Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022 Ran by Alex (administrator) on ALEX-PC (ASUS All Series) (17-08-2022 20:52:01) Running from C:\Users\Alex\Desktop Loaded Profiles: Alex Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Default browser: IE Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avpui.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Panda Security S.L -> Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKU\S-1-5-21-737693840-413745377-1450863732-1000\...\MountPoints2: {1a5852da-1715-11eb-b9b7-3497f68e4eac} - E:\setup.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.81\Installer\chrmstp.exe [2022-08-08] (Google LLC -> Google LLC) ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {02E3DDC9-3085-4645-B9C9-A8608FCE3CC8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {0D29F17D-ADAB-4043-B446-202588CEB9FC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24614336 2022-07-27] (Microsoft Corporation -> Microsoft Corporation) Task: {0DA87CE5-2DA6-494D-B642-A32B77F160EB} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2022-08-11] (Kaspersky Lab JSC -> AO Kaspersky Lab) Task: {29B966EB-360F-40C5-AA3A-A3CDAE71FB79} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-22] (Google LLC -> Google LLC) Task: {2DA84D31-BF1D-4B69-A928-3A4E7B0969BF} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [116544 2010-06-01] (Panda Security S.L -> ) -> "C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe" /resident /autovaccinate /experimentalntfs /agreelicense Task: {405A33C9-C878-4E0E-BD96-FB0361396D47} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) Task: {4C710FD6-7554-415C-8D8E-5C2BC912B947} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) Task: {6CCE7D90-2804-4B25-9DE6-CD0E4799C0E6} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) Task: {7B5CCA32-547D-464E-8A5E-4AE52DD0AF77} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-07-18] (Piriform Software Ltd -> Piriform) Task: {8B0725AC-7F23-4C7F-A084-6A8AA4135436} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24614336 2022-07-27] (Microsoft Corporation -> Microsoft Corporation) Task: {8EEF44F8-B59A-4A10-B138-69F587DC9F51} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) Task: {9F3EA1AB-6483-4C06-905D-94DD9F7C8C55} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) Task: {A34A076C-04AD-465D-B2EA-99989D654006} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) Task: {C8126585-AC0E-40E7-AFC4-048E2EC08CAC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117144 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) Task: {CF354771-E230-416C-84CB-B81DC60B1839} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\AutoPico Daily Restart" /ENABLE Task: {CF354771-E230-416C-84CB-B81DC60B1839} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE Task: {CF354771-E230-416C-84CB-B81DC60B1839} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\KMSpico Automatic Update Scheduler" /ENABLE Task: {CF354771-E230-416C-84CB-B81DC60B1839} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Optimize Thumbnail Cache" /ENABLE Task: {CF354771-E230-416C-84CB-B81DC60B1839} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE Task: {D01C1654-052E-4CBA-A65F-4ED7AD8B9984} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-22] (Google LLC -> Google LLC) Task: {D1D9832A-162A-494C-800A-E0F7D6AD8B96} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) Task: {ECCA14FB-9917-4E5F-ABC3-E2F1F28911BF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117144 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) Task: {EDB15D82-0606-433C-9BBC-56611223A2DA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2022-07-11] (Nvidia Corporation -> NVIDIA Corporation) Task: {EE7A505D-95CD-4600-82D0-867D37C75BC6} - System32\Tasks\CCleanerSkipUAC - Alex => C:\Program Files\CCleaner\CCleaner.exe [31101528 2022-07-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {F48AC827-57EF-4C22-920C-4ADB2F8B1477} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4374008 2022-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {F57E8C6D-EBC2-4E13-92C0-6A287219EA0D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4374008 2022-04-16] (Microsoft Corporation -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{7704E33B-A935-419F-A8E4-D46FE6D28A51}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge Profile: C:\Users\Alex\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-27] FireFox: ======== FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-04-16] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-16] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default [2022-08-17] CHR Notifications: Default -> hxxps://animeonline.site; hxxps://gamersclub.com.br; hxxps://meet.google.com; hxxps://melhorenvio.com.br; hxxps://pt.aliexpress.com; hxxps://tinder.com; hxxps://web.skype.com; hxxps://web.telegram.org; hxxps://web.whatsapp.com; hxxps://wp.aliexpress.com; hxxps://www.facebook.com; hxxps://www.kabum.com.br; hxxps://www.netflix.com; hxxps://www.tiktok.com CHR HomePage: Default -> hxxp://www.istartsurf.com/?type=sy&ts=1434994428&z=ed63a2e13251f22108f1e5bg5z9c1z2t4tezbz9oez&from=pcm&uid=ST3500312CS_6VV526XQXXXX6VV526XQ CHR StartupUrls: Default -> "","hxxp://www.google.com/","hxxp://www.istartsurf.com/?type=hp&ts=1434994411&z=3e8ade62bbc032ace7a34c0g7zbcfz0t1t4z2z8e6m&from=pcm&uid=ST3500312CS_6VV526XQXXXX6VV526XQ","hxxps://www.google.com/?trackid=sp-006","hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHEqBX0kBHQkBU..&v=20160615&uid=E40A9D47D026362555ABE319519F2A97&ptid=csdi&mode=loadm","hxxp://do-search.com/?type=hp&ts=1425924775&from=cor&uid=TOSHIBAXMK3259GSXP_42G2P17DTXX42G2P17DT","hxxps://www.google.com/" CHR Extension: (Kaspersky Protection) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-08-17] CHR Extension: (Media Hint) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\akipcefbjlmpbcejgdaopmmidpnjlhnb [2022-08-17] CHR Extension: (Slate) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhmcmgkegfffbbfobhjpdbimgmoohap [2022-08-17] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-17] CHR Extension: (Kaikas) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\jblndlipeogpafnldhgmapagcccfchpi [2022-08-17] CHR Extension: (MetaMask) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2022-08-17] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-17] CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-08-17] CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-08-17] CHR Extension: (Apresentações) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-13] CHR Extension: (Documentos) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-13] CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-13] CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-13] CHR Extension: (Planilhas) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-13] CHR Extension: (Documentos Google off-line) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-13] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-13] CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-13] CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-08-17] CHR Extension: (Documentos Google off-line) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-27] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-27] CHR Extension: (MetaMask) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2022-08-10] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-16] CHR Profile: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\System Profile [2022-08-17] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm Opera: ======= OPR Profile: C:\Users\Alex\AppData\Roaming\Opera Software\Opera Stable [2022-08-17] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Alex\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-05-18] OPR Extension: (Opera Crypto Wallet) - C:\Users\Alex\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-05-18] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Alex\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-05-18] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S4 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] (ASUSTeK Computer Inc. -> ) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-07-18] (Piriform Software Ltd -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11138992 2022-07-27] (Microsoft Corporation -> Microsoft Corporation) S4 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4581568 2020-10-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) S4 EaseUS Agent; C:\Program Files (x86)\EaseUS\EaseUS Partition Master\ToolKits\EaseUS Todo Backup\bin\Agent.exe [44168 2022-08-01] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) S4 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2022-05-12] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R3 EPMVssEaseusProvider; C:\Windows\system32\dllhost.exe /Processid:{6A85E135-F176-44C4-A32C-D2B12B36C7A6} [9728 2009-07-13] (Microsoft Windows -> Microsoft Corporation) S4 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [152576 2022-08-12] (SurfRight B.V. -> SurfRight B.V.) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 ucldr_MirTrilogy4_GL; C:\Program Files\Common Files\UNCHEATER\ucldr_MirTrilogy4_GL.exe [6705392 2022-08-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R3 VssEaseusProvider; C:\Windows\system32\dllhost.exe /Processid:{7C7E8363-3859-4756-A964-48AAA022D25B} [9728 2009-07-13] (Microsoft Windows -> Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [127936 2019-02-18] (Alcorlink Corp. -> ) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] (ASUSTeK Computer Inc. -> ) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 dc21x4vm; C:\Windows\System32\DRIVERS\dc21x4vm.sys [57344 2009-06-10] (Microsoft Windows -> Microsoft Corp.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [42256 2020-10-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [59360 2020-10-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 epmdkdrv; C:\Windows\system32\epmdkdrv.sys [26760 2022-02-17] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [21128 2022-02-17] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [54920 2022-08-01] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EUDCPEPM; C:\Windows\System32\drivers\EUDCPEPM.sys [76936 2022-02-17] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUEDKEPM; C:\Windows\system32\drivers\EUEDKEPM.sys [24200 2022-02-17] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [14472 2022-02-17] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 FlashBoot; C:\Windows\System32\DRIVERS\FlashBoot.sys [17616 2014-04-03] (Challenger Backup Solutions, LLC -> Challenger Backup Solutions, LLC) U5 GCSYS; C:\Users\Alex\AppData\Local\Programs\gcac-launcher\resources\bin\EMAC-Driver-x64.sys [4566416 2022-07-29] (EMAC LAB SOFTWARE LTDA -> ) R3 gKbdfltr; C:\Windows\System32\DRIVERS\gKbdfltr.sys [28024 2019-03-26] (KYE SYSTEMS CORP. -> KYE Systems Corp.) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [644320 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klflt; C:\Windows\System32\DRIVERS\klflt.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [176864 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [176864 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R1 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [78560 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 NVHDA; C:\Windows\System32\drivers\nvhda64v.sys [136848 2022-07-11] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 nvlddmkm; C:\Windows\System32\DRIVERS\nvlddmkm.sys [37058984 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48552 2022-07-11] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [8241104 2018-11-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 kldlfmgr; C:\Windows\System32\Drivers\kldlfmgr.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kldlfwpk; C:\Windows\System32\Drivers\kldlfwpk.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 Kldlimpc; C:\Windows\System32\Drivers\Kldlimpc.sys [2524896 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kldlksec; C:\Windows\System32\Drivers\kldlksec.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kldlksl; C:\Windows\System32\Drivers\kldlksl.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kldlndis; C:\Windows\System32\Drivers\kldlndis.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kldlnio; C:\Windows\System32\Drivers\kldlnio.sys [24800 2022-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2022-08-17 20:52 - 2022-08-17 20:53 - 000023768 _____ C:\Users\Alex\Desktop\FRST.txt 2022-08-17 20:51 - 2022-08-17 20:51 - 000000000 ____D C:\Users\Alex\Desktop\FRST-OlderVersion 2022-08-16 12:34 - 2022-08-16 12:34 - 000468480 _____ () C:\Users\Alex\Desktop\CKScanner.exe 2022-08-15 21:40 - 2022-08-17 20:52 - 000000000 ____D C:\FRST 2022-08-15 21:39 - 2022-08-17 20:51 - 002371072 _____ (Farbar) C:\Users\Alex\Desktop\FRST64.exe 2022-08-15 21:34 - 2022-08-15 21:35 - 000000000 ____D C:\AdwCleaner 2022-08-15 21:34 - 2022-08-15 21:34 - 008551608 _____ (Malwarebytes) C:\Users\Alex\Desktop\adwcleaner.exe 2022-08-12 13:54 - 2022-08-12 13:54 - 000000000 ____D C:\Program Files\Malwarebytes 2022-08-12 13:52 - 2022-08-12 13:52 - 000012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe 2022-08-12 13:10 - 2022-08-12 13:10 - 000001893 _____ C:\Users\Public\Desktop\HitmanPro.lnk 2022-08-12 13:10 - 2022-08-12 13:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro 2022-08-12 13:09 - 2022-08-12 13:53 - 000000000 ____D C:\ProgramData\HitmanPro 2022-08-12 13:09 - 2022-08-12 13:10 - 000000000 ____D C:\Program Files\HitmanPro 2022-08-11 23:12 - 2022-08-11 23:12 - 000000000 ____D C:\Users\Alex\AppData\Roaming\EaseUS 2022-08-11 23:12 - 2022-08-11 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS 2022-08-11 23:11 - 2022-08-11 23:11 - 000000000 ____D C:\Users\Alex\AppData\Local\unali-268462 2022-08-11 23:04 - 2022-08-11 23:04 - 000000000 ____D C:\Program Files\EaseUS 2022-08-11 23:03 - 2022-08-11 23:04 - 055044600 _____ (EaseUS ) C:\Users\Alex\Desktop\DRW15.2A3_Trial.exe 2022-08-11 22:44 - 2022-08-11 22:44 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TRC Data Recovery 2022-08-11 22:44 - 2022-08-11 22:44 - 000000000 ____D C:\Program Files (x86)\TRC Data Recovery Ltd 2022-08-11 22:28 - 2022-08-11 23:15 - 000000048 _____ C:\Windows\SysWOW64\EUTB.TODL 2022-08-11 22:28 - 2022-08-01 09:58 - 000555656 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EuFdDisk.sys 2022-08-11 22:28 - 2022-08-01 09:58 - 000075912 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eubakup.sys 2022-08-11 22:28 - 2022-08-01 09:58 - 000036488 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EuFdMount.sys 2022-08-11 22:28 - 2022-08-01 09:58 - 000023688 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eudskacs.sys 2022-08-11 22:27 - 2022-08-11 22:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup 2022-08-11 22:27 - 2022-08-11 22:27 - 000000000 ____D C:\ProgramData\EaseUS 2022-08-11 22:27 - 2022-08-01 09:58 - 000054920 _____ C:\Windows\system32\Drivers\EUBKMON.sys 2022-08-11 22:07 - 2022-08-11 22:07 - 000000000 ____D C:\Users\Alex\AppData\Local\ToolKitMain 2022-08-11 22:05 - 2022-08-11 23:05 - 000000000 ____D C:\ProgramData\SystemAcCrux 2022-08-11 22:05 - 2022-02-17 16:32 - 000076936 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EUDCPEPM.sys 2022-08-11 22:05 - 2022-02-17 16:32 - 000024200 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EUEDKEPM.sys 2022-08-11 22:04 - 2022-08-11 22:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 2022-08-11 22:03 - 2022-06-21 16:00 - 006009480 _____ C:\Windows\system32\BootMan.exe 2022-08-11 22:03 - 2022-06-21 16:00 - 003994760 _____ C:\Windows\SysWOW64\BootMan.exe 2022-08-11 22:03 - 2022-06-21 16:00 - 000024712 _____ C:\Windows\SysWOW64\EuEpmGdi.dll 2022-08-11 22:03 - 2022-06-21 16:00 - 000021128 _____ C:\Windows\system32\EuEpmGdi.dll 2022-08-11 22:03 - 2022-02-17 16:37 - 000174216 _____ C:\Windows\system32\setupepmdrvx64.exe 2022-08-11 22:03 - 2022-02-17 16:37 - 000026760 _____ C:\Windows\system32\epmdkdrv.sys 2022-08-11 22:03 - 2022-02-17 16:37 - 000021128 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\EPMVolFl.sys 2022-08-11 22:03 - 2022-02-17 16:37 - 000014472 _____ C:\Windows\system32\EuGdiDrv.sys 2022-08-11 22:02 - 2022-08-11 22:05 - 000000000 ____D C:\Program Files (x86)\EaseUS 2022-08-11 21:59 - 2022-08-11 21:59 - 000003108 _____ C:\Windows\system32\Tasks\PandaUSBVaccine 2022-08-11 21:59 - 2022-08-11 21:59 - 000000000 ____D C:\ProgramData\Panda Security 2022-08-11 21:59 - 2022-08-11 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security 2022-08-11 21:59 - 2022-08-11 21:59 - 000000000 ____D C:\Program Files (x86)\Panda USB Vaccine 2022-08-11 21:21 - 2022-08-11 21:21 - 000003032 _____ C:\Windows\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} 2022-08-11 21:21 - 2022-08-11 21:21 - 000001344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN.lnk 2022-08-11 21:21 - 2022-08-11 21:21 - 000001096 _____ C:\Users\Public\Desktop\Kaspersky VPN.lnk 2022-08-11 21:20 - 2022-08-11 21:21 - 000000000 ____D C:\Program Files\Common Files\AV 2022-08-11 21:20 - 2022-08-11 21:20 - 000002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud.lnk 2022-08-11 21:20 - 2022-08-11 21:20 - 000002111 _____ C:\Users\Public\Desktop\Kaspersky Security Cloud.lnk 2022-08-11 21:18 - 2022-08-11 21:20 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2022-08-11 21:18 - 2022-08-11 21:20 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2022-08-11 21:18 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2022-08-11 21:08 - 2022-08-11 21:08 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2022-08-11 18:46 - 2022-08-11 13:36 - 000000000 ____D C:\Users\Alex\Desktop\tudo musica 2022-08-09 20:03 - 2022-08-09 20:03 - 000001370 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2022-08-09 19:53 - 2022-08-09 19:53 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:53 - 2022-08-09 19:53 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:53 - 2022-08-09 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2022-08-09 19:53 - 2022-07-11 19:14 - 002857728 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2022-08-09 19:53 - 2022-07-11 19:14 - 002201208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2022-08-09 19:53 - 2022-07-11 19:14 - 001295992 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll 2022-08-09 19:52 - 2022-08-09 19:52 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:52 - 2022-08-09 19:52 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:52 - 2022-08-09 19:52 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:52 - 2022-08-09 19:52 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:52 - 2022-08-09 19:52 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:52 - 2022-08-09 19:52 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_NvModuleTracker_01011.Wdf 2022-08-09 19:51 - 2022-08-09 19:51 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:51 - 2022-08-09 19:51 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-08-09 19:51 - 2022-07-11 19:14 - 000170616 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2022-08-09 19:51 - 2022-07-11 19:14 - 000146552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 017702896 _____ (NVIDIA Corporation) C:\Windows\system32\nvvm64_40_0.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 001859728 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-08-09 19:44 - 2022-07-14 17:34 - 001859728 _____ C:\Windows\system32\vulkaninfo.exe 2022-08-09 19:44 - 2022-07-14 17:34 - 001439888 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-08-09 19:44 - 2022-07-14 17:34 - 001439888 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-08-09 19:44 - 2022-07-14 17:34 - 001098880 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 001098880 _____ C:\Windows\system32\vulkan-1.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 000952976 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 000952976 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 000529904 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 000461304 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 000454120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2022-08-09 19:44 - 2022-07-14 17:34 - 000359416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-08-09 19:44 - 2022-07-14 17:33 - 233663472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoptix.dll 2022-08-09 19:44 - 2022-07-14 17:33 - 076679656 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll 2022-08-09 19:44 - 2022-07-14 17:33 - 008803824 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler64.dll 2022-08-09 19:44 - 2022-07-14 17:33 - 007751680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler32.dll 2022-08-09 19:44 - 2022-07-14 17:32 - 044590592 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2022-08-09 19:44 - 2022-07-14 17:32 - 033646080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2022-08-09 19:44 - 2022-07-14 17:32 - 018603512 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll 2022-08-09 19:44 - 2022-07-14 17:32 - 016131584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll 2022-08-09 19:44 - 2022-07-14 17:32 - 000432104 _____ C:\Windows\system32\nvofapi64.dll 2022-08-09 19:44 - 2022-07-14 17:32 - 000385512 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-08-09 19:44 - 2022-07-14 17:32 - 000204776 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2022-08-09 19:44 - 2022-07-14 17:32 - 000170992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2022-08-09 19:44 - 2022-07-14 17:31 - 037058984 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2022-08-09 19:44 - 2022-07-14 17:31 - 000226808 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2022-08-09 19:44 - 2022-07-14 17:31 - 000192504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2022-08-09 19:44 - 2022-07-14 17:28 - 032520720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2022-08-09 19:44 - 2022-07-11 19:14 - 000136848 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2022-08-09 19:44 - 2022-07-11 19:14 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2022-08-09 19:44 - 2022-07-11 19:14 - 000062721 _____ C:\Windows\system32\nvinfo.pb 2022-08-09 19:44 - 2022-07-11 19:14 - 000050272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys 2022-08-09 19:44 - 2022-07-11 19:14 - 000048552 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2022-08-09 19:44 - 2022-07-11 19:14 - 000044544 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2022-08-09 19:43 - 2022-07-14 17:31 - 002115064 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-08-09 19:43 - 2022-07-14 17:31 - 001595904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-08-09 19:43 - 2022-07-14 17:31 - 001522680 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-08-09 19:43 - 2022-07-14 17:31 - 001172472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-08-09 19:43 - 2022-07-14 17:31 - 000678392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2022-08-09 19:43 - 2022-07-14 17:31 - 000566776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2022-08-09 19:43 - 2022-07-14 17:30 - 022710792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-08-09 19:43 - 2022-07-14 17:30 - 019830760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-08-09 19:43 - 2022-07-14 17:30 - 008445960 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-08-09 19:43 - 2022-07-14 17:30 - 007624184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-08-09 19:43 - 2022-07-14 17:30 - 001734656 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6447381.dll 2022-08-09 19:43 - 2022-07-14 17:30 - 001494016 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6447381.dll 2022-08-09 19:43 - 2022-07-14 17:29 - 046112760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler64.dll 2022-08-09 19:43 - 2022-07-14 17:29 - 041375752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler32.dll 2022-08-09 19:43 - 2022-07-14 17:29 - 000692208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll 2022-08-09 19:43 - 2022-07-14 17:28 - 025666560 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2022-08-09 19:43 - 2022-07-14 17:28 - 021949384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2022-08-09 02:13 - 2022-08-09 02:13 - 000000000 ___SD C:\Users\Alex\Documents\My Shapes 2022-08-07 13:12 - 2022-08-07 13:12 - 000091224 _____ C:\Users\Alex\Downloads\cms_files_47670_1543949416MarketProfile_v1.07.ex5 2022-08-05 18:01 - 2022-08-05 19:06 - 000000000 ____D C:\Users\Alex\AppData\LocalLow\uTorrent 2022-07-31 18:55 - 2022-07-31 18:55 - 000000000 ____D C:\Users\Alex\Documents\Universe Gamers 2022-07-31 18:54 - 2022-07-31 18:55 - 000000093 _____ C:\Windows\UGGLauncher.INI 2022-07-31 18:53 - 2022-07-31 18:53 - 000001232 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play UGGunz!.lnk 2022-07-31 15:57 - 2022-07-31 15:57 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2022-07-31 15:57 - 2022-07-31 15:57 - 000000000 ____D C:\Users\Alex\AppData\Local\Ubisoft Game Launcher 2022-07-31 15:57 - 2022-07-31 15:57 - 000000000 ____D C:\Program Files (x86)\Ubisoft 2022-07-29 19:12 - 2022-07-29 19:15 - 000000000 ____D C:\Users\Alex\AppData\Roaming\vibranceGUI 2022-07-29 19:12 - 2018-12-10 15:29 - 000794624 _____ (juvlarN) C:\Users\Alex\Desktop\vibranceGUI.exe 2022-07-29 18:52 - 2022-07-29 18:52 - 004566416 _____ C:\Windows\system32\Drivers\EMAC-Driver-x64.sys 2022-07-29 18:52 - 2022-07-29 18:52 - 003827232 _____ C:\Windows\system32\Drivers\EMAC-Driver-x64-stable.sys 2022-07-29 18:52 - 2022-07-29 18:52 - 003379672 _____ C:\Windows\system32\Drivers\EMAC-BT-Driver-x64.sys 2022-07-29 18:51 - 2022-07-29 18:54 - 000000000 ____D C:\Users\Alex\AppData\Roaming\gcac-launcher 2022-07-29 18:51 - 2022-07-29 18:51 - 000002505 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gamers Club Anti-Cheat.lnk 2022-07-29 18:51 - 2022-07-29 18:51 - 000002497 _____ C:\Users\Alex\Desktop\Gamers Club Anti-Cheat.lnk 2022-07-29 18:51 - 2022-07-29 18:51 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Gamers Club AC Launcher 2022-07-21 21:21 - 2022-07-21 21:21 - 000000965 _____ C:\Users\Alex\Desktop\Profit.lnk 2022-07-21 21:21 - 2022-07-21 21:21 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nelogica 2022-07-21 21:20 - 2022-07-21 21:21 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Nelogica 2022-07-19 19:00 - 2022-07-19 19:00 - 000000000 ____D C:\ProgramData\Piriform ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2022-08-17 20:52 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\registration 2022-08-17 20:50 - 2020-10-22 02:00 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-17 20:48 - 2020-10-22 02:41 - 000000000 ____D C:\ProgramData\NVIDIA 2022-08-17 20:48 - 2009-07-14 01:45 - 000030112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2022-08-17 20:48 - 2009-07-14 01:45 - 000030112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2022-08-17 20:42 - 2020-10-25 22:24 - 000000000 ____D C:\Program Files\CCleaner 2022-08-17 20:40 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-17 00:17 - 2019-05-04 19:35 - 000000000 ____D C:\Program Files (x86)\Steam 2022-08-16 23:33 - 2020-10-22 02:49 - 000000000 ____D C:\ProgramData\Riot Games 2022-08-15 21:35 - 2020-10-22 06:36 - 000000000 ____D C:\ProgramData\BSD 2022-08-15 21:35 - 2020-10-22 06:33 - 000000000 ____D C:\Windows\system32\Tasks\Auslogics 2022-08-15 21:35 - 2020-10-22 06:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics 2022-08-15 21:35 - 2020-10-22 06:33 - 000000000 ____D C:\ProgramData\Auslogics 2022-08-15 21:35 - 2020-10-22 06:33 - 000000000 ____D C:\Program Files (x86)\Auslogics 2022-08-14 02:28 - 2021-04-27 16:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2022-08-12 18:12 - 2022-05-20 22:58 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Telegram Desktop 2022-08-12 18:09 - 2020-10-22 03:07 - 000000000 ____D C:\Users\Alex\AppData\Local\CrashDumps 2022-08-12 13:52 - 2020-10-24 23:07 - 000000000 ____D C:\Users\Alex\AppData\Roaming\uTorrent 2022-08-12 12:59 - 2021-10-02 17:22 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Binance 2022-08-12 10:59 - 2021-04-12 12:27 - 000000000 ____D C:\Users\Alex\AppData\Roaming\zqUmedggTq 2022-08-12 10:59 - 2021-04-12 12:06 - 000000000 ____D C:\Users\Alex\AppData\Roaming\wKbdCqacAThJQKnFtYI 2022-08-12 09:23 - 2018-08-15 07:04 - 000000000 ____D C:\Windows\system32\MRT 2022-08-12 09:17 - 2018-08-15 07:04 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-11 23:46 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf 2022-08-11 23:10 - 2020-10-22 02:01 - 000000000 ____D C:\Users\Alex\Desktop\Alex 2022-08-11 21:37 - 2021-05-06 11:23 - 000000000 ____D C:\Program Files\KMSpico 2022-08-11 20:42 - 2021-06-27 13:47 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-08-11 18:51 - 2020-10-22 01:48 - 000000000 ____D C:\Users\Alex 2022-08-11 18:50 - 2021-12-05 23:20 - 000000000 ____D C:\Users\Alex\AppData\Roaming\vlc 2022-08-11 18:50 - 2021-04-27 16:32 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform 2022-08-09 23:15 - 2020-10-22 02:45 - 000000000 ____D C:\Users\Alex\AppData\Local\NVIDIA Corporation 2022-08-09 20:04 - 2020-11-08 03:51 - 000000000 ____D C:\Users\Alex\AppData\Local\NVIDIA 2022-08-09 20:03 - 2020-10-22 02:38 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-08-09 19:53 - 2020-10-22 02:40 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2022-08-09 19:53 - 2020-10-22 02:37 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2022-08-09 02:36 - 2022-03-13 13:39 - 000000000 ____D C:\Users\PC 2022-08-09 02:34 - 2022-03-13 13:44 - 000000000 ____D C:\Users\PC\Desktop\Alex 2022-08-08 23:11 - 2020-10-22 02:01 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-08 23:11 - 2020-10-22 02:01 - 000002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-08-05 22:47 - 2021-08-30 16:30 - 000000000 ____D C:\Wemade 2022-08-05 20:47 - 2021-05-05 14:51 - 000000000 ____D C:\Users\Alex\AppData\Roaming\Lindo 2022-08-05 17:37 - 2020-10-24 23:09 - 000000000 ____D C:\Users\Alex\AppData\Local\BitTorrentHelper 2022-07-31 15:55 - 2020-10-22 03:19 - 000000000 ____D C:\Users\Alex\AppData\Local\EpicGamesLauncher 2022-07-27 12:08 - 2022-05-09 14:53 - 000000658 _____ C:\Users\Alex\Desktop\New Text Document.txt 2022-07-21 22:51 - 2022-03-03 22:37 - 000000000 ____D C:\Program Files\Netmarble 2022-07-21 21:25 - 2020-10-22 01:48 - 000001413 _____ C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ==================== Files in the root of some directories ======== 2021-06-07 23:05 - 2021-06-10 17:35 - 000000113 _____ () C:\Users\Alex\AppData\Roaming\D2Info0 2021-06-07 23:05 - 2021-06-10 12:32 - 000000008 _____ () C:\Users\Alex\AppData\Roaming\DofusAppId0_1 2021-06-10 01:10 - 2021-06-10 17:53 - 000000008 _____ () C:\Users\Alex\AppData\Roaming\DofusAppId0_2 2021-01-19 23:01 - 2021-03-15 13:00 - 000000095 _____ () C:\Users\Alex\AppData\Roaming\LauncherSettings_live.cfg 2022-06-03 17:21 - 2022-06-06 18:14 - 000000132 _____ () C:\Users\Alex\AppData\Roaming\Preferências do Formato PNG do Adobe CS6 2021-01-19 21:20 - 2021-01-20 12:31 - 000016601 _____ () C:\Users\Alex\AppData\Roaming\TheHunterSettings_live.bin 2021-01-19 21:23 - 2021-01-26 18:37 - 000000048 _____ () C:\Users\Alex\AppData\Roaming\TheHunterSettings_steam_live.cfg 2021-02-01 16:54 - 2021-02-01 16:54 - 000000410 _____ () C:\Users\Alex\AppData\Local\oobelibMkey.log 2022-03-12 20:33 - 2022-03-12 20:33 - 000016438 _____ () C:\Users\Alex\AppData\Local\partner.bmp 2020-10-22 06:54 - 2021-03-29 14:54 - 000007597 _____ () C:\Users\Alex\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) LastRegBack: 2021-05-05 16:01 ==================== End of FRST.txt ========================