==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.111\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.111\BraveCrashHandler64.exe
(C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ->) (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\142.4.4197\QtWebEngineProcess.exe <2>
(C:\Program Files (x86)\Hotkey\HkeyTray.exe ->) (CLEVO CO. -> CLEVO CO.) C:\Program Files (x86)\Hotkey\ComboKeyTray.exe
(C:\Program Files (x86)\Hotkey\HkeyTray.exe ->) (CLEVO CO. -> CLEVO CO.) C:\Program Files (x86)\Hotkey\DiskMonitor.exe
(C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe ->) (remotemouse.net) [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
(C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe ->) (RemoteMouse.net) [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Huawei\PCManager\MateBookService.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe
(C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\DFSSearchService.exe
(C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MessageCenterUI.exe
(C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\PerfWndMonHelper.exe
(C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\PerfWndMonHelper_x86.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 3\Sound Blaster Cinema 3\SBCinema3.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_2ac119fa6e52c4dd\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2ac119fa6e52c4dd\igfxEM.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <22>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <44>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) () [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (CLEVO CO.) [File not signed] C:\Program Files (x86)\Hotkey\HotkeyService.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\Hiview\HiviewService.exe
(services.exe ->) (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.) C:\Program Files\Huawei\PCManager\MateBookService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(services.exe ->) (Intel(R) Online Connect -> Intel Corporation) C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe
(services.exe ->) (Intel(R) Online Connect Access -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe
(services.exe ->) (Intel(R) Online Connect Access -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2ac119fa6e52c4dd\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2ac119fa6e52c4dd\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2ac119fa6e52c4dd\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Insyde Software Corp.) C:\Program Files (x86)\Hotkey\Driver\x64\HKClipSvc.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvcvi.inf_amd64_5b4857bb69d76ec8\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (CLEVO CO.) [File not signed] C:\Program Files (x86)\Hotkey\HkeyTray.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fodhelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1525_none_7e00daaa7c97a563\TiWorker.exe
(svchost.exe ->) (TechPowerUp LLC -> uWebb Software) C:\Program Files (x86)\ThrottleStop_9.3\ThrottleStop.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2021-07-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [41088 2014-02-21] (Creative Technology Ltd -> Creative Technology Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-11-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [TuneupUI.exe] => "C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" /nogui (No File)
HKLM\...\Run: [DriverUpdUI.exe] => "C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe" /nogui (No File)
HKLM-x32\...\Run: [Sound Blaster Cinema 3] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 3\Sound Blaster Cinema 3\SBCinema3.exe [1464832 2016-07-29] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [10585376 2022-02-13] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410960 2019-03-01] (Adobe Systems Incorporated -> Adobe Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe"
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKLM\...\Policies\Explorer: [NoThumbnailCache] 0
HKLM\...\Policies\Explorer: [DisableThumbnailCache] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2612600 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49958368 2022-02-01] (Google LLC -> )
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-26] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Run: [utweb] => "C:\Users\eu\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (No File)
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\eu\AppData\Local\Microsoft\Teams\Update.exe [2489016 2022-02-16] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Run: [NimiPlaces] => "D:\User\Desktop\yaojing\Nami\Nimi Places.exe" (No File)
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Policies\Explorer: [NoThumbnailCache] 0
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\Policies\Explorer: [DisableThumbnailCache] 0
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\MountPoints2: {36afdf68-1dcc-11ec-bb3f-80fa5b5027a9} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\MountPoints2: {9af741bf-65f6-11eb-bac3-44032cb29543} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\MountPoints2: {da889e11-34b5-11ec-bb43-44032cb29543} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\...\MountPoints2: {de57dea5-88ce-11ec-bb55-44032cb29543} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-82-1036420768-1044797643-1061213386-2937092688-4282445334\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-82-1036420768-1044797643-1061213386-2937092688-4282445334\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2612600 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-82-271721585-897601226-2024613209-625570482-296978595\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-82-271721585-897601226-2024613209-625570482-296978595\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2612600 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2612600 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-82-3682073875-1643277370-2842298652-3532359455-2406259117\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-82-3682073875-1643277370-2842298652-3532359455-2406259117\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2612600 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-82-3876422241-1344743610-1729199087-774402673-2621913236\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-82-3876422241-1344743610-1729199087-774402673-2621913236\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2612600 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-82-4068219030-1673637257-3279585211-533386110-4122969689\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-82-4068219030-1673637257-3279585211-533386110-4122969689\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2612600 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-15] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\98.1.35.103\Installer\chrmstp.exe [2022-02-17] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\eu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameFeet.exe [2017-10-21] (CLEVO CO.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07623113-BCE2-4AAD-AB1F-4DFCB27DFFF7} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-04-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {10FC89DA-6C81-473B-AF8B-2A1A7275701C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {1775BD84-967F-4F0E-8D5B-B6A32C86B7B6} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2756529373-2980069337-3325292071-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078456 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {220E91CC-E636-4C65-8AAC-582B069D508C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-19] (Dropbox, Inc -> Dropbox, Inc.)
Task: {232C3032-FD1D-4F5D-BD91-752A0EADB288} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {400C9C61-5FAF-47D4-AF2B-B907D3C21F1B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {44EA2F0B-B23B-4956-81AC-0FA872C28D35} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {46C3B1D2-BC73-401A-865D-5158FC2B2EAE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7055792 2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {46DF5D55-B8D3-4AE9-BD50-4531B160D1E5} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [6475544 2022-01-19] (Avast Software s.r.o. -> Avast Software)
Task: {4DAED58D-7E6D-45B6-BA9B-C28CE36F1C30} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [6475544 2022-01-18] (Avast Software s.r.o. -> Avast Software)
Task: {51309C16-3A96-440B-B273-30498FB234F2} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4760344 2022-01-23] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid 6f7373fd-3aa5-44e2-ab60-d186628f2f39
Task: {525308E0-2DE1-4117-B31C-97CD68E68C2E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {55578027-FE1C-438D-B3A3-4B69E3C21B9E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {55EF1B36-8145-4A8A-8343-900C8709A4DC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [140160 2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {62630F2E-2F2E-4511-B009-A527C448157A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-26] (Piriform Software Ltd -> Piriform)
Task: {63516BF4-B05B-4807-ACE5-F608CC332514} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-19] (Dropbox, Inc -> Dropbox, Inc.)
Task: {6EB5348C-AC77-4A3D-ADFE-E105DF0C73E4} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7020D09E-84D5-4BEA-B2CB-297036FF6725} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-04-18] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {726141FB-B065-4D30-B8CD-9C0FA7135378} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7CD381DB-1770-47F8-9BC7-FF58E36B4F52} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078456 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {7CFFEB8B-4EAC-4905-A71B-977F044CE462} - System32\Tasks\HkeyTrayLaunch => C:\Program Files (x86)\Hotkey\Hkeytray.exe [1596928 2017-11-09] (CLEVO CO.) [File not signed]
Task: {9278A25D-1179-4CDD-A070-FF7B3D1B0FC8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339472 2022-02-04] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9322628B-EF60-4795-B869-A76178D14B95} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [72336 2019-05-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {947D280C-2516-429E-9ADE-3F512294B78F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {9EA37C4C-78DF-4F44-A0BC-5B7968D27193} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4102784 2021-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1E4C8BB-E5B7-4A76-B92D-FF7196B87EE5} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1227032 2022-02-04] (Avast Software s.r.o. -> AVAST Software)
Task: {A659479C-CA0B-4478-BE9A-67A5DD8BF102} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4992792 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
Task: {A914303B-22DE-4CBE-884B-FC0EC5DB8652} - System32\Tasks\CCleanerSkipUAC - eu => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-26] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AB3900BC-B262-4E89-A26F-6F07496D5076} - System32\Tasks\TrottleStop => C:\Program Files (x86)\ThrottleStop_9.3\ThrottleStop.exe [3903904 2021-02-16] (TechPowerUp LLC -> uWebb Software)
Task: {ACCCA48E-D3A2-48C0-A287-F3B20CF225EB} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4761368 2022-02-04] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\SecureLine VPN\log" --guid 0b89d690-6125-42c6-9aa3-7e62568f0dbc
Task: {BCA6712A-F185-4C68-8F0B-A3070A298952} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7055792 2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {C27C764C-0BDF-40D9-BB2E-313D113B6096} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {C54E561F-420B-42A1-92AB-8C749C221E40} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1009872 2021-11-03] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C55EB34A-CE55-48D5-92BF-A03E6CF734B3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {CA4A541E-0C5C-4380-819F-9856D4037921} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CA5822BC-A126-4E39-A3EE-A46EC6A073B7} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4760344 2022-01-23] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid bc3d83af-f2b1-4ad3-a6b6-c0bde782da29
Task: {CC56FB25-6940-4151-84D6-11F325B5FD9B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D474CD5D-B60A-482D-9ADC-E7A91FF27496} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {D618083E-FDD3-4A05-9E01-C29ABDA719A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-22] (Google Inc -> Google Inc.)
Task: {D813D687-8631-461A-BD55-FBC3C17288C1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [140160 2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {DBAD3E09-79D1-4C10-ACEE-ED1B27BF46CF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {E0F424A8-BE0A-4AE5-8B0E-2C8E3091DDBE} - System32\Tasks\Asmwsoft Tray => C:\Program Files (x86)\Asmwsoft PC Optimizer\asmwtray.exe s (No File)
Task: {E856FD50-DA28-45DB-BA83-CB1606208A1A} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [6475544 2022-01-22] (Avast Software s.r.o. -> Avast Software)
Task: {EE90D3FD-1F1B-4AB6-A0B8-9E72F28F0023} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-22] (Google Inc -> Google Inc.)
Task: {F242D0DC-854A-4ADB-924C-E61A3722C48A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F5BB7C20-841C-48EE-A8C0-50F4E0B2ED40} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{13d51915-ed0f-4f02-bb99-25175960216c}: [NameServer] 100.120.32.1
Tcpip\..\Interfaces\{317bb4c9-c176-4708-af3b-e19981fd4ca4}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{317bb4c9-c176-4708-af3b-e19981fd4ca4}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{8c7b1d1f-51bc-4eeb-b57f-45ecb13ff741}: [DhcpNameServer] 10.0.0.138

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\eu\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-18]
Edge StartupUrls: Default -> "hxxp://123.sogou.comq558.hao.sougu001.com/cec.html?wfh4"
Edge DefaultSearchURL: Default -> hxxp://chdb.s.3jdh.com/?word={searchTerms}
Edge DefaultSearchKeyword: Default -> baidu.com

FireFox:
========
FF DefaultProfile: njjxprnl.default
FF ProfilePath: C:\Users\eu\AppData\Roaming\Mozilla\Firefox\Profiles\njjxprnl.default [2021-10-05]
FF ProfilePath: C:\Users\eu\AppData\Roaming\Mozilla\Firefox\Profiles\6oowzv01.default-release [2022-02-14]
FF Homepage: Mozilla\Firefox\Profiles\6oowzv01.default-release -> hxxp://hao.007qu.com/cff.html?1wbd
FF Extension: (AVG Online Security) - C:\Users\eu\AppData\Roaming\Mozilla\Firefox\Profiles\6oowzv01.default-release\Extensions\aos@avg.com.xpi [2021-12-01]
FF Extension: (Ronin Wallet) - C:\Users\eu\AppData\Roaming\Mozilla\Firefox\Profiles\6oowzv01.default-release\Extensions\ronin-wallet@axieinfinity.com.xpi [2021-12-01]
FF Extension: (MetaMask) - C:\Users\eu\AppData\Roaming\Mozilla\Firefox\Profiles\6oowzv01.default-release\Extensions\webextension@metamask.io.xpi [2021-12-01]
FF Extension: (ScreenShot Pro) - C:\Users\eu\AppData\Roaming\Mozilla\Firefox\Profiles\6oowzv01.default-release\Extensions\{ea2e9df9-0710-4ca8-9d35-770c715f696a}.xpi [2021-09-17]
FF Plugin: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-01-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-01-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-25] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-03-01] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @qq.com/QQlive -> C:\Program Files (x86)\Tencent\QQLive\npQQLive.dll [No File]
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1739 -> C:\Program Files (x86)\Ringz Studio\Storm Codec\Plugins\nprpjplug.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-19] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-03-01] (Adobe Systems Incorporated -> Adobe Systems)

Chrome: 
=======
CHR Profile: C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default [2022-02-18]
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}&btnK=Google+Search&sxsrf=APq-WBvxbxRmVcBwxj9tDjR1Cir3iW-Rnw%3A1645174907363&source=hp&ei=e2APYu-9E8aKr7wP_caK8Ag&iflsig=AHkkrS4AAAAAYg9ui61XvASADDlFbjB8UeNyWJdeNLzG&ved=0ahUKEwiv58aP8oj2AhVGxYsBHX2jAo4Q4dUDCAk&uact=5&oq=g&gs_lcp=Cgdnd3Mtd2l6EAMyBAgjECcyBAgjECcyCwgAEIAEELEDEIMBMhEILhCABBCxAxCDARDHARDRAzILCAAQgAQQsQMQgwEyCAgAEIAEELEDMggIABCABBCxAzIICAAQgAQQsQMyDgguEIAEELEDEMcBEKMCMgUIABCABFAAWABgrQNoAHAAeACAAaUBiAGlAZIBAzAuMZgBAKABAQ&sclient=gws-wiz
CHR Extension: (Slides) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-10-04]
CHR Extension: (Docs) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-10-04]
CHR Extension: (Google Drive) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-04]
CHR Extension: (YouTube) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-04]
CHR Extension: (Freak's Axie Extension) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\copjnifcecdedocejpaapepagaodgpbh [2022-01-06]
CHR Extension: (Sheets) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-10-04]
CHR Extension: (Google Docs Offline) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-18]
CHR Extension: (Chrome Web Store Payments) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-04]
CHR Extension: (Gmail) - C:\Users\eu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-04]
CHR HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\eu\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
CHR HKU\S-1-5-21-2756529373-2980069337-3325292071-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]


==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2019-03-01] (Adobe Systems Incorporated -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8482384 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563992 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1874200 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [563992 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-31] (Avast Software s.r.o. -> AVAST Software)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-04-18] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-04-18] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [13738776 2022-01-23] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9192328 2021-12-16] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-19] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-19] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-02-13] (Dropbox, Inc -> Dropbox, Inc.)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [7207192 2022-01-23] (Avast Software s.r.o. -> AVAST Software)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.012.0117.0003\FileSyncHelper.exe [3373432 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
R2 HiviewService; C:\Program Files\Huawei\Hiview\HiviewService.exe [1269960 2021-05-24] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 HKClipSvc; C:\Program Files (x86)\Hotkey\Driver\x64\HKClipSvc.exe [256480 2015-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Insyde Software Corp.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-08-20] (HP Inc. -> HP Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-09-11] (Huawei Technologies Co., Ltd. -> )
U3 Intel(R) Online Connect; C:\Program Files\Intel\Intel(R) Online Connect\ioc.exe [25312 2016-11-01] (Intel(R) Online Connect -> Intel Corporation)
S2 Intel(R) Online Connect Helper; C:\Program Files\Intel\Intel(R) Online Connect\iocHelperService.exe [34528 2016-11-01] (Intel(R) Online Connect -> Intel Corporation)
S3 Intel(R) Online Connect Software Asset Manager; C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-10-14] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe [173288 2016-10-17] (Intel(R) Online Connect Access -> Intel(R) Corporation)
R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel\Intel(R) Online Connect Access\IntelTechnologyAccessService.exe [496872 2016-10-17] (Intel(R) Online Connect Access -> Intel(R) Corporation)
S2 LCD_Service; C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe [26824 2021-07-07] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 MBAMainService; C:\Program Files\Huawei\PCManager\MateBookService.exe [691400 2021-07-07] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [478096 2020-11-03] (Microsoft Corporation -> Microsoft Corporation)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-23] (Microsoft Windows -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.012.0117.0003\OneDriveUpdaterService.exe [3842456 2022-02-18] (Microsoft Corporation -> Microsoft Corporation)
R2 PowerBiosServer; C:\Program Files (x86)\Hotkey\HotkeyService.exe [34304 2017-06-28] (CLEVO CO.) [File not signed]
R2 RemoteMouseService; C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe [11264 2022-02-02] () [File not signed]
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [9291032 2022-02-04] (Avast Software s.r.o. -> AVAST Software)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [571792 2020-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL14.SQLEXPRESS\MSSQL\Binn\sqlceip.exe [245648 2020-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14676264 2021-07-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746736 2022-01-17] (Oracle Corporation -> Oracle Corporation)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [152480 2019-02-21] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvcvi.inf_amd64_5b4857bb69d76ec8\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvcvi.inf_amd64_5b4857bb69d76ec8\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AirplaneModeHid; C:\WINDOWS\system32\DRIVERS\AirplaneModeHid.sys [46512 2021-07-15] (Insyde Software Corp. -> Insyde Corporation)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [226328 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [368664 2022-02-17] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [251928 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [267904 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [545784 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108888 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [854272 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [550904 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215920 2022-02-15] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2021-07-15] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317696 2022-02-17] (Avast Software s.r.o. -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [59008 2022-02-04] (Avast Software s.r.o. -> Avast Software)
S3 ChargeFaster; C:\Windows\SysWow64\drivers\ChargeFaster.sys [107800 2015-05-12] (Beijing Baofeng Technology Co., Ltd. -> ChargeFaster)
R1 Dokan1; C:\Program Files\Huawei\PCManager\dokan1.sys [117160 2021-06-08] (Huawei Device Co., Ltd. -> Dokan Project)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HKKbdFltr; C:\WINDOWS\system32\DRIVERS\HKKbdFltr.sys [51400 2015-11-26] (Insyde Software Corp. -> Insyde Software Corp.)
R3 HKMouFltr; C:\WINDOWS\system32\DRIVERS\HKMouFltr.sys [48344 2015-11-26] (Insyde Software Corp. -> Insyde Software Corp.)
R3 hwnetstat; C:\Program Files\Huawei\PCManager\WFPDriver.sys [32680 2021-07-07] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
R2 HwOs2ECx64; C:\Program Files\Huawei\PCManager\HwOs2EC10x64.sys [47552 2021-07-07] (Huawei Device Co., Ltd. -> Huawei Device Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52320 2014-08-16] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2018-04-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R1 ndisrd; C:\WINDOWS\system32\DRIVERS\ndisrfl.sys [59792 2016-09-13] (Intel(R) Technology Access -> Intel Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S4 RsFx0501; C:\WINDOWS\System32\DRIVERS\RsFx0501.sys [261784 2020-11-03] (Microsoft Corporation -> Microsoft Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R1 SvThANSP; C:\Program Files (x86)\Hotkey\SvThANSP.sys [15224 2013-10-11] (Savitech Corp. -> Windows (R) Win 7 DDK provider)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-06] (Windscribe Limited -> The OpenVPN Project)
R3 ThrottleStop; C:\Users\eu\AppData\Local\Temp\ThrottleStop.sys [50216 2022-02-16] (TechPowerUp LLC -> ) <==== ATTENTION
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [239648 2022-01-17] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249560 2022-01-17] (Oracle Corporation -> Oracle Corporation)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1046416 2022-01-17] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-13] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
U3 avgbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVCx32: SpSvc -> no filepath.
NETSVCx32: DesktopSvc -> no filepath.
NETSVCx32: HpSvc -> no filepath.

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-02-18 20:28 - 2022-02-18 20:29 - 000000000 ____D C:\FRST
2022-02-18 20:10 - 2022-02-18 20:10 - 000000000 ____D C:\Program Files\Malwarebytes
2022-02-18 16:20 - 2022-02-18 16:20 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-02-18 16:20 - 2022-02-18 16:20 - 000002149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-17 15:13 - 2022-02-17 15:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-02-17 10:17 - 2022-02-17 10:17 - 000368664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-02-17 10:17 - 2022-02-17 10:17 - 000317696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-02-16 18:36 - 2022-02-16 18:36 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2022-02-16 17:20 - 2022-02-16 17:20 - 000002406 _____ C:\Users\eu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2022-02-16 16:22 - 2022-02-16 16:44 - 000000000 ____D C:\Users\eu\.conda
2022-02-16 16:22 - 2022-02-16 16:22 - 000000025 _____ C:\Users\eu\.condarc
2022-02-16 16:22 - 2022-02-16 16:22 - 000000000 ____D C:\Users\eu\AppData\Roaming\jupyter
2022-02-16 16:22 - 2022-02-16 16:22 - 000000000 ____D C:\Users\eu\AppData\Roaming\.anaconda
2022-02-16 16:22 - 2022-02-16 16:22 - 000000000 ____D C:\Users\eu\AppData\Local\conda
2022-02-16 16:22 - 2022-02-16 16:22 - 000000000 ____D C:\Users\eu\.ipython
2022-02-16 16:22 - 2022-02-16 16:22 - 000000000 ____D C:\Users\eu\.continuum
2022-02-16 16:21 - 2022-02-16 16:21 - 000000000 ____D C:\Users\eu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)
2022-02-16 16:20 - 2022-02-16 16:37 - 000000000 ____D C:\Users\eu\AppData\Roaming\Notepad++
2022-02-16 16:20 - 2022-02-16 16:20 - 000000884 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2022-02-16 16:20 - 2022-02-16 16:20 - 000000000 ____D C:\Program Files\Notepad++
2022-02-16 16:18 - 2022-02-16 16:21 - 000000000 ____D C:\Users\eu\anaconda3
2022-02-16 15:43 - 2022-02-16 15:43 - 000000000 ____D C:\Users\eu\AppData\Roaming\JetBrains
2022-02-16 15:43 - 2022-02-16 15:43 - 000000000 ____D C:\Users\eu\AppData\Local\JetBrains
2022-02-16 14:20 - 2022-02-16 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2022-02-16 14:19 - 2022-02-16 14:19 - 000000000 ____D C:\Program Files\JetBrains
2022-02-15 13:18 - 2022-02-16 11:14 - 000000000 ____D C:\Users\eu\Cisco Packet Tracer 8.1.1
2022-02-15 13:18 - 2022-02-16 11:13 - 000000170 _____ C:\Users\eu\.packettracer
2022-02-15 13:18 - 2022-02-15 13:18 - 000000000 ____D C:\Users\eu\AppData\Local\Cisco Packet Tracer
2022-02-15 13:18 - 2022-02-15 13:18 - 000000000 ____D C:\Users\eu\AppData\Local\cache
2022-02-15 12:57 - 2022-02-11 05:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-15 12:57 - 2022-02-11 05:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-15 12:57 - 2022-02-11 05:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-15 12:57 - 2022-02-11 05:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-15 12:57 - 2022-02-11 05:42 - 001467840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-15 12:57 - 2022-02-11 05:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-02-15 12:57 - 2022-02-11 05:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-15 12:57 - 2022-02-11 05:42 - 001209280 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-15 12:57 - 2022-02-11 05:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-15 12:57 - 2022-02-11 05:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-15 12:57 - 2022-02-11 05:39 - 001531872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-02-15 12:57 - 2022-02-11 05:39 - 001176704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-02-15 12:57 - 2022-02-11 05:39 - 000797112 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-02-15 12:57 - 2022-02-11 05:39 - 000717760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-02-15 12:57 - 2022-02-11 05:39 - 000636032 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-02-15 12:57 - 2022-02-11 05:38 - 002120320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-02-15 12:57 - 2022-02-11 05:38 - 001602728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-02-15 12:57 - 2022-02-11 05:38 - 000983992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-02-15 12:57 - 2022-02-11 05:38 - 000795584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-02-15 12:57 - 2022-02-11 05:38 - 000711608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-02-15 12:57 - 2022-02-11 05:37 - 008612496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-02-15 12:57 - 2022-02-11 05:37 - 007714960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-02-15 12:57 - 2022-02-11 05:37 - 005727376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-02-15 12:57 - 2022-02-11 05:37 - 005099152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-02-15 12:57 - 2022-02-11 05:37 - 002935744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-02-15 12:57 - 2022-02-11 05:37 - 000456848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-02-15 12:57 - 2022-02-11 05:35 - 000849024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-02-15 12:57 - 2022-02-11 05:34 - 007613344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-02-15 12:57 - 2022-02-11 05:34 - 006461040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-02-15 12:57 - 2022-02-10 17:18 - 000089251 _____ C:\WINDOWS\system32\nvinfo.pb
2022-02-15 12:52 - 2022-02-15 12:52 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-02-15 12:52 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-02-15 12:52 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-02-15 12:52 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-02-15 12:52 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-02-15 12:52 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-02-15 12:52 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-02-15 12:52 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-02-15 12:52 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-15 12:52 - 2022-01-28 22:50 - 002859520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2022-02-15 12:37 - 2022-02-15 12:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PuTTY (64-bit)
2022-02-15 12:37 - 2022-02-15 12:37 - 000000000 ____D C:\Program Files\PuTTY
2022-02-15 12:16 - 2022-02-15 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer
2022-02-15 12:15 - 2022-02-15 12:16 - 000000000 ____D C:\Program Files\Cisco Packet Tracer 8.1.1
2022-02-15 08:39 - 2022-02-15 08:39 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2022-02-15 08:38 - 2022-02-15 08:38 - 000000000 ____D C:\WINDOWS\pss
2022-02-15 08:09 - 2022-02-18 16:17 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-02-15 08:09 - 2022-02-15 08:09 - 000854272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000550904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000545784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000368664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys.164505343017102
2022-02-15 08:09 - 2022-02-15 08:09 - 000340760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-02-15 08:09 - 2022-02-15 08:09 - 000267904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000251928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000226328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000215920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000108888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-02-15 08:09 - 2022-02-15 08:09 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-02-14 21:35 - 2022-02-14 21:35 - 000000000 ____D C:\Users\eu\AppData\Local\FreeOCR
2022-02-14 21:34 - 2022-02-14 21:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeOCR
2022-02-14 21:34 - 2022-02-14 21:34 - 000000000 ____D C:\FreeOCR
2022-02-14 21:34 - 2007-03-10 10:11 - 002680320 _____ (HiComponents) C:\WINDOWS\SysWOW64\ImageEnXLibrary.ocx
2022-02-14 16:45 - 2022-02-14 16:45 - 000000000 ____D C:\Users\eu\VirtualBox VMs
2022-02-14 16:45 - 2022-02-14 16:45 - 000000000 ____D C:\ProgramData\VirtualBox
2022-02-14 16:41 - 2022-02-14 16:41 - 000001160 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2022-02-14 16:41 - 2022-02-14 16:41 - 000000000 ____D C:\Program Files\Oracle
2022-02-14 16:41 - 2022-01-17 04:12 - 001046416 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxSup.sys
2022-02-14 16:41 - 2022-01-17 04:12 - 000188184 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2022-02-13 16:44 - 2022-02-13 16:44 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-02-13 16:44 - 2022-02-13 16:44 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-02-13 16:44 - 2022-02-13 16:44 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-02-13 16:44 - 2022-02-13 16:44 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-02-12 20:52 - 2022-02-14 14:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-11 16:24 - 2022-02-18 16:20 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-02-10 11:26 - 2022-02-10 11:26 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-10 11:26 - 2022-02-10 11:26 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-10 11:25 - 2022-02-10 11:25 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-10 11:25 - 2022-02-10 11:25 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-10 11:25 - 2022-02-10 11:25 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-10 11:21 - 2022-02-10 11:21 - 000000000 ___HD C:\$WinREAgent
2022-02-10 09:37 - 2022-02-18 18:41 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ___RD C:\Users\DefaultAppPool\OneDrive
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ___RD C:\Users\Default\OneDrive
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ___RD C:\Users\Classic .NET AppPool\OneDrive
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ___RD C:\Users\.NET v4.5\OneDrive
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ___RD C:\Users\.NET v4.5 Classic\OneDrive
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ___RD C:\Users\.NET v2.0\OneDrive
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ___RD C:\Users\.NET v2.0 Classic\OneDrive
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2022-02-08 21:15 - 2022-02-08 21:15 - 000000000 ____D C:\Program Files (x86)\Teams Installer
2022-02-08 21:13 - 2022-02-08 21:13 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2022-02-08 21:13 - 2022-02-08 21:13 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2022-02-08 21:13 - 2022-02-08 21:13 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2022-02-08 21:13 - 2022-02-08 21:13 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2022-02-08 21:13 - 2022-02-08 21:13 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2022-02-08 21:13 - 2022-02-08 21:13 - 000002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2022-02-08 21:13 - 2022-02-08 21:13 - 000002408 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2022-02-08 21:13 - 2022-02-08 21:13 - 000002400 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2022-02-08 21:13 - 2022-02-08 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2022-02-08 21:04 - 2022-02-08 21:04 - 000000000 ____D C:\Program Files\Microsoft Office 15
2022-02-08 20:59 - 2022-02-08 20:59 - 000000000 ____D C:\Users\eu\AppData\Local\pip
2022-02-04 16:21 - 2022-02-04 16:21 - 000059008 _____ (Avast Software) C:\WINDOWS\system32\Drivers\aswVpnRdr.sys
2022-02-03 12:50 - 2022-02-03 12:50 - 000000000 ____D C:\Users\eu\AppData\Roaming\Teams
2022-02-03 12:49 - 2022-02-03 12:50 - 000000000 ____D C:\Users\eu\AppData\Local\SquirrelTemp
2022-02-02 13:36 - 2022-02-02 13:36 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\SETAB26.tmp
2022-01-24 08:56 - 2022-01-24 08:56 - 000192736 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-02-18 20:27 - 2019-12-07 20:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-18 20:20 - 2017-12-22 02:54 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-18 20:12 - 2019-12-07 20:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-18 20:11 - 2021-10-08 15:30 - 000000000 ____D C:\Users\eu\AppData\LocalLow\IGDump
2022-02-18 20:11 - 2017-12-23 14:36 - 000000000 ____D C:\Users\eu\AppData\Local\CrashDumps
2022-02-18 18:41 - 2021-10-05 13:40 - 000000000 ____D C:\Users\eu\AppData\LocalLow\Mozilla
2022-02-18 18:31 - 2020-08-03 16:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-18 17:34 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-18 16:48 - 2018-07-14 03:37 - 000000000 ____D C:\Users\eu\AppData\Local\AVAST Software
2022-02-18 16:20 - 2021-12-13 12:10 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2756529373-2980069337-3325292071-1002
2022-02-18 16:20 - 2018-03-19 03:07 - 000000000 ____D C:\Program Files\CCleaner
2022-02-18 16:20 - 2017-11-15 15:42 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-18 16:18 - 2020-07-05 21:26 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-18 16:18 - 2019-12-07 20:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-18 16:18 - 2018-07-19 02:41 - 000000000 ____D C:\Users\eu\AppData\Local\Dropbox
2022-02-18 16:17 - 2017-12-21 21:23 - 000000000 __SHD C:\Users\eu\IntelGraphicsProfiles
2022-02-17 15:13 - 2018-07-19 02:41 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-02-17 10:19 - 2021-07-21 22:07 - 000002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2022-02-16 18:45 - 2020-08-03 16:40 - 001153092 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-16 18:45 - 2019-12-07 20:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-16 18:38 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2022-02-16 18:37 - 2021-07-25 15:47 - 000000000 ____D C:\Program Files\TeamViewer
2022-02-16 18:36 - 2021-08-26 19:27 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-16 18:36 - 2020-08-03 16:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-16 18:36 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-02-16 18:36 - 2019-12-07 20:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-02-16 18:36 - 2017-12-22 03:36 - 000000000 ____D C:\ProgramData\AVAST Software
2022-02-16 17:05 - 2019-12-07 20:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-16 16:22 - 2020-08-03 16:30 - 000000000 ____D C:\Users\eu
2022-02-16 16:17 - 2021-07-26 21:31 - 000000000 ____D C:\Users\eu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.9
2022-02-16 15:49 - 2018-07-14 03:59 - 000000000 ____D C:\ProgramData\Packages
2022-02-16 15:49 - 2017-12-22 04:37 - 000000000 ____D C:\Users\eu\AppData\Local\PlaceholderTileLogoFolder
2022-02-16 15:49 - 2017-12-21 21:23 - 000000000 ____D C:\Users\eu\AppData\Local\Packages
2022-02-16 15:47 - 2017-11-15 15:35 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-15 17:25 - 2020-08-03 16:30 - 000000000 ____D C:\Users\DefaultAppPool
2022-02-15 17:25 - 2020-08-03 16:30 - 000000000 ____D C:\Users\Classic .NET AppPool
2022-02-15 17:25 - 2020-08-03 16:30 - 000000000 ____D C:\Users\.NET v4.5 Classic
2022-02-15 17:25 - 2020-08-03 16:30 - 000000000 ____D C:\Users\.NET v4.5
2022-02-15 17:25 - 2020-08-03 16:30 - 000000000 ____D C:\Users\.NET v2.0 Classic
2022-02-15 17:25 - 2020-08-03 16:30 - 000000000 ____D C:\Users\.NET v2.0
2022-02-15 15:10 - 2021-07-18 16:56 - 000000000 ____D C:\Users\eu\AppData\Roaming\vlc
2022-02-15 13:01 - 2019-05-06 22:33 - 000000000 ____D C:\Users\eu\AppData\Local\NVIDIA
2022-02-15 12:53 - 2017-11-15 15:41 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-15 12:52 - 2017-11-15 15:42 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-15 12:52 - 2017-11-15 15:39 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-15 08:53 - 2021-10-04 13:30 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-15 08:38 - 2020-08-03 16:30 - 000000000 ____D C:\Users\SQLTELEMETRY$SQLEXPRESS
2022-02-15 08:38 - 2020-08-03 16:30 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS
2022-02-15 08:34 - 2019-05-06 22:33 - 000000000 ____D C:\Users\eu\AppData\Local\NVIDIA Corporation
2022-02-15 08:09 - 2018-07-30 02:30 - 000000000 ____D C:\Users\eu\AppData\Local\D3DSCache
2022-02-15 08:07 - 2021-10-05 13:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-14 19:32 - 2017-12-22 14:55 - 000000000 ____D C:\Users\eu\.VirtualBox
2022-02-14 13:34 - 2021-10-28 19:15 - 000000000 ____D C:\ProgramData\HwSynergy
2022-02-14 13:34 - 2019-08-02 15:46 - 000000600 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2022-02-12 20:52 - 2021-10-05 13:40 - 000001018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-02-12 20:52 - 2021-10-05 13:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-12 20:52 - 2021-10-05 13:40 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-10 11:43 - 2020-08-03 16:29 - 000466072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-10 11:42 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-10 11:42 - 2019-12-07 20:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-10 11:25 - 2020-08-03 16:31 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-10 11:19 - 2017-12-22 03:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-10 11:16 - 2017-12-22 03:06 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-09 10:08 - 2021-09-09 12:32 - 000000000 ____D C:\ProgramData\AVG
2022-02-08 21:30 - 2017-12-21 21:23 - 000000000 ____D C:\Users\eu\AppData\Local\ConnectedDevicesPlatform
2022-02-08 21:28 - 2019-12-07 20:14 - 000000000 ____D C:\WINDOWS\registration
2022-02-08 21:15 - 2019-12-07 20:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-02-08 21:15 - 2017-12-21 21:25 - 000000000 ___RD C:\Users\eu\OneDrive
2022-02-08 21:14 - 2017-12-23 04:35 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-08 21:01 - 2018-03-19 14:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-02-08 21:00 - 2017-09-30 00:46 - 000000076 _____ C:\WINDOWS\win.ini
2022-02-08 20:52 - 2021-06-03 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Mouse
2022-02-08 20:52 - 2021-06-03 20:53 - 000000000 ____D C:\Program Files (x86)\Remote Mouse
2022-02-05 21:14 - 2018-05-23 19:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2022-02-03 12:50 - 2021-09-22 10:11 - 000002076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-02-03 12:50 - 2021-09-22 10:11 - 000001914 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-02-03 12:50 - 2021-09-22 10:11 - 000001914 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-02-03 12:50 - 2021-09-22 10:11 - 000001902 _____ C:\Users\Default\Desktop\Google Docs.lnk
2022-01-28 22:50 - 2018-05-22 16:00 - 002201800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2022-01-28 22:50 - 2018-05-22 16:00 - 001295872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2022-01-26 15:53 - 2021-10-28 19:15 - 000000000 ____D C:\Users\eu\PCManger
2022-01-26 09:28 - 2020-08-03 16:37 - 000003480 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-26 09:28 - 2020-08-03 16:37 - 000003356 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-24 08:56 - 2021-07-04 11:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-01-24 08:56 - 2021-07-04 11:55 - 000000000 ____D C:\Program Files\Java
2022-01-23 18:29 - 2020-08-03 16:37 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-23 18:29 - 2020-08-03 16:37 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-21 23:22 - 2020-10-26 12:09 - 000082432 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2022-01-21 23:22 - 2020-10-26 12:09 - 000071168 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll

==================== Files in the root of some directories ========

2017-12-22 15:00 - 2021-05-12 22:26 - 000000915 _____ () C:\Users\eu\AppData\Roaming\coreavc.ini
2019-05-12 16:39 - 2019-05-12 17:29 - 000009728 _____ () C:\Users\eu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-07-14 22:14 - 2021-07-14 22:14 - 001065984 _____ () C:\Users\eu\AppData\Local\file__0.localstorage
2018-10-17 23:32 - 2018-10-17 23:32 - 000000410 _____ () C:\Users\eu\AppData\Local\oobelibMkey.log
2021-07-11 20:53 - 2021-07-11 20:53 - 000001879 _____ () C:\Users\eu\AppData\Local\recently-used.xbel
2018-04-10 12:27 - 2019-06-06 14:29 - 000007606 _____ () C:\Users\eu\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================