When I search for something in in one of my browsers, a website for instance with Chrome, nothing happens for about 10 minutes, then a list of one item appears. I click on it and the little arrow in the tab goes round and round for ages, maybe 20 mins, and eventually the website appears. Navigation within the website is similarly compromised.
My email (Outlook) works glacially, it takes a long time to receive mail, and an enormous amount of time to send mail. I cannot access my gmail account because the link on the Chrome browser page is missing.
This just happened suddenly. I think it happened when I restarted my computer, but I'm not sure. I'm not sure where it came from, probably a malicious website.
So basically I am cut off from the internet.
I'd appreciate any help anyone can give me
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21.07.2024
Ran by Martin (administrator) on DESKTOP-OTB3QSE (ASUSTeK COMPUTER INC. G752VY) (23-07-2024 10:40:52)
Running from C:\Users\Martin\Desktop\FRST64.exe
Loaded Profiles: Martin
Platform: Microsoft Windows 10 Home Version 22H2 19045.4651 (X64) Language: English (United States) -> English (United Kingdom)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12132.3.2017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(ASUS Cloud Corporation -> ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.9.564\AsusWSPanel.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(A-Volute -> ) C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplmv.exe
(C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe ->) (ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
(C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Pub\PubPlatform.exe
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.14\ksde.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.14\ksdeui.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\js\node_modules\adobe-cr\build\Release\Adobe Crash Processor.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <4>
(C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe ->) () [File not signed] C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2Svc64.exe
(C:\Program Files\Tablet\Pen\WacomHost.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(C:\Program Files\WD Desktop App\kdd.exe ->) (Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync.exe
(C:\Users\Martin\AppData\Local\Reverso\Reverso\Reverso.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe <6>
(C:\Windows\SysWOW64\cmd.exe ->) (Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files\WD Desktop App\kdd.exe
(C:\Windows\SysWOW64\esif_uf.exe ->) (Intel® Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(cmd.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <8>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe
(explorer.exe ->) (ABBYY SOLUTIONS LIMITED -> ABBYY) C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe
(explorer.exe ->) (Amazon Services LLC -> Audible, Inc.) C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe
(explorer.exe ->) (Antibody Software Limited -> Antibody Software) C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(explorer.exe ->) (REVERSO S.A.S. -> Reverso Inc.) C:\Users\Martin\AppData\Local\Reverso\Reverso\Reverso.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\epson\Epson Data Collection Agent\DataCollectionAgentController.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIYAE.EXE <2>
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.123.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(explorer.exe ->) (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(explorer.exe ->) (Toshiba Electronic Devices & Storage Corporation -> TOSHIBA ELECTRONIC DEVICES & STORAGE CORPORATION) C:\Program Files (x86)\TOSHIBA\Storage Security Software\TosHddscctrl.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(NTI Corporation -> NTI Corporation) C:\Program Files (x86)\NTI\NTI Backup Now EZ 4\Bunez4Tray.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(services.exe ->) (ABBYY SOLUTIONS LIMITED -> ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ArcSoft, Inc. -> ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(services.exe ->) (ASUS Cloud Corporation) [File not signed] C:\Program Files (x86)\ASUS\WebStorage\2.2.5.541\AsusWSWinService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ROG MacroKey\MacroSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel® Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(services.exe ->) (Intel® Software -> Intel® Corporation) C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe
(services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe <2>
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.14\ksde.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NTI Corporation -> ) C:\Program Files (x86)\NTI\NTI Backup Now EZ 4\ScheduleService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(services.exe ->) (Private Internet Access, Inc. -> ) C:\Program Files\Private Internet Access\pia-service.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\epson\Epson Data Collection Agent\DCAgent.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Shenzhen Moyea Software -> Leawo Software) C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe
(services.exe ->) (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Toshiba Electronic Devices & Storage Corporation -> TOSHIBA ELECTRONIC DEVICES & STORAGE CORPORATION) C:\Program Files (x86)\TOSHIBA\Storage Security Software\ToshddscSvc.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(services.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(services.exe ->) (WDC) [File not signed] C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
(services.exe ->) (Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
(services.exe ->) (Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
(services.exe ->) (WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2405.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (ASUS) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(svchost.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(svchost.exe ->) (Janos Mathe -> H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
(svchost.exe ->) (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2405.8.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4585_none_7e06e2187c9234e2\TiWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(svchost.exe ->) (Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe
(svchost.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WDDiscoveryMonitor.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2654512 2015-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart [1710568 2015-10-04] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
HKLM\...\Run: [SS2UILauncher] => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe [970720 2015-08-15] (A-Volute -> )
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116912 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [DataCollectionAgentController] => C:\Program Files\EPSON\Epson Data Collection Agent\DataCollectionAgentController.exe [397608 2023-10-30] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.9.564\ASUSWSLoader.exe [63968 2016-06-22] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9248144 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-25] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [ArcSoft Connection Service] => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [203264 2009-10-10] (ArcSoft, Inc. -> ArcSoft Inc.)
HKLM-x32\...\Run: [BackupNowEZ4Tray] => C:\Program Files (x86)\NTI\NTI Backup Now EZ 4\Bunez4Tray.exe [1093808 2015-11-10] (NTI Corporation -> NTI Corporation)
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81380632 2023-05-26] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-05-07] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2756368 2023-08-09] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750672 2024-03-13] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1136560 2024-06-27] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919200 2024-07-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [6024456 2024-07-17] (Tonec Inc. -> Tonec Inc.)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [Spotify Web Helper] => C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-05-26] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [BID Drop Box] => C:\Program Files (x86)\Bulk Image Downloader\BIDDropBox.exe [1209160 2018-01-25] (Antibody Software Limited -> Antibody Software)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-05-07] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44970408 2024-07-17] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [ABBYY Screenshot Reader Bonus] => C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe [939272 2011-12-14] (ABBYY SOLUTIONS LIMITED -> ABBYY)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [Reverso] => C:\Users\Martin\AppData\Local\Reverso\Reverso\Reverso.exe [1213680 2024-06-20] (REVERSO S.A.S. -> Reverso Inc.)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [MicrosoftEdgeAutoLaunch_B808638226F52F22B08BF8F7E5687BBA] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIYAE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIYAE.EXE [485976 2020-09-11] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [5461872 2024-05-07] (IObit CO., LTD -> IObit)
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\MountPoints2: {29893032-b487-11eb-ad24-a434d9223345} - "F:\WD Drive Unlock.exe" autoplay=true
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\MountPoints2: {6679736c-28d4-11e9-ac9b-a434d9223345} - "F:\unlock.exe" autoplay=true
HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\MountPoints2: {f78355b8-9aa1-11e7-ac69-a434d9223342} - "F:\unlock.exe" autoplay=true
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3544592 2023-02-23] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55872 2015-09-25] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON ET-8500 Series 64MonitorBE: C:\Windows\system32\E_YLMBYAE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\126.0.6478.182\Installer\chrmstp.exe [2024-07-18] (Google LLC -> Google LLC)
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2024-07-22]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk [2016-08-30]
ShortcutTarget: Audible Download Manager.lnk -> C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe (Amazon Services LLC -> Audible, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk [2016-08-03]
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass (Marvasol Inc) -> LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2016-08-03]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass (Marvasol Inc) -> LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Storage Security Software.lnk [2020-12-23]
ShortcutTarget: Storage Security Software.lnk -> C:\Program Files (x86)\TOSHIBA\Storage Security Software\TosHddscCtrl.exe (Toshiba Electronic Devices & Storage Corporation -> TOSHIBA ELECTRONIC DEVICES & STORAGE CORPORATION)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {33c0afb4-a082-4e3e-b663-67739cb69616} - no filepath. <==== ATTENTION
Task: {3D025ABC-AEF8-4EE4-B554-C23235573773} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E56B054C-E1D3-437F-B8B4-81BE43EFC365} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {AB8534B6-DF77-4D6C-9AEA-1E4CA00E2A8D} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-OTB3QSE-Martin => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {229450ED-AD47-44A6-B71B-A3368C021DE4} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {6170350D-5233-44A4-B261-303CD3D0B4FA} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116912 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B8401BE3-F748-4E14-AA2C-B1E9C031EDF7} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4454832 2024-06-06] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {A8FBF7DC-A466-4E44-82B6-41AF603F0346} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [5511536 2024-03-15] (IObit CO., LTD -> IObit) -> C:\Program Files (x86)\IObit\Advanced SystemCare\\/Task
Task: {F88DCB77-46C9-45A6-978E-768EAFBE0140} - System32\Tasks\ASC_SkipUac_Martin => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10551664 2024-05-08] (IObit CO., LTD -> IObit) -> C:\Program Files (x86)\IObit\Advanced SystemCare\\/SkipUac
Task: {C11E9D24-91FB-4586-B34D-B3E76A4D4F50} - System32\Tasks\ASUS ROG Macro Key Listener => C:\Program Files (x86)\ASUS\ROG MacroKey\AsListen.exe [516000 2015-10-20] (ASUSTeK Computer Inc. -> ASUS)
Task: {3431D1F3-402C-4255-A6A5-8B4AEFEBE108} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55296 2015-08-26] (ASUS) [File not signed]
Task: {BAB04E49-C970-47A4-B3FD-C2521AFF1F36} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {E7E45266-BFC2-4249-B257-9289E6BFCF56} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1618080 2015-05-15] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {D5BF20C2-BF8D-4888-9E5A-16F92D115D99} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {4ECF1EA5-3B2E-4B5B-B8C1-B5012B00789A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe [34403512 2015-08-05] (SplitmediaLabs Limited -> SplitmediaLabs)
Task: {30F4508C-9494-4973-9036-DD04E03C2B35} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-07-17] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {90E502AA-54A3-4F74-8426-EDD9673C8DEA} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-07-17] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "d4e8ed8f-f485-461f-bd2c-b945f4f04b61" --version "6.26.11169" --silent
Task: {D3C7E353-3549-4286-995F-96B029392647} - System32\Tasks\CCleanerSkipUAC - Martin => C:\Program Files\CCleaner\CCleaner.exe [38931368 2024-07-17] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {F0F1A6B6-E100-4EDD-9708-3903244C4247} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CA876458-0303-4CE9-9936-24978771B1B8} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {BFF45C6B-CABC-42B9-8A82-CF5B3A817C4B} - System32\Tasks\EPSON ET-8500 Series Update {3D425FA5-076F-4EA3-934C-CAD48D6DAE66} => C:\Windows\System32\spool\drivers\x64\3\E_YTSYAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {9BAE7C61-4999-402C-8D57-1FD76A4AC3BF} - System32\Tasks\EPSON ET-8500 Series Update {BE86C5C2-FF63-40CF-A3DD-BE65D476164E} => C:\Windows\System32\spool\drivers\x64\3\E_YTSYAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {6C7DB497-D61A-4FE9-9C04-5F068A358D12} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{112CBAAE-04C4-4F59-9762-ECFD258DC18E} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {D6D72DED-FF57-4BF8-A159-CB436F9283D0} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Martin => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5968264 2021-01-14] (Janos Mathe -> H.D.S. Hungary)
Task: {CEEF6EE8-7F2E-4BBD-97A1-51BED591A860} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\Thunderbolt.exe [346792 2015-06-11] (Intel® Client Connectivity Division SW -> Intel Corporation) -> C:\Program Files (x86)\Intel\Thunderbolt Software\\IF_SERVICE
Task: {9442087D-18C6-4ED7-A47D-53135930E2A4} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => C:\Program Files (x86)\Intel\Thunderbolt Software\\Thunderbolt.exe [346792 2015-06-11] (Intel® Client Connectivity Division SW -> Intel Corporation) -> C:\Program Files (x86)\Intel\Thunderbolt Software\\RUN_YOURSELF
Task: {84044C41-6680-40D3-9570-674847D6BCB9} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\tbtsvc.exe [1723048 2015-06-11] (Intel® Client Connectivity Division SW -> Intel Corporation) -> C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalServiceStart
Task: {968D1F17-18C3-4D13-B179-8E85F6234047} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files (x86)\Intel\Thunderbolt Software\\start ThunderboltService
Task: {859E5FC3-92E6-4E54-B5DE-76CF1DF427E7} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2021-04-22] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {C38CE9B9-391F-4097-B48A-6976A7F577C1} - System32\Tasks\kpm_tray.exe => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [629352 2020-04-01] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {39C8AC03-993E-4584-9478-8E9B220DA81A} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-07-12] (Adobe Inc. -> Adobe Inc.)
Task: {20444033-0B42-4A76-8075-17EF7B7F8B02} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {C8A84C8E-5120-4FA4-9910-8E9B3379CEFB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {9433FEE6-C266-4706-B247-5D41355A59C6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309936 2024-07-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E59737DC-145F-4BB1-B4D7-0D8D942AD5CC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309936 2024-07-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2E334DD-2227-4217-837D-945FFBBA1BAB} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169408 2024-06-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {7092A3D4-0C2C-435B-B654-DA4A73A14BFB} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [666488 2022-08-03] () [File not signed] -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {F9CC7286-96F2-4E5C-BC1B-E22383156451} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [710008 2022-08-03] () [File not signed]
Task: {9E7CBEB1-D39E-4340-BDEA-D112491227B0} - System32\Tasks\NvNotifier_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\GFExperience.Deployer\NvNotifier.exe [2013264 2017-12-12] (NVIDIA Corporation -> ) -> C:\Program Files\NVIDIA Corporation\GFExperience.Deployer\-showOnChangeOnly
Task: {49C50721-1298-4079-B2D3-F3FE7E21CC27} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209056 2024-07-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {E4C63AC9-C407-436D-B3C0-188257080C44} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3624156614-4154489229-1379725982-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209056 2024-07-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {88C5DA63-D959-45D6-9793-9D75481ACDE1} - System32\Tasks\ROG Gaming Center => C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe [3641152 2015-08-13] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {70B6D757-79BE-4CFF-A5B5-11396C24D85E} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {DCA08C30-1E02-4B42-92C3-B16D7B1CF7BD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8725248 2015-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {F1E267F9-E03D-4079-9E01-29E23CF7D956} - System32\Tasks\SS2svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2svc32.exe [2608128 2015-08-15] () [File not signed]
Task: {C46B26C9-18AF-4022-B09F-E930DFCB711E} - System32\Tasks\SS2svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2svc64.exe [301056 2015-08-15] () [File not signed]
Task: {1A440506-415F-443A-9820-CE516D864607} - System32\Tasks\SS2UILauncherRun => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe [970720 2015-08-15] (A-Volute -> )
Task: {71CCF05B-B191-441D-B7B1-D4B1B4A401DB} - System32\Tasks\Uninstaller_SkipUac_Martin => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9914736 2024-06-26] (IObit CO., LTD -> IObit) -> C:\Program Files (x86)\IObit\IObit Uninstaller\\/UninstallExplorer
Task: {0008E49D-2CD7-4C74-9AA0-2069821BF36E} - System32\Tasks\WD Device Agent Task martin => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [724760 2023-05-26] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {F3635965-CEEC-40A6-B867-54225DCA8793} - System32\Tasks\WD Discovery Service Task martin => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [79640 2023-05-26] (Western Digital Technologies, Inc. -> )
Task: {A794DBAC-2749-452E-A13E-95EB7A9B616B} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5178\wtoolex\wpsnotify.exe [513896 2015-11-25] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {B551AD13-0663-4781-B830-9C89E42F557E} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5178\wtoolex\wpsupdate.exe [480616 2015-11-25] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\EPSON ET-8500 Series Update {3D425FA5-076F-4EA3-934C-CAD48D6DAE66}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSYAE.EXE:/EXE:{3D425FA5-076F-4EA3-934C-CAD48D6DAE66} /F:UpdateWORKGROUP\DESKTOP-OTB3QSE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON ET-8500 Series Update {BE86C5C2-FF63-40CF-A3DD-BE65D476164E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSYAE.EXE:/EXE:{BE86C5C2-FF63-40CF-A3DD-BE65D476164E} /F:UpdateWORKGROUP\DESKTOP-OTB3QSE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5178\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5178\wtoolex\wpsupdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{3e5a52b0-73e4-4ade-8e9b-1e582a88d787}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{82ebbd22-8da2-413c-a123-2a262a5c336c}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{82ebbd22-8da2-413c-a123-2a262a5c336c}: [DhcpDomain] home
Tcpip\..\Interfaces\{91ad9b4b-f5fa-49f5-a875-0519e64ae4d3}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{91ad9b4b-f5fa-49f5-a875-0519e64ae4d3}: [DhcpDomain] home
Tcpip\..\Interfaces\{91ad9b4b-f5fa-49f5-a875-0519e64ae4d3}\4505D2C496E6B6F523333343: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{91ad9b4b-f5fa-49f5-a875-0519e64ae4d3}\75966496D2E4144463D25374: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{91ad9b4b-f5fa-49f5-a875-0519e64ae4d3}\75966496D2E4144463D25374: [DhcpDomain] home
Tcpip\..\Interfaces\{91ad9b4b-f5fa-49f5-a875-0519e64ae4d3}\75966496D2E4144463F5235485: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{91ad9b4b-f5fa-49f5-a875-0519e64ae4d3}\75966496D2E4144463F5235485: [DhcpDomain] home
Tcpip\..\Interfaces\{c4950e03-3c31-41ea-8681-36d2da44cebc}: [NameServer] 192.168.1.1,198.153.192.1
Tcpip\..\Interfaces\{c4950e03-3c31-41ea-8681-36d2da44cebc}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{c4950e03-3c31-41ea-8681-36d2da44cebc}: [DhcpDomain] home
Tcpip\..\Interfaces\{cbdceb2e-b69f-40dd-b58e-32e17cd3119c}: [DhcpNameServer] 209.222.18.222 209.222.18.218
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-23]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-05-23]
Edge Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02]
Edge Extension: (Edge relevant text changes) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-01]
Edge Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2024-07-16]
Edge Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-07-18]
Edge Profile: C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-06-21]
Edge Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-04-23]
Edge Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02]
Edge Extension: (Edge relevant text changes) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2024-04-23]
Edge HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2024-07-17]
Edge HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2024-07-17]
FireFox:
========
FF DefaultProfile: t60635rz.default-1652673025996
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dqil2cj2.default-release [2024-07-23]
FF Extension: (Bulk Image Downloader) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dqil2cj2.default-release\Extensions\{524B8EF8-C312-11DB-8039-536F56D89593}.xpi [2019-06-13]
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\t60635rz.default-1652673025996 [2024-07-23]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2017-01-12] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2024-07-09]
FF HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\Martin\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Martin\AppData\Roaming\IDM\idmmzcc5 [2017-04-07] [Legacy] [not signed]
FF HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-08-03] (LastPass (Marvasol Inc) -> LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom) [File not signed]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-06-27] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-04-22] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-04-22] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-04-22] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-04-22] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.411.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2024-03-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.411.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\plugin2\npjp2.dll [2024-03-13] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-08-03] (LastPass (Marvasol Inc) -> LastPass)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-12-05] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-12-05] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Users\Martin\Dropbox\Programs\VLC\npvlc.dll [2023-10-31] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Users\Martin\Dropbox\Programs\VLC\npvlc.dll [2023-10-31] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Users\Martin\Dropbox\Programs\VLC\npvlc.dll [2023-10-31] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Users\Martin\Dropbox\Programs\VLC\npvlc.dll [2023-10-31] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Users\Martin\Dropbox\Programs\VLC\npvlc.dll [2023-10-31] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Users\Martin\Dropbox\Programs\VLC\npvlc.dll [2023-10-31] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Users\Martin\Dropbox\Programs\VLC\npvlc.dll [2023-10-31] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Users\Martin\Dropbox\Programs\VLC\npvlc.dll [2023-10-31] (VideoLAN -> VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom) [File not signed]
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] (WildTangent Inc -> )
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-25] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-3624156614-4154489229-1379725982-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom) [File not signed]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-06-13] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-06-13] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default [2024-07-22]
CHR Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-05-29]
CHR Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-07]
CHR Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-07-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-06-21]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-07-23]
CHR Notifications: Profile 1 -> hxxps://book.qantas.com; hxxps://savesubs.com; hxxps://www.instagram.com; hxxps://www.intelius.com; hxxps://www.italki.com; hxxps://www.justwatch.com; hxxps://www.messenger.com; hxxps://www.netflix.com; hxxps://www.oneflare.com.au; hxxps://www.qatarairways.com; hxxps://z-m-www.facebook.com
CHR Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-05-24]
CHR Extension: (Dark Mode) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dmghijelimhndkbmpgbldicpogfkceaj [2023-10-31]
CHR Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-21]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2024-06-07]
CHR Extension: (Language Reactor) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hoombieeljmmljlkjmnheibnpciblicm [2023-05-24]
CHR Extension: (Office - Enable Copy and Paste) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-09-12]
CHR Extension: (No History) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ljamgkbcojbnmcaonjokopmcblmmpfch [2019-05-10]
CHR Extension: (History On/Off) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ljbpakpmiimdmblcjjhhbfabbkmcgmdp [2018-11-08]
CHR Extension: (Classic Blue) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mdifmgkofhcnndinbbdbaplplnmdalnc [2023-03-24]
CHR Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-07-18]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-06-21]
CHR Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-05-27]
CHR Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-05-26]
CHR Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-05-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-17]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-07-14]
CHR Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-06-09]
CHR Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-09]
CHR Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-07-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-31]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-07-22]
CHR Notifications: Profile 4 -> hxxps://www.youtube.com
CHR Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-07-20]
CHR Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-06]
CHR Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-07-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-17]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 5 [2024-07-22]
CHR Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-05-27]
CHR Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-14]
CHR Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-07-22]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-01]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 6 [2024-06-21]
CHR Extension: (Kaspersky Protection) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-04-26]
CHR Extension: (Google Docs Offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-26]
CHR Extension: (IDM Integration Module) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-04-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-02-03]
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-23]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2024-07-17]
CHR HKU\S-1-5-21-3624156614-4154489229-1379725982-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2024-07-17]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2024-07-17]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY SOLUTIONS LIMITED -> ABBYY)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-09-28] (ArcSoft, Inc. -> ArcSoft Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944048 2024-06-27] (Adobe Inc. -> Adobe Inc.)
R2 AdvancedSystemCareService17; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1268744 2024-03-07] (IObit CO., LTD -> IObit)
R2 AsHidService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [111416 2015-06-27] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 ASUS Rog Macro Key; C:\Program Files (x86)\ASUS\ROG MacroKey\MacroSrv.exe [492344 2015-07-03] (ASUSTeK Computer Inc. -> ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.5.541\AsusWSWinService.exe [75264 2015-10-22] (ASUS Cloud Corporation) [File not signed]
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085864 2024-07-17] (Gen Digital Inc. -> Piriform Software Ltd)
R2 CdRomAccessAgentService; C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe [105672 2022-07-17] (Shenzhen Moyea Software -> Leawo Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
R2 DCAgent; C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe [19240 2023-10-30] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\203.4.4857\DropboxElevationService.exe [1659288 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncHelper.exe [3519392 2024-07-06] (Microsoft Corporation -> Microsoft Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-04-15] (WildTangent Inc -> WildTangent)
R2 hasplms; C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-20] (Intel Corporation) [File not signed]
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2024-04-26] (IObit CO., LTD -> IObit)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-20] () [File not signed]
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5178\wtoolex\wpsupdatesvr.exe [133480 2015-11-25] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [354152 2020-04-01] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE5.14; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.14\ksde.exe [32008 2023-07-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 NTI Backup Now EZ 4 Scheduler; C:\Program Files (x86)\NTI\NTI Backup Now EZ 4\ScheduleService.exe [104112 2015-11-10] (NTI Corporation -> )
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.126.0623.0001\OneDriveUpdaterService.exe [3860400 2024-07-06] (Microsoft Corporation -> Microsoft Corporation)
R2 PrivateInternetAccessService; C:\Program Files\Private Internet Access\pia-service.exe [1391840 2023-12-12] (Private Internet Access, Inc. -> )
S3 PrivateInternetAccessWireguard; C:\Program Files\Private Internet Access\pia-wgservice.exe [4455000 2023-12-12] (Private Internet Access, Inc. -> )
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256264 2023-02-10] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [301576 2023-02-23] (Razer USA Ltd. -> Razer Inc.)
S3 ROGGamingCenterService; C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingCenterService.exe [76032 2015-08-13] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [537912 2023-03-02] (Razer USA Ltd. -> Razer Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11665136 2019-01-17] (TeamViewer GmbH -> TeamViewer GmbH)
R2 TosHddscSvc; C:\Program Files (x86)\TOSHIBA\Storage Security Software\TosHddscSvc.exe [2154376 2020-04-08] (Toshiba Electronic Devices & Storage Corporation -> TOSHIBA ELECTRONIC DEVICES & STORAGE CORPORATION)
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288768 2011-03-09] (WDC) [File not signed]
R2 WDFME; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1066896 2011-03-09] (Western Digital Technologies, Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WDSC; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [491920 2011-03-09] (Western Digital Technologies, Inc. -> )
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-19] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aksdf; C:\WINDOWS\system32\drivers\aksdf.sys [389560 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [510800 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [47904 2024-03-07] (IObit CO., LTD -> IObit)
R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [46552 2024-03-07] (IObit CO., LTD -> IObit)
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-09] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-09] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2024-07-22] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 GeneStor; C:\WINDOWS\system32\DRIVERS\GeneStor.sys [115704 2015-07-15] (GENESYS LOGIC, INC. -> GenesysLogic)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1970104 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [173736 2023-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Tonec Inc.)
R3 iobit_monitor_server2021; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [33256 2024-03-07] (IObit CO., LTD -> IObit)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [533040 2024-04-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [845112 2024-06-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [2090304 2024-06-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [236440 2024-07-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1051184 2024-04-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 kltun; C:\WINDOWS\system32\DRIVERS\kltun.sys [86760 2023-07-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [384656 2024-07-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [358736 2024-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [183728 2024-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [265416 2024-07-01] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [51904 2015-01-14] (TITAN ARC CORP. TAIWAN BRANCH (SAMOA) -> Titan ARC Corp.)
S3 PHYMEM2; C:\Program Files (x86)\Leawo\Blu-ray Player\phymem_ext64.sys [16032 2021-12-16] (Shenzhen Moyea Software -> )
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0098; C:\WINDOWS\System32\drivers\RzDev_0098.sys [55624 2021-01-29] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap-pia-0901; C:\WINDOWS\System32\drivers\tap-pia-0901.sys [39944 2020-01-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-01-30] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R0 toshddsc; C:\Windows\System32\Drivers\toshddsc.sys [26232 2017-08-21] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [25704 2022-10-03] (WDKTestCert user,132375440089837053 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-07-19] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-19] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R2 WinI2C-DDC; C:\WINDOWS\system32\drivers\DDCDrv.sys [20832 2011-06-22] (PC Micro Systems Inc. -> Nicomsoft Ltd.)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-07-23 10:35 - 2024-07-23 10:33 - 002396672 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2024-07-22 08:40 - 2024-07-22 08:40 - 000454235 _____ C:\Users\Martin\Downloads\Set bottle mocks.pdf
2024-07-20 09:32 - 2024-07-20 09:32 - 001185839 _____ C:\Users\Martin\Downloads\3696_34925 HSSA 281.pdf
2024-07-18 19:20 - 2024-07-22 22:06 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-07-18 19:20 - 2024-07-18 19:20 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-07-18 12:32 - 2024-07-18 12:32 - 000592249 _____ C:\Users\Martin\Downloads\JB HiFi Vacuum.pdf
2024-07-16 23:29 - 2024-07-16 23:29 - 003112140 _____ C:\Users\Martin\Downloads\IMG_0452a.tif
2024-07-16 18:51 - 2024-07-16 18:51 - 000534646 _____ C:\Users\Martin\Downloads\IMG_0393.JPEG
2024-07-16 18:50 - 2024-07-16 18:50 - 000760795 _____ C:\Users\Martin\Downloads\IMG_0457.JPEG
2024-07-16 18:49 - 2024-07-16 18:49 - 001247119 _____ C:\Users\Martin\Downloads\IMG_4183.JPEG
2024-07-16 18:49 - 2024-07-16 18:49 - 000603526 _____ C:\Users\Martin\Downloads\IMG_0452.JPEG
2024-07-16 12:39 - 2024-07-16 12:39 - 000000000 ____D C:\Users\Martin\Downloads\VueScan-Settings.pdf_2
2024-07-16 12:38 - 2024-07-16 12:39 - 000483222 _____ C:\Users\Martin\Downloads\VueScan-Settings.pdf_2.zip
2024-07-15 18:41 - 2024-07-15 18:41 - 000545585 _____ C:\Users\Martin\Downloads\IMG_0385.JPEG
2024-07-15 18:41 - 2024-07-15 18:41 - 000481569 _____ C:\Users\Martin\Downloads\IMG_0387.JPEG
2024-07-15 14:55 - 2024-07-15 14:55 - 000062244 _____ C:\Users\Martin\Downloads\Application Summary.pdf
2024-07-15 14:53 - 2024-07-15 14:53 - 000835176 _____ C:\Users\Martin\Downloads\Application Checklist.pdf
2024-07-15 09:46 - 2024-07-15 09:46 - 000634081 _____ C:\Users\Martin\Downloads\26326_Research.pdf
2024-07-14 15:55 - 2024-07-14 15:55 - 002948938 _____ C:\Users\Martin\Downloads\Swooping Lines border.jpeg
2024-07-14 14:17 - 2024-07-14 14:18 - 001858436 _____ C:\Users\Martin\Downloads\Swooping Lines.jpeg
2024-07-11 15:55 - 2024-07-11 15:55 - 000851942 _____ C:\Users\Martin\Downloads\iCloud Photos_3.zip
2024-07-11 15:55 - 2024-07-11 15:55 - 000000000 ____D C:\Users\Martin\Downloads\iCloud Photos_3
2024-07-11 14:28 - 2024-07-11 14:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2024-07-11 06:25 - 2024-07-11 06:25 - 000851444 _____ C:\Users\Martin\Downloads\IMG_8242.JPEG
2024-07-10 23:56 - 2024-07-10 23:56 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-07-10 13:12 - 2024-07-10 13:12 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-10 13:11 - 2024-07-10 13:11 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-10 13:01 - 2024-07-10 13:01 - 000000000 ___HD C:\$WinREAgent
2024-07-09 23:00 - 2024-07-09 23:00 - 011781569 _____ C:\Users\Martin\Downloads\WS5 - Developing a loose style.pdf
2024-07-09 20:32 - 2024-07-09 20:32 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2024-07-09 14:30 - 2024-07-09 14:30 - 000876202 _____ C:\Users\Martin\Downloads\IMG_0272.JPEG
2024-07-09 14:30 - 2024-07-09 14:30 - 000698799 _____ C:\Users\Martin\Downloads\IMG_0274.JPEG
2024-07-06 22:17 - 2024-07-06 22:17 - 001674101 _____ C:\Users\Martin\Downloads\wetransfer_richard-s-pics_2024-07-04_0724.zip
2024-07-06 11:27 - 2024-07-06 11:27 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-07-06 11:27 - 2024-07-06 11:27 - 000002134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-05 16:34 - 2024-07-05 16:34 - 011976078 _____ C:\Users\Martin\Downloads\WS4 - Line weight and quality.pdf
2024-07-05 10:15 - 2024-07-05 10:15 - 000003530 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2024-07-05 10:15 - 2024-07-05 10:15 - 000003506 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2024-07-02 21:26 - 2024-07-02 21:26 - 001456994 _____ C:\Users\Martin\Downloads\IMG_0205 (1).JPEG
2024-07-02 21:25 - 2024-07-02 21:25 - 002924867 _____ C:\Users\Martin\Downloads\IMG_0205.JPEG
2024-07-02 13:14 - 2024-07-18 19:20 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-07-01 09:22 - 2024-07-01 09:22 - 000082935 _____ C:\Users\Martin\Downloads\drawtobyandcolinslighthouse.jpeg
2024-06-30 12:06 - 2024-06-30 12:06 - 001877332 _____ C:\WINDOWS\Minidump\063024-56593-01.dmp
2024-06-30 08:14 - 2024-06-30 08:14 - 015672508 _____ C:\Users\Martin\Downloads\WS3 - Shapes and structure.pdf
2024-06-29 21:29 - 2024-06-29 21:29 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-06-29 10:55 - 2024-06-29 10:55 - 000001101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk
2024-06-29 04:23 - 2024-06-29 04:23 - 000003150 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_Martin
2024-06-29 04:23 - 2024-06-29 04:23 - 000001436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2024-06-29 04:23 - 2024-06-29 04:23 - 000001424 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2024-06-27 09:32 - 2024-06-27 09:32 - 001272437 _____ C:\Users\Martin\Downloads\IMG_0222.JPEG
2024-06-27 09:13 - 2024-06-27 09:13 - 000001406 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2024-06-27 09:13 - 2024-06-27 09:13 - 000001376 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2024-06-27 09:10 - 2024-06-27 09:10 - 003951012 _____ C:\Users\Martin\Downloads\IMG_4643.tif
2024-06-26 22:19 - 2024-06-26 22:19 - 001090773 _____ C:\Users\Martin\Downloads\iCloud Photos_2.zip
2024-06-26 22:13 - 2024-06-26 22:13 - 000000000 ____D C:\Users\Martin\Downloads\iCloud Photos
2024-06-26 12:49 - 2024-06-26 12:49 - 001090235 _____ C:\Users\Martin\Downloads\IMG_4643.JPEG
2024-06-26 12:32 - 2023-08-13 10:08 - 001367669 _____ C:\Users\Martin\Downloads\IMG_1675.JPEG
2024-06-26 11:27 - 2024-06-26 11:27 - 011735640 _____ C:\Users\Martin\Downloads\iCloud Photos.zip
2024-06-26 11:24 - 2024-06-26 11:24 - 004517811 _____ C:\Users\Martin\Downloads\IMG_6356.JPEG
2024-06-25 21:29 - 2024-06-25 21:29 - 010617786 _____ C:\Users\Martin\Downloads\WS2 - Get some perspective.pdf
2024-06-25 14:14 - 2024-06-25 14:14 - 000074129 _____ C:\Users\Martin\Downloads\ASIC Annual Co Renewal - Behesht Pty Ltd.pdf
2024-06-23 12:19 - 2024-06-23 12:20 - 076395280 _____ C:\Users\Martin\Downloads\Sketch Loose Full.pdf
2024-06-23 11:26 - 2024-06-30 12:05 - 1903159720 ____N C:\WINDOWS\MEMORY.DMP
2024-06-23 11:26 - 2024-06-23 11:26 - 002058980 _____ C:\WINDOWS\Minidump\062324-42062-01.dmp
2024-06-23 10:37 - 2024-06-23 10:37 - 000001270 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Reverso.lnk
2024-06-23 10:37 - 2024-06-23 10:37 - 000001262 _____ C:\Users\Martin\Desktop\Reverso.lnk
2024-06-23 09:06 - 2024-06-23 09:06 - 002674498 _____ C:\Users\Martin\Downloads\Statement20240508.pdf
2024-06-23 09:03 - 2024-06-23 09:03 - 000900817 _____ C:\Users\Martin\Downloads\Statement20240607.pdf
2024-06-23 09:01 - 2024-06-23 09:01 - 000907162 _____ C:\Users\Martin\Downloads\Statement20231107.pdf
2024-06-23 08:59 - 2024-06-23 08:59 - 000906120 _____ C:\Users\Martin\Downloads\Statement20230508.pdf
2024-06-23 08:55 - 2024-06-23 08:55 - 000575529 _____ C:\Users\Martin\Downloads\Statement20230109.pdf
2024-06-23 08:53 - 2024-06-23 08:53 - 000581218 _____ C:\Users\Martin\Downloads\Statement20220707_2.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-07-23 10:41 - 2019-11-12 10:24 - 000077916 _____ C:\Users\Martin\Desktop\FRST.txt
2024-07-23 10:41 - 2017-09-21 11:08 - 000000000 ____D C:\FRST
2024-07-23 10:29 - 2016-06-16 15:39 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Word
2024-07-23 10:28 - 2019-12-07 18:44 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-23 10:24 - 2017-09-13 14:47 - 000000000 ____D C:\Program Files (x86)\Steam
2024-07-23 10:21 - 2018-06-12 15:29 - 000000000 ___RD C:\Users\Martin\OneDrive
2024-07-23 10:15 - 2016-06-19 12:39 - 000000000 ____D C:\Users\Martin\AppData\Local\Dropbox
2024-07-23 10:11 - 2021-05-14 16:26 - 000000000 ____D C:\Users\Martin\AppData\Roaming\WD Discovery
2024-07-23 10:11 - 2021-05-14 16:26 - 000000000 ____D C:\Users\Martin\.wdc
2024-07-23 10:11 - 2016-06-19 12:44 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Dropbox
2024-07-23 10:10 - 2023-04-11 16:27 - 000000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2024-07-23 10:10 - 2021-12-29 14:37 - 000000000 ____D C:\Program Files\CCleaner
2024-07-23 10:10 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-22 23:04 - 2017-06-15 14:22 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-22 23:04 - 2016-09-09 13:47 - 000000000 ____D C:\Users\Martin\AppData\Roaming\DMCache
2024-07-22 22:51 - 2023-11-20 11:48 - 000002554 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2024-07-22 22:36 - 2020-08-24 21:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-22 22:13 - 2020-08-24 22:04 - 000840602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-22 22:13 - 2019-12-07 18:43 - 000000000 ____D C:\WINDOWS\INF
2024-07-22 22:07 - 2023-08-08 18:08 - 000000000 ____D C:\ProgramData\ProductData3
2024-07-22 22:06 - 2024-06-10 09:17 - 000008192 ___SH C:\DumpStack.log.tmp
2024-07-22 22:06 - 2020-08-24 22:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-22 22:06 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\ServiceState
2024-07-22 22:06 - 2016-09-09 13:47 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2024-07-22 22:06 - 2015-11-25 15:03 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2024-07-22 22:05 - 2019-12-07 18:33 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-07-22 13:56 - 2016-09-09 13:47 - 000000000 ____D C:\Users\Martin\AppData\Roaming\IDM
2024-07-22 12:09 - 2024-02-22 17:41 - 000003586 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2024-07-21 22:39 - 2017-11-11 13:53 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Anki2
2024-07-21 16:13 - 2017-01-17 07:00 - 000000000 ____D C:\KMPlayer
2024-07-21 10:04 - 2016-06-17 11:42 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Outlook
2024-07-21 09:52 - 2018-08-19 22:46 - 000000000 ____D C:\Users\Martin\AppData\Local\D3DSCache
2024-07-21 08:59 - 2021-12-16 18:07 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-20 09:44 - 2019-12-07 18:44 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-20 09:16 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-07-19 22:15 - 2020-07-12 09:03 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-19 22:15 - 2020-07-12 09:03 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-07-18 19:26 - 2016-08-05 11:49 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Excel
2024-07-18 13:13 - 2017-05-17 10:45 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-07-18 13:13 - 2017-05-17 10:45 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-07-16 10:14 - 2022-08-28 12:16 - 000000000 ___HD C:\adobeTemp
2024-07-15 23:04 - 2020-08-24 21:52 - 000000000 ____D C:\Users\Martin
2024-07-14 10:08 - 2023-03-21 14:36 - 000000000 ____D C:\Program Files\Microsoft Office
2024-07-14 09:38 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\security
2024-07-12 17:15 - 2020-08-24 22:03 - 000003534 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-12 17:15 - 2020-08-24 22:03 - 000003410 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-11 15:54 - 2022-08-26 14:36 - 000000000 ____D C:\Users\Martin\AppData\Roaming\com.adobe.dunamis
2024-07-11 14:28 - 2015-11-25 15:02 - 000000000 ____D C:\Program Files (x86)\Dropbox
2024-07-10 23:58 - 2020-08-24 21:51 - 000455176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-10 23:57 - 2023-03-21 22:07 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-07-10 23:56 - 2023-12-13 22:25 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\system32\setup
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-07-10 23:56 - 2019-12-07 18:44 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-10 13:15 - 2019-12-07 18:33 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-10 13:11 - 2020-08-24 21:54 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-07-10 12:59 - 2022-09-07 19:08 - 000000000 ____D C:\Program Files (x86)\dotnet
2024-07-10 12:59 - 2015-11-25 14:56 - 000000000 ____D C:\ProgramData\Package Cache
2024-07-10 12:25 - 2016-06-15 18:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-10 12:15 - 2016-06-15 18:52 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-07-10 10:19 - 2016-08-21 21:33 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-07-06 11:27 - 2021-12-11 18:21 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3624156614-4154489229-1379725982-1001
2024-07-02 21:28 - 2023-04-15 13:04 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Evernote
2024-06-30 12:06 - 2020-10-19 11:28 - 000000000 ____D C:\WINDOWS\Minidump
2024-06-29 10:59 - 2016-08-21 20:56 - 000000000 ____D C:\ProgramData\Adobe
2024-06-29 10:55 - 2016-08-21 21:32 - 000000000 ____D C:\Program Files\Adobe
2024-06-29 04:23 - 2018-07-16 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2024-06-27 09:12 - 2016-08-21 20:56 - 000000000 ____D C:\Program Files (x86)\Adobe
2024-06-24 16:34 - 2024-06-18 08:42 - 000023295 _____ C:\Users\Martin\Downloads\Hours.xlsx
2024-06-24 16:24 - 2016-06-16 15:39 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Office
2024-06-24 16:23 - 2017-12-04 12:37 - 000000000 ____D C:\Users\Martin\AppData\Local\Packages
2024-06-23 10:34 - 2016-06-19 12:39 - 000000940 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2024-06-23 10:34 - 2016-06-19 12:39 - 000000936 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
==================== Files in the root of some directories ========
2019-08-21 14:04 - 2019-08-21 14:04 - 000000000 _____ () C:\Users\Martin\youtube-dl.exe
2020-03-07 15:15 - 2020-03-07 15:15 - 006112768 _____ (FreeImage) C:\Program Files (x86)\FreeImage64.dll
2020-03-07 15:15 - 2020-03-07 15:14 - 002108928 _____ (CMCEI) C:\Program Files (x86)\Language64.dll
2020-03-07 15:15 - 2020-03-07 15:14 - 011316248 _____ (CMCEI) C:\Program Files (x86)\newsbinpro64.exe
2008-04-25 21:54 - 2008-04-25 21:54 - 000009916 _____ () C:\Program Files (x86)\notices.txt
2018-10-10 03:08 - 2018-10-10 03:08 - 000000081 _____ () C:\Program Files (x86)\order.txt
2018-01-13 10:29 - 2018-01-13 10:29 - 000306176 _____ () C:\Program Files (x86)\par2Repair64.dll
2017-04-21 05:16 - 2017-04-21 05:16 - 000005407 _____ () C:\Program Files (x86)\readme.txt
2011-01-31 23:15 - 2011-01-31 23:15 - 000570583 _____ () C:\Program Files (x86)\sqlite3.exe
2016-06-15 08:51 - 2016-06-15 08:51 - 000363008 _____ (Intel Corporation) C:\Program Files (x86)\tbb.dll
2020-03-07 15:15 - 2020-03-07 15:15 - 000200054 _____ () C:\Program Files (x86)\Uninst64.exe
2018-09-13 06:35 - 2018-09-13 06:35 - 000003064 _____ () C:\Program Files (x86)\v681relnotes.txt
2016-06-19 10:51 - 2016-08-03 19:42 - 021874200 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
2021-03-04 15:48 - 2021-03-04 15:48 - 000000171 _____ () C:\Users\Martin\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2016-09-25 14:12 - 2023-03-21 14:12 - 000038432 _____ () C:\Users\Martin\AppData\Roaming\Comma Separated Values (Windows).ADR
2016-06-15 15:21 - 2019-08-18 23:48 - 000000164 _____ () C:\Users\Martin\AppData\Roaming\sp_data.sys
2019-09-07 11:03 - 2022-12-02 12:42 - 000001456 _____ () C:\Users\Martin\AppData\Local\Adobe Save for Web 13.0 Prefs
2021-08-21 11:04 - 2021-10-22 17:56 - 000005120 _____ () C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-07 21:22 - 2018-11-07 21:22 - 000000000 _____ () C:\Users\Martin\AppData\Local\oobelibMkey.log
2016-09-01 23:03 - 2016-09-01 23:03 - 000000000 _____ () C:\Users\Martin\AppData\Local\{4DE834CF-A185-43F8-A115-00A0F032F008}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================