Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-03-2022 Ran by user (administrator) on DESKTOP-9SBNT25 (Alienware Alienware Aurora R8) (11-03-2022 05:30:35) Running from C:\Users\user\Desktop Loaded Profiles: user Platform: Microsoft Windows 10 Home Version 21H1 19043.1526 (X64) Language: English (United States) Default browser: Edge Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) () [File not signed] C:\Program Files\Rainlendar2\Rainlendar2.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5> (Borislav Surbat -> MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.191.0.20\OverwolfHelper.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.191.0.20\OverwolfHelper64.exe (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.191.0.20\OverwolfBrowser.exe <4> (C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Users\user\AppData\Local\Overwolf\ProcessCache\0.191.0.20\cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj\curseforge.exe <2> (C:\Program Files (x86)\Steam\steam.exe ->) () [File not signed] C:\Program Files (x86)\Steam\steamapps\common\Dynomite Deluxe\Dynomite.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8> (C:\Program Files (x86)\Steam\steamapps\common\Dynomite Deluxe\Dynomite.exe ->) () [File not signed] [File is in use] C:\Program Files (x86)\Steam\steamapps\common\Dynomite Deluxe\popE430.tmp (C:\Program Files\Alienware\Alienware Command Center\AWCC.Service.exe ->) (Dell Inc -> Dell Technologies) C:\Program Files\Alienware\Alienware Command Center\AWCC.Background.Server.exe (C:\Program Files\Alienware\Alienware Command Center\AWCC.Service.exe ->) (Dell Inc -> Dell Technologies) C:\Program Files\Alienware\Alienware Command Center\OCControlService\OCControl.Service.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\nvapiw.exe (C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (cmd.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe <2> (drivers\RivetNetworks\Killer\KAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe <2> (drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Rivet Networks LLC -> Intel Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe (drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe (DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe (explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <4> (explorer.exe ->) (Goodsol Development Inc. -> Goodsol Development Inc.) C:\Program Files (x86)\goodsol\goodsol.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <22> (explorer.exe ->) (Support.com, Inc. -> SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe (RuntimeBroker.exe ->) (Dell Inc) C:\Program Files\WindowsApps\DellInc.AlienwareCommandCenter_5.4.16.0_x64__htrsf667h5kn2\GameLibrary\GameLibraryAppService.exe (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe (services.exe ->) (A-Volute -> Nahimic) C:\Windows\System32\NahimicService.exe (services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (services.exe ->) (Dell Inc -> Dell Technologies) C:\Program Files\Alienware\Alienware Command Center\AWCC.Service.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a34e85e556ccdec6\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a34e85e556ccdec6\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe (services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.18001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.18001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_21286f2484bb9003\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3> (services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe (services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (services.exe ->) (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (sihost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MSPaint_6.2203.1037.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe (svchost.exe ->) (Dell Inc) C:\Program Files\WindowsApps\DellInc.AlienwareCommandCenter_5.4.16.0_x64__htrsf667h5kn2\AWCC.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.storepurchaseapp_12109.1001.10.0_x64__8wekyb3d8bbwe\StoreExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1525_none_7e00daaa7c97a563\TiWorker.exe (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1140000 2020-07-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AlienwareMobileConnectWelcome] => C:\Program Files\Alienware\AlienwareMobileConnectDrivers\AlienwareMobileConnectWelcome.exe [447232 2019-06-20] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed] HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [157464 2022-02-08] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [3894552 2022-02-02] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5204968 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.) HKU\S-1-5-21-2564881613-3640244745-1839761148-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2617208 2022-03-03] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2564881613-3640244745-1839761148-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [10988848 2022-02-22] (Support.com, Inc. -> SUPERAntiSpyware) HKU\S-1-5-21-2564881613-3640244745-1839761148-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-04] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-2564881613-3640244745-1839761148-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802072 2022-03-01] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-2564881613-3640244745-1839761148-1001\...\Run: [MicrosoftEdgeAutoLaunch_8714F0D917266FE3AFB7F8BB98EEBC18] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKU\S-1-5-21-2564881613-3640244745-1839761148-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\MCShieldRTM.exe [650816 2014-04-11] (Borislav Surbat -> MyCity) HKU\S-1-5-21-2564881613-3640244745-1839761148-1001\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [3415552 2021-10-08] () [File not signed] HKLM\...\Print\Monitors\HP AC11 Status Monitor: C:\Windows\system32\hpinkstsAC11LM.dll [328552 2012-01-11] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\99.0.4844.51\Installer\chrmstp.exe [2022-03-03] (Google LLC -> Google LLC) BootExecute: autocheck autochk * sdnclean64.exe HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0EAA3C12-9A55-4490-909E-B639B6E968A0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0F684EEE-ECBD-481F-BEF7-E0732688636E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-12-21] (Google LLC -> Google LLC) Task: {105D676A-D551-4274-81E7-97AC52E4FD87} - \Microsoft\Windows\Speech\HeadsetButtonPress -> No File <==== ATTENTION Task: {170B45E7-28AA-4271-94CF-BB40023BCF11} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5629064 2021-11-23] (Safer-Networking Limited -> Safer-Networking Ltd.) Task: {190C9C8F-6FE0-4F47-AEA8-24DAF18CE654} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [275136 2022-01-10] (Bluestack Systems, Inc -> BlueStack Systems, Inc.) Task: {1949073A-8FDA-4EA4-8E59-407CDB02440F} - \Microsoft\Windows\WindowsUpdate\sihpostreboot -> No File <==== ATTENTION Task: {277DBAA5-4C49-45CF-9FBB-2E650BF6AD73} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2FD914CB-91CE-46D8-ACD1-C787AACB77CF} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-11-15] (Dell Inc -> Dell Inc.) Task: {36C91971-EA6D-4E1E-B9D4-D381F949E802} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2564881613-3640244745-1839761148-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4158880 2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Task: {3766338D-CE25-4323-BFFA-228C6AFDED8C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301928 2019-10-25] (NVIDIA Corporation -> NVIDIA Corporation) Task: {47BF6567-5967-40BE-BD7A-6CBECCBE2872} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [5363552 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.) Task: {4D7C5EEA-529D-4CAE-B2E9-FCCBCED76C94} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913720 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {54378F72-5E92-4032-A17A-9764E57B5ABC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-20] (Microsoft Corporation -> Microsoft Corporation) Task: {5F774C08-FE2F-45E9-B676-54E6F00C2FAD} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4158880 2022-03-03] (Microsoft Corporation -> Microsoft Corporation) Task: {609BEE7E-7D05-4E7F-BD95-3FF168F178D3} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6093928 2021-12-20] (Safer-Networking Limited -> Safer-Networking Ltd.) Task: {620C5958-B054-466A-B1DE-AB72D19D3F38} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-20] (Microsoft Corporation -> Microsoft Corporation) Task: {6449A225-9F20-41AB-83EE-7694B9CA358C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2296088 2022-03-07] (Avast Software s.r.o. -> Avast Software) Task: {805DDEAE-D93B-41BB-8E88-E10565F2160A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {86B743C2-1816-42C4-B002-7DE8D3006A46} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8F084E57-1836-4E0F-9B3E-06D2C6008B09} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4760344 2022-02-02] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid ba5b30c1-33be-4f0f-ae12-c6002336cbc3 Task: {92C7A9E3-DF62-4503-9943-42A8C40A7D55} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-12-21] (Google LLC -> Google LLC) Task: {9B74C7D8-C85A-4374-804C-091F1A2DDC84} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913720 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9CCC165D-906D-4CF4-82DC-D492E396A4FE} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [6475544 2022-01-18] (Avast Software s.r.o. -> Avast Software) Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\BlueStacksHelper_nxt" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Intel PTT EK Recertification" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\Overwolf Updater Task" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{EE0F2AC5-0457-4977-AD8A-EA0E559AE941}" /ENABLE Task: {AFBEE852-49C4-4A01-81A8-EB223C9894F8} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE Task: {B2547FF1-298D-452B-94F9-B8A5CB69E336} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-20] (Microsoft Corporation -> Microsoft Corporation) Task: {B5D525D9-5FC4-47D7-8E64-C53328999CB2} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4992792 2022-02-08] (Avast Software s.r.o. -> AVAST Software) Task: {BDFE8770-E813-433A-9510-6ED8BECE50E5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-20] (Microsoft Corporation -> Microsoft Corporation) Task: {C39CB74B-74B9-4E2B-82B2-C5B684567749} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2540376 2022-03-01] (Overwolf Ltd -> Overwolf LTD) Task: {CA716E99-7F77-4000-B325-CD0D75BAC3EC} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CBFB6BE6-9828-4121-A91C-8ADE8B6B1C36} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> No File <==== ATTENTION Task: {D1DE73FA-7615-4994-81C2-429FD73EA31B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654456 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {ED742829-8E3F-4233-BC54-84A4A5D9270D} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {FAAEC969-AF91-4C04-8825-EF25EDE2E5F8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{2c7e7f2e-fee4-4152-ba91-14bca94e108f}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{8f6a6489-336b-4c3a-9f5c-804740e53958}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge Profile: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-11] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-02-26] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 2wk8gaok.default FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\2wk8gaok.default [2021-12-22] FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\e0rxe9g3.default-release [2022-02-20] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-12-22] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2022-03-11] CHR Notifications: Default -> hxxps://mail.google.com; hxxps://mail.yahoo.com; hxxps://www.facebook.com; hxxps://www.messenger.com; hxxps://www.tiktok.com; hxxps://www.youtube.com CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox","hxxps://mail.yahoo.com/d/folders/1?guce_referrer=aHR0cHM6Ly9sb2dpbi55YWhvby5jb20v&guce_referrer_sig=AQAAAIPT1RjNnFGeiPicn0gURj2cV_dQw1mdDcYbOa8-MPF-Gr45rlezH7mQMoK8KsMvFWZbRuSLfKUprQXWjFYywso6DvjG4HdsAmR7Qa99XGHWSRYQFWNDBOxNJUEINNCXfkHkUILcTqAo9O2utXLIiQJd5mUV7Pz6T4DTUxI3DAEA","hxxps://www.facebook.com/messages/t/100003784766650/","hxxps://www.facebook.com/games/manage/?store_visit_source=canvas_player_rhc","hxxps://ground.news/blindspot" CHR Extension: (Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-22] CHR Extension: (Entanglement Web App) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd [2021-12-22] CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-22] CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-22] CHR Extension: (Spider Solitaire) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcopgabdbdohekgeabpbfhledmdahkpe [2021-12-22] CHR Extension: (Bitmoji) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfgdeiadkckfbkeigkoncpdieiiefpig [2022-01-21] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-22] CHR Extension: (uBlock Origin) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-03-05] CHR Extension: (Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-22] CHR Extension: (Google Docs Offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-21] CHR Extension: (VPN Free - Betternet Unlimited VPN Proxy) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjknjjomckknofjidppipffbpoekiipm [2021-12-22] CHR Extension: (Avast Online Security & Privacy) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-03-05] CHR Extension: (Pinterest Save Button) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2022-03-05] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-02-25] CHR Extension: (SlingPlayer for DISH Anywhere) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcnpmlegoehfgohpkmjhpohjchokamnn [2021-12-22] CHR Extension: (Chrome Web Store Payments) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-22] CHR Extension: (ScriptSafe) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf [2021-12-22] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-22] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2021-01-09] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) S4 Alienware Digital Delivery Services; c:\Program Files (x86)\Alienware Digital Delivery Services\Dell.D3.WinSvc.exe [38096 2019-06-19] (Dell Inc -> ) R2 Alienware SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [308424 2019-09-25] (Dell Inc -> Dell Inc.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8482384 2022-02-16] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [563992 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1874200 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [563992 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-12-21] (Avast Software s.r.o. -> AVAST Software) R2 AWCCService; C:\Program Files\Alienware\Alienware Command Center\AWCC.Service.exe [15512 2018-09-21] (Dell Inc -> Dell Technologies) R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [13738776 2022-02-02] (Avast Software s.r.o. -> AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-01-12] (Microsoft Corporation -> Microsoft Corporation) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [436256 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3847712 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [462880 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) S4 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1024680 2021-09-01] (PC-Doctor, Inc. -> PC-Doctor, Inc.) S4 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-11] (Dell Inc -> ) S4 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.033.0213.0002\FileSyncHelper.exe [3381152 2022-03-03] (Microsoft Corporation -> Microsoft Corporation) R3 KAPSService; C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe [73496 2021-05-25] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 Killer Analytics Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2360616 2021-05-25] (Rivet Networks LLC -> Rivet Networks) R2 Killer Network Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2756896 2021-05-25] (Rivet Networks LLC -> Rivet Networks) S3 Killer Wifi Optimization Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe [73496 2021-05-25] (Rivet Networks LLC -> Rivet Networks, LLC.) R3 KNDBWM; C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [73488 2021-05-25] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7997112 2022-02-18] (Malwarebytes Inc -> Malwarebytes) R2 NahimicService; C:\Windows\system32\NahimicService.exe [2701728 2020-07-03] (A-Volute -> Nahimic) S4 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.033.0213.0002\OneDriveUpdaterService.exe [3852152 2022-03-03] (Microsoft Corporation -> Microsoft Corporation) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2540376 2022-03-01] (Overwolf Ltd -> Overwolf LTD) S4 SbieSvc; C:\Program Files\Sandboxie-Plus\SbieSvc.exe [360976 2021-11-01] (Tonalio GmbH -> sandboxie-plus.com) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2782080 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4605312 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.) S4 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-11-15] (Dell Inc -> Dell Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-05] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-05] (Microsoft Windows Publisher -> Microsoft Corporation) S2 xTendSoftAPService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [74016 2021-05-25] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 xTendUtilityService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [74024 2021-05-25] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_21286f2484bb9003\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_21286f2484bb9003\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [226328 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [368664 2022-02-16] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [251928 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99352 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [21936 2021-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41352 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [267904 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [545784 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108888 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82912 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [854272 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [550376 2022-03-03] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215920 2022-02-08] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [317696 2022-02-16] (Avast Software s.r.o. -> AVAST Software) R3 AWCCDriver; C:\Windows\System32\drivers\AWCCDriver.sys [42408 2020-04-01] (IndiLogic LLC -> Dell Inc.) R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [320728 2022-01-10] (Bluestack Systems, Inc -> Bluestack System Inc.) R3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies) S3 DSI_SiUSBXp_3_1; C:\Windows\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [160176 2021-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 KfeCoSvc; C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [189336 2021-05-25] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [221096 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [194480 2022-02-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [69040 2022-02-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-12-21] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [156792 2022-03-07] (Malwarebytes Inc -> Malwarebytes) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-26] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) S3 SbieDrv; C:\Program Files\Sandboxie-Plus\SbieDrv.sys [229384 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> sandboxie-plus.com) S0 Spybot3ELAM; C:\Windows\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2022-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [435432 2022-01-05] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-05] (Microsoft Windows -> Microsoft Corporation) S3 WireGuard; C:\Windows\system32\DRIVERS\wireguard.sys [164872 2021-12-22] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) U1 aswbdisk; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2022-03-11 05:30 - 2022-03-11 05:33 - 000041174 _____ C:\Users\user\Desktop\FRST.txt 2022-03-11 05:28 - 2022-03-11 05:28 - 002364928 _____ (Farbar) C:\Users\user\Desktop\FRST64 (1).exe 2022-03-11 04:28 - 2022-03-11 04:28 - 011569068 _____ C:\Users\user\Desktop\special brew.mp4 2022-03-10 12:56 - 2022-03-10 12:59 - 000000000 ____D C:\Users\user\.rainlendar2 2022-03-10 12:56 - 2022-03-10 12:56 - 000001769 _____ C:\Users\Public\Desktop\Rainlendar2.lnk 2022-03-10 12:56 - 2022-03-10 12:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainlendar2 2022-03-10 12:55 - 2022-03-10 12:56 - 000000000 ____D C:\Program Files\Rainlendar2 2022-03-10 12:55 - 2022-03-10 12:55 - 034686129 _____ C:\Users\user\Desktop\Rainlendar-Lite-2.17.1-64bit.exe 2022-03-09 19:22 - 2022-03-09 19:22 - 000001970 _____ C:\Users\user\Desktop\Arua.lnk 2022-03-09 19:22 - 2022-03-09 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arua 2022-03-09 17:20 - 2022-03-11 05:32 - 000000000 ____D C:\FRST 2022-03-09 17:18 - 2022-03-09 17:19 - 002364928 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe 2022-03-09 17:14 - 2022-03-09 17:15 - 000000000 ____D C:\ProgramData\MCShield 2022-03-09 17:14 - 2022-03-09 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield 2022-03-09 17:14 - 2022-03-09 17:14 - 000000000 ____D C:\Program Files (x86)\MCShield 2022-03-09 17:12 - 2022-03-09 17:12 - 002856736 _____ (MyCity) C:\Users\user\Desktop\MCShield-Setup.exe 2022-03-08 20:31 - 2022-03-08 20:31 - 000000000 ____D C:\$WinREAgent 2022-03-05 18:43 - 2022-03-09 19:24 - 000000000 ____D C:\Users\user\AppData\Local\Arua 2022-03-05 13:07 - 2022-03-08 02:05 - 000000000 ____D C:\Users\user\Desktop\movies 2022-03-05 13:06 - 2022-03-05 14:58 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc 2022-03-05 13:04 - 2022-03-05 13:04 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2022-02-28 23:11 - 2022-02-28 23:11 - 000000222 _____ C:\Users\user\Desktop\Beyond Two Souls.url 2022-02-25 11:03 - 2022-02-25 11:03 - 000520259 _____ C:\Users\user\Desktop\Houston's Eagle 106.9 & 107.5 – 106.9 & 107.5 The Eagle.html 2022-02-25 11:03 - 2022-02-25 11:03 - 000000000 ____D C:\Users\user\Desktop\Houston's Eagle 106.9 & 107.5 – 106.9 & 107.5 The Eagle_files 2022-02-24 22:55 - 2022-02-24 22:55 - 000000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics 2022-02-24 22:21 - 2022-02-24 22:21 - 000000000 ____D C:\Users\user\Documents\FeedbackHub 2022-02-23 15:57 - 2022-02-23 15:57 - 000000000 ____D C:\Program Files\UNP 2022-02-21 16:50 - 2022-02-21 16:50 - 000194480 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2022-02-21 16:50 - 2022-02-21 16:50 - 000069040 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2022-02-21 16:49 - 2022-03-07 18:54 - 000156792 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2022-02-21 00:13 - 2022-02-21 00:14 - 000000000 ____D C:\Users\user\Desktop\Sewing Machine Cabinet 2022-02-20 08:42 - 2022-02-20 08:42 - 000000839 _____ C:\Users\Public\Desktop\Speccy.lnk 2022-02-20 08:42 - 2022-02-20 08:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2022-02-20 08:42 - 2022-02-20 08:42 - 000000000 ____D C:\Program Files\Speccy 2022-02-18 20:32 - 2022-03-09 22:32 - 000000000 ____D C:\Users\user\Desktop\Exe's 2022-02-18 01:45 - 2022-02-18 01:45 - 000221096 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2022-02-13 11:56 - 2022-02-13 11:56 - 000000000 ____D C:\Users\user\AppData\Roaming\Goodsol 2022-02-13 11:55 - 2022-02-13 12:09 - 000001066 _____ C:\Users\user\Desktop\Pretty Good Solitaire.lnk 2022-02-13 11:55 - 2022-02-13 12:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pretty Good Solitaire 2022-02-13 11:55 - 2022-02-13 12:09 - 000000000 ____D C:\Program Files (x86)\goodsol 2022-02-13 00:32 - 2021-11-21 18:15 - 005165640 _____ (Intel Corporation) C:\Windows\system32\Drivers\Netwtw10.sys 2022-02-13 00:32 - 2021-11-21 18:15 - 001622072 _____ (Intel Corporation) C:\Windows\system32\IntelIHVRouter08.dll 2022-02-13 00:32 - 2021-11-21 17:46 - 045002608 _____ C:\Windows\system32\Drivers\Netwfw10.dat 2022-02-10 01:36 - 2022-02-24 21:19 - 000000000 ____D C:\Windows\Minidump 2022-02-10 00:08 - 2022-02-10 00:08 - 000000000 ____D C:\Users\user\.mputils 2022-02-09 10:00 - 2022-02-09 10:00 - 000011813 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-02-09 09:59 - 2022-02-09 09:59 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2022-02-09 09:55 - 2022-02-09 09:55 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-02-09 09:55 - 2022-02-09 09:55 - 000272384 _____ C:\Windows\system32\TpmTool.exe 2022-02-09 09:55 - 2022-02-09 09:55 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2022-03-11 05:31 - 2022-01-06 00:24 - 000000000 ____D C:\Program Files (x86)\Steam 2022-03-11 04:19 - 2021-12-22 20:32 - 000000000 ____D C:\Users\user\AppData\LocalLow\IGDump 2022-03-10 23:43 - 2021-12-20 16:43 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-03-10 16:37 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\AppReadiness 2022-03-10 12:56 - 2020-04-01 16:56 - 000000000 ____D C:\ProgramData\Package Cache 2022-03-09 23:35 - 2021-12-20 16:43 - 000000000 ___HD C:\Program Files\WindowsApps 2022-03-09 23:06 - 2022-01-29 00:52 - 000003304 _____ C:\Windows\system32\Tasks\Overwolf Updater Task 2022-03-09 23:06 - 2022-01-16 02:05 - 000003018 _____ C:\Windows\system32\Tasks\BlueStacksHelper_nxt 2022-03-09 23:06 - 2021-12-25 10:47 - 000003458 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-09 23:06 - 2021-12-25 10:47 - 000003256 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-09 23:06 - 2021-12-25 10:47 - 000002974 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-03-09 23:06 - 2021-12-22 22:14 - 000003368 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{EE0F2AC5-0457-4977-AD8A-EA0E559AE941} 2022-03-09 23:06 - 2021-12-21 14:14 - 000003468 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-03-09 23:06 - 2021-12-21 14:14 - 000003244 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-03-09 23:06 - 2021-12-21 10:52 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software 2022-03-09 23:06 - 2021-12-21 10:19 - 000003408 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-03-09 23:06 - 2021-12-21 10:19 - 000003184 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-03-09 23:06 - 2021-12-21 00:56 - 000003280 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification 2022-03-09 22:43 - 2022-01-29 00:52 - 000002321 _____ C:\Users\user\Desktop\CurseForge.lnk 2022-03-09 22:43 - 2022-01-29 00:49 - 000000000 ____D C:\Users\user\AppData\Local\Overwolf 2022-03-09 22:43 - 2021-12-21 10:18 - 000000000 ____D C:\Program Files (x86)\Google 2022-03-09 22:29 - 2021-12-21 11:09 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.2 2022-03-09 22:27 - 2021-12-21 10:41 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4 2022-03-09 22:26 - 2021-12-21 10:44 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.11 2022-03-09 15:05 - 2022-01-05 23:06 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2 2022-03-09 07:24 - 2021-12-21 11:13 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-03-09 07:23 - 2021-12-20 16:29 - 000000000 ____D C:\Windows\CbsTemp 2022-03-09 04:58 - 2021-12-21 12:47 - 000000000 ____D C:\Windows\system32\MRT 2022-03-09 04:46 - 2021-12-21 12:47 - 145666720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-03-08 12:25 - 2021-12-21 00:14 - 000000000 ____D C:\ProgramData\NVIDIA 2022-03-08 09:25 - 2021-12-21 10:51 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2022-03-08 05:32 - 2021-12-22 15:00 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache 2022-03-08 02:05 - 2021-12-21 11:02 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps 2022-03-08 02:05 - 2021-12-21 00:06 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-03-08 02:05 - 2021-12-20 16:41 - 000000000 ____D C:\Windows\INF 2022-03-06 21:17 - 2021-12-21 11:41 - 000000000 ____D C:\Users\user\AppData\Local\Packages 2022-03-06 20:44 - 2021-12-21 00:58 - 000840598 _____ C:\Windows\system32\PerfStringBackup.INI 2022-03-05 16:29 - 2021-12-21 11:24 - 000000000 ____D C:\Users\user\AppData\Local\Avast Software 2022-03-05 16:01 - 2022-01-29 00:51 - 000000000 ____D C:\Program Files (x86)\Overwolf 2022-03-05 15:53 - 2021-12-21 11:41 - 000000000 __SHD C:\Users\user\IntelGraphicsProfiles 2022-03-05 15:48 - 2021-12-21 10:36 - 000000000 ____D C:\ProgramData\Avast Software 2022-03-05 15:47 - 2021-12-25 03:16 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-03-05 15:47 - 2021-12-21 10:34 - 000000000 ____D C:\Program Files\SUPERAntiSpyware 2022-03-05 15:47 - 2021-12-21 00:14 - 000000000 ____D C:\Intel 2022-03-05 15:47 - 2021-12-21 00:07 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-03-05 15:47 - 2021-12-21 00:05 - 000008192 ___SH C:\DumpStack.log.tmp 2022-03-05 15:45 - 2021-12-20 16:17 - 000524288 _____ C:\Windows\system32\config\BBI 2022-03-05 15:42 - 2021-12-23 00:08 - 000002776 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-03-05 15:42 - 2021-12-22 20:44 - 000000000 ____D C:\Users\user\AppData\Roaming\discord 2022-03-05 15:42 - 2021-12-21 14:20 - 000003130 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2564881613-3640244745-1839761148-1001 2022-03-05 13:08 - 2021-12-22 15:39 - 000000000 ____D C:\Users\user\AppData\Local\IPVanish 2022-03-04 06:38 - 2022-01-16 02:03 - 000000000 ____D C:\ProgramData\BlueStacks_nxt 2022-03-03 17:22 - 2021-12-23 00:08 - 000002134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-03-03 17:22 - 2021-12-21 11:48 - 000000000 ___RD C:\Users\user\OneDrive 2022-03-03 16:40 - 2021-12-21 10:21 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-03-03 16:40 - 2021-12-21 10:21 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-03-03 05:34 - 2021-12-21 10:50 - 000550376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2022-03-02 11:38 - 2021-12-22 01:46 - 000003334 _____ C:\Windows\system32\Tasks\Dell SupportAssistAgent AutoUpdate 2022-03-01 18:49 - 2021-12-22 20:44 - 000000000 ____D C:\Users\user\AppData\Local\Discord 2022-03-01 13:24 - 2021-12-21 11:41 - 000000000 ____D C:\Users\user\AppData\Local\VirtualStore 2022-02-28 23:11 - 2021-12-22 23:03 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-02-26 08:10 - 2021-12-22 19:00 - 002236864 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-02-26 08:10 - 2021-12-22 19:00 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-02-26 08:09 - 2021-12-22 19:00 - 000337360 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-02-26 08:09 - 2021-12-22 19:00 - 000218576 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-02-26 08:09 - 2021-12-22 19:00 - 000198120 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-02-26 08:09 - 2021-12-22 19:00 - 000119232 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-02-26 08:09 - 2021-12-22 19:00 - 000062928 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-02-24 21:28 - 2021-12-25 10:47 - 000003212 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-02-24 21:28 - 2021-12-25 10:47 - 000003044 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-02-24 21:28 - 2021-12-25 10:47 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-02-24 21:28 - 2021-12-25 10:47 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-02-24 21:28 - 2021-12-25 10:47 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-02-24 21:28 - 2021-12-25 10:47 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-02-24 21:28 - 2021-12-25 10:47 - 000002804 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-02-24 21:18 - 2021-12-22 21:08 - 000000000 ____D C:\Program Files\WinRAR 2022-02-24 17:10 - 2020-04-01 17:04 - 000000000 ____D C:\Program Files (x86)\Alienware Digital Delivery Services 2022-02-24 10:48 - 2021-12-22 20:45 - 000002228 _____ C:\Users\user\Desktop\Discord.lnk 2022-02-20 23:26 - 2021-12-21 10:11 - 000000000 ____D C:\Users\user\AppData\Local\PlaceholderTileLogoFolder 2022-02-20 14:18 - 2020-04-01 17:07 - 000000000 ____D C:\Program Files\Microsoft Office 2022-02-18 01:45 - 2021-12-21 10:59 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-02-18 01:45 - 2021-12-21 10:59 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-02-18 01:43 - 2021-12-21 10:55 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-02-18 01:43 - 2021-12-21 10:54 - 000000000 ____D C:\Program Files\Malwarebytes 2022-02-16 09:25 - 2021-12-21 10:50 - 000368664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2022-02-16 05:25 - 2021-12-21 10:50 - 000317696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2022-02-14 21:06 - 2021-12-21 11:13 - 000600944 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll 2022-02-14 21:06 - 2021-12-21 11:13 - 000482120 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll 2022-02-10 11:08 - 2021-12-23 10:40 - 000000000 ____D C:\Users\user\AppData\Roaming\.minecraft 2022-02-09 23:48 - 2022-02-02 20:32 - 000001362 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk 2022-02-09 17:55 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-02-09 17:55 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\SystemResources 2022-02-09 17:54 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\system32\et-EE 2022-02-09 17:54 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\system32\es-MX 2022-02-09 17:54 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\system32\Dism 2022-02-09 17:54 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\system32\appraiser 2022-02-09 17:52 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\ShellExperiences 2022-02-09 17:52 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-02-09 17:52 - 2021-12-20 16:43 - 000000000 ____D C:\Windows\bcastdvr 2022-02-09 17:52 - 2021-12-20 16:17 - 000000000 ____D C:\Windows\servicing 2022-02-09 09:55 - 2021-12-21 00:12 - 002877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================