suspicious ccleaner entries – Virus, Trojan, Spyware, and Malware Removal Help

So Farrare

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-08-2021 Ran by kavin mayweather (administrator) on DESKTOP-DQ413U8 (Micro-Star International Co., Ltd. GE65 Raider 9SF) (17-08-2021 21:31:40) Running from C:Userskavin mayweatherDesktopFRST Loaded Profiles: kavin mayweather Platform: Windows 10 Home Version 2004 19041.1165 (X64) Language: English (United States) Default browser: Chrome […]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-08-2021

Ran by kavin mayweather (administrator) on DESKTOP-DQ413U8 (Micro-Star International Co., Ltd. GE65 Raider 9SF) (17-08-2021 21:31:40)

Running from C:Userskavin mayweatherDesktopFRST

Loaded Profiles: kavin mayweather

Platform: Windows 10 Home Version 2004 19041.1165 (X64) Language: English (United States)

Default browser: Chrome

Boot Mode: Normal

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Adobe Inc. -> Adobe Systems Inc.) C:Program Files (x86)AdobeAcrobat DCAcrobatacrotray.exe

(A-Volute SAS -> Nahimic) C:WindowsSystem32NahimicService.exe

(Cold Turkey Software, Inc. -> ) C:Program FilesCold TurkeyServiceHub.Helper.exe

(Cold Turkey Software, Inc. -> ) C:Program FilesCold TurkeyServiceHub.Power.exe

(CyberLink Corp. -> CyberLink Corp.) C:Program FilesCyberLinkPowerDVD20CommonCLMediaServerclmediaserver.exe

(CyberLink Corp. -> CyberLink Corp.) C:Program FilesCyberLinkPowerDVD20Commonclmpsvc.exe

(CyberLink Corp. -> CyberLink Corp.) C:Program FilesCyberLinkPowerDVD20Commondynamic_transcode.exe <4>

(GlassWire -> SecureMix LLC) C:Program Files (x86)GlassWireGlassWire.exe

(GlassWire -> SecureMix LLC) C:Program Files (x86)GlassWireGWCtlSrv.exe

(GlassWire -> SecureMix LLC) C:Program Files (x86)GlassWireGWIdlMon.exe

(Google LLC -> Google LLC) C:Program Files (x86)GoogleChromeApplicationchrome.exe <18>

(Intel Corporation -> Intel® Corporation) C:Program FilesCommon FilesIntelWirelessCommonRegSrvc.exe

(Intel Corporation -> Intel® Corporation) C:Program FilesIntelWiFibinEvtEng.exe

(Intel Corporation -> Intel® Corporation) C:Program FilesIntelWiFibinZeroConfigService.exe

(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorydal.inf_amd64_ffc75848a6342fdfjhi_service.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_b8e01d9e8716d2a7igfxCUIService.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_b8e01d9e8716d2a7igfxEM.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorycui_dch.inf_amd64_b8e01d9e8716d2a7igfxext.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigcc_dch.inf_amd64_54b736e5be5b50b2OneApp.IGCC.WinService.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryiigd_dch.inf_amd64_a086f01cc7be643aIntelCpHDCPSvc.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryiigd_dch.inf_amd64_a086f01cc7be643aIntelCpHeciSvc.exe

(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Internet Security 21.3avp.exe

(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Internet Security 21.3avpui.exe

(Kaspersky Lab JSC -> AO Kaspersky Lab) C:Program Files (x86)Kaspersky LabKaspersky Internet Security 21.3plugins_nms.exe

(Microsoft Corporation -> Microsoft Corporation) C:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe

(Microsoft Corporation -> Microsoft Corporation) C:WindowsMicrosoft.NETFramework64v3.0WPFPresentationFontCache.exe

(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.MicrosoftStickyNotes_4.1.6.0_x64__8wekyb3d8bbweMicrosoft.Notes.exe

(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.WindowsAlarms_10.2101.28.0_x64__8wekyb3d8bbweTime.exe

(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbweCalculator.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsImmersiveControlPanelSystemSettings.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32cmd.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe <3>

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32oobeUserOOBEBroker.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32rundll32.exe <2>

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32wlanext.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSysWOW64wbemWmiPrvSE.exe

(Microsoft Windows Hardware Compatibility Publisher -> Rivet Networks LLC) C:WindowsSystem32driversRivetNetworksKillerKSPS.exe

(Microsoft Windows Hardware Compatibility Publisher -> Rivet Networks, LLC.) C:WindowsSystem32driversRivetNetworksKillerKSPSService.exe

(Micro-Star International CO., LTD. -> ) [File not signed] C:Program Files (x86)MSIDragon CenterSendevsvcSendevsvc.exe

(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:Program Files (x86)MSIDragon CenterMSIAPP_ServiceMSIAPService.exe

(Micro-Star International Co., Ltd.) [File not signed] C:WindowsSysWOW64MSIService.exe

(Mullvad VPN AB -> Mullvad VPN AB) C:Program FilesMullvad VPNresourcesmullvad-daemon.exe

(New Audio Technology GmbH -> NEW AUDIO TECHNOLOGY) C:Program Files (x86)Spatial Sound CardSpatial Sound Card Pro.exe

(NoVirusThanks Company Srl -> NoVirusThanks Company Srl) C:Program FilesNoVirusThanksAntiAutoExecSvcAntiAutoExecSvc.exe

(NoVirusThanks Company Srl -> NoVirusThanks Company Srl) C:Program FilesNoVirusThanksOSArmorDevSvcOSArmorDevSvc.exe

(NVIDIA Corporation -> Node.js) C:Program Files (x86)NVIDIA CorporationNvNodeNVIDIA Web Helper.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe <3>

(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA Share.exe <3>

(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationShadowPlaynvsphelper64.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:WindowsSystem32DriverStoreFileRepositorynvmii.inf_amd64_44053d7dadab442dDisplay.NvContainerNVDisplay.Container.exe <2>

(OpenVPN Inc. -> The OpenVPN Project) C:Program FilesOpenVPNbinopenvpnserv.exe

(Petrroll) C:Program FilesWindowsApps28671Petrroll.PowerPlanSwitcher_0.4.4.0_x86__ge82akyxbc7z4PowerSwitcher.TrayApp.exe

(PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc) C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColorHelper.exe

(PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColor.exe

(PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColorService.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:WindowsSystem32DriverStoreFileRepositoryrealtekservice.inf_amd64_12da6ad5ef67a6edRtkAudUService64.exe <2>

(Rivet Networks LLC -> Intel Corporation) C:WindowsSystem32driversRivetNetworksKillerKNDBWM.exe

(Rivet Networks LLC -> Rivet Networks LLC) C:WindowsSystem32driversRivetNetworksKillerKAPS.exe

(Rivet Networks LLC -> Rivet Networks LLC) C:WindowsSystem32driversRivetNetworksKillerxTendUtility.exe

(Rivet Networks LLC -> Rivet Networks) C:WindowsSystem32driversRivetNetworksKillerKillerAnalyticsService.exe

(Rivet Networks LLC -> Rivet Networks) C:WindowsSystem32driversRivetNetworksKillerKillerNetworkService.exe

(Rivet Networks LLC -> Rivet Networks, LLC.) C:WindowsSystem32driversRivetNetworksKillerKAPSService.exe

(Rivet Networks LLC -> Rivet Networks, LLC.) C:WindowsSystem32driversRivetNetworksKillerKNDBWMService.exe

(Rivet Networks LLC -> Rivet Networks, LLC.) C:WindowsSystem32driversRivetNetworksKillerxTendUtilityService.exe

(SteelSeries ApS -> SteelSeries ApS) C:Program FilesSteelSeriesSteelSeries Engine 3SteelSeriesEngine3.exe

(Tonalio GmbH -> sandboxie-plus.com) D:Program FilesSandboxie-PlusSbieSvc.exe

(Tonec Inc. -> Tonec Inc.) C:Program Files (x86)Internet Download ManagerIDMan.exe

(VMware, Inc. -> ) D:Program FilesVMwareVMware Workstationvmware-hostd.exe

(VMware, Inc. -> VMware, Inc.) C:Program Files (x86)Common FilesVMwareUSBvmware-usbarbitrator64.exe

(VMware, Inc. -> VMware, Inc.) C:WindowsSysWOW64vmnat.exe

(VMware, Inc. -> VMware, Inc.) C:WindowsSysWOW64vmnetdhcp.exe

(VMware, Inc. -> VMware, Inc.) D:Program FilesVMwareVMware Workstationvmware-authd.exe

(VMware, Inc. -> VMware, Inc.) D:Program FilesVMwareVMware Workstationvmware-tray.exe

(VoodooSoft, LLC -> ) C:Program FilesBottleNeckBottleNeck.exe

 

==================== Registry (Whitelisted) ===================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM…Run: [RtkAudUService] => C:WINDOWSSystem32DriverStoreFileRepositoryrealtekservice.inf_amd64_12da6ad5ef67a6edRtkAudUService64.exe [1262168 2021-05-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM…Run: [MsiTrueColor] => C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColor.exe [6004352 2019-12-11] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)

HKLM…Run: [BottleNeck] => C:Program FilesBottleNeckBottleNeck.exe [337056 2020-05-08] (VoodooSoft, LLC -> )

HKLM…Run: [PowerDVD20Agent] => C:Program FilesCyberLinkPowerDVD20PowerDVD20Agent.exe [534848 2020-03-20] (CyberLink Corp. -> CyberLink Corp.)

HKLM…Run: [AdobeAAMUpdater-1.0] => C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

HKLM-x32…Run: [PowerDVD20Agent] => C:Program FilesCyberLinkPowerDVD20PowerDVD20Agent.exe [534848 2020-03-20] (CyberLink Corp. -> CyberLink Corp.)

HKLM-x32…Run: [] => [X]

HKLM-x32…Run: [Acrobat Assistant 8.0] => C:Program Files (x86)AdobeAcrobat DCAcrobatAcrotray.exe [5237416 2021-04-21] (Adobe Inc. -> Adobe Systems Inc.)

HKLM-x32…Run: [vmware-tray.exe] => D:Program FilesVMwareVMware Workstationvmware-tray.exe [117864 2021-04-30] (VMware, Inc. -> VMware, Inc.)

HKLMSOFTWAREPoliciesMicrosoftWindows Defender: Restriction <==== ATTENTION

HKUS-1-5-21-3152262237-2579752527-2903660706-1001…Run: [IDMan] => C:Program Files (x86)Internet Download ManagerIDMan.exe [5708192 2021-07-17] (Tonec Inc. -> Tonec Inc.)

HKUS-1-5-21-3152262237-2579752527-2903660706-1001…Run: [CyberlinkPowerPlayerMediaServer] => C:Program FilesCyberLinkPowerDVD20CommonCLMediaServerclmediaserver.exe [5446976 2020-03-20] (CyberLink Corp. -> CyberLink Corp.)

HKUS-1-5-21-3152262237-2579752527-2903660706-1001…Run: [Spatial Sound Card] => C:Program Files (x86)Spatial Sound CardSpatial Sound Card Pro.exe [29446784 2020-08-27] (New Audio Technology GmbH -> NEW AUDIO TECHNOLOGY)

HKUS-1-5-21-3152262237-2579752527-2903660706-1001…Run: [KeePassXC] => C:Userskavin mayweatherDownloadsCompressedKeePassXC-2.6.1-Win64KeePassXC.exe [7068440 2020-08-20] (DroidMonkey Apps, LLC -> KeePassXC Team)

HKUS-1-5-21-3152262237-2579752527-2903660706-1001…Run: [Mountain Duck] => c:program filesmountain duckmountain duck.exe [34130640 2021-06-03] (iterate GmbH -> iterate GmbH)

HKUS-1-5-21-3152262237-2579752527-2903660706-1001…Run: [GlassWire] => C:Program Files (x86)GlassWireglasswire.exe [9353160 2021-06-15] (GlassWire -> SecureMix LLC)

HKUS-1-5-21-3152262237-2579752527-2903660706-1001…PoliciesExplorer: [DisallowRun] 0

HKLM…PrintMonitorsAdobe PDF Port Monitor: C:WINDOWSsystem32AdobePDF.dll [65496 2021-04-21] (Adobe Inc. -> Adobe Systems Inc)

HKLMSoftwareMicrosoftActive SetupInstalled Components: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C:Program Files (x86)GoogleChromeApplication92.0.4515.131Installerchrmstp.exe [2021-08-05] (Google LLC -> Google LLC)

HKLMSoftwareMicrosoftActive SetupInstalled Components: [E5931AF4-2A8F-48A5-AFC8-460348F480E8] -> reg add HKCUSoftwareMicrosoftWindowsCurrentVersionRun /f /v OPENVPN-GUI /t REG_SZ /d “C:Program FilesOpenVPNbinopenvpn-gui.exe”

Startup: C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupSteelSeries Engine 3.lnk [2020-11-07]

ShortcutTarget: SteelSeries Engine 3.lnk -> C:Program FilesSteelSeriesSteelSeries Engine 3SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)

HKLMSOFTWAREPoliciesMozillaFirefox: Restriction <==== ATTENTION

HKU.DEFAULTSOFTWAREPoliciesMozillaFirefox: Restriction <==== ATTENTION

HKLMSOFTWAREPoliciesGoogle: Restriction <==== ATTENTION

HKUS-1-5-21-3152262237-2579752527-2903660706-1001SOFTWAREPoliciesGoogle: Restriction <==== ATTENTION

HKLMSOFTWAREPoliciesMicrosoftEdge: Restriction <==== ATTENTION

HKUS-1-5-21-3152262237-2579752527-2903660706-1001SOFTWAREPoliciesMicrosoftEdge: Restriction <==== ATTENTION

 

==================== Scheduled Tasks (Whitelisted) ============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: 0030E7B7-EE15-4B59-9EEB-688DE351216F – System32TasksNvDriverUpdateCheckDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d “C:Program FilesNVIDIA CorporationNvDriverUpdateCheck” -l 3 -f C:ProgramDataNVIDIANvContainerDriverUpdateCheck.log

Task: 126EE53A-C672-471A-A628-7816F569CD7B – System32TasksCCleaner Update => C:Userskavin mayweatherDownloadsCompressedccsetup575CCUpdate.exe

Task: 174BA148-753A-448F-9852-3C9D082C4736 – System32TasksNvTmRep_CrashReport3_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

Task: 2123F9FA-A992-4FE5-91E5-07922D1BFE50 – System32TasksCreateExplorerShellUnelevatedTask => C:WINDOWSExplorer.exe /NOUACCHECK

Task: 3154FCFE-2021-476F-A18F-8C96501168F9 – System32TasksMicrosoftVisualStudioVSIX Auto Update => C:Program Files (x86)Microsoft Visual StudioInstallerresourcesappServiceHubServicesMicrosoft.VisualStudio.Setup.ServiceVSIXAutoUpdate.exe [211328 2021-07-07] (Microsoft Corporation -> )

Task: 43DA4ED6-8425-4E54-BFAB-D21AC50AF20F – System32TasksMSISCMTsk => C:Program Files (x86)MSIMSI Remind ManagerMSISCMTsk.exe [344184 2020-02-13] (Micro-Star International CO., LTD. -> Application)

Task: 4D3040A8-0F89-4673-93A9-E65AFEBDBBE5 – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.)

Task: 500ABF87-702C-4050-9C4D-026CB40E04D2 – System32TasksNvTmRep_CrashReport1_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

Task: 5582838C-3E25-482E-BB9A-627F9B377A18 – System32TasksNvTmRep_CrashReport4_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

Task: 5799CD7B-DCD1-44CA-8E29-17C91971BF37 – System32TasksMozillaFirefox Default Browser Agent 308046B0AF4A39CB => C:Program FilesMozilla Firefoxdefault-browser-agent.exe [673720 2021-08-16] (Mozilla Corporation -> Mozilla Foundation)

Task: 648281AE-B8F1-4153-9A68-D5ECD4946EC5 – System32TasksCCleanerSkipUAC => C:Userskavin mayweatherDownloadsCompressedccsetup575CCleaner.exe

Task: 780DBABA-7ECD-4865-9FE4-988E274DDAE1 – System32TasksPower_a17007 => C:Program FilesCold TurkeyCTServiceInstaller.exe [20224 2021-02-19] (Cold Turkey Software, Inc. -> Cold Turkey Software Inc.)

Task: 9AEF0A36-24D8-4FEC-ABA6-F22C033E04E8 – System32TasksNvBatteryBoostCheckOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d “C:Program FilesNVIDIA CorporationNvBackendNvBatteryBoostCheck” -l 3 -f C:ProgramDataNVIDIANvContainerBatteryBoostCheck.log

Task: A559FE00-B0E3-4B4A-B25D-F554F90A652C – System32TasksKaspersky_Upgrade_Launcher_278ADC42-419D-4547-A6CA-5B74BE0AD901 => C:Program FilesCommon FilesAVKaspersky Labupgrade_launcher.exe [743488 2021-03-31] (Kaspersky Lab JSC -> AO Kaspersky Lab)

Task: A8A563B8-2249-4775-8EA1-82822457F3D9 – System32TasksMicrosoftVisualStudioUpdatesUpdateConfiguration_S-1-5-21-3152262237-2579752527-2903660706-1001 => C:Program Files (x86)Microsoft Visual StudioInstallerresourcesappServiceHubServicesMicrosoft.VisualStudio.Setup.ServiceVSIXConfigurationUpdater.exe [23472 2021-07-07] (Microsoft Corporation -> Microsoft)

Task: A9915E4B-0320-4607-8C2A-F9E5F3C22C73 – System32TasksNvTmRep_CrashReport2_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

Task: B720B2C7-EA39-4819-BB43-CCDAAD0D1812 – System32TasksMEGAMEGAsync Update Task S-1-5-21-3152262237-2579752527-2903660706-1001 => C:ProgramDataMEGAsyncMEGAupdater.exe [1818360 2021-04-18] (Mega Limited -> Mega Limited)

Task: C3CF6144-4003-493E-A5F3-34F110F98B98 – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-08-22] (Google LLC -> Google LLC)

Task: CBDBFDF9-570E-49DA-935B-426D99527B81 – System32TasksPrivaZer_SkipUAC => C:Program Files (x86)PrivaZerPrivaZer.exe [20078184 2021-08-16] (Goversoft LLC -> Goversoft LLC)

Task: D1DCFBEB-854E-4807-975B-B86C42FA8708 – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-08-22] (Google LLC -> Google LLC)

Task: E90A0DDD-AD63-4853-88C0-D009DDC2C5D5 – System32TasksMSI_Dragon Center => C:Program Files (x86)MSIDragon CenterDragon Center.exe [6255104 2020-05-06] (Micro-Star International Co., Ltd.) [File not signed]

Task: F65CA5C4-7A72-413D-9F7E-424200B2F459 – System32TasksNVIDIA GeForce Experience SelfUpdate_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)

Task: FA10DFC4-1A12-4FA2-A221-647CE960CA76 – System32TasksDragon_Center_updater => C:ProgramDataMSIDragon [Argument = CenterDragonCenter_Updater.exe DragonCenter]

Task: FE0BBC25-8F16-4D2A-A173-7E92357A6920 – System32TasksNvNodeLauncher_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program Files (x86)NVIDIA CorporationNvNodenvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

 

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

TcpipParameters: [DhcpNameServer] 192.168.0.1 0.0.0.0

Tcpip..Interfaces533470ac-74d8-43cf-bd8f-eaea084aa2cc: [NameServer] 10.0.254.2

Tcpip..Interfacescf365e62-28d7-44bb-b7b0-1187fee59da6: [DhcpNameServer] 192.168.0.1 0.0.0.0

 

Edge: 

=======

Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsAutoFormFill [not found]

Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsBookViewer [not found]

Edge Extension: (IDM Integration Module) -> EdgeExtension_TonecIncIDMIntegrationModule_e7b5mm5d3r6v2 => C:Program FilesWindowsAppsTonecInc.IDMIntegrationModule_6.38.19.0_neutral__e7b5mm5d3r6v2 [2021-07-26]

Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsLearningTools [not found]

Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsPinJSAPI [not found]

Edge DefaultProfile: Default

Edge Profile: C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefault [2021-08-17]

Edge Extension: (Kaspersky Protection) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-05-20]

Edge Extension: (Sexy Undo Close Tab) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsbcennaiejdjpomgmmohhpgnjlmpcjmbg [2020-12-01]

Edge Extension: (Outlook) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsbjhmmnoficofgoiacjaajpkfndojknpb [2020-10-17]

Edge Extension: (Cookie AutoDelete) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsfhcgjolkccmbidfldomjliifgaodjagh [2021-02-15]

Edge Extension: (I don’t care about cookies) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsfihnjjcciajhdojfnbdddfaoknhalnja [2021-08-11]

Edge Extension: (HTTPS Everywhere) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsgcbommkclmclpchllfjekcdonpmejbdp [2021-07-17]

Edge Extension: (Word) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionshikhggiobiflkdfdgdajcfklmcibbopi [2020-10-17]

Edge Extension: (Cold Turkey Blocker) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsjfphahkinplobmabmgjmjgflbhjjddeb [2021-02-24]

Edge Extension: (Extensity) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsjjmflmamggggndanpgfnpelongoepncg [2020-09-18]

Edge Extension: (ClearURLs) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionslckanjgmijmafbedllaakclkaicjfmnk [2021-03-26]

Edge Extension: (Decentraleyes) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsldpochfccmkkmhdbclfhpagapcfdljkj [2020-11-06]

Edge Extension: (Excel) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsleffmjdabcgaflkikcefahmlgpodjkdm [2020-10-17]

Edge Extension: (IDM Integration Module) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsllbjbkhnmlidjebalopleeepgdfgcpec [2021-03-11]

Edge Extension: (Canvas Blocker – Fingerprint Protect) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsnomnklagbgmgghhjidfhnoelnjfndfpd [2020-12-30]

Edge Extension: (PowerPoint) – C:Userskavin mayweatherAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsopfacbhaojodjaojgocnibmklknchehf [2020-10-17]

Edge HKUS-1-5-21-3152262237-2579752527-2903660706-1001SOFTWAREMicrosoftEdgeExtensions…EdgeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

Edge HKUS-1-5-21-3152262237-2579752527-2903660706-1001SOFTWAREMicrosoftEdgeExtensions…EdgeExtension: [llbjbkhnmlidjebalopleeepgdfgcpec] – C:Program Files (x86)Internet Download ManagerIDMEdgeExt.crx [2021-07-17]

 

FireFox:

========

FF DefaultProfile: 2j368eyi.default

FF DefaultProfile: 4j15399l.default

FF ProfilePath: C:Userskavin mayweatherAppDataRoamingMozillaFirefoxProfiles2j368eyi.default [2021-08-13]

FF ProfilePath: C:Userskavin mayweatherAppDataRoamingMozillaFirefoxProfilesl7nrs60m.default-release [2021-08-17]

FF ProfilePath: C:Userskavin mayweatherAppDataRoamingLibreWolfProfiles4j15399l.default [2021-07-27]

FF ProfilePath: C:Userskavin mayweatherAppDataRoamingLibreWolfProfilesz5pmuus9.dev-edition-default [2021-08-13]

FF Homepage: LibreWolfProfilesz5pmuus9.dev-edition-default -> hxxps://startpage.com/

FF NetworkProxy: LibreWolfProfilesz5pmuus9.dev-edition-default -> socks”, “10.64.0.1”

FF Extension: (Firefox Multi-Account Containers) – C:Userskavin mayweatherAppDat[email protected]testpilot-containers.xpi [2021-07-27]

FF Extension: (CanvasBlocker) – C:Userskavin mayweatherAppDataRoamingLibre[email protected]kkapsner.de.xpi [2021-07-28]

FF Extension: (Cookie AutoDelete) – C:Userskavin mayweatherAppDataRoamingLibreWol[email protected]kennydo.com.xpi [2021-07-27]

FF Extension: (HTTPS Everywhere) – C:Userskavin mayweatherAppDataRoamingLibreWol[email protected]eff.org.xpi [2021-07-27]

FF Extension: (Decentraleyes) – C:Userskavin mayweatherAppDataRoamingLibreWolfPr[email protected]jetpack.xpi [2021-07-27]

FF Extension: (uBlock Origin) – C:Userskavin mayweatherAppDataRoamin[email protected]raymondhill.net.xpi [2021-07-31]

FF Extension: (uMatrix) – C:Userskavin mayweatherAppDataRoamin[email protected]raymondhill.net.xpi [2021-07-31]

FF Extension: (xBrowserSync) – C:Userskavin mayweatherAppDataRoamingLibreWolfProfilesz5pmuus9.dev-edition-defaultExtensions19b606a-6f61-4d01-af2a-cea528f606da.xpi [2021-07-27]

FF Extension: (ClearURLs) – C:Userskavin mayweatherAppDataRoamingLibreWolfProfilesz5pmuus9.dev-edition-defaultExtensions74145f27-f039-47ce-a470-a662b129930a.xpi [2021-07-27]

FF Extension: (NoHTTP) – C:Userskavin mayweatherAppDataRoamingLibreWolfProfilesz5pmuus9.dev-edition-defaultExtensions90e644f1-3a32-4bf6-be8f-8ed571c0287b.xpi [2021-07-31]

FF HKLM…FirefoxExtensions: [[email protected]] – C:Program Files (x86)Kaspersky LabKaspersky Internet Security 21.3FFExtlight_plugin_firefoxaddon.xpi => not found

FF HKLM…FirefoxExtensions: [[email protected]] – C:Program Files (x86)AdobeAcrobat DCAcrobatBrowserWCFirefoxExtnWebExtnsigned_extnadobe_acrobat-1.0-windows.xpi => not found

FF HKLM-x32…FirefoxExtensions: [[email protected]] – C:Program Files (x86)Kaspersky LabKaspersky Internet Security 21.3FFExtlight_plugin_firefoxaddon.xpi => not found

FF HKLM-x32…FirefoxExtensions: [[email protected]] – 0 => not found

FF HKUS-1-5-21-3152262237-2579752527-2903660706-1001…SeaMonkeyExtensions: [[email protected]] – C:Userskavin mayweatherAppDataRoamingIDMidmmzcc5

FF Extension: (IDM CC) – C:Userskavin mayweatherAppDataRoamingIDMidmmzcc5 [2021-07-26] [Legacy] [not signed]

FF HKUS-1-5-21-3152262237-2579752527-2903660706-1001…SeaMonkeyExtensions: [[email protected]] – C:Program Files (x86)Internet Download Manageridmmzcc2.xpi

FF Extension: (IDM integration) – C:Program Files (x86)Internet Download Manageridmmzcc2.xpi [2017-12-20] [Legacy]

FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:Program FilesJavajre1.8.0_301bindtpluginnpDeployJava1.dll [2021-08-05] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:Program FilesJavajre1.8.0_301binplugin2npjp2.dll [2021-08-05] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:Program FilesVideoLANVLCnpvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)

FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:Program FilesVideoLANVLCnpvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)

FF Plugin: adobe.com/AdobeAAMDetect -> C:Program Files (x86)Common FilesAdobeOOBEPDAppCCMUtilitiesnpAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> D:BaDshaH.foxit phantompdf 10.1.0.37527FoxitPhantomPDFAppProgramFilespluginsnpFoxitPhantomPDFPlugin.dll [No File]

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> D:BaDshaH.foxit phantompdf 10.1.0.37527FoxitPhantomPDFAppProgramFilespluginsnpFoxitPhantomPDFPlugin.dll [No File]

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> D:BaDshaH.foxit phantompdf 10.1.0.37527FoxitPhantomPDFAppProgramFilespluginsnpFoxitPhantomPDFPlugin.dll [No File]

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> D:BaDshaH.foxit phantompdf 10.1.0.37527FoxitPhantomPDFAppProgramFilespluginsnpFoxitPhantomPDFPlugin.dll [No File]

FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> D:BaDshaH.foxit phantompdf 10.1.0.37527FoxitPhantomPDFAppProgramFilespluginsnpFoxitPhantomPDFPlugin.dll [No File]

FF Plugin-x32: Adobe Acrobat ->  [No File]

FF Plugin-x32: adobe.com/AdobeAAMDetect ->  [No File]

FF ExtraCheck: C:Program Filesmozilla firefoxdefaultsprefantibeacon.js [2021-08-16] <==== ATTENTION (Points to *.cfg file)

FF ExtraCheck: C:Program Filesmozilla firefoxdefaultsprefkl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-08-05] <==== ATTENTION (Points to *.cfg file)

FF ExtraCheck: C:Program Filesmozilla firefoxkl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-08-05] <==== ATTENTION

 

Chrome: 

=======

CHR DefaultProfile: Default

CHR Profile: C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefault [2021-08-17]

CHR Extension: (Kaspersky Protection) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-08-17]

CHR Extension: (Google Drive) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2020-10-22]

CHR Extension: (YouTube) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-22]

CHR Extension: (Cookie AutoDelete) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsfhcgjolkccmbidfldomjliifgaodjagh [2021-01-31]

CHR Extension: (I don’t care about cookies) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsfihnjjcciajhdojfnbdddfaoknhalnja [2021-08-12]

CHR Extension: (HTTPS Everywhere) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsgcbommkclmclpchllfjekcdonpmejbdp [2021-07-15]

CHR Extension: (Extensity) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsjjmflmamggggndanpgfnpelongoepncg [2020-09-11]

CHR Extension: (ClearURLs) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionslckanjgmijmafbedllaakclkaicjfmnk [2021-03-25]

CHR Extension: (Decentraleyes) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsldpochfccmkkmhdbclfhpagapcfdljkj [2020-11-06]

CHR Extension: (Take Webpage Screenshots Entirely – FireShot) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsmcbpblocgmgfnpjjppndjkmgjaogfceg [2021-07-29]

CHR Extension: (IDM Integration Module) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsngpampappnmepgilojfohadhhmbhlaek [2021-07-26]

CHR Extension: (Chrome Web Store Payments) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]

CHR Extension: (Cold Turkey Blocker) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionspganeibhckoanndahmnfggfoeofncnii [2021-02-19]

CHR Extension: (Gmail) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]

CHR Extension: (Chrome Media Router) – C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-27]

CHR Profile: C:Userskavin mayweatherAppDataLocalGoogleChromeUser DataGuest Profile [2021-08-17]

CHR HKLM…ChromeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

CHR HKLM…ChromeExtension: [ngpampappnmepgilojfohadhhmbhlaek] – C:Program Files (x86)Internet Download ManagerIDMGCExt.crx [2021-07-17]

CHR HKUS-1-5-21-3152262237-2579752527-2903660706-1001SOFTWAREGoogleChromeExtensions…ChromeExtension: [ngpampappnmepgilojfohadhhmbhlaek] – C:Program Files (x86)Internet Download ManagerIDMGCExt.crx [2021-07-17]

CHR HKLM-x32…ChromeExtension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] – hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

CHR HKLM-x32…ChromeExtension: [efaidnbmnnnibpcajpcglclefindmkaj]

CHR HKLM-x32…ChromeExtension: [ngpampappnmepgilojfohadhhmbhlaek] – C:Program Files (x86)Internet Download ManagerIDMGCExt.crx [2021-07-17]

 

==================== Services (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

S4 AdobeARMservice; C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)

S4 AGSService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe [2128872 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)

R2 AntiAutoExecSvc; C:Program FilesNoVirusThanksAntiAutoExecSvcAntiAutoExecSvc.exe [2241768 2018-10-24] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)

R2 AVP21.3; C:Program Files (x86)Kaspersky LabKaspersky Internet Security 21.3avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R2 GlassWire; C:Program Files (x86)GlassWireGWCtlSrv.exe [7172552 2021-06-15] (GlassWire -> SecureMix LLC)

S4 IVPN Client; C:Program FilesIVPN ClientIVPN Service.exe [13948785 2021-06-24] () [File not signed]

R3 KAPSService; C:WINDOWSSystem32driversRivetNetworksKillerKAPSService.exe [73496 2021-04-07] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 Killer Analytics Service; C:WINDOWSSystem32driversRivetNetworksKillerKillerAnalyticsService.exe [2357040 2021-04-07] (Rivet Networks LLC -> Rivet Networks)

R2 Killer Network Service; C:WINDOWSSystem32driversRivetNetworksKillerKillerNetworkService.exe [2751272 2021-04-07] (Rivet Networks LLC -> Rivet Networks)

R2 KillerSmartphoneSleepService; C:WINDOWSSystem32driversRivetNetworksKillerKSPSService.exe [65440 2021-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Rivet Networks, LLC.)

S3 klvssbridge64_21.3; C:Program Files (x86)Kaspersky LabKaspersky Internet Security 21.3x64vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R3 KNDBWM; C:WINDOWSSystem32driversRivetNetworksKillerKNDBWMService.exe [73488 2021-04-07] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 Micro Star SCM; C:WINDOWSSysWOW64MSIService.exe [160768 2009-07-10] (Micro-Star International Co., Ltd.) [File not signed]

R2 MSI Foundation Service; C:Program Files (x86)MSIDragon CenterMSIAPP_ServiceMSIAPService.exe [47568 2018-10-29] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)

R2 MSITrueColorService; C:Program FilesPortrait DisplaysMSI True ColorMsiTrueColorService.exe [205440 2019-12-11] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)

R2 MullvadVPN; C:Program FilesMullvad VPNresourcesmullvad-daemon.exe [11105560 2021-06-30] (Mullvad VPN AB -> Mullvad VPN AB)

R2 NahimicService; C:WINDOWSsystem32NahimicService.exe [1675392 2021-05-27] (A-Volute SAS -> Nahimic)

R2 OpenVPNServiceInteractive; C:Program FilesOpenVPNbinopenvpnserv.exe [73592 2021-06-17] (OpenVPN Inc. -> The OpenVPN Project)

R2 OSArmorDevSvc; C:Program FilesNoVirusThanksOSArmorDevSvcOSArmorDevSvc.exe [3857024 2019-03-25] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)

R2 Power_a17007; C:Program FilesCold TurkeyServiceHub.Power.exe [117008 2021-05-11] (Cold Turkey Software, Inc. -> )

R2 SbieSvc; D:Program FilesSandboxie-PlusSbieSvc.exe [334352 2021-08-08] (Tonalio GmbH -> sandboxie-plus.com)

R2 Sendevsvc; C:Program Files (x86)MSIDragon CenterSendevsvcSendevsvc.exe [302888 2019-01-30] (Micro-Star International CO., LTD. -> ) [File not signed]

R2 VMAuthdService; D:Program FilesVMwareVMware Workstationvmware-authd.exe [87296 2021-04-30] (VMware, Inc. -> VMware, Inc.)

R2 VMwareHostd; D:Program FilesVMwareVMware Workstationvmware-hostd.exe [15223552 2021-04-30] (VMware, Inc. -> )

S3 WdNisSvc; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2107.4-0NisSrv.exe [2727416 2021-08-15] (Microsoft Windows Publisher -> Microsoft Corporation)

S3 WinDefend; C:ProgramDataMicrosoftWindows Defenderplatform4.18.2107.4-0MsMpEng.exe [136656 2021-08-15] (Microsoft Windows Publisher -> Microsoft Corporation)

S2 xTendSoftAPService; C:WINDOWSSystem32driversRivetNetworksKillerxTendSoftAPService.exe [74024 2021-04-07] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 xTendUtilityService; C:WINDOWSSystem32driversRivetNetworksKillerxTendUtilityService.exe [74008 2021-04-07] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 NVDisplay.ContainerLocalSystem; C:WINDOWSSystem32DriverStoreFileRepositorynvmii.inf_amd64_44053d7dadab442dDisplay.NvContainerNVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%NVIDIANVDisplay.ContainerLocalSystem.log -l 3 -d C:WINDOWSSystem32DriverStoreFileRepositorynvmii.inf_amd64_44053d7dadab442dDisplay.NvContainerpluginsLocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystemLocalSystem

 

===================== Drivers (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

U5 AntiAutoExecDrv; C:WINDOWSsystem32driversAntiAutoExecDrv.sys [26576 2021-08-17] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)

R1 cbfs20; C:WINDOWSSystem32driverscbfs20.sys [427040 2021-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. – www.callback.com)

R2 CLFCL5.20; C:WINDOWSSystem32driversCLFCL5.2000.fcl [46952 2020-03-20] (CyberLink Corp. -> CyberLink Corp.)

R0 cm_km; C:WINDOWSSystem32DRIVERScm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 gwdrv; C:WINDOWSsystem32DRIVERSgwdrv.sys [33152 2015-05-29] (GlassWire -> SecureMix LLC)

R3 KfeCoSvc; C:WINDOWSSystem32driversRivetNetworksKillerKfeCo10X64.sys [186216 2021-04-07] (Rivet Networks LLC -> Rivet Networks, LLC.)

R1 klbackupdisk; C:WINDOWSsystem32DRIVERSklbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 klbackupflt; C:WINDOWSSystem32DRIVERSklbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 kldisk; C:WINDOWSsystem32DRIVERSkldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

S0 klelam; C:WINDOWSSystem32DRIVERSklelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)

R1 klflt; C:WINDOWSsystem32DRIVERSklflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 klgse; C:WINDOWSSystem32DRIVERSklgse.sys [674128 2021-07-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)

R1 klhk; C:WINDOWSsystem32DRIVERSklhk.sys [1457464 2021-07-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)

R3 klids; C:ProgramDataKaspersky LabAVP21.3Basesklids.sys [273176 2021-08-02] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)

R1 KLIF; C:WINDOWSSystem32DRIVERSklif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 klim6; C:WINDOWSsystem32DRIVERSklim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R3 klkbdflt; C:WINDOWSsystem32DRIVERSklkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R3 klmouflt; C:WINDOWSsystem32DRIVERSklmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 klpd; C:WINDOWSSystem32DRIVERSklpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 klpnpflt; C:WINDOWSsystem32DRIVERSklpnpflt.sys [96008 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R0 klupd_klif_arkmon; C:WINDOWSSystem32Driversklupd_klif_arkmon.sys [263888 2021-04-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R3 klupd_klif_klark; C:WINDOWSSystem32Driversklupd_klif_klark.sys [309104 2021-04-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R0 klupd_klif_klbg; C:WINDOWSSystem32Driversklupd_klif_klbg.sys [115744 2021-04-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R3 klupd_klif_mark; C:WINDOWSSystem32Driversklupd_klif_mark.sys [224880 2021-04-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 klwfp; C:WINDOWSsystem32DRIVERSklwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 klwtp; C:WINDOWSsystem32DRIVERSklwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R1 kneps; C:WINDOWSsystem32DRIVERSkneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)

R3 msihid; C:WINDOWSSystem32driversmsihid.sys [48328 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)

R3 mullvad-split-tunnel; C:WINDOWSSystem32driversmullvad-split-tunnel.sys [87024 2021-06-30] (Mullvad VPN AB -> Mullvad VPN AB)

R3 Nahimic_Mirroring; C:WINDOWSSystem32driversNahimic_Mirroring.sys [85592 2020-06-16] (A-Volute -> Windows ® Win 7 DDK provider)

R3 NewAudioTechnologySpatialSoundCard; C:WINDOWSSystem32driversvacnatkd.sys [114008 2020-08-27] (New Audio Technology GmbH -> NEW AUDIO TECHNOLOGY)

S3 nlwt; C:WINDOWSSystem32driversnlwt.sys [39360 2020-06-10] (TEFINCOM S.A. -> WireGuard LLC)

U5 osadevprotect; C:WINDOWSsystem32driversosadevprotect.sys [25440 2021-08-17] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)

U5 OSArmorDevDrv; C:WINDOWSsystem32driversOSArmorDevDrv.sys [26576 2021-08-17] (NoVirusThanks Company Srl -> NoVirusThanks Company Srl)

R3 SbieDrv; D:Program FilesSandboxie-PlusSbieDrv.sys [225264 2021-08-08] (Microsoft Windows Hardware Compatibility Publisher -> sandboxie-plus.com)

S3 SIVDriver; C:WINDOWSsystem32DriversSIVX64.sys [205552 2021-08-15] (RH Software Ltd -> Ray Hinchliffe)

R3 ssdevfactory; C:WINDOWSSystem32driversssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)

R3 ssps2; C:WINDOWSSystem32driversssps2.sys [43184 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)

R3 tap0901; C:WINDOWSSystem32driverstap0901.sys [39920 2021-07-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)

R3 tapivpn; C:WINDOWSSystem32driverstapivpn.sys [27136 2021-05-24] (IVPN LIMITED -> The OpenVPN Project)

S3 tapnordvpn; C:WINDOWSSystem32driverstapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)

R2 VMnetBridge; C:WINDOWSsystem32DRIVERSvmnetbridge.sys [67072 2021-04-30] (VMware, Inc. -> VMware, Inc.)

R0 vsock; C:WINDOWSSystem32DRIVERSvsock.sys [105912 2020-08-11] (VMware, Inc. -> VMware, Inc.)

R2 vstor2-mntapi20-shared; C:WindowsSysWow64driversvstor2-x64.sys [54592 2020-08-11] (VMware, Inc. -> VMware, Inc.)

S3 WdBoot; C:WINDOWSsystem32driverswdWdBoot.sys [49568 2021-08-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WDC_SAM; C:WINDOWSSystem32driverswdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)

S3 WdFilter; C:WINDOWSsystem32driverswdWdFilter.sys [434424 2021-08-15] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [78072 2021-08-15] (Microsoft Windows -> Microsoft Corporation)

S3 WINIO; C:Program Files (x86)MSIDragon Centerwinio64.sys [18688 2018-07-18] (WDKTestCert heavenluo,131620253795976757 -> )

R3 wintun; C:WINDOWSsystem32DRIVERSwintun.sys [38704 2021-07-28] (WireGuard LLC -> WireGuard LLC)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One month (created) (Whitelisted) =========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2021-08-17 21:31 – 2021-08-17 21:31 – 000000000 ____D C:FRST

2021-08-17 21:24 – 2021-08-17 21:31 – 000000000 ____D C:Userskavin mayweatherDesktopFRST

2021-08-17 14:23 – 2021-08-17 14:23 – 000039454 _____ C:Userskavin mayweatherDesktopregistry.txt

2021-08-17 12:31 – 2021-08-17 12:31 – 000290048 _____ C:WINDOWSsystem32FNTCACHE.DAT

2021-08-17 10:41 – 2021-08-17 10:41 – 005550229 _____ C:Userskavin mayweatherDownloads20210816_084816.zip (1).pack

2021-08-17 10:31 – 2021-08-17 10:31 – 005550229 _____ C:Userskavin mayweatherDownloads20210816_084816.zip.pack

2021-08-16 14:50 – 2021-08-16 14:50 – 000001495 _____ C:Userskavin mayweatherDesktopCCleaner64.exe – Shortcut.lnk

2021-08-16 13:56 – 2021-08-16 13:56 – 000000000 ____D C:WINDOWSsystem32TasksMozilla

2021-08-16 10:36 – 2021-08-16 10:36 – 000001966 _____ C:UsersPublicDesktopHitmanPro.lnk

2021-08-16 10:34 – 2021-08-16 10:34 – 000012872 _____ (SurfRight B.V.) C:WINDOWSsystem32bootdelete.exe

2021-08-16 10:29 – 2021-08-16 10:38 – 000000000 ____D C:Program FilesHitmanPro

2021-08-16 10:29 – 2021-08-16 10:34 – 000000000 ____D C:ProgramDataHitmanPro

2021-08-15 21:27 – 2021-08-15 21:45 – 000000748 _____ C:Userskavin mayweatherDesktopspybot pemium features.txt

2021-08-15 19:59 – 2021-08-15 19:59 – 000001414 _____ C:UsersPublicDesktopSpybot Anti-Beacon.lnk

2021-08-15 19:59 – 2021-08-15 19:59 – 000000000 ____D C:WINDOWSsystem32TasksWPD

2021-08-15 19:59 – 2021-08-15 19:59 – 000000000 ____D C:WINDOWSsystem32TasksSafer-Networking

2021-08-15 19:59 – 2021-08-15 19:59 – 000000000 ____D C:WINDOWSsystem32TasksLenovo

2021-08-15 19:59 – 2021-08-15 19:59 – 000000000 ____D C:Userskavin mayweatherAppDataLocalSafer-Networking Ltd

2021-08-15 19:59 – 2021-08-15 19:59 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSpybot Anti-Beacon

2021-08-15 19:59 – 2021-08-15 19:59 – 000000000 ____D C:Program Files (x86)Safer-Networking Ltd

2021-08-15 19:08 – 2021-08-15 19:13 – 000000850 _____ C:Userskavin mayweatherDesktopNew Text Document.txt

2021-08-15 18:57 – 2021-08-15 18:57 – 000000420 _____ C:Userskavin mayweatherDesktopHow to uninstall tron.txt

2021-08-15 16:11 – 2021-08-15 17:04 – 000001393 _____ C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsESET Online Scanner.lnk

2021-08-15 15:56 – 2021-08-17 12:38 – 000000000 ____D C:Intel

2021-08-15 14:02 – 2021-08-15 14:05 – 000000000 ____D C:Userskavin mayweatherAppDataLocalLowIGDump

2021-08-15 12:59 – 2021-08-15 10:58 – 000205552 _____ (Ray Hinchliffe) C:WINDOWSsystem32DriversSIVX64.sys

2021-08-15 12:13 – 2021-08-15 12:13 – 000000000 ____D C:WINDOWSPanther

2021-08-14 13:41 – 2021-08-17 09:53 – 000000252 _____ C:WINDOWSSysWOW64PARTIZAN.TXT

2021-08-14 13:39 – 2021-08-14 13:39 – 000049968 _____ (Greatis Software) C:WINDOWSsystem32Partizan.exe

2021-08-14 12:34 – 2021-08-17 10:27 – 000000000 ____D C:UsersPublicDocumentsRegRunInfo

2021-08-14 12:33 – 2021-08-17 10:28 – 000000000 ____D C:Userskavin mayweatherDocumentsRegRun2

2021-08-13 23:23 – 2021-08-13 23:23 – 000092969 _____ C:Userskavin mayweatherDesktopmemory1.pdf

2021-08-13 23:12 – 2021-08-13 23:12 – 000069583 _____ C:Userskavin mayweatherDesktopmemory2.pdf

2021-08-13 10:40 – 2021-08-15 23:24 – 000001983 _____ C:Userskavin mayweatherDesktopAutoruns64.exe – Shortcut.lnk

2021-08-13 10:11 – 2021-08-13 10:11 – 002755584 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mshtml.tlb

2021-08-13 10:10 – 2021-08-13 10:10 – 002755584 _____ (Microsoft Corporation) C:WINDOWSsystem32mshtml.tlb

2021-08-13 10:10 – 2021-08-13 10:10 – 001823280 _____ (Microsoft Corporation) C:WINDOWSsystem32winload.efi

2021-08-13 10:10 – 2021-08-13 10:10 – 001393480 _____ (Microsoft Corporation) C:WINDOWSsystem32winresume.efi

2021-08-13 10:10 – 2021-08-13 10:10 – 001333760 _____ C:WINDOWSSysWOW64TextInputMethodFormatter.dll

2021-08-13 10:10 – 2021-08-13 10:10 – 000288768 _____ C:WINDOWSsystem32Windows.Management.InprocObjects.dll

2021-08-13 10:10 – 2021-08-13 10:10 – 000011347 _____ C:WINDOWSsystem32DrtmAuthTxt.wim

2021-08-13 10:05 – 2021-08-13 10:05 – 000000000 ___HD C:$WinREAgent

2021-08-08 10:51 – 2021-08-08 10:51 – 000323213 _____ C:Userskavin mayweatherDownloadsHow to Be Invisible Protect Your Home, Your Children, Your Assets, and Your Life by J. J. Luna.epub

2021-08-07 18:40 – 2021-08-07 18:41 – 007653752 _____ C:Userskavin mayweatherDesktopThe Art of Attack.pdf

2021-08-05 17:01 – 2021-08-17 09:53 – 000000000 ____D C:Program FilesMozilla Firefox

2021-08-05 17:01 – 2021-08-17 09:53 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service

2021-08-05 17:01 – 2021-08-16 13:56 – 000001005 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk

2021-08-05 17:01 – 2021-08-05 17:01 – 000000993 _____ C:UsersPublicDesktopFirefox.lnk

2021-08-05 17:01 – 2021-08-05 17:01 – 000000000 ____D C:Userskavin mayweatherAppDataLocalMozilla

2021-08-05 16:48 – 2021-08-05 19:27 – 000001294 _____ C:Userskavin mayweatherDesktopFirefox Portable.exe – Shortcut.lnk

2021-08-05 16:42 – 2021-08-08 13:45 – 000000000 ____D C:Userskavin mayweatherAppDataLocalI2P

2021-08-05 16:41 – 2021-08-05 18:54 – 000002089 _____ C:Userskavin mayweatherDesktopI2PBrowser-Launcher.lnk

2021-08-05 16:41 – 2021-08-05 17:45 – 000002051 _____ C:Userskavin mayweatherDesktopPrivate Browsing-I2PBrowser-Launcher.lnk

2021-08-05 16:41 – 2021-08-05 17:45 – 000000000 ____D C:Program Files (x86)I2P

2021-08-05 16:41 – 2021-08-05 16:41 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsI2PBrowser-Launcher

2021-08-05 16:41 – 2021-08-05 16:41 – 000000000 ____D C:Userskavin mayweatherAppDataLocalI2PBrowser-Launcher

2021-08-05 16:28 – 2021-08-05 17:48 – 000000000 ____D C:Program Filesi2p

2021-08-05 16:28 – 2021-08-05 16:28 – 000001820 _____ C:Userskavin mayweatherDesktopI2P router console.lnk

2021-08-05 16:28 – 2021-08-05 16:28 – 000001722 _____ C:Userskavin mayweatherDesktopStart I2P (restartable).lnk

2021-08-05 16:28 – 2021-08-05 16:28 – 000001667 _____ C:Userskavin mayweatherDesktopStart I2P (no window).lnk

2021-08-05 16:28 – 2021-08-05 16:28 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsI2P

2021-08-05 16:24 – 2021-08-05 16:24 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingSun

2021-08-05 16:24 – 2021-08-05 16:24 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsJava

2021-08-05 16:24 – 2021-08-05 16:23 – 000191832 _____ (Oracle Corporation) C:WINDOWSsystem32WindowsAccessBridge-64.dll

2021-08-05 16:23 – 2021-08-05 16:23 – 000000000 ____D C:Program FilesJava

2021-08-04 19:52 – 2021-08-04 19:52 – 040791934 _____ C:Userskavin mayweatherDesktopBrahmacharya-Celibacy by BK Jagdish bhai.pdf

2021-08-01 12:09 – 2021-08-01 12:09 – 000093301 _____ C:Userskavin mayweatherDownloadswww.1TamilMV.pw – iSMART SHANKAR (2021) TRUE WEB-DL – 1080p – AVC – [Tamil (Org Aud) + Telugu] – ESub.mkv.torrent

2021-08-01 12:03 – 2021-08-01 12:03 – 000099566 _____ C:Userskavin mayweatherDownloadswww.1TamilMV.one – Kathmandu Connection (2021) S01 EP (01-06) TRUE WEB-DL – 1080p – AVC – (AAC 2.0) [Tam + Tel + Hin + Kan + Mal + Mar + Ben] – ESub.torrent

2021-07-31 16:17 – 2021-07-31 16:27 – 1610929152 _____ C:Userskavin mayweatherDownloadsParrot-security-4.11.2_virtual.ova

2021-07-30 12:45 – 2021-07-30 14:35 – 000002067 _____ C:Userskavin mayweatherDesktopMullvad VPN.lnk

2021-07-30 12:44 – 2021-08-17 12:38 – 000000000 ____D C:ProgramDataMullvad VPN

2021-07-30 12:44 – 2021-08-15 10:05 – 000000000 ____D C:Userskavin mayweatherAppDataLocalMullvad VPN

2021-07-30 12:44 – 2021-07-30 12:44 – 000001894 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMullvad VPN.lnk

2021-07-30 12:44 – 2021-07-30 12:44 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMullvad VPN

2021-07-30 12:44 – 2021-07-30 12:44 – 000000000 ____D C:Program FilesMullvad VPN

2021-07-29 23:19 – 2021-08-16 13:57 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMozilla

2021-07-29 21:29 – 2021-07-29 21:29 – 000000000 ____D C:Userskavin mayweatherDownloadsintroduction-computational-thinking-algorithms

2021-07-29 11:03 – 2021-08-16 13:56 – 000000000 ____D C:ProgramDataMozilla

2021-07-28 12:41 – 2021-07-28 12:41 – 000000000 ____D C:Userskavin mayweatherDesktopmullvad open

2021-07-28 12:35 – 2021-07-28 12:35 – 000000000 ____D C:Userskavin mayweatherDownloadsmullvad_openvpn_windows_all_all

2021-07-28 12:34 – 2021-07-28 12:34 – 000030421 _____ C:Userskavin mayweatherDownloadsmullvad_openvpn_windows_all_all.zip

2021-07-28 12:32 – 2021-07-28 12:32 – 000039920 _____ (The OpenVPN Project) C:WINDOWSsystem32Driverstap0901.sys

2021-07-28 12:32 – 2021-07-28 12:32 – 000001996 _____ C:UsersPublicDesktopOpenVPN GUI.lnk

2021-07-28 12:32 – 2021-07-28 12:32 – 000000000 ____D C:Userskavin mayweatherOpenVPN

2021-07-28 12:32 – 2021-07-28 12:32 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsOpenVPN

2021-07-28 12:32 – 2021-07-28 12:32 – 000000000 ____D C:Program FilesOpenVPN

2021-07-27 18:34 – 2021-08-13 22:15 – 000001461 _____ C:Userskavin mayweatherDesktoplibrewolf – Shortcut.lnk

2021-07-27 18:34 – 2021-07-27 18:35 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingLibreWolf

2021-07-27 18:34 – 2021-07-27 18:34 – 000000000 ____D C:Userskavin mayweatherAppDataLocalLibreWolf

2021-07-27 18:33 – 2021-07-27 18:34 – 000000000 ____D C:Program FilesLibreWolf

2021-07-27 18:33 – 2021-07-27 18:33 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLibreWolf

2021-07-27 15:34 – 2021-07-27 15:34 – 000000000 ___RD C:Sandbox

2021-07-27 15:30 – 2021-08-15 10:05 – 000000000 ____D C:Userskavin mayweatherAppDataLocalSandboxie-Plus

2021-07-27 15:30 – 2021-08-12 12:24 – 000007202 _____ C:WINDOWSSandboxie.ini

2021-07-27 15:29 – 2021-08-09 14:25 – 000000758 _____ C:Userskavin mayweatherDesktopSandboxie-Plus.lnk

2021-07-27 15:29 – 2021-08-09 14:25 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSandboxie-Plus

2021-07-26 15:42 – 2021-08-17 20:09 – 000000000 ____D C:Userskavin mayweatherDownloadsxtra torrents

2021-07-25 14:35 – 2021-08-15 16:08 – 000000000 ____D C:Userskavin mayweatherDesktopbk up file

2021-07-25 10:08 – 2021-07-25 10:08 – 000000112 ___SH C:bootTel.dat

2021-07-24 13:33 – 2021-07-24 13:33 – 000000000 ____D C:ProgramDataSophos

2021-07-23 14:27 – 2021-08-15 15:56 – 000000000 ____D C:Program Files7-Zip

2021-07-22 14:13 – 2021-07-22 14:13 – 000065535 _____ C:Userskavin mayweatherDownloadsMicrosoft VL licenses for Smartstream.txt

2021-07-20 12:02 – 2021-07-20 16:29 – 000000000 ____D C:Userskavin mayweatherDesktopM-Math mental

2021-07-19 14:06 – 2021-07-23 18:34 – 000000717 _____ C:Userskavin mayweatherDesktopNew Text Document (3).txt

2021-07-19 11:50 – 2021-07-19 11:50 – 005040163 _____ C:Userskavin mayweatherDesktop(simple+crisp)Teach Yourself Computer Science.mhtml

2021-07-19 00:25 – 2021-07-19 11:51 – 000000000 ____D C:Userskavin mayweatherDesktopM-Math books -newest dlwd

2021-07-18 23:18 – 2021-07-18 23:18 – 000027228 _____ C:Userskavin mayweatherDownloadsCS-course list.xlsx

2021-07-18 00:04 – 2021-07-28 14:20 – 000038704 _____ (WireGuard LLC) C:WINDOWSsystem32Driverswintun.sys

2021-07-18 00:04 – 2021-07-18 00:04 – 000000000 ____D C:Program FilesWireGuard

 

==================== One month (modified) ==================

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2021-08-17 21:32 – 2020-12-27 23:26 – 000000000 ____D C:ProgramDataCold Turkey

2021-08-17 21:20 – 2020-08-31 22:31 – 000000000 ____D C:WINDOWSsystem32SleepStudy

2021-08-17 21:13 – 2019-12-07 14:44 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft

2021-08-17 20:59 – 2020-08-23 10:17 – 000000000 ____D C:ProgramDataCommon

2021-08-17 20:34 – 2020-08-22 12:42 – 000000000 ____D C:Program Files (x86)Google

2021-08-17 20:03 – 2020-08-29 18:07 – 000000000 ____D C:Userskavin mayweatherAppDataLocalLowFoxit

2021-08-17 20:03 – 2020-08-29 18:04 – 000000000 ____D C:UsersPublicFoxit Software

2021-08-17 17:31 – 2020-08-26 05:46 – 000000000 ___RD C:Userskavin mayweatherDownloadsCompressed

2021-08-17 14:06 – 2020-08-28 02:26 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingvlc

2021-08-17 12:48 – 2020-09-05 20:37 – 000036408 _____ (Sysinternals – www.sysinternals.com) C:WINDOWSsystem32DriversPROCEXP152.SYS

2021-08-17 12:48 – 2020-08-31 06:05 – 000002051 _____ C:Userskavin mayweatherDesktopprocexp64.exe – Shortcut.lnk

2021-08-17 12:44 – 2020-08-31 22:41 – 000844898 _____ C:WINDOWSsystem32PerfStringBackup.INI

2021-08-17 12:44 – 2019-12-07 14:43 – 000000000 ____D C:WINDOWSINF

2021-08-17 12:41 – 2020-08-31 07:18 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingSpatial Sound Card

2021-08-17 12:41 – 2020-08-23 05:44 – 000000000 ____D C:ProgramDataNVIDIA

2021-08-17 12:39 – 2020-08-22 12:48 – 000000000 __SHD C:Userskavin mayweatherIntelGraphicsProfiles

2021-08-17 12:38 – 2020-10-07 22:53 – 000000000 ____D C:ProgramDataVMware

2021-08-17 12:38 – 2020-10-04 17:05 – 000026576 _____ (NoVirusThanks Company Srl) C:WINDOWSsystem32DriversAntiAutoExecDrv.sys

2021-08-17 12:38 – 2020-08-31 22:36 – 000000006 ____H C:WINDOWSTasksSA.DAT

2021-08-17 12:38 – 2020-08-31 22:31 – 000008192 ___SH C:DumpStack.log.tmp

2021-08-17 12:38 – 2020-08-31 04:11 – 000026576 _____ (NoVirusThanks Company Srl) C:WINDOWSsystem32DriversOSArmorDevDrv.sys

2021-08-17 12:38 – 2020-08-31 04:11 – 000025440 _____ (NoVirusThanks Company Srl) C:WINDOWSsystem32Driversosadevprotect.sys

2021-08-17 12:38 – 2020-08-26 05:46 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingDMCache

2021-08-17 12:38 – 2019-12-07 14:33 – 000524288 _____ C:WINDOWSsystem32configBBI

2021-08-17 12:31 – 2020-08-23 13:13 – 000000000 ____D C:Userskavin mayweatherAppDataLocalCrashDumps

2021-08-17 12:31 – 2019-12-07 14:33 – 000032768 _____ C:WINDOWSsystem32configELAM

2021-08-17 12:25 – 2020-10-04 21:01 – 000000000 ____D C:Userskavin mayweatherAppDataLocalLowTemp

2021-08-17 12:25 – 2020-09-11 15:38 – 000000000 ____D C:Userskavin mayweatherAppDataLocalPrivaZer

2021-08-17 10:41 – 2020-09-04 12:34 – 000000000 ____D C:ProgramDataADiag

2021-08-17 10:31 – 2020-09-04 11:17 – 000000000 ____D C:ProgramDataRogueKiller

2021-08-17 09:56 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSAppReadiness

2021-08-16 23:32 – 2021-02-06 21:04 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingAnki2

2021-08-16 14:42 – 2020-08-26 05:46 – 000000000 ____D C:Userskavin mayweatherDownloadsVideo

2021-08-16 14:17 – 2021-07-08 09:55 – 000000000 ____D C:Program Files (x86)PrivaZer

2021-08-16 11:22 – 2020-08-26 10:32 – 000000000 ____D C:Userskavin mayweatherDocumentsShareX

2021-08-16 10:38 – 2020-09-01 23:28 – 000003480 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineUA

2021-08-16 10:38 – 2020-09-01 23:28 – 000003356 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineCore

2021-08-15 22:53 – 2019-12-07 14:44 – 000000000 ___HD C:WINDOWSELAMBKUP

2021-08-15 19:59 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSPolicyDefinitions

2021-08-15 16:21 – 2020-08-26 05:46 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingIDM

2021-08-15 16:11 – 2020-09-16 11:12 – 000000000 ____D C:Userskavin mayweatherAppDataLocalESET

2021-08-15 15:57 – 2020-08-23 05:43 – 000000000 ____D C:ProgramDataNVIDIA Corporation

2021-08-15 15:20 – 2019-12-07 14:33 – 000000000 ____D C:WINDOWSCbsTemp

2021-08-15 13:48 – 2020-08-22 11:59 – 000000000 ___RD C:Userskavin mayweatherOneDrive

2021-08-15 13:02 – 2021-02-06 12:39 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsDebenu PDF Tools Pro

2021-08-15 13:01 – 2020-08-23 05:44 – 000000000 ____D C:Program FilesNVIDIA Corporation

2021-08-15 13:00 – 2020-08-22 11:19 – 000000000 ____D C:WINDOWSsystem32Driverswd

2021-08-15 12:50 – 2020-08-23 01:22 – 000799104 ____N (Microsoft Corporation) C:WINDOWSsystem32MpSigStub.exe

2021-08-15 12:17 – 2020-09-02 00:12 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingqBittorrent

2021-08-15 11:09 – 2019-12-07 14:44 – 000000000 ___HD C:Program FilesWindowsApps

2021-08-15 10:56 – 2021-02-11 23:27 – 000000000 ____D C:Userskavin mayweatherDownloadsprivate torrents

2021-08-15 10:31 – 2021-06-18 23:12 – 000000000 ____D C:Userskavin mayweatherDesktopguides_dktop

2021-08-14 20:38 – 2020-09-01 23:28 – 000002438 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk

2021-08-14 20:38 – 2020-09-01 23:28 – 000002276 _____ C:UsersPublicDesktopMicrosoft Edge.lnk

2021-08-13 20:47 – 2020-08-22 11:57 – 000000000 ____D C:Userskavin mayweatherAppDataLocalPackages

2021-08-13 14:29 – 2020-09-03 13:12 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingTelegram Desktop

2021-08-13 10:58 – 2019-12-07 14:44 – 000000000 ___SD C:WINDOWSsystem32UNP

2021-08-13 10:58 – 2019-12-07 14:44 – 000000000 ___RD C:WINDOWSImmersiveControlPanel

2021-08-13 10:58 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSSysWOW64Dism

2021-08-13 10:58 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSSystemResources

2021-08-13 10:58 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32oobe

2021-08-13 10:58 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32Dism

2021-08-13 10:58 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSShellComponents

2021-08-13 10:58 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSbcastdvr

2021-08-13 10:58 – 2019-12-07 14:33 – 000000000 ____D C:WINDOWSservicing

2021-08-13 10:05 – 2020-08-23 02:26 – 000000000 ____D C:WINDOWSsystem32MRT

2021-08-13 10:02 – 2020-08-23 02:26 – 133215968 ____C (Microsoft Corporation) C:WINDOWSsystem32MRT.exe

2021-08-12 12:40 – 2021-03-31 17:50 – 000000000 ____D C:Userskavin mayweatherDownloadsFireShot

2021-08-12 12:26 – 2020-09-01 12:11 – 000001398 _____ C:Userskavin mayweatherDesktopmRatio.exe – Shortcut.lnk

2021-08-10 14:51 – 2021-07-17 23:54 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingIVPN

2021-08-08 15:50 – 2020-10-10 18:54 – 000000000 ____D C:Userskavin mayweatherDownloadsTelegram Desktop

2021-08-07 18:41 – 2021-04-08 22:24 – 000000000 ____D C:Userskavin mayweatherAppDataRoaming.Ultimate

2021-08-07 18:40 – 2020-12-16 21:06 – 000000000 ____D C:Userskavin mayweatherAppDataRoaming.ecore_tmp

2021-08-07 18:40 – 2020-08-31 22:32 – 000000000 ____D C:Userskavin mayweather

2021-08-06 13:00 – 2020-10-08 18:21 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingVMware

2021-08-06 13:00 – 2020-10-08 18:21 – 000000000 ____D C:Userskavin mayweatherAppDataLocalVMware

2021-08-06 09:52 – 2021-01-24 11:01 – 000000000 ____D C:Program FilesMicrosoft Update Health Tools

2021-08-05 16:24 – 2020-11-06 20:33 – 000000000 ____D C:ProgramDataOracle

2021-08-05 15:34 – 2020-08-22 12:42 – 000002301 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk

2021-08-05 15:34 – 2020-08-22 12:42 – 000002260 _____ C:UsersPublicDesktopGoogle Chrome.lnk

2021-08-05 15:28 – 2020-08-31 22:36 – 000003420 _____ C:WINDOWSsystem32TasksGoogleUpdateTaskMachineUA

2021-08-05 15:28 – 2020-08-31 22:36 – 000003296 _____ C:WINDOWSsystem32TasksGoogleUpdateTaskMachineCore

2021-08-04 16:56 – 2020-12-16 21:01 – 000000000 ____D C:Userskavin mayweatherEpuborLog

2021-07-30 10:16 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32NDF

2021-07-29 21:32 – 2021-04-05 23:14 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingFireShot

2021-07-29 11:12 – 2020-08-29 10:53 – 000000000 ____D C:Userskavin mayweatherAppDataLocal.IdentityService

2021-07-29 09:58 – 2020-12-20 12:24 – 000002419 _____ C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsNahimic Companion.lnk

2021-07-28 00:11 – 2020-10-21 10:42 – 000001072 _____ C:Userskavin mayweatherDesktopStart Tor Browser.lnk

2021-07-26 15:44 – 2020-08-27 01:45 – 001483120 _____ (O&O Software GmbH) C:Userskavin mayweatherDesktopOOSU10.exe

2021-07-26 13:00 – 2020-08-26 05:46 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsInternet Download Manager

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 __RSD C:WINDOWSMedia

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 __RHD C:UsersPublicLibraries

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ___SD C:WINDOWSDownloaded Program Files

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ___RD C:WINDOWSOffline Web Pages

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSSysWOW64InstallShield

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32WinMetadata

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32Keywords

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32ias

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32DDFs

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32appraiser

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSL2Schemas

2021-07-26 13:00 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSDiagTrack

2021-07-26 12:59 – 2020-09-23 11:28 – 000000000 ____D C:WINDOWSsystem32TasksMEGA

2021-07-26 12:59 – 2020-09-06 21:26 – 000000000 ____D C:WINDOWSsystem32TasksAgent Activation Runtime

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW643082

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW642052

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641055

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641049

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641046

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641045

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641042

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641041

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641040

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641036

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641033

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641031

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641029

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSSysWOW641028

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem323082

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem322052

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321055

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321049

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321046

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321045

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321042

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321041

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321040

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321036

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321033

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321031

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321029

2021-07-26 12:59 – 2020-09-03 15:23 – 000000000 ____D C:WINDOWSsystem321028

2021-07-26 12:59 – 2020-09-01 10:35 – 000000000 ____D C:WINDOWSsystem32DriversCLFCL5.20

2021-07-26 12:59 – 2020-08-23 05:43 – 000000000 ____D C:WINDOWSsystem32DriversNVIDIA Corporation

2021-07-26 12:59 – 2020-08-22 12:39 – 000000000 ___HD C:WINDOWSsystem32WLANProfiles

2021-07-26 12:59 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32WinBioDatabase

2021-07-26 12:59 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSsystem32Sysprep

2021-07-26 12:59 – 2019-03-19 10:22 – 000000000 ____D C:WINDOWSsystem32Tasks_Migrated

2021-07-26 12:55 – 2021-07-17 23:54 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsIVPN

2021-07-26 12:55 – 2021-07-14 22:00 – 000000000 ____D C:Userskavin mayweatherDesktopsubs

2021-07-26 12:55 – 2021-07-03 11:10 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsGlassWire

2021-07-26 12:55 – 2021-07-01 14:31 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPVS-Studio

2021-07-26 12:55 – 2021-06-30 19:26 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsVMware

2021-07-26 12:55 – 2021-06-15 10:43 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingdiscord

2021-07-26 12:55 – 2021-06-15 10:43 – 000000000 ____D C:Userskavin mayweatherAppDataLocalDiscord

2021-07-26 12:55 – 2021-06-14 12:12 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMountain Duck

2021-07-26 12:55 – 2021-05-30 10:59 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCold Turkey Software

2021-07-26 12:55 – 2021-04-08 22:24 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsEpubor

2021-07-26 12:55 – 2021-03-31 14:39 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsKaspersky Internet Security

2021-07-26 12:55 – 2021-02-24 19:34 – 000000000 ____D C:Userskavin mayweatherAppDataLocalEMLM

2021-07-26 12:55 – 2021-01-08 14:36 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsElectrum

2021-07-26 12:55 – 2020-12-16 23:22 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramscalibre – E-book Management

2021-07-26 12:55 – 2020-12-10 14:56 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsJetBrains

2021-07-26 12:55 – 2020-12-05 16:12 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsMEGAsync

2021-07-26 12:55 – 2020-11-19 12:59 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsWinRAR

2021-07-26 12:55 – 2020-11-19 12:59 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsWinRAR

2021-07-26 12:55 – 2020-11-19 12:58 – 000000000 ____D C:Program FilesWinRAR

2021-07-26 12:55 – 2020-10-04 20:25 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingNuGet

2021-07-26 12:55 – 2020-09-23 11:28 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMEGAsync

2021-07-26 12:55 – 2020-09-23 11:28 – 000000000 ____D C:ProgramDataMEGAsync

2021-07-26 12:55 – 2020-09-11 15:38 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsPrivaZer

2021-07-26 12:55 – 2020-09-11 15:38 – 000000000 ____D C:ProgramDataprivazer

2021-07-26 12:55 – 2020-09-03 15:23 – 000000000 ____D C:ProgramDatadftmp

2021-07-26 12:55 – 2020-09-03 13:12 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsTelegram Desktop

2021-07-26 12:55 – 2020-09-02 00:12 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsqBittorrent

2021-07-26 12:55 – 2020-09-01 12:23 – 000000000 ____D C:Sublime Text Build 3211 x64

2021-07-26 12:55 – 2020-09-01 10:48 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsVideoLAN

2021-07-26 12:55 – 2020-09-01 10:35 – 000000000 ___RD C:ProgramDataMicrosoftWindowsStart MenuProgramsCyberLink PowerDVD 20

2021-07-26 12:55 – 2020-09-01 10:34 – 000000000 ____D C:ProgramDataCLSK

2021-07-26 12:55 – 2020-08-27 05:53 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNoVirusThanks

2021-07-26 12:55 – 2020-08-26 10:35 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingADCU

2021-07-26 12:55 – 2020-08-26 10:32 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsShareX

2021-07-26 12:55 – 2020-08-26 06:19 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBottleNeck

2021-07-26 12:55 – 2020-08-26 06:19 – 000000000 ____D C:ProgramDataBottleNeck

2021-07-26 12:55 – 2020-08-26 05:46 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsInternet Download Manager

2021-07-26 12:55 – 2020-08-26 00:00 – 000000000 ____D C:Userskavin mayweatherAppDataRoamingMicrosoftWindowsStart MenuProgramsDiscord Inc

2021-07-26 12:55 – 2020-08-23 11:34 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMSI True Color

2021-07-26 12:55 – 2020-08-23 05:44 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNVIDIA Corporation

2021-07-26 12:55 – 2020-08-22 11:57 – 000000000 __RHD C:UsersPublicAccountPictures

2021-07-26 12:55 – 2020-08-22 11:57 – 000000000 ___RD C:Userskavin mayweather3D Objects

2021-07-26 12:55 – 2020-08-22 11:57 – 000000000 ____D C:Userskavin mayweatherAppDataLocalConnectedDevicesPlatform

2021-07-26 12:55 – 2020-08-22 11:20 – 000000000 ____D C:Usersdefaultuser0AppDataLocalConnectedDevicesPlatform

2021-07-26 12:55 – 2020-08-22 11:20 – 000000000 ____D C:Usersdefaultuser0

2021-07-26 12:55 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSServiceState

2021-07-26 12:54 – 2021-07-17 23:54 – 000000000 ____D C:Program FilesIVPN Client

2021-07-26 12:54 – 2021-07-03 11:10 – 000000000 ____D C:Program Files (x86)GlassWire

2021-07-26 12:54 – 2021-05-30 10:59 – 000000000 ____D C:Program FilesCold Turkey

2021-07-26 12:54 – 2021-02-07 20:58 – 000000000 ____D C:Program FilesAnki

2021-07-26 12:54 – 2021-01-08 14:36 – 000000000 ____D C:Program Files (x86)Electrum

2021-07-26 12:54 – 2020-12-16 23:22 – 000000000 ____D C:Program Files (x86)Calibre2

2021-07-26 12:54 – 2020-12-09 17:14 – 000000000 ____D C:Irvine

2021-07-26 12:54 – 2020-09-06 11:13 – 000000000 ____D C:Program FilesMountain Duck

2021-07-26 12:54 – 2020-09-06 11:13 – 000000000 ____D C:Program Files (x86)Mountain Duck

2021-07-26 12:54 – 2020-09-03 15:25 – 000000000 ____D C:Program Files (x86)HTML Help Workshop

2021-07-26 12:54 – 2020-09-02 00:12 – 000000000 ____D C:Program Files (x86)qBittorrent

2021-07-26 12:54 – 2020-09-01 11:18 – 000000000 ____D C:Program Filesnomacs – Image Lounge

2021-07-26 12:54 – 2020-08-31 07:18 – 000000000 ____D C:Program Files (x86)Spatial Sound Card

2021-07-26 12:54 – 2020-08-29 10:46 – 000000000 ____D C:Program FilesApplication Verifier

2021-07-26 12:54 – 2020-08-29 10:46 – 000000000 ____D C:Program Files (x86)Application Verifier

2021-07-26 12:54 – 2020-08-26 10:32 – 000000000 ____D C:Program FilesShareX

2021-07-26 12:54 – 2020-08-26 06:19 – 000000000 ____D C:Program FilesBottleNeck

2021-07-26 12:54 – 2020-08-26 05:46 – 000000000 ____D C:Program Files (x86)Internet Download Manager

2021-07-26 12:53 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSregistration

2021-07-26 12:49 – 2019-12-07 14:44 – 000000000 ____D C:WINDOWSPerformance

2021-07-26 12:48 – 2020-08-26 00:25 – 000000000 ____D C:ProgramDataKaspersky Lab

2021-07-24 18:55 – 2020-11-08 22:00 – 000000000 ____D C:Userskavin mayweatherDesktopguides

2021-07-24 13:31 – 2020-08-22 12:16 – 000000000 ____D C:Userskavin mayweatherAppDataLocalPlaceholderTileLogoFolder

2021-07-24 12:54 – 2020-09-25 11:13 – 000000000 ____D C:Userskavin mayweatherAppDataLocalIsolatedStorage

2021-07-24 00:42 – 2019-12-07 14:33 – 000524288 _____ C:WINDOWSsystem32configBBI(4689)

2021-07-22 14:53 – 2020-09-23 11:32 – 000000000 ____D C:Userskavin mayweatherDocumentsMEGAsync Downloads

2021-07-21 12:34 – 2020-04-29 10:12 – 000674128 _____ (AO Kaspersky Lab) C:WINDOWSsystem32Driversklgse.sys

2021-07-21 12:34 – 2020-04-29 09:04 – 001457464 _____ (AO Kaspersky Lab) C:WINDOWSsystem32Driversklhk.sys

2021-07-18 15:44 – 2020-12-31 22:48 – 000000000 ____D C:Userskavin mayweatherAppDataLocalcache

 

==================== Files in the root of some directories ========

 

2021-02-24 14:29 – 2021-04-08 21:56 – 000000205 _____ () C:Userskavin mayweatherAppDataLocaloobelibMkey.log

2021-03-03 15:11 – 2021-03-03 15:11 – 000007601 _____ () C:Userskavin mayweatherAppDataLocalResmon.ResmonCfg

 

==================== SigCheck ============================

 

(There is no automatic fix for files that do not pass verification.)

 

==================== End of FRST.txt ========================

Next Post

Lubbock woman, dad go after baseball record

A pandemic pastime turned into anything extra special than one particular man could have at any time predicted for a 7-calendar year-outdated Lubbock girl – a connection to a instant in baseball and civil legal rights history 75 decades in the past. Craig Cox, a professor at the school of pharmacy […]