Downloaded and Ran Exe from Discord, Unsure if Spyware Leftover - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

I feel for a Discord phishing scam by clicking on a link and downloading an exe, then running it. I already uninstalled and reinstalled Discord after cleaning out both of it's appdata folders. I also already uninstalled Chrome and reinstalled it, again deleting folders. I know I got hacked somehow initially because my Discord account is stolen. I am working with Discord to get it back. I'm here to see if everything is indeed cleaned up because I'm honestly scared.

I ended up getting Kaspersky Total Security and their VPN because of it.
 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2021
Ran by CuddleCactus (administrator) on CUDDLECACTUS (MSI MS-7977) (13-10-2021 22:44:46)
Running from E:\Users\Tkure\Downloads
Loaded Profiles: CuddleCactus
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1288 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Discord Inc. -> Discord Inc.) C:\Users\Tkure\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(F.lux Software LLC -> f.lux Software LLC) C:\Users\Tkure\AppData\Local\FluxSoftware\Flux\flux.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <41>
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_isolation.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\transport_proxy.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\plugins_nms.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Kaspersky Lab JSC -> Kaspersky Lab AO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\plugin-nm-server-v2.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CredentialEnrollmentManager.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_799504293a3d3200\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(SurfRight B.V. -> SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [FWS_FlawlessWidescreen] => C:\Program Files (x86)\Flawless Widescreen\FlawlessWidescreen.exe [2607104 2014-05-30] (Flawless Widescreen) [File not signed]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11236136 2021-08-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [409760 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1412095178-664559709-1232603657-1001\...\Run: [f.lux] => C:\Users\Tkure\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-17] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-1412095178-664559709-1232603657-1001\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [568904 2016-07-22] (Dean Herbert -> )
HKU\S-1-5-21-1412095178-664559709-1232603657-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe [699112 2021-08-16] (Kaspersky Lab JSC -> AO Kaspersky Lab)
HKU\S-1-5-21-1412095178-664559709-1232603657-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-09] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-07-23]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKU\S-1-5-21-1412095178-664559709-1232603657-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {11149811-C519-495B-B70D-C8F01A7EE4AC} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {199A0CD7-2833-45DC-946B-31BA37E26A07} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2EB41EF7-6191-4B6A-AEDA-62CC7E38EBA9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {34A66C27-2E19-4852-A7DB-4DA2C5DBD599} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2021-10-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {35F010E8-9617-4843-BCF3-FAE729C17F1E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3A9303C8-96FB-4D6A-A412-321535B2E215} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {46476902-6D47-4070-A50C-AC0E8142BD43} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {50C8A8C1-66D0-4E28-AB2D-F5ECD0AB0146} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1412095178-664559709-1232603657-1001 => C:\Users\Tkure\AppData\Local\MEGAsync\MEGAupdater.exe [1306288 2021-07-23] (Mega Limited -> Mega Limited)
Task: {5F4C4C9D-A9A1-4C11-AC95-719A0B9E3AF6} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2483032 2021-08-12] (Overwolf Ltd -> Overwolf LTD)
Task: {6B99AE99-2FFE-460B-8DC6-D9A0D05E63F1} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [791608 2021-03-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {6E234C54-2C53-42B8-AC87-A9E8DD330FF4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6FBFA34F-DB22-491D-8DA2-3EA6D0F13598} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {72932E6E-32B3-43C7-8217-2E229A9EEC58} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_pepper.exe [1453624 2020-02-04] (Adobe Inc. -> Adobe)
Task: {8106C0EC-54F8-480E-8F28-0B090C05B7A3} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {84A75E0B-8C55-44C5-9D6D-FD2BD2065F1C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {86D8ABAA-AC6B-40EF-A984-948EBD143F6C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {87E5991A-6661-4229-9BBB-0E856C1C7720} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock-storagesense => C:\Program Files\rempl\remsh.exe
Task: {9247E8D3-8095-4712-9991-7395637F2EA8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9454AE9E-90A3-4E6E-A6CF-E42AB1965675} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Tkure\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-10-12] (ESET, spol. s r.o. -> ESET)
Task: {9EC20314-3810-44F5-AD97-228F4A8A161F} - System32\Tasks\Microsoft\Windows\rempl\shell-restore => C:\Program Files\rempl\remsh.exe
Task: {B02C49B8-F0BE-4FFA-81EF-31FEAD2494D9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-09] (Google LLC -> Google LLC)
Task: {D54A0711-42F1-4BA0-85D5-43FAB34A83DD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-09] (Google LLC -> Google LLC)
Task: {E244565B-960F-4B53-B695-C619E5D43847} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Tkure\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-10-12] (ESET, spol. s r.o. -> ESET)
Task: {E358D170-D926-4F1A-AC48-572EEB6AA16E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EA7776C8-60BC-4685-92AB-6A89BF7928CB} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F08889DD-ADBD-4C75-82C1-E9D64A9AC01A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {F33A1D29-1AA1-4FCA-B719-DAA4E29CAB86} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FE1AF10D-B094-4E66-BF57-AA84E3189141} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{8d846724-eb07-48fa-8470-7c2d187e204b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8d846724-eb07-48fa-8470-7c2d187e204b}: [DhcpNameServer] 69.50.57.10 137.118.1.32
Tcpip\..\Interfaces\{97ee9b89-a87d-4f28-ace2-a6e3e67533f8}: [NameServer] 8.8.8.8,8.8.4.4
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Tkure\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-12]
Edge HKU\S-1-5-21-1412095178-664559709-1232603657-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FF DefaultProfile: hjfjjupa.default
FF ProfilePath: C:\Users\Tkure\AppData\Roaming\Mozilla\Firefox\Profiles\dacaiqy8.default-release-1633828216278 [2021-10-13]
FF ProfilePath: C:\Users\Tkure\AppData\Roaming\Mozilla\Firefox\Profiles\hjfjjupa.default [2021-10-13]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2018-04-16] [Legacy]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll [2020-07-01] (Adobe Systems Incorporated -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: BYOND -> C:\Program Files (x86)\BYOND\bin\npbyond.dll [2008-07-08] (BYOND) [File not signed]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\antibeacon.js [2021-09-01] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\mozilla.cfg [2021-10-13] <==== ATTENTION
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default [2021-10-09]
CHR Extension: (Slides) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-10-09]
CHR Extension: (Docs) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-10-09]
CHR Extension: (Google Drive) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-09]
CHR Extension: (YouTube) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-09]
CHR Extension: (Foxit PDF Creator) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\cifnddnffldieaamihfkhkdgnbhfmaci [2021-10-09]
CHR Extension: (Sheets) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-10-09]
CHR Extension: (Google Docs Offline) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-09]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-10-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-09]
CHR Extension: (Gmail) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-09]
CHR Profile: C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-13]
CHR Profile: C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-10-13]
CHR StartupUrls: Profile 1 -> "hxxp://www.google.com/"
CHR Session Restore: Profile 1 -> is enabled.
CHR Extension: (Google Translate) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-10-09]
CHR Extension: (Image Translate, Documents to Text) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\adfcjpalgioeneepkmehnebhgkgmfadj [2021-10-09]
CHR Extension: (Kaspersky Protection) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-10-13]
CHR Extension: (h264ify) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aleakchihdccplidncghkekgioiakgal [2021-10-09]
CHR Extension: (Google Drive) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-09]
CHR Extension: (YouTube) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-09]
CHR Extension: ('Improve YouTube!' (Video & YouTube Tools)🎧) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bnomihfieiccainjcjblhegjgglakjdd [2021-10-09]
CHR Extension: (Sad Panda) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bohapeiooecafommnlaiccilacgmkaoc [2021-10-09]
CHR Extension: (uBlock Origin) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-10-11]
CHR Extension: (Do Not Track) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ckdcpbflcbeillmamogkpmdhnbeggfja [2021-10-09]
CHR Extension: (Kaspersky Password Manager) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2021-10-13]
CHR Extension: (FrankerFaceZ) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2021-10-09]
CHR Extension: (HTTPS Everywhere) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-10-09]
CHR Extension: (Google Docs Offline) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-09]
CHR Extension: (Picture-in-Picture Extension (by Google)) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hkgfoiooedgoejojocmhlaklaeopbecg [2021-10-09]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2021-10-09]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-10-09]
CHR Extension: (Clutter Free - Prevent duplicate tabs) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\iipjdmnoigaobkamfhnojmglcdbnfaaf [2021-10-09]
CHR Extension: (Absolute Enable Right Click & Copy) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2021-10-09]
CHR Extension: (Video Ad-Block, for Twitch) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kgeglempfkhalebjlogemlmeakondflc [2021-10-09]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2021-10-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-09]
CHR Extension: (Gmail) - C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-09]
CHR Profile: C:\Users\Tkure\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-13]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2018-04-16]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2018-04-16]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe [184768 2021-10-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 CorsairGamingAudioConfig; C:\WINDOWS\system32\CorsairGamingAudioCfgService64.exe [616344 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421536 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [80544 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 FoxitPhantomService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2019-10-28] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [151496 2021-10-11] (SurfRight B.V. -> SurfRight B.V.)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [368360 2021-08-16] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-08-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [2108600 2017-09-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2347704 2017-08-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4054200 2017-09-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2247352 2017-08-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2489016 2017-09-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2017-08-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [4848312 2017-08-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2210104 2021-04-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S4 NGS; C:\WINDOWS\NGService.exe [3045936 2019-09-17] (NEXON Korea Corporation. -> NEXON Korea Corporation)
S4 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2483032 2021-08-12] (Overwolf Ltd -> Overwolf LTD)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5414976 2021-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_799504293a3d3200\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_799504293a3d3200\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudio64.sys [60312 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R4 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [40960 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-12-05] (Martin Malik - REALiX -> REALiX™)
S3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [674104 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1469240 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [273176 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-10-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [265176 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [315032 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [113952 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [225648 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_CC_DDR; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [94560 2021-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51224 2016-02-04] (Razer USA Ltd. -> Razer Inc)
S3 rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [47640 2016-02-04] (Razer USA Ltd. -> Razer Inc)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46896 2018-04-23] (SteelSeries ApS -> )
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47944 2018-07-02] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-13 21:36 - 2019-06-03 13:13 - 000037776 _____ (Emsisoft Ltd) C:\WINDOWS\system32\Drivers\eppdisk.sys
2021-10-13 21:30 - 2021-10-13 21:36 - 000000000 ____D C:\Program Files\Emsisoft Anti-Malware
2021-10-13 19:31 - 2021-10-13 19:31 - 000094560 ____H (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCMON24.SYS
2021-10-13 17:49 - 2021-10-13 17:49 - 000036208 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2021-10-13 16:56 - 2021-10-13 16:56 - 000315032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2021-10-13 16:56 - 2021-10-13 16:56 - 000003150 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2021-10-13 16:54 - 2021-10-13 16:54 - 000265176 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2021-10-13 16:54 - 2021-10-13 16:54 - 000225648 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2021-10-13 16:54 - 2021-10-13 16:54 - 000113952 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2021-10-13 16:54 - 2021-10-13 16:54 - 000096008 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpnpflt.sys
2021-10-13 16:54 - 2021-10-13 16:54 - 000003240 _____ C:\WINDOWS\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2021-10-13 16:53 - 2021-10-13 20:33 - 000040960 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2021-10-13 16:53 - 2021-10-13 16:53 - 000002192 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk
2021-10-13 16:53 - 2021-10-13 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2021-10-13 16:53 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2021-10-13 16:53 - 2021-02-19 21:08 - 001042712 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2021-10-13 16:53 - 2021-02-19 21:08 - 000514840 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2021-10-13 14:42 - 2021-10-13 15:22 - 000000000 ____D C:\Users\Tkure\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twilio Inc
2021-10-13 14:42 - 2021-10-13 15:22 - 000000000 ____D C:\Users\Tkure\AppData\Local\authy
2021-10-13 12:05 - 2021-10-13 12:05 - 000332014 _____ C:\TDSSKiller.3.1.0.28_13.10.2021_12.05.10_log.txt
2021-10-13 11:40 - 2021-10-13 11:40 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-10-12 18:01 - 2021-10-13 22:45 - 000000000 ____D C:\FRST
2021-10-12 16:27 - 2021-10-12 16:27 - 000003866 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2021-10-12 16:27 - 2021-10-12 16:27 - 000003424 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2021-10-12 15:59 - 2021-10-13 11:40 - 000001394 _____ C:\Users\Tkure\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-10-12 15:59 - 2021-10-12 15:59 - 000000000 ____D C:\Users\Tkure\AppData\Local\ESET
2021-10-12 14:25 - 2021-10-12 14:25 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2021-10-12 14:25 - 2021-10-12 14:25 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2021-10-12 14:24 - 2021-10-12 14:24 - 001823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-12 14:24 - 2021-10-12 14:24 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-12 14:24 - 2021-10-12 14:24 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-12 14:24 - 2021-10-12 14:24 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-12 14:24 - 2021-10-12 14:24 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-12 14:24 - 2021-10-12 14:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-10-12 14:24 - 2021-10-12 14:24 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-10-12 14:24 - 2021-10-12 14:24 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-12 14:24 - 2021-10-12 14:24 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-10-12 14:24 - 2021-10-12 14:24 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-10-12 14:24 - 2021-10-12 14:24 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-10-12 14:24 - 2021-10-12 14:24 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-10-12 14:24 - 2021-10-12 14:24 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2021-10-12 14:24 - 2021-10-12 14:24 - 000011495 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-12 14:19 - 2021-10-12 14:19 - 000000000 ___HD C:\$WinREAgent
2021-10-11 23:50 - 2021-10-13 16:56 - 088080384 _____ C:\WINDOWS\system32\config\SOFTWARE
2021-10-11 22:38 - 2021-10-11 22:40 - 000335088 _____ C:\TDSSKiller.3.1.0.28_11.10.2021_22.38.34_log.txt
2021-10-11 21:45 - 2021-10-11 21:49 - 000000000 ____D C:\Users\Tkure\AppData\Local\Sysinternals
2021-10-11 21:06 - 2021-10-11 21:14 - 000661940 _____ C:\TDSSKiller.3.1.0.28_11.10.2021_21.06.42_log.txt
2021-10-11 21:00 - 2021-10-11 21:01 - 000008282 _____ C:\TDSSKiller.3.1.0.28_11.10.2021_21.00.44_log.txt
2021-10-11 13:31 - 2021-10-11 13:31 - 000001325 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2021-10-11 13:31 - 2021-10-11 13:31 - 000000000 ____D C:\Users\Tkure\AppData\Local\Kaspersky Lab
2021-10-11 13:31 - 2021-10-11 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2021-10-11 01:40 - 2021-10-11 01:40 - 000001252 _____ C:\WINDOWS\system32\.crusader
2021-10-11 01:30 - 2021-10-13 20:30 - 000000000 ____D C:\Program Files\HitmanPro
2021-10-11 01:30 - 2021-10-11 01:30 - 000001962 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2021-10-11 01:30 - 2021-10-11 01:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2021-10-11 01:29 - 2021-10-11 01:40 - 000000000 ____D C:\ProgramData\HitmanPro
2021-10-10 18:25 - 2021-10-13 22:46 - 000000000 ____D C:\Users\Tkure\AppData\Roaming\discord
2021-10-10 18:25 - 2021-10-13 22:25 - 000000000 ____D C:\Users\Tkure\AppData\Local\Discord
2021-10-10 18:25 - 2021-10-10 18:25 - 000000000 ____D C:\Users\Tkure\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2021-10-10 00:57 - 2021-10-10 00:57 - 000001165 _____ C:\Users\Public\Desktop\Kaspersky VPN.lnk
2021-10-10 00:57 - 2021-10-10 00:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN
2021-10-10 00:56 - 2021-10-13 16:54 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2021-10-10 00:30 - 2021-10-11 23:49 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2021-10-10 00:06 - 2021-10-13 16:54 - 000000000 ____D C:\Program Files\Common Files\AV
2021-10-10 00:06 - 2021-10-13 16:53 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2021-10-10 00:06 - 2021-10-11 13:18 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-10-09 22:29 - 2021-10-09 22:29 - 000000000 _____ C:\Users\Tkure\netstat
2021-10-09 19:28 - 2021-10-09 19:28 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-10-09 19:28 - 2021-10-09 19:28 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-10-09 19:28 - 2021-10-09 19:28 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-10-09 19:28 - 2021-10-09 19:28 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-10-09 19:28 - 2021-10-09 19:28 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-10-09 19:28 - 2021-10-09 19:28 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-10-09 19:28 - 2021-10-09 19:28 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-10-09 19:28 - 2021-10-09 19:28 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-10-09 19:28 - 2021-10-09 19:28 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-10-09 19:28 - 2021-10-09 19:28 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-10-09 19:28 - 2021-10-09 19:28 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-10-09 19:27 - 2021-10-09 19:27 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-10-09 19:27 - 2021-10-09 19:27 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-10-09 18:22 - 2021-10-11 19:36 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-09 18:22 - 2021-10-11 19:36 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-09 18:22 - 2021-10-09 18:22 - 000000000 ____D C:\Program Files\Google
2021-10-09 18:21 - 2021-10-13 22:26 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-09 18:21 - 2021-10-09 18:21 - 000003420 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-09 18:21 - 2021-10-09 18:21 - 000003296 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-09 14:39 - 2021-10-09 14:39 - 001048576 _____ C:\WINDOWS\system32\deftlbase.sbd
2021-10-09 14:39 - 2021-10-09 14:39 - 000016384 _____ C:\WINDOWS\system32\deftlbase.jfm

Comments

Post a Comment

Popular posts from this blog

ZLUDA v2 Released For Drop-In CUDA On Intel Graphics - Phoronix

Image
One of many interesting and original open-source projects to be started in 2020 was ZLUDA, an open-spurce drop-in CUDA implementation for Intel graphics. ZLUDA - developed independent of Intel and NVIDIA - is built atop Intel's oneAPI Level Zero interface (hence the name, ZLUDA) and allows for unmodified CUDA applications to run on Intel UHD/Xe Graphics hardware with near-native performance. Well, that's the goal at least but with the initial ZLUDA release were a number of support limitations. Out today is ZLUDA Version 2 that has been focused on ensuring it works well with the Geekbench CUDA test cases as an interesting stressor for CUDA on Intel graphics. Additionally, the Microsoft Windows support for ZLUDA has been improved while continuing to provide first-rate Linux support. ZLUDA Version 2 implements more host-side functions, a number of bugs have been fixed, I/O performance improvements, support for creating traces of CUDA kernel executions, and other enhancements for...
Read more

7 Ways to Remove an External USB Drive in Windows 11 - MUO - MakeUseOf

Image
Many users utilize USB flash drives (sticks) to store files and transfer them between PCs. Of course, you can always remove such drives from USB ports without ejecting them first. However, you might corrupt data on your USB stick if you don't safely remove it. To forestall potential file corruption, you should eject USB sticks and external hard drives. There are numerous ways you can select to eject a USB flash drive before removing it. Here are several alternative methods for safely removing USB drives on Windows 11 PCs. 1. How to Eject an External USB Drive via the System Tray Windows 11's system tray displays a Safely Remove Hardware and Eject Media icon whenever you've inserted a USB stick or other external hard drive. Right-click that icon to open a context menu for it, which includes an Eject option. Select the Eject option there, and proceed to remove the drive when the Safely Remove Hardware icon has disappeared. ...
Read more

Everything you need to know about Android’s Project Mainline - XDA Developers

Everything you need to know about Android's Project Mainline - XDA Developers, One of the biggest changes in Android in recent years that flew under the radar, relatively speaking against its importance, was the introduction of Project Mainline in Android 10. Google mandates the inclusion of specific Mainline modules across Android releases, with Android 11 coming in with a combined compulsory total of 25 Mainline modules. Here is an explanation on what Project Mainline is and what it aims to solve, alongside a list of all of Android's Project Mainline modules. What is Project Mainline? To properly understand Project Mainline, we will have to rewind a bit. If you go back a few years, a lot of the conversation around Android updates centered around the fragmentation problem. Fragmentation was one of the biggest challenges for Google to solve on Android around the Ice Cream Sandwich – Lollipop era. Even though Android as a platform received regular update...
Read more