDataNVIDIA Company

2020-11-30 23:03 – 2020-02-23 22:35 – 000000000 ____D C:Program Information (x86)NVIDIA Company

2020-11-30 13:33 – 2020-02-23 22:38 – 000000000 ____D C:ProgramDataIntel

2020-11-30 11:25 – 2019-03-18 23:52 – 000000000 ____D C:Windowsappcompat

2020-11-29 21:23 – 2020-02-23 22:58 – 000000000 ____D C:Windowssystem32DriversNGCx64

2020-11-29 21:23 – 2019-11-13 12:42 – 000000000 __RHD C:UsersPublicAccountPictures

2020-11-29 17:10 – 2020-02-23 22:32 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsIntel

2020-11-29 17:10 – 2020-02-23 22:32 – 000000000 ____D C:Program Information (x86)Intel

2020-11-29 17:10 – 2020-02-23 22:30 – 000000000 ____D C:Program FilesIntel

2020-11-29 17:10 – 2020-02-23 22:20 – 000000000 ____D C:Windowssystem32TasksIntel

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ___SD C:Windowssystem32UNP

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ___RD C:WindowsPrintDialog

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:WindowsTextInput

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:WindowsSysWOW64setup

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:WindowsSysWOW64AdvancedInstallers

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32WinMetadata

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32setup

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32es-MX

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32appraiser

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32AdvancedInstallers

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:WindowsProvisioning

2020-11-29 03:05 – 2019-03-18 23:52 – 000000000 ____D C:PerfLogs

2020-11-29 01:29 – 2019-11-13 12:44 – 002876928 _____ (Microsoft Company) C:WindowsSysWOW64PrintConfig.dll

2020-11-29 01:18 – 2019-03-18 23:52 – 000000000 ____D C:Program FilesCommon Filesmicrosoft shared

2020-11-28 23:05 – 2020-02-23 22:35 – 000049451 _____ C:ProgramDataNVDisplayContainerWatchdog.log_backup1

2020-11-28 23:05 – 2020-02-23 22:35 – 000017519 _____ C:ProgramDataNVDisplay.ContainerLocalSystem.log_backup1

2020-11-28 17:57 – 2020-02-23 22:57 – 000000000 ____D C:ProgramDataMSI

2020-11-28 17:48 – 2020-02-23 22:58 – 000000000 ____D C:ProgramDataNorton

2020-11-28 17:44 – 2020-02-23 22:35 – 000010900 _____ C:ProgramDataDisplaySessionContainer1.log_backup1

2020-11-28 17:39 – 2019-03-18 23:52 – 000000000 ____D C:Windowssystem32spool

2020-11-28 17:39 – 2019-03-18 23:52 – 000000000 ____D C:WindowsServiceState

2020-11-28 17:38 – 2020-09-23 22:51 – 000002852 _____ C:Windowssystem32TasksOneDrive Standalone Replace Job-S-1-5-21-414993718-2087581297-3140943001-500

2020-11-28 17:38 – 2020-02-23 22:56 – 000002276 _____ C:Windowssystem32TasksOmApSvcBroker

2020-11-28 17:38 – 2020-02-23 22:56 – 000002254 _____ C:Windowssystem32TasksMSILEDKeeper2_Host

2020-11-28 17:38 – 2020-02-23 22:56 – 000002148 _____ C:Windowssystem32TasksMSISW_Host

2020-11-28 17:38 – 2020-02-23 22:35 – 000001205 _____ C:ProgramDataNvcDispCorePlugin.log_backup1

==================== Information within the root of some directories ========

2020-12-02 11:17 – 2020-12-02 11:36 – 000007625 _____ () C:UsersMitchAppDataLocalResmon.ResmonCfg

==================== SigCheckExt =========================

2020-12-16 14:00 – 2016-11-01 11:27 – 000090112 _____ (Brother Industries, Ltd.) C:Windowssystem32BrNetSti.dll

2020-12-16 14:00 – 2013-07-03 11:46 – 000065024 _____ (Brother Industries,Ltd) C:Windowssystem32Brnsplg.dll

2020-12-16 14:00 – 2005-04-22 13:36 – 000143360 _____ C:Windowssystem32BrSNMP64.dll

2020-12-16 14:00 – 2013-03-08 15:45 – 000059904 _____ (Brother Industries,Ltd.) C:Windowssystem32BrWiaNCp.dll

2020-11-29 18:03 – 2020-11-29 18:03 – 000090624 _____ (Microsoft Company) C:Windowssystem32gamingtcuihelpers.dll

2020-12-16 14:00 – 2015-06-16 21:39 – 000252928 _____ (brother) C:Windowssystem32NSSRH64.dll

2012-09-28 14:45 – 2012-09-28 14:45 – 000246272 _____ C:Windowssystem32rtvcvfw64.dll

2009-12-18 14:54 – 2009-12-18 14:54 – 000003584 _____ (Home windows ® Win 7 DDK supplier) C:WindowsSysWOW64msiapcfg.dll

2009-07-09 18:54 – 2009-07-09 18:54 – 000160768 _____ (Micro-Star Worldwide Co., Ltd.) C:WindowsSysWOW64MSIService.exe

2011-04-15 20:26 – 2011-04-15 20:26 – 001598464 _____ (Micro-Star Worldwide Co., Ltd.) C:WindowsSysWOW64MSIWmiAcpi.dll

2012-09-28 14:45 – 2012-09-28 14:45 – 000247296 _____ C:WindowsSysWOW64rtvcvfw32.dll

2020-12-10 23:47 – 2020-12-26 23:17 – 002286592 _____ (Farbar) C:UsersMitchDownloadsFRST64.exe

==================== SigCheck ============================

(There isn’t a computerized repair for information that don’t move verification.)

==================== BCD ================================

Firmware Boot Supervisor

———————

identifier {fwbootmgr}

displayorder {bootmgr}

timeout 2

Home windows Boot Supervisor

——————–

identifier {bootmgr}

machine partition=DeviceHarddiskVolume3

path EFIMICROSOFTBOOTBOOTMGFW.EFI

description Home windows Boot Supervisor

locale en-US

inherit {globalsettings}

default {present}

resumeobject {9b253b56-56ae-11ea-84c1-843de72bd121}

displayorder {present}

toolsdisplayorder {memdiag}

timeout 30

Home windows Boot Loader

——————-

identifier {8229025e-fe19-11ea-9ff8-2cf05d6a9a73}

machine ramdisk=[DeviceHarddiskVolume6]RecoveryWindowsREWinre.wim,{8229025f-fe19-11ea-9ff8-2cf05d6a9a73}

path windowssystem32winload.efi

description Home windows Restoration Setting

locale en-us

inherit {bootloadersettings}

displaymessage Restoration

osdevice ramdisk=[DeviceHarddiskVolume6]RecoveryWindowsREWinre.wim,{8229025f-fe19-11ea-9ff8-2cf05d6a9a73}

systemroot home windows

nx OptIn

bootmenupolicy Customary

winpe Sure

Home windows Boot Loader

——————-

identifier {present}

machine partition=C:

path Windowssystem32winload.efi

description Home windows 10

locale en-US

inherit {bootloadersettings}

recoverysequence {8229025e-fe19-11ea-9ff8-2cf05d6a9a73}

displaymessageoverride Restoration

recoveryenabled Sure

isolatedcontext Sure

allowedinmemorysettings 0x15000075

osdevice partition=C:

systemroot Home windows

resumeobject {9b253b56-56ae-11ea-84c1-843de72bd121}

nx OptIn

bootmenupolicy Customary

Resume from Hibernate

———————

identifier {9b253b56-56ae-11ea-84c1-843de72bd121}

machine partition=C:

path Windowssystem32winresume.efi

description Home windows Resume Utility

locale en-US

inherit {resumeloadersettings}

recoverysequence {8229025e-fe19-11ea-9ff8-2cf05d6a9a73}

recoveryenabled Sure

isolatedcontext Sure

allowedinmemorysettings 0x15000075

filedevice partition=C:

filepath hiberfil.sys

bootmenupolicy Customary

debugoptionenabled No

Home windows Reminiscence Tester

———————

identifier {memdiag}

machine partition=DeviceHarddiskVolume3

path EFIMicrosoftBootmemtest.efi

description Home windows Reminiscence Diagnostic

locale en-US

inherit {globalsettings}

badmemoryaccess Sure

EMS Settings

————

identifier {emssettings}

bootems No

Debugger Settings

—————–

identifier {dbgsettings}

debugtype Native

RAM Defects

———–

identifier {badmemory}

World Settings

—————

identifier {globalsettings}

inherit {dbgsettings}

{emssettings}

{badmemory}

integrityservices Allow

Boot Loader Settings

——————–

identifier {bootloadersettings}

inherit {globalsettings}

{hypervisorsettings}

Hypervisor Settings

——————-

identifier {hypervisorsettings}

hypervisordebugtype Serial

hypervisordebugport 1

hypervisorbaudrate 115200

Resume Loader Settings

———————-

identifier {resumeloadersettings}

inherit {globalsettings}

System choices

————–

identifier {8229025f-fe19-11ea-9ff8-2cf05d6a9a73}

description Home windows Restoration

ramdisksdidevice partition=DeviceHarddiskVolume6

ramdisksdipath RecoveryWindowsREboot.sdi

==================== Finish of FRST.txt ========================

Shortcuts.txt

Customers shortcut scan end result (x64) Model: 14-12-2020

Ran by Mitch (26-12-2020 23:28:42)

Working from C:UsersMitchDownloads

Boot Mode: Regular

==================== Shortcuts =============================

(The entries could possibly be listed to be restored or eliminated.)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccess.lnk -> C:Program FilesMicrosoft OfficerootOffice16MSACCESS.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsExcel.lnk -> C:Program FilesMicrosoft OfficerootOffice16EXCEL.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk -> C:Program FilesGoogleChromeApplicationchrome.exe (Google LLC)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsImmersive Management Panel.lnk -> C:WindowsSystem32control.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk -> C:Program FilesMalwarebytesAnti-Malwarembam.exe (Malwarebytes)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk -> C:Program Information (x86)MicrosoftEdgeApplicationmsedge.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMSI App Participant.lnk -> C:ProgramDataBlueStacks_msi2ClientBluestacks.exe (BlueStack Techniques, Inc.)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsOneDrive for Enterprise.lnk -> C:Program FilesMicrosoft OfficerootOffice16GROOVE.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsOneNote.lnk -> C:Program FilesMicrosoft OfficerootOffice16ONENOTE.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsOutlook.lnk -> C:Program FilesMicrosoft OfficerootOffice16OUTLOOK.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsPowerPoint.lnk -> C:Program FilesMicrosoft OfficerootOffice16POWERPNT.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsPublisher.lnk -> C:Program FilesMicrosoft OfficerootOffice16MSPUB.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsSkype for Enterprise.lnk -> C:Program FilesMicrosoft OfficerootOffice16lync.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsWord.lnk -> C:Program FilesMicrosoft OfficerootOffice16WINWORD.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsOriginOrigin error reporter.lnk -> C:Program Information (x86)OriginOriginER.exe (Digital Arts)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsOriginOrigin.lnk -> C:Program Information (x86)OriginOrigin.exe (Digital Arts)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsOriginUninstall Origin.lnk -> C:Program Information (x86)OriginOriginUninstall.exe (Digital Arts)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsNVIDIA CorporationGeForce Expertise.lnk -> C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Expertise.exe (NVIDIA Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMSI True ColorMSI True Coloration.lnk -> C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColor.exe (Portrait Shows, Inc.)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace ToolsOffice Language Preferences.lnk -> C:Program FilesMicrosoft OfficerootOffice16SETLANG.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace ToolsOffice Add Middle.lnk -> C:Program FilesMicrosoft OfficerootOffice16MSOUC.EXE (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace ToolsSkype for Enterprise Recording Supervisor.lnk -> C:Program FilesMicrosoft OfficerootOffice16OcPubMgr.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace ToolsTelemetry Dashboard for Workplace.lnk -> C:Program FilesMicrosoft OfficerootOffice16msotd.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace ToolsTelemetry Log for Workplace.lnk -> C:Program FilesMicrosoft OfficerootOffice16msoev.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPNEnd Person License Settlement.lnk -> C:Program Information (x86)Kaspersky LabKaspersky VPN 5.2DocKSDEen-US-xnotgdprconsumer_traditional_licensing_eula.txt ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPNKaspersky VPN.lnk -> C:Program Information (x86)Kaspersky LabKaspersky VPN 5.2ksdeui.exe (AO Kaspersky Lab)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPNMy Kaspersky.lnk -> C:Program Information (x86)Kaspersky LabKaspersky VPN 5.2kl.url ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Safety CloudKaspersky Safety Cloud.lnk -> C:Program Information (x86)Kaspersky LabKaspersky Safety Cloud 21.2avpui.exe (AO Kaspersky Lab)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Safety CloudVisit Kaspersky on the Net.lnk -> C:Program Information (x86)Kaspersky LabKaspersky Safety Cloud 21.2kl.url ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsIntelIntel® Excessive Tuning Utility.lnk -> C:WindowsInstaller{E353FE8F-BA43-4817-9106-3C6C144BC70C}PerfTuneIcon.B089625E_E454_492E_B2F2_7E934E4807F0.exe (Intel® Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsIntelIntel® Fast Storage Know-how.lnk -> C:Program FilesIntelIntel® Fast Storage TechnologyIAStorUI.exe (Intel Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsCall of Responsibility Trendy WarfareCall of Responsibility Trendy Warfare.lnk -> C:Program Information (x86)Name of Responsibility Trendy WarfareModern Warfare Launcher.exe (Blizzard Leisure)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsCall of Responsibility Black Ops Chilly WarCall of Responsibility Black Ops Chilly Warfare.lnk -> C:Program Information (x86)Name of Responsibility Black Ops Chilly WarBlack Ops Chilly Warfare Launcher.exe (Blizzard Leisure)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsBrotherBrother iPrint&Scan.lnk -> C:Program Information (x86)BrotheriPrint&ScanBrother iPrint&Scan.exe (Brother Industries, Ltd.)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsBrotherBrother Utilities.lnk -> C:Program Information (x86)BrotherBrLauncherBrLauncher.exe (Brother Industries, Ltd.)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsBattlefield 3Battlefield 3.lnk -> C:Program Information (x86)Origin GamesBattlefield 3bf3.exe (EA Digital Illusions CE AB)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsBattlefield 3EA EULA.lnk -> C:Program Information (x86)Origin GamesBattlefield 3Supporteulaen_US_eula.rtf ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsBattlefield 3Read Me.lnk -> C:Program Information (x86)Origin GamesBattlefield 3Supportreadmereadme.txt ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsBattlefield 3Technical Help.lnk -> C:Program Information (x86)Origin GamesBattlefield 3SupportEA HelpElectronic_Arts_Technical_Support.htm ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsBattle.netBattle.web.lnk -> C:Program Information (x86)Battle.netBattle.web Launcher.exe (Blizzard Leisure)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsComponent Providers.lnk -> C:WindowsSystem32comexp.msc ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative Toolsdfrgui.lnk -> C:WindowsSystem32dfrgui.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsDisk Cleanup.lnk -> C:WindowsSystem32cleanmgr.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsiSCSI Initiator.lnk -> C:WindowsSystem32iscsicpl.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsMemory Diagnostics Instrument.lnk -> C:WindowsSystem32MdSched.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsODBC Knowledge Sources (32-bit).lnk -> C:WindowsSysWOW64odbcad32.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsODBC Knowledge Sources (64-bit).lnk -> C:WindowsSystem32odbcad32.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsRecoveryDrive.lnk -> C:WindowsSystem32RecoveryDrive.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsRegistry Editor.lnk -> C:Windowsregedit.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative Toolsservices.lnk -> C:WindowsSystem32services.msc ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsSystem Configuration.lnk -> C:WindowsSystem32msconfig.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsSystem Data.lnk -> C:WindowsSystem32msinfo32.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsWindows Defender Firewall with Superior Safety.lnk -> C:WindowsSystem32WF.msc ()

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesMath Enter Panel.lnk -> C:Program FilesCommon FilesMicrosoft Sharedinkmip.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesPaint.lnk -> C:WindowsSystem32mspaint.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesQuick Help.lnk -> C:WindowsSystem32quickassist.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesRemote Desktop Connection.lnk -> C:WindowsSystem32mstsc.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesSnipping Instrument.lnk -> C:WindowsSystem32SnippingTool.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesSteps Recorder.lnk -> C:WindowsSystem32psr.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesWindows Fax and Scan.lnk -> C:WindowsSystem32WFS.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesWordpad.lnk -> C:Program FilesWindows NTAccessorieswordpad.exe (Microsoft Company)

Shortcut: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesSystem ToolsCharacter Map.lnk -> C:WindowsSystem32charmap.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk -> C:UsersMitchAppDataLocalMicrosoftOneDriveOneDrive.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell (x86).lnk -> C:WindowsSysWOW64WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell ISE (x86).lnk -> C:WindowsSysWOW64WindowsPowerShellv1.0PowerShell_ISE.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell ISE.lnk -> C:WindowsSystem32WindowsPowerShellv1.0PowerShell_ISE.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsCommand Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem Toolscomputer.lnk -> C:Windowsexplorer.exe,-30

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsControl Panel.lnk -> C:WindowsSystem32imageres.dll (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsFile Explorer.lnk -> C:Windowsexplorer.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsRun.lnk -> C:WindowsSystem32shell32.dll (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessoriesNotepad.lnk -> C:WindowsSystem32notepad.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityMagnify.lnk -> C:WindowsSystem32Magnify.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityNarrator.lnk -> C:WindowsSystem32Narrator.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityOn-Display screen Keyboard.lnk -> C:WindowsSystem32osk.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftInternet ExplorerQuick LaunchShows Desktop.lnk -> C:WindowsSystem32imageres.dll (Microsoft Company)

Shortcut: C:UsersDefaultAppDataRoamingMicrosoftInternet ExplorerQuick LaunchWindow Switcher.lnk -> C:Windowsexplorer.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup31 – Command Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup31a – Home windows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup32 – Command Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup32a – Home windows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup33 – Pc Administration.lnk -> C:WindowsSystem32compmgmt.msc ()

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup34 – Disk Administration.lnk -> C:WindowsSystem32diskmgmt.msc ()

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup37 – Occasion Viewer.lnk -> C:WindowsSystem32eventvwr.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup39 – Mobility Middle.lnk -> C:WindowsSystem32mblctr.exe (Microsoft Company)

Shortcut: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup24 – Management Panel.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk -> C:UsersMitchAppDataLocalMicrosoftOneDriveOneDrive.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell (x86).lnk -> C:WindowsSysWOW64WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell ISE (x86).lnk -> C:WindowsSysWOW64WindowsPowerShellv1.0PowerShell_ISE.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell ISE.lnk -> C:WindowsSystem32WindowsPowerShellv1.0PowerShell_ISE.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsCommand Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem Toolscomputer.lnk -> C:Windowsexplorer.exe,-30

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsControl Panel.lnk -> C:WindowsSystem32imageres.dll (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsFile Explorer.lnk -> C:Windowsexplorer.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsRun.lnk -> C:WindowsSystem32shell32.dll (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessoriesNotepad.lnk -> C:WindowsSystem32notepad.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityMagnify.lnk -> C:WindowsSystem32Magnify.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityNarrator.lnk -> C:WindowsSystem32Narrator.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityOn-Display screen Keyboard.lnk -> C:WindowsSystem32osk.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftInternet ExplorerQuick LaunchShows Desktop.lnk -> C:WindowsSystem32imageres.dll (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataRoamingMicrosoftInternet ExplorerQuick LaunchWindow Switcher.lnk -> C:Windowsexplorer.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup31 – Command Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup31a – Home windows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup32 – Command Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup32a – Home windows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup33 – Pc Administration.lnk -> C:WindowsSystem32compmgmt.msc ()

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup34 – Disk Administration.lnk -> C:WindowsSystem32diskmgmt.msc ()

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup37 – Occasion Viewer.lnk -> C:WindowsSystem32eventvwr.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup39 – Mobility Middle.lnk -> C:WindowsSystem32mblctr.exe (Microsoft Company)

Shortcut: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup24 – Management Panel.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company)

Shortcut: C:UsersMitchLinksDesktop.lnk -> C:UsersMitchDesktop ()

Shortcut: C:UsersMitchLinksDownloads.lnk -> C:UsersMitchDownloads ()

Shortcut: C:UsersMitchDesktopMSI Afterburner.lnk -> C:Program Information (x86)MSI AfterburnerMSIAfterburner.exe ()

Shortcut: C:UsersMitchDesktopVU Consumer.lnk -> C:UsersMitchAppDataLocalVeniceUnleashedclientvu.exe (Venice Unleashed)

Shortcut: C:UsersMitchDesktopZoom.lnk -> C:UsersMitchAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc.)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk -> C:UsersMitchAppDataLocalMicrosoftOneDriveOneDrive.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsZoomZoom.lnk -> C:UsersMitchAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc.)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell (x86).lnk -> C:WindowsSysWOW64WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell ISE (x86).lnk -> C:WindowsSysWOW64WindowsPowerShellv1.0PowerShell_ISE.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell ISE.lnk -> C:WindowsSystem32WindowsPowerShellv1.0PowerShell_ISE.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsWindows PowerShellWindows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsVenice UnleashedVU Consumer.lnk -> C:UsersMitchAppDataLocalVeniceUnleashedclientvu.exe (Venice Unleashed)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsCommand Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem Toolscomputer.lnk -> C:Windowsexplorer.exe,-30

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsControl Panel.lnk -> C:WindowsSystem32imageres.dll (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsFile Explorer.lnk -> C:Windowsexplorer.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsRun.lnk -> C:WindowsSystem32shell32.dll (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsRivaTuner Statistics ServerReadMe.lnk -> C:Program Information (x86)RivaTuner Statistics ServerDocReadMe.pdf ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsRivaTuner Statistics ServerRivaTuner Statistics Server.lnk -> C:Program Information (x86)RivaTuner Statistics ServerRTSS.exe ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsRivaTuner Statistics ServerUninstall.lnk -> C:Program Information (x86)RivaTuner Statistics ServerUninstall.exe ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsRivaTuner Statistics ServerSDKRivaTuner Statistics Server localization reference.lnk -> C:Program Information (x86)RivaTuner Statistics ServerSDKDocLocalization reference.pdf ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsRivaTuner Statistics ServerSDKRivaTuner Statistics Server pores and skin format reference.lnk -> C:Program Information (x86)RivaTuner Statistics ServerSDKDocUSF pores and skin format reference.pdf ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsRivaTuner Statistics ServerSDKSamples.lnk -> C:Program Information (x86)RivaTuner Statistics ServerSDKSamples ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI AfterburnerMSI Afterburner.lnk -> C:Program Information (x86)MSI AfterburnerMSIAfterburner.exe ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI AfterburnerReadMe.lnk -> C:Program Information (x86)MSI AfterburnerDocReadMe.pdf ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI AfterburnerUninstall.lnk -> C:Program Information (x86)MSI AfterburnerUninstall.exe ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI AfterburnerSDKMSI Afterburner localization reference.lnk -> C:Program Information (x86)MSI AfterburnerSDKDocLocalization reference.pdf ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI AfterburnerSDKMSI Afterburner pores and skin format reference.lnk -> C:Program Information (x86)MSI AfterburnerSDKDocUSF pores and skin format reference.pdf ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMSI AfterburnerSDKSamples.lnk -> C:Program Information (x86)MSI AfterburnerSDKSamples ()

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessoriesInternet Explorer.lnk -> C:Program FilesInternet Exploreriexplore.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessoriesNotepad.lnk -> C:WindowsSystem32notepad.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityMagnify.lnk -> C:WindowsSystem32Magnify.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityNarrator.lnk -> C:WindowsSystem32Narrator.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsAccessibilityOn-Display screen Keyboard.lnk -> C:WindowsSystem32osk.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftWindowsSendToBluetooth File Switch.LNK -> C:WindowsSystem32fsquirt.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftInternet ExplorerQuick LaunchGoogle Chrome.lnk -> C:Program FilesGoogleChromeApplicationchrome.exe (Google LLC)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftInternet ExplorerQuick LaunchMicrosoft Edge.lnk -> C:Program Information (x86)MicrosoftEdgeApplicationmsedge.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftInternet ExplorerQuick LaunchShows Desktop.lnk -> C:WindowsSystem32imageres.dll (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftInternet ExplorerQuick LaunchWindow Switcher.lnk -> C:Windowsexplorer.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftInternet ExplorerQuick LaunchUser PinnedTaskBarFile Explorer.lnk -> C:Windowsexplorer.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataRoamingMicrosoftInternet ExplorerQuick LaunchUser PinnedImplicitAppShortcuts7111c0ce965b7246Battle.web.lnk -> C:Program Information (x86)Battle.netBattle.web.exe (Blizzard Leisure)

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup31 – Command Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup31a – Home windows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup32 – Command Immediate.lnk -> C:WindowsSystem32cmd.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup32a – Home windows PowerShell.lnk -> C:WindowsSystem32WindowsPowerShellv1.0powershell.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup33 – Pc Administration.lnk -> C:WindowsSystem32compmgmt.msc ()

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup34 – Disk Administration.lnk -> C:WindowsSystem32diskmgmt.msc ()

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup37 – Occasion Viewer.lnk -> C:WindowsSystem32eventvwr.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup39 – Mobility Middle.lnk -> C:WindowsSystem32mblctr.exe (Microsoft Company)

Shortcut: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup24 – Management Panel.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company)

Shortcut: C:UsersPublicDesktopBattle.web.lnk -> C:Program Information (x86)Battle.netBattle.web Launcher.exe (Blizzard Leisure)

Shortcut: C:UsersPublicDesktopBattlefield 3.lnk -> C:Program Information (x86)Origin GamesBattlefield 3bf3.exe (EA Digital Illusions CE AB)

Shortcut: C:UsersPublicDesktopBrother Artistic Middle.lnk -> C:Program Information (x86)BrotherCreativeCenterBrother Artistic Middle.url ()

Shortcut: C:UsersPublicDesktopBrother iPrint&Scan.lnk -> C:Program Information (x86)BrotheriPrint&ScanBrother iPrint&Scan.exe (Brother Industries, Ltd.)

Shortcut: C:UsersPublicDesktopBrother Utilities.lnk -> C:Program Information (x86)BrotherBrLauncherBrLauncher.exe (Brother Industries, Ltd.)

Shortcut: C:UsersPublicDesktopCall of Responsibility Black Ops Chilly Warfare.lnk -> C:Program Information (x86)Name of Responsibility Black Ops Chilly WarBlack Ops Chilly Warfare Launcher.exe (Blizzard Leisure)

Shortcut: C:UsersPublicDesktopCall of Responsibility Trendy Warfare.lnk -> C:Program Information (x86)Name of Responsibility Trendy WarfareModern Warfare Launcher.exe (Blizzard Leisure)

Shortcut: C:UsersPublicDesktopGeForce Expertise.lnk -> C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Expertise.exe (NVIDIA Company)

Shortcut: C:UsersPublicDesktopGoogle Chrome.lnk -> C:Program FilesGoogleChromeApplicationchrome.exe (Google LLC)

Shortcut: C:UsersPublicDesktopIntel® Excessive Tuning Utility.lnk -> C:WindowsInstaller{E353FE8F-BA43-4817-9106-3C6C144BC70C}PerfTuneIcon.B089625E_E454_492E_B2F2_7E934E4807F0.exe (Intel® Company)

Shortcut: C:UsersPublicDesktopKaspersky Safety Cloud.lnk -> C:Program Information (x86)Kaspersky LabKaspersky Safety Cloud 21.2avpui.exe (AO Kaspersky Lab)

Shortcut: C:UsersPublicDesktopKaspersky VPN.lnk -> C:Program Information (x86)Kaspersky LabKaspersky VPN 5.2ksdeui.exe (AO Kaspersky Lab)

Shortcut: C:UsersPublicDesktopMalwarebytes.lnk -> C:Program FilesMalwarebytesAnti-Malwarembam.exe (Malwarebytes)

Shortcut: C:UsersPublicDesktopMicrosoft Edge.lnk -> C:Program Information (x86)MicrosoftEdgeApplicationmsedge.exe (Microsoft Company)

Shortcut: C:UsersPublicDesktopOrigin.lnk -> C:Program Information (x86)OriginOrigin.exe (Digital Arts)

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsSystem ToolsTask Supervisor.lnk -> C:WindowsSystem32Taskmgr.exe (Microsoft Company) -> /7

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsSteelSeriesSteelSeries Engine 3SteelSeries Engine 3.lnk -> C:Program FilesSteelSeriesSteelSeries Engine 3SteelSeriesEngine3.exe (SteelSeries ApS) -> -dataPath=”C:ProgramDataSteelSeriesSteelSeries Engine 3″ -dbEnv=manufacturing

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsStartUpSteelSeries Engine 3.lnk -> C:Program FilesSteelSeriesSteelSeries Engine 3SteelSeriesEngine3.exe (SteelSeries ApS) -> -dataPath=”C:ProgramDataSteelSeriesSteelSeries Engine 3″ -dbEnv=manufacturing -auto=true

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsNorton SecurityNorton Safety.lnk -> C:Program FilesNorton SecurityEngine22.20.5.39uiStub.exe (NortonLifeLock Inc.) -> /win8

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace ToolsDatabase Examine.lnk -> C:Program FilesMicrosoft OfficerootClientAppVLP.exe (Microsoft Company) -> “C:Program Information (x86)Microsoft OfficeOffice16DCFDATABASECOMPARE.EXE”

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Workplace ToolsSpreadsheet Examine.lnk -> C:Program FilesMicrosoft OfficerootClientAppVLP.exe (Microsoft Company) -> “C:Program Information (x86)Microsoft OfficeOffice16DCFSPREADSHEETCOMPARE.EXE”

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky VPNRemove Kaspersky VPN.lnk -> C:WindowsSysWOW64msiexec.exe (Microsoft Company) -> /i{221FA56C-0A92-4E58-98FD-CAF82237540C} REMOVE=ALL

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Safety CloudRemove Kaspersky Safety Cloud.lnk -> C:WindowsSysWOW64msiexec.exe (Microsoft Company) -> /i{63129F5E-8EC5-41BA-A4CF-47966CE84953} REMOVE=ALL

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsESETESET SecurityESET Banking & Cost safety.lnk -> C:Program FilesESETESET Securityecmd.exe (ESET) -> /startprotectedbrowser

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsESETESET SecurityESET Safety.lnk -> C:Program FilesESETESET Securityecmds.exe (ESET) -> /launch

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsESETESET SecurityESET SysInspector .lnk -> C:Program FilesESETESET SecuritySysInspector.exe (ESET) -> /clean

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsComputer Administration.lnk -> C:WindowsSystem32compmgmt.msc () -> /s

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsEvent Viewer.lnk -> C:WindowsSystem32eventvwr.msc () -> /s

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsPerformance Monitor.lnk -> C:WindowsSystem32perfmon.msc () -> /s

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsResource Monitor.lnk -> C:WindowsSystem32perfmon.exe (Microsoft Company) -> /res

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsAdministrative ToolsTask Scheduler.lnk -> C:WindowsSystem32taskschd.msc () -> /s

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessoriesWindows Media Participant.lnk -> C:Program Information (x86)Home windows Media Playerwmplayer.exe (Microsoft Company) -> /prefetch:1

ShortcutWithArgument: C:ProgramDataMicrosoftWindowsStart MenuProgramsAccessibilitySpeech Recognition.lnk -> C:WindowsSpeechCommonsapisvr.exe (Microsoft Company) -> -SpeechUX

ShortcutWithArgument: C:UsersDefaultAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsAdministrative Instruments.lnk -> C:WindowsSystem32control.exe (Microsoft Company) -> /identify Microsoft.AdministrativeTools

ShortcutWithArgument: C:UsersDefaultAppDataRoamingMicrosoftWindowsSendToFax Recipient.lnk -> C:WindowsSystem32WFS.exe (Microsoft Company) -> /SendTo

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup34-1 – NetworkStatus.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageNetworkStatus

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup35 – System Supervisor.lnk -> C:WindowsSystem32control.exe (Microsoft Company) -> /identify Microsoft.DeviceManager

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup36 – SystemAbout.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPagePCSystemInfo

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup38 – PowerAndSleep.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageScreenPowerAndSleep

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup310 – AppsAndFeatures.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageAppsSizes

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup21 – Run.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup22 – Search.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup23 – Home windows Explorer.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup25 – Job Supervisor.lnk -> C:WindowsSystem32Taskmgr.exe (Microsoft Company) -> /0

ShortcutWithArgument: C:UsersDefaultAppDataLocalMicrosoftWindowsWinXGroup11 – Desktop.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}

ShortcutWithArgument: C:UsersDefault UserAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsAdministrative Instruments.lnk -> C:WindowsSystem32control.exe (Microsoft Company) -> /identify Microsoft.AdministrativeTools

ShortcutWithArgument: C:UsersDefault UserAppDataRoamingMicrosoftWindowsSendToFax Recipient.lnk -> C:WindowsSystem32WFS.exe (Microsoft Company) -> /SendTo

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup34-1 – NetworkStatus.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageNetworkStatus

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup35 – System Supervisor.lnk -> C:WindowsSystem32control.exe (Microsoft Company) -> /identify Microsoft.DeviceManager

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup36 – SystemAbout.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPagePCSystemInfo

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup38 – PowerAndSleep.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageScreenPowerAndSleep

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup310 – AppsAndFeatures.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageAppsSizes

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup21 – Run.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup22 – Search.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup23 – Home windows Explorer.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup25 – Job Supervisor.lnk -> C:WindowsSystem32Taskmgr.exe (Microsoft Company) -> /0

ShortcutWithArgument: C:UsersDefault UserAppDataLocalMicrosoftWindowsWinXGroup11 – Desktop.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}

ShortcutWithArgument: C:UsersMitchDesktopMicrosoft Groups.lnk -> C:UsersMitchAppDataLocalMicrosoftTeamsUpdate.exe (Microsoft Company) -> –processStart “Groups.exe”

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsMicrosoft Groups.lnk -> C:UsersMitchAppDataLocalMicrosoftTeamsUpdate.exe (Microsoft Company) -> –processStart “Groups.exe”

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsNahimic Companion.lnk -> C:UsersMitchAppDataLocalNhNotifSysnahimicnahimicNotifSys.exe (A-Volute) -> /app nahimic /dialog

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsZoomUninstall Zoom.lnk -> C:UsersMitchAppDataRoamingZoomuninstallInstaller.exe (Zoom Video Communications, Inc.) -> /uninstall

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsVenice UnleashedVU Server (120Hz).lnk -> C:UsersMitchAppDataLocalVeniceUnleashedclientvu.exe (Venice Unleashed) -> -server -dedicated -high120

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsVenice UnleashedVU Server (30Hz).lnk -> C:UsersMitchAppDataLocalVeniceUnleashedclientvu.exe (Venice Unleashed) -> -server -dedicated

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsVenice UnleashedVU Server (60Hz).lnk -> C:UsersMitchAppDataLocalVeniceUnleashedclientvu.exe (Venice Unleashed) -> -server -dedicated -high60

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftWindowsStart MenuProgramsSystem ToolsAdministrative Instruments.lnk -> C:WindowsSystem32control.exe (Microsoft Company) -> /identify Microsoft.AdministrativeTools

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftWindowsSendToFax Recipient.lnk -> C:WindowsSystem32WFS.exe (Microsoft Company) -> /SendTo

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftInternet ExplorerQuick LaunchUser PinnedTaskBarMicrosoft Edge.lnk -> C:Program Information (x86)MicrosoftEdgeApplicationmsedge.exe (Microsoft Company) -> –profile-directory=Default

ShortcutWithArgument: C:UsersMitchAppDataRoamingMicrosoftExcelTechnicalpercent20GPApercent20Calculationpercent20Spreadsheet308568381483433432Technicalpercent20GPApercent20Calculationpercent20Spreadsheet.xls.lnk -> C:UsersMitchDownloadsTechnical GPA Calculation Spreadsheet.xls () -> 55

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup34-1 – NetworkStatus.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageNetworkStatus

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup35 – System Supervisor.lnk -> C:WindowsSystem32control.exe (Microsoft Company) -> /identify Microsoft.DeviceManager

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup36 – SystemAbout.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPagePCSystemInfo

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup38 – PowerAndSleep.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageScreenPowerAndSleep

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup310 – AppsAndFeatures.lnk -> C:WindowsImmersiveControlPanelsystemsettings.exe (Microsoft Company) -> web page=SettingsPageAppsSizes

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup21 – Run.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup22 – Search.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup23 – Home windows Explorer.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup25 – Job Supervisor.lnk -> C:WindowsSystem32Taskmgr.exe (Microsoft Company) -> /0

ShortcutWithArgument: C:UsersMitchAppDataLocalMicrosoftWindowsWinXGroup11 – Desktop.lnk -> C:Windowsexplorer.exe (Microsoft Company) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}

ShortcutWithArgument: C:UsersPublicDesktopESET Banking & Cost safety.lnk -> C:Program FilesESETESET Securityecmd.exe (ESET) -> /startprotectedbrowser

InternetURL: C:UsersMitchFavoritesBing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142

==================== Finish of Shortcut.txt =============================

Source link