Jump to content

Build Theme!
  •  
  • Unreplied Topics
  • Downloads
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93101 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Malware or Incompatibility Issue? Bootup slow, some programs don't

Started by Zhora , Jul 18 2022 01:08 PM

  • This topic is locked This topic is locked
11 replies to this topic

#1 Zhora

Zhora

    Authentic Member

  • Authentic Member
  • PipPip
  • 96 posts

Posted 18 July 2022 - 01:08 PM

Hi guys!

 

Running Win 10, most current update (was told by M$ my machine won't work with 11), with Nord VPN, Avast Free Antivirus, Malwarebytes (not on all the time), Zemana (also not on all the time; you guys asked me about these two last time), Spybot (not on all the time).  I'm forgetting what other data you need to know about.  Slow boot, and sometimes startup programs don't load or run on the first boot requiring me to reboot, particularly NordVPN.  This has been increasing over the months.

 

FRST:

(just so you know, there was no Drivers MD5, so I just unclicked Drivers.  It was also a fresh download.)

 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\grpm-mini.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\monitoring-mini.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\adp-agent.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\updater.exe
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe
(C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igfxCUIService.exe ->) (Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igfxEM.exe
(explorer.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <20>
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <3>
(explorer.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (Stardust Software) [File not signed] C:\Windows\FSScrCtl.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\aakore.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igfxCUIService.exe
(services.exe ->) (Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\IntelCpHDCPSvc.exe
(services.exe ->) (Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\IntelCpHeciSvc.exe
(services.exe ->) (Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel® Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
(services.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
 
==================== Registry (Whitelisted) ===================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [644000 2021-05-14] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [213760 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [362056 2022-05-05] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5204968 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5553440 2021-08-10] (Acronis International GmbH -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [446392 2021-05-14] (Acronis International GmbH -> Acronis International GmbH)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATINPE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Run: [Amazon Music Helper] => C:\Users\Me!\AppData\Local\Amazon Music\Amazon Music Helper.exe [2385336 2019-06-26] (Amazon Services LLC -> Amazon Services LLC)
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [280952 2021-06-09] (nordvpn s.a. -> TEFINCOM S.A.)
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Mozilla Firefox\firefox.exe -os-restarted -url hxxps://adlice.com/download/roguekiller/?utm_campaign=roguekiller&utm_source=soft&utm_medium=btn (No File)
HKLM\...\Print\Monitors\EPSON XP-520 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBNPE.DLL [179712 2013-12-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\...\Print\Monitors\stkMonitor: C:\WINDOWS\system32\stkMonitor.dll [104624 2021-08-25] (Amazon Services LLC -> Amazon.com, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.114\Installer\chrmstp.exe [2022-07-06] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2018-02-18]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Screen Saver Control.lnk [2018-03-01]
ShortcutTarget: Screen Saver Control.lnk -> C:\Windows\FSScrCtl.exe (Stardust Software) [File not signed]
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
 
==================== Scheduled Tasks (Whitelisted) ============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {00F47AC1-CAEA-4A23-A80A-52658D7AFBD6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (No File)
Task: {054E6640-54A5-4385-B992-3825434835FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (No File)
Task: {05BE0D5C-93CE-49AB-A0AC-5270C346EF62} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-08-01] (Adobe Inc. -> Adobe)
Task: {070A49DE-BA40-4D5F-B3A1-92C06B37D8ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f (No File)
Task: {1BCC53CF-FE23-46A5-B81C-5FCE6B3BDF23} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Me!\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {20FC08CC-FC69-481C-B12F-D985BA76175D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2022-06-21] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {22E2FCF5-EC2B-49C0-8149-6E7D8E53C038} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-18] (Google Inc -> Google Inc.)
Task: {2A174617-838F-4709-A544-39579BEB258F} - System32\Tasks\CCleanerSkipUAC - Me! => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2AA27007-233A-4796-AD3F-7B9571B74A68} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3778126099-3402256936-1862990622-1001 => C:\Users\Me!\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {334BCC27-D591-4C50-A414-03A68FD16628} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {3B9A3480-B731-45C9-861E-CA8BFC260B5A} - System32\Tasks\{27863660-B96B-4021-B897-0CE42A072E2B} => c:\program files\waterfox\waterfox.exe [488696 2021-07-02] (Waterfox Limited -> Waterfox)
Task: {758EF586-C490-4F9C-A5F6-82F8B82C51F5} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {7D7B2EC4-9E9D-4744-838C-4EF98B85C523} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [658808 2020-07-29] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {81EEED48-D192-403C-B82E-3EEF3A3A9D32} - System32\Tasks\EPSON XP-520 Series Update {69B71E50-2CD1-4A36-94E1-BF9AD88D05B8} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNPE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {90EDD28D-B4D7-4C8B-B455-3D561C264564} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-18] (Google Inc -> Google Inc.)
Task: {91DAEC48-8797-4257-B796-D4761C144A69} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459680 2017-05-12] (HP Inc. -> )
Task: {A7FBBC79-2BB5-489F-A164-03EA5501D57D} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2021-08-01] (Adobe Inc. -> Adobe)
Task: {AC6BD8E5-6284-4913-93D4-3E2A48F97A8F} - System32\Tasks\EPSON XP-520 Series Update {612575A9-F8C3-44F6-AC79-49723821AB44} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNPE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {B0719742-3FB5-4C54-A7A1-12730A336BA6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {B0EBCEB1-42CA-4C14-A47C-CBE6E86D1F25} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {B921F5BA-F3A6-42EF-BAA8-BA5C034F4162} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {BD5018BD-40C2-4F31-BF82-0727239ECCF0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {C1B89686-5E91-412B-A7D5-449687ED9650} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269352 2019-06-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {DE9294FE-8961-4265-A36B-580FA3D483DC} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4938496 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
Task: {FAD11FDD-ED71-4544-8CBF-F94927052CDF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (No File)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\EPSON XP-520 Series Update {612575A9-F8C3-44F6-AC79-49723821AB44}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNPE.EXE:/EXE:{612575A9-F8C3-44F6-AC79-49723821AB44} /F:UpdateWORKGROUP\VEEECTOR$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-520 Series Update {69B71E50-2CD1-4A36-94E1-BF9AD88D05B8}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNPE.EXE:/EXE:{69B71E50-2CD1-4A36-94E1-BF9AD88D05B8} /F:UpdateWORKGROUP\VEEECTOR$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{96261aef-7f26-4ba9-8265-2890925fc27a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b3a33dce-e272-417f-a7ed-aedd9a34a38e}: [DhcpNameServer] 192.168.0.1
 
Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Me!\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-18]
Edge HomePage: Default -> hxxps://www.twinspires.com/
Edge StartupUrls: Default -> "hxxps://www.twinspires.com/","hxxps://www.truenicks.com/","hxxps://myracehorse.com/","chrome-extension://bbcinlkgjjkejfdpemiealijmmooekmp/vault.html","hxxps://www.bellinghamherald.com/"
Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> duckduckgo.com
Edge DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
Edge Extension: (LastPass: Free Password Manager) - C:\Users\Me!\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2022-07-12]
Edge Extension: (DuckDuckGo) - C:\Users\Me!\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caoacbimdbbljakfhgikoodekdnlcgpk [2022-06-28]
Edge Extension: (Acorns Earn) - C:\Users\Me!\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\facncfnojagdpibmijfjdmhkklabakgd [2022-04-08]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\Me!\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-06-08]
Edge Extension: (uBlock Origin) - C:\Users\Me!\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2022-07-15]
 
FireFox:
========
FF DefaultProfile: a7pntyse.default
FF DefaultProfile: lwl3wtl5.default
FF DefaultProfile: pmab3smd.default
FF ProfilePath: C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default [2022-07-04]
FF Homepage: Waterfox\Profiles\a7pntyse.default -> hxxp://forecast.weather.gov/MapClick.php?lat=48.759545508000485&lon=-122.48821576799969&site=all&smap=1#.WoodwX5S1PZ
FF Extension: (Google Data Compression Proxy for Firefox) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\@datacompressorforfirefox.xpi [2018-04-28] [Legacy]
FF Extension: (Classic Add-ons Archive) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\ca-archive@Off.JustOff.xpi [2019-03-05] [Legacy] [not signed]
FF Extension: (FireSSH) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\firessh@nightlight.ws [2018-02-18] [Legacy]
FF Extension: (Privacy Badger) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-07-02]
FF Extension: (PlayFlash 64bit) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\playflash64@xpi [2018-07-18] [Legacy]
FF Extension: (LastPass: Free Password Manager) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\support@lastpass.com.xpi [2021-07-02]
FF Extension: (uBlock Origin) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\uBlock0@raymondhill.net.xpi [2020-10-04]
FF Extension: (Adobe Shockwave Flash Player) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\{42baa93e-0cff-4289-b79e-6ae88df668c4}.xpi [2018-03-04]
FF Extension: (Make America Kittens Again) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\{47c21db3-b82d-485d-b06d-dd70de414242}.xpi [2018-07-07]
FF Extension: (Skype Web Messenger) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\{a0a8c450-9654-45ca-ac12-bd7653809f03}.xpi [2018-05-11]
FF Extension: (FireFTP) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2018-02-18] [Legacy]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Me!\AppData\Roaming\Waterfox\Profiles\a7pntyse.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2021-07-02]
FF ProfilePath: C:\Users\Me!\AppData\Roaming\Mozilla\SeaMonkey\Profiles\lwl3wtl5.default [2022-07-16]
FF Extension: (FireFTP) - C:\Users\Me!\AppData\Roaming\Mozilla\SeaMonkey\Profiles\lwl3wtl5.default\Extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2020-12-17] [Legacy]
FF ProfilePath: C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\pmab3smd.default [2021-06-20]
FF Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\pmab3smd.default\Extensions\sp@avast.com.xpi [2019-02-13]
FF Extension: (Avast Online Security) - C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\pmab3smd.default\Extensions\wrc@avast.com.xpi [2018-06-22]
FF ProfilePath: C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\e5t0tgdt.default-release [2022-07-18]
FF Homepage: Mozilla\Firefox\Profiles\e5t0tgdt.default-release -> hxxps://forecast.weather.gov/MapClick.php?lat=48.759545508000485&lon=-122.48821576799969&site=all&smap=1#.VO7IwOElNAI|hxxps://www.dailyhoroscope.com/horoscopes/daily/pisces?full=true
FF NetworkProxy: Mozilla\Firefox\Profiles\e5t0tgdt.default-release -> type", 0
FF Extension: (Privacy Badger) - C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\e5t0tgdt.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-11-29]
FF Extension: (LastPass: Free Password Manager) - C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\e5t0tgdt.default-release\Extensions\support@lastpass.com.xpi [2022-07-11]
FF Extension: (uBlock Origin) - C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\e5t0tgdt.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-06-15]
FF Extension: (uMatrix) - C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\e5t0tgdt.default-release\Extensions\uMatrix@raymondhill.net.xpi [2021-07-20]
FF Extension: (Avast Online Security & Privacy) - C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\e5t0tgdt.default-release\Extensions\wrc@avast.com.xpi [2022-06-07]
FF Extension: (NoScript) - C:\Users\Me!\AppData\Roaming\Mozilla\Firefox\Profiles\e5t0tgdt.default-release\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2022-05-30]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2021-08-01] (Adobe Inc. -> )
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2021-08-01] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-07-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
 
Chrome: 
=======
CHR Profile: C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default [2022-07-16]
CHR Extension: (Slides) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-18]
CHR Extension: (Docs) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-18]
CHR Extension: (Google Drive) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-08-13]
CHR Extension: (AdGuard AdBlocker) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2020-08-16]
CHR Extension: (YouTube) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-18]
CHR Extension: (Adobe Acrobat) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-09-17]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-07-04]
CHR Extension: (Acorns Found Money) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\facncfnojagdpibmijfjdmhkklabakgd [2020-04-09]
CHR Extension: (Sheets) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-18]
CHR Extension: (Google Docs Offline) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-15]
CHR Extension: (Avast Online Security) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-03]
CHR Extension: (Skype) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-04-28]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\Me!\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-27]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
 
==================== Services (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aakore; C:\Program Files (x86)\Acronis\Agent\aakore.exe [9022120 2021-05-14] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [12905888 2021-05-14] (Acronis International GmbH -> )
R2 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1421352 2021-05-14] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1052280 2021-05-14] (Acronis International GmbH -> Acronis International GmbH)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-08-01] (Adobe Inc. -> Adobe)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6391536 2022-01-06] (Acronis International GmbH -> )
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [100424 2022-05-02] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8486968 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [590080 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2009344 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [589056 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-28] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-06-14] (Piriform Software Ltd -> )
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-15] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [756216 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [755192 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-05-23] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [753184 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [755192 2022-01-20] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8677120 2022-07-02] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4878840 2021-05-14] (Acronis International GmbH -> Acronis International GmbH)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [310136 2021-06-06] (nordvpn s.a. -> TEFINCOM S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2021-06-07] (nordvpn s.a. -> TEFINCOM S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [281464 2021-06-09] (nordvpn s.a. -> TEFINCOM S.A.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2782080 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4605312 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5910328 2021-05-14] (Acronis International GmbH -> Acronis International GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.4-0\NisSrv.exe [3304992 2020-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.4-0\MsMpEng.exe [103168 2020-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
 
===================== Drivers (All) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 1394ohci; C:\WINDOWS\System32\drivers\1394ohci.sys [266240 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 3ware; C:\WINDOWS\System32\drivers\3ware.sys [107320 2019-12-07] (Microsoft Windows -> LSI)
R0 ACPI; C:\WINDOWS\System32\drivers\ACPI.sys [810344 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
S3 AcpiDev; C:\WINDOWS\System32\drivers\AcpiDev.sys [23040 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 acpiex; C:\WINDOWS\System32\Drivers\acpiex.sys [139792 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 acpipagr; C:\WINDOWS\System32\drivers\acpipagr.sys [14336 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 AcpiPmi; C:\WINDOWS\System32\drivers\acpipmi.sys [18432 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 acpitime; C:\WINDOWS\System32\drivers\acpitime.sys [16384 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 Acx01000; C:\WINDOWS\System32\drivers\Acx01000.sys [694272 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S0 ADP80XX; C:\WINDOWS\System32\drivers\ADP80XX.SYS [1135416 2019-12-07] (Microsoft Windows -> PMC-Sierra)
R1 AFD; C:\WINDOWS\system32\drivers\afd.sys [651104 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
R1 afunix; C:\WINDOWS\system32\drivers\afunix.sys [48128 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [34304 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R1 ahcache; C:\WINDOWS\System32\DRIVERS\ahcache.sys [292352 2021-04-15] (Microsoft Windows -> Microsoft Corporation)
S3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [18432 2019-12-07] (Microsoft Windows -> Advanced Micro Devices, Inc)
S3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [45568 2019-12-07] (Microsoft Windows -> Advanced Micro Devices, Inc)
S3 AmdK8; C:\WINDOWS\System32\drivers\amdk8.sys [213848 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
S3 AmdPPM; C:\WINDOWS\System32\drivers\amdppm.sys [216904 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
S0 amdsata; C:\WINDOWS\System32\drivers\amdsata.sys [83256 2019-12-07] (Microsoft Windows -> Advanced Micro Devices)
S0 amdsbs; C:\WINDOWS\System32\drivers\amdsbs.sys [259384 2019-12-07] (Microsoft Windows -> AMD Technologies Inc.)
S0 amdxata; C:\WINDOWS\System32\drivers\amdxata.sys [26936 2019-12-07] (Microsoft Windows -> Advanced Micro Devices)
R1 amsdk; C:\WINDOWS\system32\drivers\amsdk.sys [232792 2020-10-05] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
S3 AppID; C:\WINDOWS\System32\drivers\appid.sys [210784 2022-07-14] (Microsoft Windows -> Microsoft Windows)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 applockerfltr; C:\WINDOWS\System32\drivers\applockerfltr.sys [18432 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S0 arcsas; C:\WINDOWS\System32\drivers\arcsas.sys [131896 2019-12-07] (Microsoft Windows -> PMC-Sierra, Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [41832 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [235584 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [385560 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258072 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [104976 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25048 2022-06-27] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [47976 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274536 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553928 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [113984 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [89056 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [860416 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [668208 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221528 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324864 2022-07-12] (Avast Software s.r.o. -> AVAST Software)
S3 AsyncMac; C:\WINDOWS\System32\drivers\asyncmac.sys [31232 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 atapi; C:\WINDOWS\System32\drivers\atapi.sys [30032 2021-10-15] (Microsoft Windows -> Microsoft Corporation)
S0 b06bdrv; C:\WINDOWS\System32\drivers\bxvbda.sys [533816 2019-12-07] (Microsoft Windows -> QLogic Corporation)
R1 bam; C:\WINDOWS\System32\drivers\bam.sys [78136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 BasicDisplay; C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_65ab9a260dbf7467\BasicDisplay.sys [68608 2021-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 BasicRender; C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_df49c4daa6251397\BasicRender.sys [38912 2021-03-25] (Microsoft Windows -> Microsoft Corporation)
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [41272 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [9728 2019-12-07] (Microsoft Windows -> Windows ® Win 7 DDK provider)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-05-14] (Bitdefender SRL -> Bitdefender)
R1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 bindflt; C:\WINDOWS\system32\drivers\bindflt.sys [145768 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
R3 bowser; C:\WINDOWS\System32\DRIVERS\bowser.sys [117760 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287232 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
R3 BthEnum; C:\WINDOWS\System32\drivers\BthEnum.sys [113664 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
R3 BthHFAud; C:\WINDOWS\System32\drivers\BthHfAud.sys [65536 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 BthLEEnum; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [106496 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
S3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [45568 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 BthPan; C:\WINDOWS\System32\drivers\bthpan.sys [133632 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 BTHPORT; C:\WINDOWS\System32\drivers\BTHport.sys [1555968 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
R3 BTHUSB; C:\WINDOWS\System32\drivers\BTHUSB.sys [110592 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S0 bttflt; C:\WINDOWS\System32\drivers\bttflt.sys [43832 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 buttonconverter; C:\WINDOWS\System32\drivers\buttonconverter.sys [44032 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [66576 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S4 cdfs; C:\WINDOWS\System32\DRIVERS\cdfs.sys [100864 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 cdrom; C:\WINDOWS\System32\drivers\cdrom.sys [175616 2021-10-15] (Microsoft Windows -> Microsoft Corporation)
S0 cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [319800 2019-12-07] (Microsoft Windows -> Chelsio Communications)
S3 cht4vbd; C:\WINDOWS\System32\drivers\cht4vx64.sys [1853752 2019-12-07] (Microsoft Windows -> Chelsio Communications)
R1 CimFS; C:\Windows\System32\Drivers\CimFS.sys [93696 2022-04-27] (Microsoft Windows -> )
S3 circlass; C:\WINDOWS\System32\drivers\circlass.sys [52224 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [496128 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R0 CLFS; C:\WINDOWS\System32\drivers\CLFS.sys [415056 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 CmBatt; C:\WINDOWS\System32\drivers\CmBatt.sys [36864 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 CNG; C:\WINDOWS\System32\Drivers\cng.sys [746416 2021-12-15] (Microsoft Windows -> Microsoft Corporation)
S4 cnghwassist; C:\WINDOWS\System32\DRIVERS\cnghwassist.sys [40968 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 CompositeBus; C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_7500cffa210c6946\CompositeBus.sys [41984 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 condrv; C:\WINDOWS\System32\drivers\condrv.sys [57144 2021-07-14] (Microsoft Windows -> Microsoft Corporation)
S1 dam; C:\WINDOWS\System32\drivers\dam.sys [97096 2021-06-11] (Microsoft Windows -> Microsoft Corporation)
R1 Dfsc; C:\WINDOWS\System32\Drivers\dfsc.sys [152064 2021-03-12] (Microsoft Windows -> Microsoft Corporation)
R0 disk; C:\WINDOWS\System32\drivers\disk.sys [98624 2021-02-11] (Microsoft Windows -> Microsoft Corporation)
S3 dmvsc; C:\WINDOWS\System32\drivers\dmvsc.sys [59192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 drmkaud; C:\WINDOWS\System32\drivers\drmkaud.sys [16128 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
R1 DXGKrnl; C:\WINDOWS\System32\drivers\dxgkrnl.sys [3814744 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3418936 2019-12-07] (Microsoft Windows -> QLogic Corporation)
S0 EhStorClass; C:\WINDOWS\System32\drivers\EhStorClass.sys [95032 2021-05-13] (Microsoft Windows -> Microsoft Corporation)
S0 EhStorTcgDrv; C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys [124728 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 ErrDev; C:\WINDOWS\System32\drivers\errdev.sys [15872 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [418648 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [426320 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 fdc; C:\WINDOWS\System32\drivers\fdc.sys [34816 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 FileCrypt; C:\WINDOWS\System32\drivers\filecrypt.sys [59392 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 FileInfo; C:\WINDOWS\System32\drivers\fileinfo.sys [94736 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 Filetrace; C:\WINDOWS\System32\drivers\filetrace.sys [40448 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [721536 2022-01-06] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2022-01-06] (Acronis International GmbH -> Acronis International GmbH)
S3 flpydisk; C:\WINDOWS\System32\drivers\flpydisk.sys [28672 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 FltMgr; C:\WINDOWS\System32\drivers\fltmgr.sys [429928 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2021-07-02] (Acronis International GmbH -> Acronis International GmbH)
S3 FsDepends; C:\WINDOWS\System32\drivers\FsDepends.sys [69968 2021-04-15] (Microsoft Windows -> Microsoft Corporation)
U0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [33592 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 fvevol; C:\WINDOWS\System32\DRIVERS\fvevol.sys [803664 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 gencounter; C:\WINDOWS\System32\drivers\vmgencounter.sys [23864 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 genericusbfn; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [23040 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 GPIOClx0101; C:\WINDOWS\System32\Drivers\msgpioclx.sys [183112 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
R1 GpuEnergyDrv; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [8704 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 HdAudAddService; C:\WINDOWS\System32\drivers\HdAudio.sys [430080 2020-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 HDAudBus; C:\WINDOWS\System32\drivers\HDAudBus.sys [134656 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 HidBatt; C:\WINDOWS\System32\drivers\HidBatt.sys [39440 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 HidBth; C:\WINDOWS\System32\drivers\hidbth.sys [120320 2020-08-11] (Microsoft Windows -> Microsoft Corporation)
S3 hidi2c; C:\WINDOWS\System32\drivers\hidi2c.sys [57344 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 hidinterrupt; C:\WINDOWS\System32\drivers\hidinterrupt.sys [55824 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 HidIr; C:\WINDOWS\System32\drivers\hidir.sys [48640 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 hidkmdf; C:\WINDOWS\System32\drivers\hidkmdf.sys [14016 2015-11-30] (Wacom Technology Corp. -> Windows ® Win 7 DDK provider)
S3 hidspi; C:\WINDOWS\System32\drivers\hidspi.sys [66560 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 HidUsb; C:\WINDOWS\System32\drivers\hidusb.sys [44032 2021-03-25] (Microsoft Windows -> Microsoft Corporation)
S0 HpSAMD; C:\WINDOWS\System32\drivers\HpSAMD.sys [64312 2019-12-07] (Microsoft Windows -> Hewlett-Packard Company)
R3 HTTP; C:\WINDOWS\System32\drivers\HTTP.sys [1577808 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
S4 hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [35128 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 hvservice; C:\WINDOWS\System32\drivers\hvservice.sys [96088 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 HwNClx0101; C:\WINDOWS\System32\Drivers\mshwnclx.sys [30208 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 hwpolicy; C:\WINDOWS\System32\drivers\hwpolicy.sys [33096 2020-08-11] (Microsoft Windows -> Microsoft Corporation)
S3 hyperkbd; C:\WINDOWS\System32\drivers\hyperkbd.sys [27448 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 HyperVideo; C:\WINDOWS\System32\drivers\HyperVideo.sys [41784 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 i8042prt; C:\WINDOWS\System32\drivers\i8042prt.sys [118272 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 iagpio; C:\WINDOWS\System32\drivers\iagpio.sys [36352 2019-12-07] (Microsoft Windows -> Intel® Corporation)
S3 iai2c; C:\WINDOWS\System32\drivers\iai2c.sys [91136 2019-12-07] (Microsoft Windows -> Intel® Corporation)
S3 iaLPSS2i_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [93184 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_GPIO2_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_I2C; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [175104 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2019-12-07] (Microsoft Windows -> Intel Corporation)
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [98760 2018-10-25] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys [190920 2018-10-25] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 iaLPSS2_UART2; C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys [314312 2018-10-25] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 iaLPSSi_GPIO; C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128 2019-12-07] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iaLPSSi_I2C; C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [905736 2017-08-25] (Intel® Rapid Storage Technology -> Intel Corporation)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [1096192 2019-08-14] (Intel® Rapid Storage Technology -> Intel Corporation)
S0 iaStorAVC; C:\WINDOWS\System32\drivers\iaStorAVC.sys [884752 2019-12-07] (Microsoft Windows -> Intel Corporation)
S0 iaStorV; C:\WINDOWS\System32\drivers\iaStorV.sys [412176 2019-12-07] (Microsoft Windows -> Intel Corporation)
S3 ibbus; C:\WINDOWS\System32\drivers\ibbus.sys [558904 2019-12-07] (Microsoft Windows -> Mellanox)
R3 ibtusb; C:\WINDOWS\System32\DriverStore\FileRepository\ibtusb.inf_amd64_4d9e3f3539995c76\ibtusb.sys [230176 2020-07-10] (Intel® Wireless Connectivity Solutions -> Intel Corporation)
R3 ICCWDT; C:\WINDOWS\System32\drivers\ICCWDT.sys [41144 2021-02-10] (Intel Corporation -> Intel Corporation)
R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igdkmd64.sys [25814888 2020-03-10] (Intel® pGFX 2020 -> Intel Corporation)
S3 IndirectKmd; C:\WINDOWS\System32\drivers\IndirectKmd.sys [47104 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTKVHD64.sys [6486608 2019-06-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 IntcDAud; C:\WINDOWS\System32\DriverStore\FileRepository\intcdaud.inf_amd64_72e851c1f2fd9f5d\IntcDAud.sys [351104 2020-11-30] (Intel® pGFX 2020 -> Intel® Corporation)
S0 intelide; C:\WINDOWS\System32\drivers\intelide.sys [19792 2021-10-15] (Microsoft Windows -> Microsoft Corporation)
R0 intelpep; C:\WINDOWS\System32\drivers\intelpep.sys [418800 2021-10-15] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 intelpmax; C:\WINDOWS\System32\drivers\intelpmax.sys [30720 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 intelppm; C:\WINDOWS\System32\drivers\intelppm.sys [236360 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
R0 iorate; C:\WINDOWS\System32\drivers\iorate.sys [57168 2021-06-11] (Microsoft Windows -> Microsoft Corporation)
S3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [95232 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
S3 IPMIDRV; C:\WINDOWS\System32\drivers\IPMIDrv.sys [117584 2021-06-11] (Microsoft Windows -> Microsoft Corporation)
S3 IPNAT; C:\WINDOWS\System32\drivers\ipnat.sys [230400 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 IPT; C:\WINDOWS\System32\drivers\ipt.sys [59704 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 isapnp; C:\WINDOWS\System32\drivers\isapnp.sys [22864 2021-09-08] (Microsoft Windows -> Microsoft Corporation)
S3 iScsiPrt; C:\WINDOWS\System32\drivers\msiscsi.sys [293176 2021-08-13] (Microsoft Windows -> Microsoft Corporation)
S0 ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [172344 2019-12-07] (Microsoft Windows -> Avago Technologies)
R3 kbdclass; C:\WINDOWS\System32\drivers\kbdclass.sys [71480 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 kbdhid; C:\WINDOWS\System32\drivers\kbdhid.sys [46592 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 kdnic; C:\WINDOWS\System32\drivers\kdnic.sys [33296 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 KSecDD; C:\WINDOWS\System32\Drivers\ksecdd.sys [148312 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R0 KSecPkg; C:\WINDOWS\System32\Drivers\ksecpkg.sys [181072 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R3 ksthunk; C:\WINDOWS\system32\drivers\ksthunk.sys [29696 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 lltdio; C:\WINDOWS\System32\drivers\lltdio.sys [72704 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 LSI_SAS; C:\WINDOWS\System32\drivers\lsi_sas.sys [108856 2019-12-07] (Microsoft Windows -> LSI Corporation)
S0 LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [124216 2019-12-07] (Microsoft Windows -> LSI Corporation)
S0 LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [135992 2019-12-07] (Microsoft Windows -> Avago Technologies)
S0 LSI_SSS; C:\WINDOWS\System32\drivers\lsi_sss.sys [82744 2019-12-07] (Microsoft Windows -> LSI Corporation)
R2 luafv; C:\WINDOWS\system32\drivers\luafv.sys [140800 2021-03-12] (Microsoft Windows -> Microsoft Corporation)
S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [537608 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [64016 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MbbCx; C:\WINDOWS\System32\drivers\MbbCx.sys [386048 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
S0 megasas; C:\WINDOWS\System32\drivers\megasas.sys [59704 2019-12-07] (Microsoft Windows -> Avago Technologies)
S0 megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [81720 2019-12-07] (Microsoft Windows -> Avago Technologies)
S0 megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [105480 2019-12-07] (Microsoft Windows -> Avago Technologies)
S0 megasr; C:\WINDOWS\System32\drivers\megasr.sys [575800 2019-12-07] (Microsoft Windows -> LSI Corporation, Inc.)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_e9ffe3f2557dd9e9\x64\TeeDriverW10x64.sys [300040 2020-10-12] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 Microsoft_Bluetooth_AvrcpTransport; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [65024 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 mlx4_bus; C:\WINDOWS\System32\drivers\mlx4_bus.sys [1131320 2019-12-07] (Microsoft Windows -> Mellanox)
R2 MMCSS; C:\WINDOWS\system32\drivers\mmcss.sys [53248 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
S3 Modem; C:\WINDOWS\System32\drivers\modem.sys [47104 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
R3 monitor; C:\WINDOWS\System32\drivers\monitor.sys [83968 2021-08-13] (Microsoft Windows -> Microsoft Corporation)
R3 mouclass; C:\WINDOWS\System32\drivers\mouclass.sys [67600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 mouhid; C:\WINDOWS\System32\drivers\mouhid.sys [35328 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 mountmgr; C:\WINDOWS\System32\drivers\mountmgr.sys [110392 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 mpsdrv; C:\WINDOWS\System32\drivers\mpsdrv.sys [80896 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 MRxDAV; C:\WINDOWS\system32\drivers\mrxdav.sys [165888 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R3 mrxsmb; C:\WINDOWS\System32\DRIVERS\mrxsmb.sys [586576 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R3 mrxsmb20; C:\WINDOWS\System32\DRIVERS\mrxsmb20.sys [269152 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 MsBridge; C:\WINDOWS\System32\drivers\bridge.sys [127488 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [44048 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 msgpiowin32; C:\WINDOWS\System32\drivers\msgpiowin32.sys [56120 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 mshidkmdf; C:\WINDOWS\System32\drivers\mshidkmdf.sys [8192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 mshidumdf; C:\WINDOWS\System32\drivers\mshidumdf.sys [12288 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 msisadrv; C:\WINDOWS\System32\drivers\msisadrv.sys [20280 2021-09-08] (Microsoft Windows -> Microsoft Corporation)
S3 MSKSSRV; C:\WINDOWS\System32\drivers\MSKSSRV.sys [34816 2020-11-11] (Microsoft Windows -> Microsoft Corporation)
R2 MsLldp; C:\WINDOWS\System32\drivers\mslldp.sys [78848 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 MSPCLOCK; C:\WINDOWS\System32\drivers\MSPCLOCK.sys [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 MSPQM; C:\WINDOWS\System32\drivers\MSPQM.sys [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 MsQuic; C:\WINDOWS\System32\drivers\msquic.sys [322376 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [376688 2022-05-14] (Microsoft Windows -> Microsoft Corporation)
R1 mssmbios; C:\WINDOWS\System32\drivers\mssmbios.sys [47928 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 MSTEE; C:\WINDOWS\System32\drivers\MSTEE.sys [12288 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 MTConfig; C:\WINDOWS\System32\drivers\MTConfig.sys [17920 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 Mup; C:\WINDOWS\System32\Drivers\mup.sys [132920 2021-03-12] (Microsoft Windows -> Microsoft Corporation)
S0 mvumis; C:\WINDOWS\System32\drivers\mvumis.sys [63800 2019-12-07] (Microsoft Windows -> Marvell Semiconductor, Inc.)
R3 NativeWifiP; C:\WINDOWS\System32\DRIVERS\nwifi.sys [757760 2021-12-15] (Microsoft Windows -> Microsoft Corporation)
S3 ndfltr; C:\WINDOWS\System32\drivers\ndfltr.sys [146232 2019-12-07] (Microsoft Windows -> Mellanox)
R0 NDIS; C:\WINDOWS\System32\drivers\ndis.sys [1476944 2021-12-15] (Microsoft Windows -> Microsoft Corporation)
R1 NdisCap; C:\WINDOWS\System32\drivers\ndiscap.sys [54272 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 NdisImPlatform; C:\WINDOWS\System32\drivers\NdisImPlatform.sys [135168 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R3 NdisTapi; C:\WINDOWS\System32\DRIVERS\ndistapi.sys [28672 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R3 Ndisuio; C:\WINDOWS\System32\drivers\ndisuio.sys [70656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 NdisVirtualBus; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [23040 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 NdisWan; C:\WINDOWS\System32\drivers\ndiswan.sys [208384 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 ndiswanlegacy; C:\WINDOWS\System32\DRIVERS\ndiswan.sys [208384 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
R2 NDivert; C:\Program Files\NordVPN\6.48.10.0\Drivers\NDivert.sys [131456 2022-04-05] (nordvpn s.a. -> Nordvpn S.A.)
S3 NDKPing; C:\WINDOWS\System32\drivers\NDKPing.sys [72720 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 ndproxy; C:\WINDOWS\System32\DRIVERS\NDProxy.sys [93696 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R2 Ndu; C:\WINDOWS\System32\drivers\Ndu.sys [131584 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [210944 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
R1 NetBIOS; C:\WINDOWS\System32\drivers\netbios.sys [64312 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [341504 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
S3 netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [252264 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [8651616 2020-07-08] (Intel Wireless Driver -> Intel Corporation)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-05-14] (Acronis International GmbH -> Acronis International GmbH)
S3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2021-04-25] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
R1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [87368 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
R1 npsvctrig; C:\WINDOWS\System32\drivers\npsvctrig.sys [27648 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 nsiproxy; C:\WINDOWS\System32\drivers\nsiproxy.sys [48640 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [2848080 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R1 Null; C:\Windows\System32\Drivers\Null.sys [7680 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 nvdimm; C:\WINDOWS\System32\drivers\nvdimm.sys [168464 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 nvraid; C:\WINDOWS\System32\drivers\nvraid.sys [150328 2019-12-07] (Microsoft Windows -> NVIDIA Corporation)
S0 nvstor; C:\WINDOWS\System32\drivers\nvstor.sys [166200 2019-12-07] (Microsoft Windows -> NVIDIA Corporation)
S3 Parport; C:\WINDOWS\System32\drivers\parport.sys [109056 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 partmgr; C:\WINDOWS\System32\drivers\partmgr.sys [183640 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R0 pci; C:\WINDOWS\System32\drivers\pci.sys [478048 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
S0 pciide; C:\WINDOWS\System32\drivers\pciide.sys [16712 2021-10-15] (Microsoft Windows -> Microsoft Corporation)
S0 pcmcia; C:\WINDOWS\System32\drivers\pcmcia.sys [127800 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 pcw; C:\WINDOWS\System32\drivers\pcw.sys [60232 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R0 pdc; C:\WINDOWS\System32\drivers\pdc.sys [159056 2021-06-11] (Microsoft Windows -> Microsoft Corporation)
R2 PEAUTH; C:\WINDOWS\System32\drivers\peauth.sys [825344 2022-05-14] (Microsoft Windows -> Microsoft Corporation)
S0 percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [58680 2019-12-07] (Microsoft Windows -> Avago Technologies)
S0 percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [68408 2019-12-07] (Microsoft Windows -> Avago Technologies)
S3 PktMon; C:\WINDOWS\System32\drivers\PktMon.sys [131424 2022-05-14] (Microsoft Windows -> Microsoft Corporation)
S0 pmem; C:\WINDOWS\System32\drivers\pmem.sys [142184 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 pmxdrv; C:\WINDOWS\system32\drivers\pmxdrv.sys [31152 2018-06-25] (PAIPTAC  Driver -> )
S3 PNPMEM; C:\WINDOWS\System32\drivers\pnpmem.sys [17408 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [27136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 PptpMiniport; C:\WINDOWS\System32\drivers\raspptp.sys [102400 2022-05-14] (Microsoft Windows -> Microsoft Corporation)
S3 Processor; C:\WINDOWS\System32\drivers\processr.sys [222040 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
R1 Psched; C:\WINDOWS\System32\drivers\pacer.sys [161608 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
S3 QWAVEdrv; C:\WINDOWS\system32\drivers\qwavedrv.sys [53248 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 Ramdisk; C:\WINDOWS\System32\DRIVERS\ramdisk.sys [42296 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [20480 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R3 RasAgileVpn; C:\WINDOWS\System32\drivers\AgileVpn.sys [114176 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
R3 Rasl2tp; C:\WINDOWS\System32\drivers\rasl2tp.sys [110080 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R3 RasPppoe; C:\WINDOWS\System32\DRIVERS\raspppoe.sys [87552 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 RasSstp; C:\WINDOWS\System32\drivers\rassstp.sys [86016 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
R1 rdbss; C:\WINDOWS\System32\DRIVERS\rdbss.sys [457568 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R3 rdpbus; C:\WINDOWS\System32\drivers\rdpbus.sys [28672 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 RDPDR; C:\WINDOWS\System32\drivers\rdpdr.sys [169984 2021-04-04] (Microsoft Windows -> Microsoft Corporation)
S3 RdpVideoMiniport; C:\WINDOWS\System32\drivers\rdpvideominiport.sys [32592 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R0 rdyboost; C:\WINDOWS\System32\drivers\rdyboost.sys [297784 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [2008432 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 ReFSv1; C:\Windows\System32\Drivers\ReFSv1.sys [990536 2022-01-13] (Microsoft Windows -> Microsoft Corporation)
R3 RFCOMM; C:\WINDOWS\System32\drivers\rfcomm.sys [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 rhproxy; C:\WINDOWS\System32\drivers\rhproxy.sys [115712 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 rspndr; C:\WINDOWS\System32\drivers\rspndr.sys [89088 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1131024 2019-06-12] (Realtek Semiconductor Corp. -> Realtek)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [450528 2018-11-22] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 s3cap; C:\WINDOWS\System32\drivers\vms3cap.sys [18960 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 sbp2port; C:\WINDOWS\System32\drivers\sbp2port.sys [118088 2021-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 scfilter; C:\WINDOWS\System32\DRIVERS\scfilter.sys [44032 2021-03-12] (Microsoft Windows -> Microsoft Corporation)
S0 scmbus; C:\WINDOWS\System32\drivers\scmbus.sys [158520 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 sdbus; C:\WINDOWS\System32\drivers\sdbus.sys [306512 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [35128 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 sdstor; C:\WINDOWS\System32\drivers\sdstor.sys [104264 2021-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 SerCx; C:\WINDOWS\System32\drivers\SerCx.sys [86328 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 SerCx2; C:\WINDOWS\System32\drivers\SerCx2.sys [173072 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 Serenum; C:\WINDOWS\System32\drivers\serenum.sys [27648 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 Serial; C:\WINDOWS\System32\drivers\serial.sys [90624 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 sermouse; C:\WINDOWS\System32\drivers\sermouse.sys [29184 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 sfloppy; C:\WINDOWS\System32\drivers\sfloppy.sys [19456 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 SgrmAgent; C:\WINDOWS\System32\drivers\SgrmAgent.sys [88080 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 SiSRaid2; C:\WINDOWS\System32\drivers\SiSRaid2.sys [44856 2019-12-07] (Microsoft Windows -> Silicon Integrated Systems Corp.)
S0 SiSRaid4; C:\WINDOWS\System32\drivers\sisraid4.sys [81720 2019-12-07] (Microsoft Windows -> Silicon Integrated Systems)
S0 SmartSAMD; C:\WINDOWS\System32\drivers\SmartSAMD.sys [209720 2019-12-07] (Microsoft Windows -> Microsemi Corportation)
R0 snapman; C:\WINDOWS\System32\DRIVERS\snapman.sys [394760 2022-01-06] (Acronis International GmbH -> Acronis International GmbH)
S3 spaceparser; C:\WINDOWS\System32\drivers\spaceparser.sys [26624 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 spaceport; C:\WINDOWS\System32\drivers\spaceport.sys [680784 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 SpatialGraphFilter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [90936 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 SpbCx; C:\WINDOWS\System32\drivers\SpbCx.sys [87352 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 Spybot3ELAM; C:\WINDOWS\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows ® Win 7 DDK provider)
R2 srv; C:\WINDOWS\System32\DRIVERS\srv.sys [450560 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
R3 srv2; C:\WINDOWS\System32\DRIVERS\srv2.sys [788480 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
R3 srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [323584 2022-05-14] (Microsoft Windows -> Microsoft Corporation)
S0 stexstor; C:\WINDOWS\System32\drivers\stexstor.sys [31032 2019-12-07] (Microsoft Windows -> Promise Technology, Inc.)
S0 storahci; C:\WINDOWS\System32\drivers\storahci.sys [186168 2021-10-15] (Microsoft Windows -> Microsoft Corporation)
S0 storflt; C:\WINDOWS\System32\drivers\vmstorfl.sys [54080 2021-05-13] (Microsoft Windows -> Microsoft Corporation)
S0 stornvme; C:\WINDOWS\System32\drivers\stornvme.sys [162128 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
R2 storqosflt; C:\WINDOWS\System32\drivers\storqosflt.sys [92984 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 storufs; C:\WINDOWS\System32\drivers\storufs.sys [64848 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S0 storvsc; C:\WINDOWS\System32\drivers\storvsc.sys [44048 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 swenum; C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_16a14542b63c02af\swenum.sys [18952 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 Synth3dVsc; C:\WINDOWS\System32\drivers\Synth3dVsc.sys [6656 2021-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R0 Tcpip; C:\WINDOWS\System32\drivers\tcpip.sys [2992464 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 Tcpip6; C:\WINDOWS\System32\drivers\tcpip.sys [2992464 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 tcpipreg; C:\WINDOWS\System32\drivers\tcpipreg.sys [54784 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 tdx; C:\WINDOWS\system32\DRIVERS\tdx.sys [117584 2021-09-16] (Microsoft Windows -> Microsoft Corporation)
R0 Telemetry; C:\WINDOWS\System32\drivers\IntelTA.sys [26608 2020-10-16] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 terminpt; C:\WINDOWS\System32\drivers\terminpt.sys [41272 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2022-01-06] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2022-01-06] (Acronis International GmbH -> Acronis International GmbH)
R3 TPM; C:\WINDOWS\System32\drivers\tpm.sys [255288 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
S3 TsUsbFlt; C:\WINDOWS\System32\drivers\tsusbflt.sys [66560 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 TsUsbGD; C:\WINDOWS\System32\drivers\TsUsbGD.sys [37888 2021-08-13] (Microsoft Windows -> Microsoft Corporation)
S3 tunnel; C:\WINDOWS\System32\drivers\tunnel.sys [129024 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 UASPStor; C:\WINDOWS\System32\drivers\uaspstor.sys [83792 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 UcmCx0101; C:\WINDOWS\System32\Drivers\UcmCx.sys [160256 2021-10-15] (Microsoft Windows -> Microsoft Corporation)
S3 UcmTcpciCx0101; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [188416 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys [36864 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 UcmUcsiCx0101; C:\WINDOWS\System32\Drivers\UcmUcsiCx.sys [113152 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
R3 Ucx01000; C:\WINDOWS\System32\drivers\ucx01000.sys [259896 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [52736 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S4 udfs; C:\WINDOWS\System32\DRIVERS\udfs.sys [344064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 UEFI; C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys [34104 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 Ufx01000; C:\WINDOWS\System32\drivers\ufx01000.sys [324432 2021-11-10] (Microsoft Windows -> Microsoft Corporation)
S3 UfxChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys [110608 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 ufxsynopsys; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [168264 2020-12-11] (Microsoft Windows -> Microsoft Corporation)
R3 umbus; C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys [58368 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 UmPass; C:\WINDOWS\System32\drivers\umpass.sys [15360 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 UrsChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys [32056 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 UrsCx01000; C:\WINDOWS\System32\drivers\urscx01000.sys [76304 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 UrsSynopsys; C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys [29496 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbaudio; C:\WINDOWS\system32\drivers\usbaudio.sys [205312 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [260608 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 usbccgp; C:\WINDOWS\System32\drivers\usbccgp.sys [190288 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 usbcir; C:\WINDOWS\System32\drivers\usbcir.sys [107520 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 usbehci; C:\WINDOWS\System32\drivers\usbehci.sys [86544 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 usbhub; C:\WINDOWS\System32\drivers\usbhub.sys [528184 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 USBHUB3; C:\WINDOWS\System32\drivers\UsbHub3.sys [648016 2021-09-08] (Microsoft Windows -> Microsoft Corporation)
S3 usbohci; C:\WINDOWS\System32\drivers\usbohci.sys [30208 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 usbprint; C:\WINDOWS\System32\drivers\usbprint.sys [43008 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 usbser; C:\WINDOWS\System32\drivers\usbser.sys [81408 2021-09-08] (Microsoft Windows -> Microsoft Corporation)
R3 USBSTOR; C:\WINDOWS\System32\drivers\USBSTOR.SYS [139600 2022-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 usbuhci; C:\WINDOWS\System32\drivers\usbuhci.sys [39424 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 USBXHCI; C:\WINDOWS\System32\drivers\USBXHCI.SYS [624984 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R0 vdrvroot; C:\WINDOWS\System32\drivers\vdrvroot.sys [67384 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S4 VerifierExt; C:\WINDOWS\System32\drivers\VerifierExt.sys [347448 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 vhdmp; C:\WINDOWS\System32\drivers\vhdmp.sys [821584 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 vhf; C:\WINDOWS\System32\drivers\vhf.sys [47616 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 Vid; C:\WINDOWS\System32\drivers\Vid.sys [641352 2022-01-13] (Microsoft Windows -> Microsoft Corporation)
S3 VirtualRender; C:\WINDOWS\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2022-01-06] (Acronis International GmbH -> Acronis International GmbH)
S0 vmbus; C:\WINDOWS\System32\drivers\vmbus.sys [160072 2022-01-13] (Microsoft Windows -> Microsoft Corporation)
S3 VMBusHID; C:\WINDOWS\System32\drivers\VMBusHID.sys [36664 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 vmgid; C:\WINDOWS\System32\drivers\vmgid.sys [19768 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 volmgr; C:\WINDOWS\System32\drivers\volmgr.sys [92000 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
R0 volmgrx; C:\WINDOWS\System32\drivers\volmgrx.sys [389432 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 volsnap; C:\WINDOWS\System32\drivers\volsnap.sys [429880 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
R0 volume; C:\WINDOWS\System32\drivers\volume.sys [16696 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2022-01-06] (Acronis International GmbH -> Acronis International GmbH)
S0 vpci; C:\WINDOWS\System32\drivers\vpci.sys [89400 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 vsmraid; C:\WINDOWS\System32\drivers\vsmraid.sys [166712 2019-12-07] (Microsoft Windows -> VIA Technologies Inc.,Ltd)
S0 VSTXRAID; C:\WINDOWS\System32\drivers\vstxraid.sys [305464 2019-12-07] (Microsoft Windows -> VIA Corporation)
R3 vwifibus; C:\WINDOWS\System32\drivers\vwifibus.sys [29184 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R1 vwififlt; C:\WINDOWS\System32\drivers\vwififlt.sys [77824 2021-09-08] (Microsoft Windows -> Microsoft Corporation)
R3 vwifimp; C:\WINDOWS\System32\drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WacHidRouter; C:\WINDOWS\System32\drivers\wachidrouter.sys [103616 2015-11-30] (Wacom Technology Corp. -> Wacom Technology)
S3 WacomPen; C:\WINDOWS\System32\drivers\wacompen.sys [31232 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 wacomrouterfilter; C:\WINDOWS\System32\drivers\wacomrouterfilter.sys [15040 2015-11-30] (Wacom Technology Corp. -> Wacom Technology)
S3 wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [93184 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
S3 wanarpv6; C:\WINDOWS\System32\DRIVERS\wanarp.sys [93184 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R2 wcifs; C:\WINDOWS\system32\drivers\wcifs.sys [202568 2021-11-10] (Microsoft Windows -> Microsoft Corporation)
S3 wcnfs; C:\WINDOWS\system32\drivers\wcnfs.sys [93184 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 Wdf01000; C:\WINDOWS\System32\drivers\Wdf01000.sys [828240 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [394464 2020-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 wdiwifi; C:\WINDOWS\System32\DRIVERS\wdiwifi.sys [967168 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdmCompanionFilter; C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [23560 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64736 2020-04-13] (Microsoft Windows -> Microsoft Corporation)
R0 WFPLWFS; C:\WINDOWS\System32\drivers\wfplwfs.sys [181592 2022-06-17] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\WINDOWS\System32\drivers\wimmount.sys [39760 2021-09-08] (Microsoft Windows -> Microsoft Corporation)
R0 WindowsTrustedRT; C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [76984 2019-12-07] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [18920 2019-12-07] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 WinMad; C:\WINDOWS\System32\drivers\winmad.sys [36152 2019-12-07] (Microsoft Windows -> Mellanox)
S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [261120 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2022-03-18] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WINUSB; C:\WINDOWS\System32\drivers\WinUsb.sys [107008 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WinVerbs; C:\WINDOWS\System32\drivers\winverbs.sys [73016 2019-12-07] (Microsoft Windows -> Mellanox)
R3 WmiAcpi; C:\WINDOWS\System32\drivers\wmiacpi.sys [19456 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [234296 2021-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 WpdUpFltr; C:\WINDOWS\System32\drivers\WpdUpFltr.sys [32568 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S4 ws2ifsl; C:\WINDOWS\system32\drivers\ws2ifsl.sys [25088 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WSDPrintDevice; C:\WINDOWS\System32\drivers\WSDPrint.sys [23552 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 WSDScan; C:\WINDOWS\System32\drivers\WSDScan.sys [26112 2022-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 WudfPf; C:\WINDOWS\System32\drivers\WudfPf.sys [136192 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 WUDFRd; C:\WINDOWS\System32\drivers\WUDFRd.sys [322560 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 WUDFWpdFs; C:\WINDOWS\System32\drivers\WUDFRd.sys [322560 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [322560 2022-04-13] (Microsoft Windows -> Microsoft Corporation)
S3 xboxgip; C:\WINDOWS\System32\drivers\xboxgip.sys [332288 2022-03-09] (Microsoft Windows -> Microsoft Corporation)
S3 xinputhid; C:\WINDOWS\System32\drivers\xinputhid.sys [51712 2021-12-15] (Microsoft Windows -> Microsoft Corporation)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [47784 2021-02-24] (Intel Corporation -> Intel Corporation)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2018-02-19] (Zemana Ltd. -> Zemana Ltd.)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) (Whitelisted) =========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2022-07-18 11:35 - 2022-07-18 11:40 - 000089124 _____ C:\Users\Me!\Desktop\FRST.txt
2022-07-18 11:31 - 2022-07-18 11:32 - 002369536 ____C (Farbar) C:\Users\Me!\Desktop\FRST64.exe
2022-07-16 17:13 - 2022-07-12 15:27 - 000270592 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-07-14 09:32 - 2022-07-14 09:32 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-14 09:32 - 2022-07-14 09:32 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-14 09:32 - 2022-07-14 09:32 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-14 09:32 - 2022-07-14 09:32 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-14 09:32 - 2022-07-14 09:32 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-14 09:31 - 2022-07-14 09:31 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-14 09:31 - 2022-07-14 09:31 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-14 09:31 - 2022-07-14 09:31 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-14 09:31 - 2022-07-14 09:31 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-14 09:31 - 2022-07-14 09:31 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-14 09:31 - 2022-07-14 09:31 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-14 09:31 - 2022-07-14 09:31 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-14 09:31 - 2022-07-14 09:31 - 000011811 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-07-14 09:30 - 2022-07-14 09:30 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-14 09:30 - 2022-07-14 09:30 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-14 09:29 - 2022-07-14 09:29 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-14 09:28 - 2022-07-14 09:28 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-14 09:27 - 2022-07-14 09:27 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-14 09:27 - 2022-07-14 09:27 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-07-14 08:03 - 2022-07-14 08:03 - 000000000 ___HD C:\$WinREAgent
2022-07-14 07:59 - 2022-07-14 07:59 - 000000000 ____D C:\ProgramData\NordUpdater
2022-07-13 09:14 - 2022-07-13 09:16 - 056272248 ____C (Mozilla) C:\Users\Me!\Downloads\Thunderbird Setup 102.0.2.exe
2022-07-12 15:27 - 2022-07-12 15:27 - 000221528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-07-08 10:06 - 2022-07-08 10:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-07-07 10:09 - 2022-07-07 10:09 - 056275912 ____C (Mozilla) C:\Users\Me!\Downloads\Thunderbird Setup 102.0.1.exe
2022-07-07 09:14 - 2022-07-09 13:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-06-30 06:22 - 2022-06-30 06:22 - 000000000 ____D C:\Users\Me!\.ms-ad
2022-06-27 05:41 - 2022-06-27 05:41 - 000025048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2022-06-25 18:09 - 2022-06-10 22:25 - 000453884 ____R C:\WINDOWS\hosts.20220625-180941.backup
2022-06-23 11:01 - 2022-06-23 11:02 - 054961888 ____C (Mozilla) C:\Users\Me!\Downloads\Thunderbird Setup 91.10.0.exe
 
==================== One month (modified) ==================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2022-07-18 11:41 - 2020-04-11 14:42 - 000105255 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2022-07-18 11:41 - 2018-02-19 00:18 - 000971790 _____ C:\WINDOWS\ZAM.krnl.trace
2022-07-18 11:39 - 2018-04-09 13:11 - 000000000 ____D C:\FRST
2022-07-18 11:35 - 2018-02-18 12:18 - 000000000 ____D C:\Users\Me!\AppData\LocalLow\Mozilla
2022-07-18 11:25 - 2018-02-18 05:45 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-18 11:18 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-07-18 11:16 - 2020-10-05 17:20 - 000000000 ____D C:\Users\Me!\AppData\Local\AMSDK
2022-07-18 11:03 - 2020-06-04 12:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-18 10:17 - 2018-06-22 21:44 - 000000000 ____D C:\Users\Me!\AppData\Local\AVAST Software
2022-07-18 10:05 - 2022-02-10 16:33 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-18 10:00 - 2019-12-07 02:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-18 09:48 - 2018-02-19 00:06 - 000000000 ____D C:\Program Files\CCleaner
2022-07-18 09:47 - 2018-02-18 11:54 - 000000000 ____D C:\ProgramData\AVAST Software
2022-07-18 09:45 - 2018-04-13 20:49 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2022-07-18 09:44 - 2018-02-18 04:37 - 000000000 __SHD C:\Users\Me!\IntelGraphicsProfiles
2022-07-18 09:43 - 2020-06-04 13:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-18 09:43 - 2020-06-04 12:44 - 000008192 ___SH C:\DumpStack.log.tmp
2022-07-18 09:42 - 2019-12-07 02:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2022-07-17 19:34 - 2021-08-28 14:07 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-07-17 19:34 - 2020-06-04 13:08 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-07-16 17:14 - 2021-08-28 14:14 - 000002095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2022-07-16 17:14 - 2021-08-28 14:14 - 000002083 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2022-07-16 17:13 - 2019-12-07 02:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-07-15 20:22 - 2019-12-07 02:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-15 20:22 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-15 20:21 - 2020-08-08 07:58 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-15 20:21 - 2020-08-08 07:58 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-07-15 16:31 - 2022-06-13 13:27 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-07-15 09:23 - 2020-06-04 12:56 - 000937250 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-15 09:20 - 2017-03-18 14:03 - 000000150 _____ C:\WINDOWS\win.ini
2022-07-15 09:13 - 2019-12-07 02:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-14 23:23 - 2020-06-04 12:44 - 000438112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-07-14 23:22 - 2018-04-03 19:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-14 23:17 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-07-14 23:16 - 2019-12-07 02:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-07-14 23:16 - 2019-12-07 02:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-14 23:16 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-07-14 23:16 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-07-14 23:16 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-14 18:40 - 2018-10-03 14:38 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-07-14 09:46 - 2019-12-07 02:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-14 09:27 - 2020-06-04 12:50 - 003010560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-07-14 08:38 - 2021-04-25 07:49 - 000000000 ____D C:\Users\Me!\AppData\Local\NordVPN
2022-07-14 08:00 - 2021-04-25 07:49 - 000000000 ____D C:\Program Files\NordVPN
2022-07-14 07:59 - 2022-03-04 08:30 - 000000000 ____D C:\Program Files\NordUpdater
2022-07-14 07:59 - 2021-04-25 07:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2022-07-13 10:07 - 2022-05-28 11:29 - 000001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2022-07-13 10:07 - 2022-05-28 11:29 - 000001277 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2022-07-13 10:07 - 2022-05-28 11:20 - 000001328 _____ C:\Users\Me!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2022-07-13 10:07 - 2022-05-03 17:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-07-13 08:03 - 2018-02-18 02:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-07-13 07:46 - 2018-02-18 02:11 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-07-12 15:27 - 2021-08-28 14:06 - 000668208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-07-12 15:27 - 2021-08-28 14:06 - 000553928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-07-12 15:27 - 2021-08-28 14:06 - 000324864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-07-12 15:27 - 2021-08-28 14:06 - 000274536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-07-12 15:27 - 2021-08-28 14:06 - 000258072 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-07-12 15:27 - 2021-08-28 14:06 - 000113984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-07-12 15:27 - 2021-08-28 14:06 - 000104976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-07-12 15:27 - 2021-08-28 14:06 - 000089056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-07-12 15:27 - 2021-08-28 14:06 - 000047976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-07-12 15:26 - 2021-08-28 14:06 - 000860416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-07-12 15:26 - 2021-08-28 14:06 - 000385560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-07-12 15:26 - 2021-08-28 14:06 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-07-12 15:26 - 2021-08-28 14:06 - 000041832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-07-08 10:06 - 2018-04-06 02:06 - 000007125 _____ C:\WINDOWS\wininit.ini
2022-07-08 10:05 - 2019-11-09 11:32 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-07-07 17:03 - 2019-03-05 18:06 - 000000000 ____D C:\Users\Me!\Documents\My Kindle Content
2022-07-07 16:58 - 2019-03-05 18:06 - 000002293 _____ C:\Users\Me!\Desktop\Kindle.lnk
2022-07-07 10:35 - 2019-11-09 11:32 - 000000000 ____D C:\ProgramData\Mozilla
2022-07-06 13:26 - 2018-02-18 11:48 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-07-06 13:26 - 2018-02-18 11:48 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-07-05 22:51 - 2018-04-25 19:55 - 000000000 ____D C:\Users\Me!\AppData\Local\CrashDumps
2022-06-30 09:08 - 2019-12-07 02:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-06-30 06:22 - 2020-06-04 12:03 - 000000000 ____D C:\Users\Me!
2022-06-24 22:14 - 2018-07-07 20:56 - 000000000 ____D C:\ProgramData\Packages
2022-06-22 11:18 - 2018-07-11 01:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2022-06-22 11:18 - 2018-07-11 01:03 - 000000000 ____D C:\Program Files\7-Zip
 
==================== Files in the root of some directories ========
 
2020-08-09 23:05 - 2020-08-09 23:05 - 000000256 _____ () C:\Users\Me!\AppData\Local\PUTTY.RND
2022-04-15 11:13 - 2022-04-15 11:13 - 000000883 _____ () C:\Users\Me!\AppData\Local\recently-used.xbel
2018-06-08 10:22 - 2018-06-08 10:22 - 000000017 _____ () C:\Users\Me!\AppData\Local\resmon.resmoncfg
2021-01-20 08:11 - 2021-01-20 08:11 - 000000000 _____ () C:\Users\Me!\AppData\Local\{052D7D69-4E00-410B-B15C-D89FACE3BF73}
 
==================== SigCheck ============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ========================
 
ADDITION:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-07-2022
Ran by Me! (18-07-2022 11:42:04)
Running from C:\Users\Me!\Desktop
Microsoft Windows 10 Home Version 21H1 19043.1826 (X64) (2020-06-04 20:10:19)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
 
(If an entry is included in the fixlist, it will be removed.)
 
Administrator (S-1-5-21-3778126099-3402256936-1862990622-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3778126099-3402256936-1862990622-503 - Limited - Disabled)
Guest (S-1-5-21-3778126099-3402256936-1862990622-501 - Limited - Disabled)
Me! (S-1-5-21-3778126099-3402256936-1862990622-1001 - Administrator - Enabled) => C:\Users\Me!
WDAGUtilityAccount (S-1-5-21-3778126099-3402256936-1862990622-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Spybot - Search and Destroy (Enabled - Up to date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Spybot - Search and Destroy (Enabled - Out of date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
7-Zip 22.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2200-000001000000}) (Version: 22.00.00.0 - Igor Pavlov)
Acronis Drivers (HKLM\...\{EF343254-D355-4A01-A40E-51CEEA431518}) (Version: 25.0.39200 - Acronis) Hidden
Acronis True Image for Western Digital (HKLM-x32\...\{32449011-A026-4671-BDF2-D49A944181DA}) (Version: 25.0.39200 - Acronis) Hidden
Acronis True Image for Western Digital (HKLM-x32\...\{32449011-A026-4671-BDF2-D49A944181DA}Visible) (Version: 25.0.39200 - Acronis)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 22.001.20169 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Illustrator 10 (HKLM-x32\...\{412033BC-44CF-48D9-B813-4B835101F4D3}) (Version: 10 - Adobe Systems, Inc.)
Adobe Photoshop 7.0.1 (HKLM-x32\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version:  3.0 - Adobe Systems, Inc.)
Amazon Kindle (HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Amazon Kindle) (Version: 1.36.0.65107 - Amazon)
Amazon Music (HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Amazon Amazon Music) (Version: 7.5.0.1823 - Amazon Services LLC)
Amazon Send to Kindle (HKLM-x32\...\SendToKindle) (Version: 1.1.0.246 - Amazon)
Apple Application Support (32-bit) (HKLM-x32\...\{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}) (Version: 8.7 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{75BEF7E8-4370-4D42-94F3-B5AA77057965}) (Version: 8.7 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2B3CA448-5266-480F-85FA-2FCCB3C8712C}) (Version: 15.6.0.32 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.19 - Audible, Inc.)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 0.32.524306.1703416 - Audible, Inc.)
AudibleSync (HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\AudibleSync) (Version: 1.8.5 - Audible Inc)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.6.6022 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1189.1 - AVAST Software) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.01 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version:  - DownloadHelper)
Easy Photo Scan (HKLM-x32\...\{41BDB1C2-0950-4F9A-8586-95B2B9BAE9D7}) (Version: 1.00.0011 - Seiko Epson Corporation)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.6.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM-x32\...\{189DE071-E0BC-4BA5-8E34-83D5ED12600B}) (Version: 3.2.0.0 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation)
EPSON XP-520 Series Printer Uninstall (HKLM\...\EPSON XP-520 Series) (Version:  - SEIKO EPSON Corporation)
Epson XP-520 User’s Guide version 1.0 (HKLM-x32\...\UsersGuideEpson XP-520 User’s Guide_is1) (Version: 1.0 - )
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
GIMP 2.10.30 (HKLM\...\GIMP-2_is1) (Version: 2.10.30 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 103.0.5060.114 - Google LLC)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM\...\{20185BDA-D396-4C93-95C7-ECD0FB397FF7}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{5BBB44D5-3CC0-4434-AA0C-5883B975E45E}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{6884D818-9E0E-4984-A6CA-B17757DCB8FA}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{F7E8A494-97B6-4786-9E2C-A42A082483EB}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{2889C948-F002-4992-815F-DBE0AFB5DC6E}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{54da9769-2364-4bd3-8139-6400500778b3}) (Version: 5.3.22034 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{98AA8BB0-0C0A-411A-BB43-1265CA769155}) (Version: 5.3.22034 - HP Inc.) Hidden
HP JumpStart Apps (HKLM-x32\...\HP JumpStart Apps) (Version: 7.0.32 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{EB0912FF-C311-4E0F-A6B1-420FDD3C295E}) (Version: 1.3.0.407 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{6A139049-EBB9-4076-8664-B468888E55A3}) (Version: 1.3.392.0 - HP Inc.)
HP Recovery Manager (HKLM-x32\...\{64BAA990-F1FC-4145-A7B1-E41FBBC9DA47}) (Version: 1.2.1510 - HP) Hidden
HP Registration Service (HKLM-x32\...\{EBF2C31B-E9A1-4929-BE35-6EBECF286110}) (Version: 1.0.0.30 - HP Inc.) Hidden
HP Support Solutions Framework (HKLM-x32\...\{183BD477-774B-4700-B40B-EE43886E74D2}) (Version: 12.18.34.21 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{57058272-92B0-4EFA-8FDD-ED3E5D689D37}) (Version: 1.4.32 - HP Inc.)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
Inkscape 0.92.5 (HKLM-x32\...\Inkscape) (Version: 0.92.5 - Inkscape Project)
Intel® Chipset Device Software (HKLM\...\{C7CC96C7-C99C-40DD-BB6B-C7BFC2899979}) (Version: 10.1.17809.8096 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{bd366c5e-00cd-46ed-b647-0b9874f32140}) (Version: 10.1.17809.8096 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1069 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{90291EBF-187A-4C7E-A9AD-DCCB6C946536}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{FBDA24D3-1A19-4D75-B3F1-F2A1FB6B61BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Driver (HKLM\...\{8DEA4234-C97D-41BE-B2BC-313A196BCD09}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6446 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.8.3.1004 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{8AAC5651-3DE3-4C1C-80AD-9D6192B1AA1A}) (Version: 16.8.3.1004 - Intel Corporation) Hidden
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1841.2 - Intel Corporation)
Intel® Serial IO (HKLM\...\{EABFC0C6-2EFD-486D-8DEB-5A07527FB179}) (Version: 30.100.1841.2 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel® Wireless Bluetooth® (HKLM-x32\...\{559FA847-377D-4926-80A3-ED9E014D363A}) (Version: 19.60.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{EF71AFFB-85B5-407C-A301-39EA25F98313}) (Version: 20.90.0.2270 - Intel Corporation) Hidden
iTunes (HKLM\...\{DCBA66F6-FF88-47BF-BC2C-8A8D187911C1}) (Version: 12.12.4.1 - Apple Inc.)
Jarte Plus (HKLM-x32\...\Jarte_is1) (Version: 6.2 - Carolina Road Software L.L.C.)
Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Malwarebytes version 4.5.10.200 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.10.200 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 103.0.1264.62 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office Converter Pack (HKLM-x32\...\{6EECB283-E65F-40EF-86D3-D51BF02A8D43}) (Version: 11.0.0.0 - Microsoft Corporation - Office Resource Kit Group)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{BD2E4F7B-30B0-46A7-8E5C-D99D21C52336}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{200969CA-4114-4553-832D-4286C5ACBB98}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24123 (HKLM-x32\...\{03AC7A79-F8AF-38FC-9DA0-98DAB4F4B1CD}) (Version: 14.0.24123 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24123 (HKLM-x32\...\{06AE3BCC-7612-39D3-9F3B-B6601D877D02}) (Version: 14.0.24123 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29913 (HKLM\...\{620A7633-7A09-42A8-8580-076A4483C4B0}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29913 (HKLM\...\{EECDD137-13DA-46ED-ADA0-BDF7F8BE65B8}) (Version: 14.28.29913 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 102.0.1 (x64 en-US)) (Version: 102.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 102.0.2 - Mozilla)
Mozilla Thunderbird (x64 en-US) (HKLM\...\Mozilla Thunderbird 102.0.2 (x64 en-US)) (Version: 102.0.2 - Mozilla)
Mozilla Thunderbird (x64 en-US) (HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Mozilla Thunderbird 91.9.1 (x64 en-US)) (Version: 91.9.1 - Mozilla)
Mudlet (HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Mudlet) (Version: 3.15.0 - Mudlet Makers)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.3.0.44 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.48.10.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
PuTTY release 0.74 (64-bit) (HKLM\...\{127B996B-5308-4012-865B-9446451EA326}) (Version: 0.74.0.0 - Simon Tatham)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.31237 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.26.328.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
SeaMonkey 2.53.8 (x86 en-US) (HKLM-x32\...\SeaMonkey 2.53.8 (x86 en-US)) (Version: 2.53.8 - Mozilla)
SeaTools for Windows 1.4.0.6 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.6 - Seagate Technology)
Should I Remove It (HKLM-x32\...\{4E62123C-4C0D-4123-A8A2-C0103B92D7EA}) (Version: 1.0.4 - Reason Software Company Inc.) Hidden
Should I Remove It (HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\Should I Remove It 1.0.4) (Version: 1.0.4 - Reason Software Company Inc.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.9.82.0 - Safer-Networking Ltd.)
Stardust Screen Saver Control 2.1.60 (HKLM-x32\...\Stardust Screen Saver Control 2.1.60_is1) (Version:  - Stardust Software)
Toolkit (HKLM-x32\...\Toolkit) (Version: 1.6.0.162 - Seagate)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version:  - DownloadHelper)
Viking Kittens Screen Saver (HKLM-x32\...\Viking Kittens) (Version:  - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.15-3 - Wacom Technology Corp.)
Waterfox Classic 56.3 (x64 en-US) (HKLM\...\Waterfox Classic 56.3 (x64 en-US)) (Version: 56.3 - Waterfox Ltd)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Resource Kit Tools - SubInAcl.exe (HKLM-x32\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
Zemana AntiMalware version 3.2.27 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.2.27 - Zemana)
zMUD 7.21.0.0 (HKLM-x32\...\zMUD) (Version: 7.21.0.0 - Zugg Software)
Zoom (HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\ZoomUMX) (Version: 5.9.1 (2581) - Zoom Video Communications, Inc.)
 
Packages:
=========
Amazon Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.77.0_x64__pwbj9vvecjh7j [2021-09-08] (Amazon Development Centre (London) Ltd)
Audiobooks from Audible -> C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.67.0_x64__xns73kv1ymhp2 [2021-05-07] (Audible Inc)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.3.407.0_x86__v10z8vjag6ke6 [2017-10-14] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.7.0.0_x64__v10z8vjag6ke6 [2021-08-28] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.13.85.0_x64__v10z8vjag6ke6 [2022-02-28] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.15.0_neutral__8xx8rvfyw5nnt [2021-08-28] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-25] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-28] (Microsoft Studios) [MS Ad]
myEvents+ -> C:\Program Files\WindowsApps\47054NKsoft.myEvents_1.1.6.0_x64__qv26zcc6ec1jt [2018-09-20] (NKsoft)
MyRacehorse -> C:\Program Files\WindowsApps\myracehorse.com-3ED9883C_1.0.0.0_neutral__6w1gx45k03bt6 [2022-05-26] (myracehorse.com)
Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-05-07] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-11-14] (Microsoft Corporation)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.2.9.0_x64__kx24dqmazqk8j [2021-08-28] (Random Salad Games LLC)
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.14.159.0_x64__43tkc6nmykmb6 [2021-09-08] (Ookla)
Zenkit -> C:\Program Files\WindowsApps\Zenkit.Zenkit_2.1.6.0_x64__1pr9t28frmx4j [2021-05-07] (Zenkit)
 
==================== Custom CLSID (Whitelisted): ==============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001_Classes\CLSID\{29F458BE-8866-11D5-A3DD-00B0D0F3BAA7}\localserver32 -> C:\Users\Me!\AppData\Local\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation -> Mozilla Corporation)
ShellIconOverlayIdentifiers: [     AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_0_39200.dll [2021-08-10] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_0_39200.dll [2021-08-10] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_0_39200.dll [2021-08-10] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_0_39200.dll [2021-08-10] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-07-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-07-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-07-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-07-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-05-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers3: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers3: [STKContextMenu] -> {90DD7445-E924-4c6e-92AC-01F8C3A7E0C7} => C:\Program Files (x86)\Amazon\SendToKindle\stkContextMenu_246.dll [2021-08-25] (Amazon Services LLC -> Amazon.com, Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igfxDTCM.dll [2020-03-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-07-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-05-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2021-12-21] (Safer-Networking Limited -> Safer-Networking Ltd.)
 
==================== Codecs (Whitelisted) ====================
 
==================== Shortcuts & WMI ========================
 
==================== Loaded Modules (Whitelisted) =============
 
2022-07-14 07:59 - 2022-07-14 08:41 - 009102848 _____ () [File not signed] C:\Program Files\NordVPN\6.48.10.0\telio.DLL
2022-07-15 09:43 - 2022-07-15 09:43 - 000160256 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\9bd626d2abb3edc3a2c5293a3077bad7\BRIDGECommon.ni.dll
2022-07-15 09:43 - 2022-07-15 09:43 - 000120832 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\64d4a7ba9cbf987e4071c0fb6abfeeaa\BridgeExtension.ni.dll
2022-07-15 09:43 - 2022-07-15 09:43 - 000348160 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CleanStartController\b6f893464f784f6b060147b0a0869b2e\CleanStartController.ni.dll
2022-07-15 09:43 - 2022-07-15 09:43 - 000134656 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CommonPortable\49e51847ab35410b806489fce211ae37\CommonPortable.ni.dll
2022-06-15 18:00 - 2022-06-15 18:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2015-12-17 11:11 - 2015-12-17 11:11 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2022-06-10 21:37 - 2021-06-19 01:55 - 001079909 _____ (SQLite Development Team) [File not signed] C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2021-05-14 22:37 - 2021-05-14 22:37 - 025338368 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Acronis\TrueImageHome\icudt54.dll
2021-05-14 22:37 - 2021-05-14 22:37 - 002056704 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Acronis\TrueImageHome\icuin54.dll
2021-05-14 22:37 - 2021-05-14 22:37 - 001425408 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Acronis\TrueImageHome\icuuc54.dll
2022-06-10 21:37 - 2018-11-22 16:48 - 001374208 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Spybot - Search & Destroy 2\libeay32.dll
2022-06-10 21:37 - 2018-11-22 16:48 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Spybot - Search & Destroy 2\ssleay32.dll
 
==================== Alternate Data Streams (Whitelisted) ========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:359B3BDA [360]
 
==================== Safe Mode (Whitelisted) ==================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 
==================== Association (Whitelisted) =================
 
==================== Internet Explorer (Whitelisted) ==========
 
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-01] (Oracle America, Inc. -> Oracle Corporation)
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
 
There are 7942 more sites.
 
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\123simsen.com -> www.123simsen.com
 
There are 7947 more sites.
 
 
2018-03-31 13:50 - 2021-04-23 12:47 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
 
==================== Other Areas ===========================
 
(Currently there is no automatic fix for this section.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\Intel® Management Engine Components\iCLS\;C:\Program Files\Intel\Intel® Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\RogueKiller;;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL;C:\Program Files\Intel\Intel® Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT;C:\Program Files\Intel\Intel® Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\PuTTY\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\Control Panel\Desktop\\Wallpaper -> G:\OthersArt\Transformers\MiscArtists\BW_WP010.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
 
Network Binding:
=============
Wi-Fi: NordVPN LightWeight Firewall -> NordLwf (enabled) 
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled) 
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled) 
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(If an entry is included in the fixlist, it will be removed.)
 
HKLM\...\StartupApproved\StartupFolder: => "Adobe Gamma Loader.lnk"
HKLM\...\StartupApproved\Run: => "ZAM"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000001"
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\StartupApproved\Run: => "Amazon Music Helper"
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\StartupApproved\Run: => "Amazon Music"
HKU\S-1-5-21-3778126099-3402256936-1862990622-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_5E3518C5895CB345A23F74C0BA9F619B"
 
==================== FirewallRules (Whitelisted) ================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{A89FF150-4807-4199-A77F-8D0C81A8E5DB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{13B3679B-5D83-413C-8E70-7FD9A165A9EC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{28761216-9BBB-40D4-8EBF-257ECC5FF816}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{5CECAB0E-B15F-4E61-89A3-96BD6E86A8DE}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{E5D7BB29-100F-4198-B5CD-7E9BAB9A2188}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{4457F46E-9C48-4A95-BC82-6F8797F77FCD}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{1D894279-CFA6-4D15-9AF3-5B5F7027BA99}] => (Allow) C:\Program Files\Waterfox\waterfox.exe (Waterfox Limited -> Waterfox)
FirewallRules: [{10BE96F2-E30D-4DA5-B343-E24BCAE18C14}] => (Allow) C:\Program Files\Waterfox\waterfox.exe (Waterfox Limited -> Waterfox)
FirewallRules: [{1069C0E1-DA3B-49F8-90E2-78F35E66DA1D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> )
FirewallRules: [{7BBFB30D-7CF9-44FA-AD44-5C654993D3C8}] => (Allow) C:\Program Files (x86)\Acronis\Agent\aakore.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{4D65748F-C96B-4748-B032-0C8F9C27BEAF}] => (Allow) C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{781C3129-CE62-49A1-8262-68949BF50BEB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1256868-BD61-4DE6-B836-79EC81A41BBC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{803A0B46-7D21-41B9-BDBB-32CCD243EED8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{16F5F112-8D0D-49AF-ACC3-AE7BF158D83B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4DDFBD36-1D42-4397-9AE9-939D7B43B8EE}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{535DD991-7344-445D-B2F9-BDB395A288EC}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{989D6CA6-DD8B-418C-8CC5-E900528C383E}C:\users\me!\appdata\roaming\zoom\bin\zoom.exe] => (Allow) C:\users\me!\appdata\roaming\zoom\bin\zoom.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [UDP Query User{03541999-4A38-4791-A4C9-5D40F0282829}C:\users\me!\appdata\roaming\zoom\bin\zoom.exe] => (Allow) C:\users\me!\appdata\roaming\zoom\bin\zoom.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{684FA459-3EF5-4360-9848-A49C2D93BAD8}] => (Block) C:\users\me!\appdata\roaming\zoom\bin\zoom.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{3FC8B8ED-C881-4092-AA1D-693DD2112BA9}] => (Block) C:\users\me!\appdata\roaming\zoom\bin\zoom.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{2AA398CA-AB11-49F9-86B3-8955E8F86158}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\Zoom.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{66DA098E-593D-4403-BA60-EFD51521C538}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9728BEAB-D5C5-4B37-9F21-08D6713C0A71}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3F9929EE-D93F-4E5F-B9E7-70CABAD14EDD}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E7DBD355-946B-4E17-BF27-93342C957C95}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{35EEFB73-9450-4A75-B4E5-EF28FF0CE547}C:\users\me!\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\me!\appdata\local\amazon music\amazon music helper.exe (Amazon Services LLC -> Amazon Services LLC)
FirewallRules: [UDP Query User{4F7149F2-989F-4E67-9F86-BAA05753BDDA}C:\users\me!\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\me!\appdata\local\amazon music\amazon music helper.exe (Amazon Services LLC -> Amazon Services LLC)
FirewallRules: [{E1E2F9DD-3DB0-4C2A-8861-91BB6D1636B7}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{990C21DD-E926-4095-B08C-B8283865997D}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AE84C8E4-D1C9-4C50-ACF1-38B26C8AABD6}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0F935FEB-03D8-4581-A49D-A03A165F74AC}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{ED91B16B-A75D-4FBD-A065-31CCBBD7A587}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{75FE137D-B3F0-43E5-9422-1EE38B34E1EC}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{91E63E31-AF61-449A-B5A5-9F4A8F46614E}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{89BB328F-A977-4840-96F3-60290CBDA88C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{C61A6982-9B78-45F0-B061-4035A8FE8B7F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{FC96E254-7EFF-4BB5-A5D1-B6235F969565}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{4A05B950-3529-4711-9E0B-CCF19D8C95BE}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{19B92E10-16A1-431E-910D-1C6ECC852AF6}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{F2B680C0-D8E1-475C-B416-3D8CF2E0192C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{6A4FCA50-25C0-457B-A95B-4457C6B5F555}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Home\report_sender.exe (Acronis International GmbH -> )
FirewallRules: [{D16937C6-6E5C-4DD9-924D-448748DC040B}] => (Allow) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{24D6D7F2-2C0F-4332-9F24-481F2802A037}] => (Allow) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{CFA1A9EB-EB8D-461A-A93F-9F5D0F13A435}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\Zoom.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{E3410491-1585-4E4D-84D5-760AA596C20B}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\airhost.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{7749EFDD-1FED-4C85-A816-63594766FD38}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\airhost.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{A25AC2BB-ED00-4995-A18B-83BD77F8B87C}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0A5333DF-97D6-4BD5-A481-CF2A4F5057DF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{41939337-FC94-4BD4-A72B-78825C2839D4}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{16A54E2E-F4C5-46A2-82C3-11B2E24C73B0}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0F630F78-FFEB-4174-AA73-40BCE0977298}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EFD27074-B38E-4667-AE06-DA24E03FA4E6}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2311AA51-DAC4-4955-B09A-F9B5E4B5A657}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D2096D17-6D58-4680-A54D-FBE52A1247EA}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EE3F5BD7-5CB6-4131-8FFD-5AB22500D40B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FF9F16A6-E0B6-4604-9504-D8D51226C1E3}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{629B64AE-E2C2-46BF-A5BB-A3A0C7F77790}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{15FE0F69-17C0-4CC8-B6EA-9449F5893765}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AB1565AC-9A90-4B87-82F5-B9709A0ADD90}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{706F2F4B-4B18-4986-9513-2CC1DC6C0A5B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2BB7507A-9F5A-4870-9DF7-16702F336E95}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{602B2D94-3012-4B4C-8863-01DE7DEA2B51}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A4CB14A5-CC3E-421A-B8ED-DB2B4C788166}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BEC1FFDF-8C46-47FF-9BF7-B46F67521EB5}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB3275EB-7FE6-4941-92D4-C12902ADEF8F}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3D6AB852-BA61-4B72-8CE3-0D26358DB62E}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
 
==================== Restore Points =========================
 
25-06-2022 20:56:51 Scheduled Checkpoint
04-07-2022 18:20:08 Scheduled Checkpoint
14-07-2022 07:59:52 Windows Modules Installer
14-07-2022 08:23:23 Windows Modules Installer
 
==================== Faulty Device Manager Devices ============
 
Name: NS-SPBTBRICK Stereo
Description: Microsoft Bluetooth A2dp Source
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthA2dp
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
Name: NS-SPBTBRICK Hands-Free AG
Description: Microsoft Bluetooth Hands-Free Profile AudioGateway role
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthHFEnum
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
 
==================== Event log errors: ========================
 
Application errors:
==================
Error: (07/17/2022 07:32:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program StartMenuExperienceHost.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 1520
 
Start Time: 01d89a4e4f8add17
 
Termination Time: 4294967295
 
Application Path: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
 
Report Id: 43d0f6d1-8af8-4b20-9cad-ece5e36586c9
 
Faulting package full name: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy
 
Faulting package-relative application ID: App
 
Hang type: Quiesce
 
Error: (07/16/2022 07:24:24 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
.
 
Error: (07/16/2022 07:24:24 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
 
Error: (07/16/2022 07:24:24 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.
.
 
Error: (07/16/2022 07:24:24 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
 
Error: (07/16/2022 07:22:45 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Windows Search Service failed to process the list of included and excluded locations with the error <30, 0x80040d07, "iehistory://{S-1-5-21-3778126099-3402256936-1862990622-1001}/">.
 
Error: (07/16/2022 07:12:05 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Windows Search Service failed to process the list of included and excluded locations with the error <30, 0x80040d07, "iehistory://{S-1-5-21-3778126099-3402256936-1862990622-1001}/">.
 
Error: (07/15/2022 09:58:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SearchApp.exe, version: 10.0.19041.1806, time stamp: 0xe2377848
Faulting module name: KERNELBASE.dll, version: 10.0.19041.1826, time stamp: 0x299341e8
Exception code: 0xc000027b
Fault offset: 0x000000000010fb62
Faulting process id: 0x12ac
Faulting application start time: 0x01d898919b8859f9
Faulting application path: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 04cfb94d-222e-4b30-b865-f09e24ee9407
Faulting package full name: Microsoft.Windows.Search_1.14.6.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: CortanaUI
 
 
System errors:
=============
Error: (07/18/2022 11:27:55 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
 
Error: (07/18/2022 10:20:43 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
 
Error: (07/18/2022 10:20:41 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
 
Error: (07/18/2022 09:49:23 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
 
Error: (07/18/2022 09:48:28 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.
 
Error: (07/18/2022 09:46:24 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AcronisActiveProtectionService service.
 
Error: (07/18/2022 09:45:54 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AcronisActiveProtectionService service.
 
Error: (07/18/2022 09:45:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The XTU3SERVICE service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
 
 
Windows Defender:
================
Date: 2021-08-28 13:42:31
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2021-08-28 13:30:47
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2021-08-28 13:24:50
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2021-08-28 13:05:52
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2021-08-28 12:56:41
Description: 
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
 
Date: 2022-07-15 09:11:42
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.347.594.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.18400.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2022-07-15 09:11:42
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.347.594.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.18400.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2022-07-15 09:11:42
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.347.594.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.18400.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2022-07-15 09:11:42
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.347.594.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.18400.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
Date: 2022-07-15 09:11:42
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.347.594.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.18400.5
Error code: 0x80072ee7
Error description: The server name or address could not be resolved 
 
CodeIntegrity:
===============
Date: 2022-07-18 11:42:22
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
 
 
==================== Memory info =========================== 
 
BIOS: AMI F.45 06/29/2020
Motherboard: HP 82F2
Processor: Intel® Core™ i3-7100 CPU @ 3.90GHz
Percentage of memory in use: 73%
Total physical RAM: 8071.56 MB
Available physical RAM: 2127.17 MB
Total Virtual: 11271.56 MB
Available Virtual: 4507.27 MB
 
==================== Drives ================================
 
Drive c: (Windows) (Fixed) (Total:918.72 GB) (Free:731.82 GB) (Model: ST1000DM003-1SB102) NTFS
Drive d: (RECOVERY) (Fixed) (Total:11.56 GB) (Free:1.17 GB) (Model: ST1000DM003-1SB102) NTFS ==>[system with boot components (obtained from drive)]
Drive g: () (Fixed) (Total: ? GB) (Free: ? GB) (Model: Seagate Backup+ BK SCSI Disk Device) (Protected) (Locked) 
Drive h: (easystore) (Fixed) (Total:4657.49 GB) (Free:579.79 GB) (Model: WD easystore 2647 USB Device) NTFS
 
\\?\Volume{ae9351fc-ad09-4828-b129-adc1eea1d4d7}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.47 GB) NTFS
\\?\Volume{775739fd-bbb8-4130-bd87-0fc263fc5858}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
 
==================== MBR & Partition Table ====================
 
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 6F9DD808)
 
Partition: GPT.
 
==========================================================
Disk: 1 (Size: 4657.5 GB) (Disk ID: 16F2A91F)
 
Partition: GPT.
 
==========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: 6FB8D794)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt =======================
 

    Advertisements

Register to Remove

#2 Juliet

Juliet

    SuperHelper

  • Retired Classroom Teacher
  • 7,686 posts
  • Interests:Boo!....
  • MVP

Posted 20 July 2022 - 11:55 AM

Hi and sorry for the wait, had plumbing issues that took forever to get help with.
 
I've looked over the logs you've presented and not much showing as in any type of infections.  I did see some restrictions we can attempt to remove, might be placed there by your antivirus but can't say for sure. Other then that a tidy up.

Start Farbar Recovery Scan Tool with Administrator privileges
(Right click on the FRST icon and select Run as administrator, just open it and let it wait)

highlight on the text below and select Copy.
beginning with Start:: and finishing with End::
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Highlight the entire content of the quote box below and select Copy.

 

Start::
CloseProcesses:
CreateRestorePoint:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Mozilla Firefox\firefox.exe -os-restarted -url hxxps://adlice.com/download/roguekiller/?utm_campaign=roguekiller&utm_source=soft&utm_medium=btn (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {00F47AC1-CAEA-4A23-A80A-52658D7AFBD6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (No File)
Task: {054E6640-54A5-4385-B992-3825434835FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (No File)
Task: {070A49DE-BA40-4D5F-B3A1-92C06B37D8ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f (No File)
Task: {1BCC53CF-FE23-46A5-B81C-5FCE6B3BDF23} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Me!\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {2AA27007-233A-4796-AD3F-7B9571B74A68} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3778126099-3402256936-1862990622-1001 => C:\Users\Me!\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {FAD11FDD-ED71-4544-8CBF-F94927052CDF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (No File)
AlternateDataStreams: C:\ProgramData\TEMP:359B3BDA [360]
FirewallRules: [{CFA1A9EB-EB8D-461A-A93F-9F5D0F13A435}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\Zoom.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{E3410491-1585-4E4D-84D5-760AA596C20B}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\airhost.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{7749EFDD-1FED-4C85-A816-63594766FD38}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\airhost.exe () <==== ATTENTION [zero byte File/Folder]
C:\Windows\Temp\*.*
End::

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Press the Fix button. FRST will process the lines copied above from the clipboard.
When finished, a log file (Fixlog.txt) will pop up and saved in the same location the tool was ran from.

Please copy and paste its contents in your next reply.

~~~
Malwarebytes AdwCleaner

-------------------

  • Please download AdwCleaner and save it to your Desktop
  • Close all open programs and browsers
  • Right click on the icon and select Run as administrator
  • Click Scan now
  • Allow the program to Quarantine what it finds except for Pre-installed applications if you would like to keep those or other entries you would like to keep
  • When completed click View Scan Log File
  • Copy and paste the contents in your reply
  • Click Skip Basic Repair if it appears then close the program

===================================================

Please post these 2 logs when finished.


Sometimes the angels fly close enough to you that you can hear the flutter of their wings...


MS - MVP Consumer Security 2009 - 2016, WI-MVP 2016-17
Antivirus Scanners Online Scanners Firewalls Slow Computer??

#3 Zhora

Zhora

    Authentic Member

  • Authentic Member
  • PipPip
  • 96 posts

Posted 20 July 2022 - 03:56 PM

Not sure this went well.  FRST gave me a failure to update notification first, but still ran the fix.  It did require a reboot, then a second reboot when there was a failure to automatically connect to my Wifi networks.  Both boots were slow.  Should I also include Addition.txt?

 

FRST:

Fix result of Farbar Recovery Scan Tool (x64) Version: 18-07-2022
Ran by Me! (20-07-2022 14:03:01) Run:3
Running from C:\Users\Me!\Desktop
Loaded Profiles: Me!
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
Start::
CloseProcesses:
CreateRestorePoint:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Mozilla Firefox\firefox.exe -os-restarted -url hxxps://adlice.com/download/roguekiller/?utm_campaign=roguekiller&utm_source=soft&utm_medium=btn (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {00F47AC1-CAEA-4A23-A80A-52658D7AFBD6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (No File)
Task: {054E6640-54A5-4385-B992-3825434835FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (No File)
Task: {070A49DE-BA40-4D5F-B3A1-92C06B37D8ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f (No File)
Task: {1BCC53CF-FE23-46A5-B81C-5FCE6B3BDF23} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Me!\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {2AA27007-233A-4796-AD3F-7B9571B74A68} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3778126099-3402256936-1862990622-1001 => C:\Users\Me!\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {FAD11FDD-ED71-4544-8CBF-F94927052CDF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (No File)
AlternateDataStreams: C:\ProgramData\TEMP:359B3BDA [360]
FirewallRules: [{CFA1A9EB-EB8D-461A-A93F-9F5D0F13A435}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\Zoom.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{E3410491-1585-4E4D-84D5-760AA596C20B}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\airhost.exe () <==== ATTENTION [zero byte File/Folder]
FirewallRules: [{7749EFDD-1FED-4C85-A816-63594766FD38}] => (Allow) C:\Users\Me!\AppData\Roaming\Zoom\bin\airhost.exe () <==== ATTENTION [zero byte File/Folder]
C:\Windows\Temp\*.*
End::
*****************
 
Processes closed successfully.
Restore point was successfully created.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => removed successfully
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Application Restart #0" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00F47AC1-CAEA-4A23-A80A-52658D7AFBD6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00F47AC1-CAEA-4A23-A80A-52658D7AFBD6}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{054E6640-54A5-4385-B992-3825434835FF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{054E6640-54A5-4385-B992-3825434835FF}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\WarrantyChecker" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{070A49DE-BA40-4D5F-B3A1-92C06B37D8ED}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{070A49DE-BA40-4D5F-B3A1-92C06B37D8ED}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1BCC53CF-FE23-46A5-B81C-5FCE6B3BDF23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1BCC53CF-FE23-46A5-B81C-5FCE6B3BDF23}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task v2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2AA27007-233A-4796-AD3F-7B9571B74A68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2AA27007-233A-4796-AD3F-7B9571B74A68}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3778126099-3402256936-1862990622-1001 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-3778126099-3402256936-1862990622-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FAD11FDD-ED71-4544-8CBF-F94927052CDF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FAD11FDD-ED71-4544-8CBF-F94927052CDF}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan" => removed successfully
C:\ProgramData\TEMP => ":359B3BDA" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CFA1A9EB-EB8D-461A-A93F-9F5D0F13A435}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E3410491-1585-4E4D-84D5-760AA596C20B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7749EFDD-1FED-4C85-A816-63594766FD38}" => removed successfully
 
=========== "C:\Windows\Temp\*.*" ==========
 
C:\Windows\Temp\AcronisMMS.log => moved successfully
 
========= End -> "C:\Windows\Temp\*.*" ========
 
 
 
The system needed a reboot.
 
==== End of Fixlog 14:05:27 ====
 
 
ADWCleaner:
# -------------------------------
# Malwarebytes AdwCleaner 8.3.2.0
# -------------------------------
# Build:    03-23-2022
# Database: 2022-06-24.1 (Cloud)
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    07-20-2022
# Duration: 00:01:11
# OS:       Windows 10 Home
# Cleaned:  8
# Failed:   0
 
 
***** [ Services ] *****
 
No malicious services cleaned.
 
***** [ Folders ] *****
 
No malicious folders cleaned.
 
***** [ Files ] *****
 
No malicious files cleaned.
 
***** [ DLL ] *****
 
No malicious DLLs cleaned.
 
***** [ WMI ] *****
 
No malicious WMI cleaned.
 
***** [ Shortcuts ] *****
 
No malicious shortcuts cleaned.
 
***** [ Tasks ] *****
 
No malicious tasks cleaned.
 
***** [ Registry ] *****
 
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted       HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted       HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted       HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted       HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
 
***** [ Chromium (and derivatives) ] *****
 
No malicious Chromium entries cleaned.
 
***** [ Chromium URLs ] *****
 
No malicious Chromium URLs cleaned.
 
***** [ Firefox (and derivatives) ] *****
 
No malicious Firefox entries cleaned.
 
***** [ Firefox URLs ] *****
 
No malicious Firefox URLs cleaned.
 
***** [ Hosts File Entries ] *****
 
No malicious hosts file entries cleaned.
 
***** [ Preinstalled Software ] *****
 
Deleted       Preinstalled.WildTangentGamesBundle   Folder   C:\Program Files (x86)\WILDGAMES
Deleted       Preinstalled.WildTangentGamesBundle   Folder   C:\Program Files (x86)\WILDTANGENT GAMES
 
 
*************************
 
[+] Delete IFEO
[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset BITS
[+] Reset Windows Firewall
[+] Reset Hosts File
[+] Reset IPSec
[+] Reset IE Policies
[+] Reset Proxy Settings
[+] Reset Winsock
 
*************************
 
AdwCleaner[S00].txt - [1281 octets] - [23/04/2018 09:16:10]
AdwCleaner[C00].txt - [1368 octets] - [23/04/2018 09:18:01]
AdwCleaner[S01].txt - [1364 octets] - [17/06/2018 08:46:58]
AdwCleaner[S02].txt - [1425 octets] - [19/06/2018 19:48:59]
AdwCleaner[S03].txt - [1486 octets] - [24/06/2018 10:00:04]
AdwCleaner[C03].txt - [1672 octets] - [24/06/2018 10:01:13]
AdwCleaner[S04].txt - [25814 octets] - [22/07/2018 23:39:02]
AdwCleaner[C04].txt - [22813 octets] - [23/07/2018 00:30:42]
AdwCleaner[S05].txt - [25938 octets] - [05/08/2018 11:46:03]
AdwCleaner[C05].txt - [22937 octets] - [05/08/2018 11:47:39]
AdwCleaner[S06].txt - [1856 octets] - [10/08/2018 09:58:15]
AdwCleaner[C06].txt - [2042 octets] - [10/08/2018 09:59:07]
AdwCleaner_Debug.log - [595599 octets] - [10/08/2018 10:02:34]
AdwCleaner[S07].txt - [2079 octets] - [12/08/2018 00:44:12]
AdwCleaner[C07].txt - [2227 octets] - [12/08/2018 00:44:31]
AdwCleaner[S08].txt - [2163 octets] - [12/08/2018 19:26:07]
AdwCleaner[S09].txt - [26430 octets] - [27/08/2018 00:01:28]
AdwCleaner[C09].txt - [23430 octets] - [27/08/2018 00:01:49]
AdwCleaner[S10].txt - [26555 octets] - [01/09/2018 08:57:36]
AdwCleaner[C10].txt - [23554 octets] - [01/09/2018 08:58:15]
AdwCleaner[S11].txt - [2850 octets] - [01/09/2018 09:01:41]
AdwCleaner[C11].txt - [2980 octets] - [01/09/2018 09:01:55]
AdwCleaner[S12].txt - [2595 octets] - [01/09/2018 09:06:47]
AdwCleaner[S13].txt - [3420 octets] - [08/09/2018 01:23:32]
AdwCleaner[C13].txt - [3496 octets] - [08/09/2018 01:23:46]
AdwCleaner[S14].txt - [3530 octets] - [19/09/2018 04:45:48]
AdwCleaner[C14].txt - [3606 octets] - [19/09/2018 04:46:05]
AdwCleaner[S15].txt - [2896 octets] - [19/09/2018 04:50:03]
AdwCleaner[S16].txt - [3008 octets] - [26/09/2018 23:35:52]
AdwCleaner[C16].txt - [3156 octets] - [26/09/2018 23:37:32]
AdwCleaner[S17].txt - [3091 octets] - [06/10/2018 09:30:38]
AdwCleaner[C17].txt - [3277 octets] - [06/10/2018 09:30:50]
AdwCleaner[S18].txt - [3213 octets] - [06/10/2018 09:34:39]
AdwCleaner[S19].txt - [3274 octets] - [21/10/2018 10:02:29]
AdwCleaner[C19].txt - [3460 octets] - [21/10/2018 10:02:42]
AdwCleaner[S20].txt - [3396 octets] - [27/10/2018 10:26:25]
AdwCleaner[C20].txt - [3582 octets] - [27/10/2018 10:26:44]
AdwCleaner[S21].txt - [3518 octets] - [16/11/2018 20:35:13]
AdwCleaner[C21].txt - [3704 octets] - [16/11/2018 20:35:56]
AdwCleaner[S22].txt - [3640 octets] - [30/11/2018 14:34:06]
AdwCleaner[C22].txt - [3996 octets] - [30/11/2018 14:34:47]
AdwCleaner[S23].txt - [3762 octets] - [30/11/2018 14:39:03]
AdwCleaner[C23].txt - [4118 octets] - [30/11/2018 14:39:18]
AdwCleaner[S24].txt - [3884 octets] - [08/12/2018 13:47:38]
AdwCleaner[C24].txt - [4240 octets] - [08/12/2018 13:48:32]
AdwCleaner[S25].txt - [4006 octets] - [17/12/2018 11:18:24]
AdwCleaner[C25].txt - [4362 octets] - [17/12/2018 11:18:58]
AdwCleaner[S26].txt - [4128 octets] - [27/12/2018 21:58:58]
AdwCleaner[C26].txt - [4484 octets] - [27/12/2018 21:59:32]
AdwCleaner[S27].txt - [4250 octets] - [13/02/2019 12:11:56]
AdwCleaner[S28].txt - [9500 octets] - [17/06/2021 15:14:24]
AdwCleaner[C28].txt - [5473 octets] - [17/06/2021 15:17:02]
AdwCleaner[S29].txt - [8592 octets] - [20/07/2022 14:22:23]
AdwCleaner[S30].txt - [8653 octets] - [20/07/2022 14:24:13]
 
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C30].txt ##########
 

#4 Juliet

Juliet

    SuperHelper

  • Retired Classroom Teacher
  • 7,686 posts
  • Interests:Boo!....
  • MVP

Posted 21 July 2022 - 08:07 AM

Not at this time,  The fix ran and did it's job.
 
Not really any signs of infection but I do note your antivirus Avast which can be heavy on resources.

ESET Online Scanner

--------------------

Note: You can expect this process to take a couple of  hours or more.

  • Download ESET Free Online Scanner and save it to your Desktop
  • Right click on esetonlinescanner_enu.exe and select Run as administrator
  • Click Computer Scan
  • Click Full scan
  • Select Enable ESET to detect and quarantine potentially unwanted applications
  • Click Start scan
  • Once completed click Save scan log and save it to your Desktop as ESETScan.txt
  • Click Continue then finally click Close
  • Copy and paste the ESETScan.txt file contents in your reply

===================================================


Sometimes the angels fly close enough to you that you can hear the flutter of their wings...


MS - MVP Consumer Security 2009 - 2016, WI-MVP 2016-17
Antivirus Scanners Online Scanners Firewalls Slow Computer??

#5 Zhora

Zhora

    Authentic Member

  • Authentic Member
  • PipPip
  • 96 posts

Posted 21 July 2022 - 06:46 PM

ESETScan:

 

7/21/2022 17:44:39 PM
Files scanned: 1082437
Detected files: 9
Cleaned files: 9
Total scan time 08:19:17
Scan status: Finished
C:\Documents and Settings\Me!\Downloads\Programs\ccsetup557.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting

C:\Documents and Settings\Me!\Downloads\Programs\nmap-7.70-setup.exe    a variant of Win32/NetTool.Ncat.A potentially unsafe application    cleaned by deleting

H:\Other Backups\Programs\ccsetup540.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting

H:\Other Backups\Programs\gu5setup.exe    multiple detections,Win32/UwS.GlaryUtilities.A application,a variant of Win32/GlaryUtilities.B potentially unwanted application    cleaned by deleting

H:\Seagate Dashboard 2.0\BIGBLUEMONSTER\Christine\Backup\bbefff55-5def-4ae6-9e25-7023af708d2b\20130907_124341_Christine\C\C\Program Files\viewsonic\registration.exe    Win32/PowerReg application    deleted

H:\Seagate Dashboard 2.0\BIGBLUEMONSTER\Christine\Backup\bbefff55-5def-4ae6-9e25-7023af708d2b\20130907_124341_Christine\C\C\Program Files\ViewSonicregistration.exe    Win32/PowerReg application    deleted

H:\Seagate Dashboard 2.0\BIGBLUEMONSTER\Christine\Backup\bbefff55-5def-4ae6-9e25-7023af708d2b\20130907_124341_Christine\C\C\Temp\Programs&Updates\ccsetup322.exe    Win32/Bundled.Toolbar.Google.E potentially unsafe application    cleaned by deleting

H:\Seagate Dashboard 2.0\BIGBLUEMONSTER\Christine\Backup\bbefff55-5def-4ae6-9e25-7023af708d2b\20130907_124341_Christine\C\C\Temp\Programs&Updates\ccsetup326.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting

H:\Seagate Dashboard 2.0\BIGBLUEMONSTER\Christine\Backup\bbefff55-5def-4ae6-9e25-7023af708d2b\20131005_121004_ChristineInc4\C\Temp\Programs\ccsetup406.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting


 


#6 Juliet

Juliet

    SuperHelper

  • Retired Classroom Teacher
  • 7,686 posts
  • Interests:Boo!....
  • MVP

Posted 22 July 2022 - 06:11 AM

How is the computer at the moment.


Sometimes the angels fly close enough to you that you can hear the flutter of their wings...


MS - MVP Consumer Security 2009 - 2016, WI-MVP 2016-17
Antivirus Scanners Online Scanners Firewalls Slow Computer??

#7 Zhora

Zhora

    Authentic Member

  • Authentic Member
  • PipPip
  • 96 posts

Posted 23 July 2022 - 10:12 AM

It boots up fast now, thank you! :)

 

I think I need to Google and find out how to get Avast to stop being so hoggy, tho.  Edge, too.

 

BTW, the instructions for ESET should include 'pause the dayam banners', because they slow the scan considerably.

 

--Christine K.


#8 Zhora

Zhora

    Authentic Member

  • Authentic Member
  • PipPip
  • 96 posts

Posted 23 July 2022 - 03:25 PM

Booting slowed down (but not as badly as before) right after I started having trouble keeping connected to my wifi today.  Rebooting did correct the wifi issue, even tho it was slower than my cold boot this morning I mentioned in my previous post.  The wifi connection issue is something that's been a problem lately, too, but it may just be "its T-mobile!" is the problem. :lol:

 

--Christine K.


#9 Juliet

Juliet

    SuperHelper

  • Retired Classroom Teacher
  • 7,686 posts
  • Interests:Boo!....
  • MVP

Posted 24 July 2022 - 06:25 AM

 

BTW, the instructions for ESET should include 'pause the dayam banners', because they slow the scan considerably.

That's probably been added since I was there last, sorry.

 

If your internet connection is a problem it will have an influence on anything you do online, and Avast can still be a factor and, I agree the resources it uses can bog down a machine.

I do know that at boot up and maybe once an hour, antivirus tools will auto update and this can be noticed by using task manager and locating what item is pulling the most CPU at that time.

 

Ready to remove tools and quarantine folders?


Sometimes the angels fly close enough to you that you can hear the flutter of their wings...


MS - MVP Consumer Security 2009 - 2016, WI-MVP 2016-17
Antivirus Scanners Online Scanners Firewalls Slow Computer??

#10 Zhora

Zhora

    Authentic Member

  • Authentic Member
  • PipPip
  • 96 posts

Posted 24 July 2022 - 03:03 PM

 

 

BTW, the instructions for ESET should include 'pause the dayam banners', because they slow the scan considerably.

That's probably been added since I was there last, sorry.

 

If your internet connection is a problem it will have an influence on anything you do online, and Avast can still be a factor and, I agree the resources it uses can bog down a machine.

I do know that at boot up and maybe once an hour, antivirus tools will auto update and this can be noticed by using task manager and locating what item is pulling the most CPU at that time.

 

Ready to remove tools and quarantine folders?

 

It looks like Acronis True Image is also being a hog, with the extra 'help' its trying to give re:protection from ransomware.  I should probably go to the software problems area here for help with those.  

 

And yep, lets remove stuff! :)

 

--Christine


#11 Juliet

Juliet

    SuperHelper

  • Retired Classroom Teacher
  • 7,686 posts
  • Interests:Boo!....
  • MVP

Posted 24 July 2022 - 05:09 PM

Use this tool to remove quarantined items:

Please download KpRm by Kernel-panik and save to your Desktop.

  • Click on KpRm.exe to run the tool.

Vista/Windows 7/8/10 users right-click and select Run As Administrator.

  • Put a check mark next to these items:

- Delete tools
- Delete now

  • Click the "Run" button.

automatic.png

  • When the tool has finished, it will create and open a log report and delete itself.

Sometimes the angels fly close enough to you that you can hear the flutter of their wings...


MS - MVP Consumer Security 2009 - 2016, WI-MVP 2016-17
Antivirus Scanners Online Scanners Firewalls Slow Computer??

#12 Juliet

Juliet

    SuperHelper

  • Retired Classroom Teacher
  • 7,686 posts
  • Interests:Boo!....
  • MVP

Posted 29 July 2022 - 09:03 AM

Glad we could help. SakDYGv.gif
Since this issue appears resolved ... this Topic is closed.
Sometimes the angels fly close enough to you that you can hear the flutter of their wings...


MS - MVP Consumer Security 2009 - 2016, WI-MVP 2016-17
Antivirus Scanners Online Scanners Firewalls Slow Computer??

Related Topics

Back to Virus, Spyware & Malware Removal · Next Unread Topic →

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. What the Tech
  2. Spyware / Malware / Virus Removal
  3. Virus, Spyware & Malware Removal
  4. Privacy Policy
  5. Terms of Use ·