Unsure if a virus or keylogger was transferred to my pc from teamviewer

Hello, i used teamviewer for a remote sharing recently and noticed a file transferred under the teamviewer log file.
I am unsure who did this as i did not see any notification pop up on teamviewer saying a file has been transferred.
I have done the FRST and Addition.txt to this post.
Is there anything else that is needed from my end like the teamview logs?
 
Thank you.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Ran by Jon (administrator) on DESKTOP-DFDNFVA (08-01-2022 18:09:11)
Running from C:UsersJonDownloads
Loaded Profiles: Jon
Platform: Microsoft Windows 10 Pro Version 2004 19041.1415 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Discord Inc. -> Discord Inc.) C:UsersJonAppDataLocalDiscordapp-1.0.9003Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) E:OriginOriginWebHelperService.exe
(ESET, spol. s r.o. -> ESET) C:Program FilesESETESET Securityegui.exe
(ESET, spol. s r.o. -> ESET) C:Program FilesESETESET SecurityeguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:Program FilesESETESET Securityekrn.exe
(Google LLC -> Google LLC) C:Program Files (x86)GoogleChromeApplicationchrome.exe <15>
(Logitech Inc -> Logitech, Inc.) C:Program FilesLGHUBlghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:Program FilesLGHUBlghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:Program FilesLGHUBlghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembam.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbweCortana.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbweWin32Bridge.Server.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbweCalculator.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsImmersiveControlPanelSystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32InputMethodCHSChsIME.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0NisSrv.exe
(NVIDIA Corporation -> Node.js) C:Program Files (x86)NVIDIA CorporationNvNodeNVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationShadowPlaynvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:WindowsSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_272b5c540127d6d2Display.NvContainerNVDisplay.Container.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Run: [egui] => C:Program FilesESETESET SecurityecmdS.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKUS-1-5-21-1135037592-2269068261-1805264048-1001…Run: [Steam] => C:Program Files (x86)Steamsteam.exe [4267432 2021-12-17] (Valve Corp. -> Valve Corporation)
HKUS-1-5-21-1135037592-2269068261-1805264048-1001…Run: [Discord] => C:UsersJonAppDataLocalDiscordUpdate.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKUS-1-5-21-1135037592-2269068261-1805264048-1001…Run: [EpicGamesLauncher] => E:EpicEpic GamesLauncherPortalBinariesWin64EpicGamesLauncher.exe [33526752 2021-10-28] (Epic Games Inc. -> Epic Games, Inc.)
HKUS-1-5-21-1135037592-2269068261-1805264048-1001…Run: [LGHUB] => C:Program FilesLGHUBlghub.exe [136443968 2021-12-09] (Logitech Inc -> Logitech, Inc.)
HKUS-1-5-21-1135037592-2269068261-1805264048-1001…Run: [E86FB7DEEAF28F793F6F1000BFF92DBBD8480CF2._service_run] => “C:Program Files (x86)MicrosoftEdgeApplicationmsedge.exe” –type=service /prefetch:8
HKUS-1-5-21-1135037592-2269068261-1805264048-1001…Run: [Innkeeper] => C:UsersJonAppDataLocalInnkeeperUpdate.exe [1888136 2019-08-04] (Curse, Inc. -> Innkeeper)
HKLMSoftwareMicrosoftActive SetupInstalled Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:Program Files (x86)GoogleChromeApplication97.0.4692.71Installerchrmstp.exe [2022-01-07] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {17B57AD1-CA16-472F-9F19-5F21B829EBC2} – System32TasksMicrosoftOfficeOfficeTelemetryAgentFallBack2016 => C:Program FilesMicrosoft OfficerootOffice16msoia.exe [8388528 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {2483F0DC-E7CF-49E1-8113-C9D05ACB8101} – System32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {260BE5F1-972C-41DC-A4B7-CA6C5F035434} – System32TasksMicrosoftOfficeOfficeTelemetryAgentLogOn2016 => C:Program FilesMicrosoft OfficerootOffice16msoia.exe [8388528 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {2AF0C662-B67E-4977-866F-849770F96D4E} – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-06-15] (Google LLC -> Google LLC)
Task: {394CC9AE-8E24-4C95-A4E8-5AFC3C7B99E6} – System32TasksMicrosoftOfficeOffice Feature Updates Logon => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [138584 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {403C2335-F4A4-4303-AB28-ABFD1E691899} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cleanup => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4E11AA6B-6E36-45D0-880B-7992A20D6DD0} – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-06-15] (Google LLC -> Google LLC)
Task: {70CB5BD2-F5EA-4BA7-ABAD-0B10105BC127} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Verification => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {784F70B5-9774-4DC9-9F68-EF438A5EFBD3} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Scheduled Scan => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8F74490B-9BBA-4B3B-9FDF-514ACDF53393} – System32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program Files (x86)NVIDIA CorporationNvNodenvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A456BB35-7224-414A-8A1B-BC095F3A31B2} – System32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A8FB6D66-9FB0-42D8-87A6-F0161467E747} – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cache Maintenance => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B1BA7019-91F8-4DDB-A529-F5116919504D} – System32TasksNVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BD49B93C-6014-488D-9CFE-6FC495713ED5} – System32TasksMicrosoftOfficeOffice Feature Updates => C:Program FilesMicrosoft OfficerootOffice16sdxhelper.exe [138584 2021-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {BDD5CA96-A290-405C-81A2-948E359CA100} – System32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C56A8946-A52F-42FF-A6E1-6848F7FDD6CC} – System32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C9FBF80D-04C0-4A62-AF41-40D8BE7B9269} – System32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CBA2F31E-ACCA-4666-9076-D48EE8801C97} – System32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d “C:Program FilesNVIDIA CorporationNvDriverUpdateCheck” -l 3 -f C:ProgramDataNVIDIANvContainerDriverUpdateCheck.log
Task: {DE987E7F-25BC-42EE-8289-BABC604D200F} – System32TasksMicrosoftOfficeOffice Automatic Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2499341-79B2-4408-B72D-643CA60F2B01} – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {E4896689-999E-4EA2-8CFA-B305427CE97B} – System32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d “C:Program FilesNVIDIA CorporationNvBackendNvBatteryBoostCheck” -l 3 -f C:ProgramDataNVIDIANvContainerBatteryBoostCheck.log
Task: {E928CA46-CAF3-4A1E-8734-5D26CBAC7600} – System32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

TcpipParameters: [DhcpNameServer] 192.168.1.254
Tcpip..Interfaces{cbe19198-c006-46f8-bc13-8c843e516688}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsAutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsBookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsLearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsPinJSAPI [not found]
Edge Profile: C:UsersJonAppDataLocalMicrosoftEdgeUser DataDefault [2022-01-08]
Edge Extension: (Outlook) – C:UsersJonAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsbjhmmnoficofgoiacjaajpkfndojknpb [2020-10-31]
Edge Extension: (Word) – C:UsersJonAppDataLocalMicrosoftEdgeUser DataDefaultExtensionshikhggiobiflkdfdgdajcfklmcibbopi [2020-10-31]
Edge Extension: (Excel) – C:UsersJonAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsleffmjdabcgaflkikcefahmlgpodjkdm [2020-10-31]
Edge Extension: (PowerPoint) – C:UsersJonAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsopfacbhaojodjaojgocnibmklknchehf [2020-10-31]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:Program FilesMicrosoft OfficerootOffice16NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:UsersJonAppDataLocalGoogleChromeUser DataDefault [2022-01-08]
CHR Notifications: Default -> hxxps://ndcdyn.interactivebrokers.com; hxxps://www.interactivebrokers.com.au
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Slides) – C:UsersJonAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2020-06-15]
CHR Extension: (Docs) – C:UsersJonAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2020-06-15]
CHR Extension: (Google Drive) – C:UsersJonAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) – C:UsersJonAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-15]
CHR Extension: (Sheets) – C:UsersJonAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2020-06-15]
CHR Extension: (Google Docs Offline) – C:UsersJonAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-02]
CHR Extension: (Chrome Web Store Payments) – C:UsersJonAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) – C:UsersJonAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:Program Files (x86)EasyAntiCheatEasyAntiCheat.exe [812008 2021-09-30] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 ekrn; C:Program FilesESETESET Securityekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:Program FilesESETESET Securityekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 LGHUBUpdaterService; C:Program FilesLGHUBlghub_updater.exe [11104832 2021-12-09] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [7901368 2021-12-30] (Malwarebytes Inc -> Malwarebytes)
S3 npggsvc; C:WINDOWSSysWOW64GameMon.des [9608504 2020-09-07] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Origin Client Service; E:OriginOriginClientService.exe [2557656 2021-10-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; E:OriginOriginWebHelperService.exe [3476184 2021-10-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 rpcapd; C:Program Files (x86)WinPcaprpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 Sense; C:Program FilesWindows Defender Advanced Threat ProtectionMsSense.exe [6138112 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2111.5-0MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:WINDOWSSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_272b5c540127d6d2Display.NvContainerNVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%NVIDIANVDisplay.ContainerLocalSystem.log -l 3 -d C:WINDOWSSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_272b5c540127d6d2Display.NvContainerpluginsLocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystemLocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:WINDOWSSystem32driversBthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:WINDOWSSystem32driversbthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:WINDOWSSystem32DRIVERSeamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:WINDOWSSystem32DRIVERSedevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:WINDOWSSystem32DRIVERSeelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:WINDOWSsystem32DRIVERSehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:WINDOWSsystem32DRIVERSekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:WINDOWSsystem32DRIVERSepfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:WINDOWSsystem32DRIVERSepfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
S3 hidgamemap; C:WINDOWSSystem32drivershidgamemap.sys [317200 2020-11-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 hitmanpro37; C:WINDOWSsystem32drivershitmanpro37.sys [40960 2021-10-07] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 logi_joy_bus_enum; C:WINDOWSsystem32driverslogi_joy_bus_enum.sys [37200 2021-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:WINDOWSsystem32driverslogi_joy_vir_hid.sys [25928 2021-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:WINDOWSsystem32driverslogi_joy_xlcore.sys [66896 2021-03-18] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:WINDOWSSystem32DriversMbamChameleon.sys [210352 2021-12-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:WINDOWSSystem32DRIVERSMbamElam.sys [19912 2020-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:WINDOWSSystem32Driversmbamswissarmy.sys [248992 2021-11-10] (Malwarebytes Inc -> Malwarebytes)
R2 NPF; C:WINDOWSSystem32driversnpf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 tapmullvad0901; C:WINDOWSSystem32driverstapmullvad0901.sys [39616 2020-11-17] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:WINDOWSSystem32driverswdWdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:WINDOWSSystem32driverswdWdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
S4 wintun; SystemRootsystem32DRIVERSwintun.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: “C:UsersJonDownloadsFootball_Manager_2020_steam_20_4_4_fm.exe_figment_v30.CT”
2022-01-08 17:59 – 2022-01-08 17:59 – 002311168 _____ (Farbar) C:UsersJonDownloadsFRST64.exe
2022-01-08 14:07 – 2022-01-08 18:09 – 000020813 _____ C:UsersJonDownloadsFRST.txt
2022-01-08 14:07 – 2022-01-08 18:09 – 000000000 ____D C:FRST
2022-01-08 13:56 – 2022-01-08 13:56 – 000000000 _____ C:UsersJonDesktopTeamViewerIPs.txt
2022-01-08 13:53 – 2022-01-08 16:44 – 000000000 ____D C:UsersJonDownloadsSysmon
2022-01-08 13:37 – 2022-01-08 16:44 – 000000000 ____D C:UsersJonDownloadswebbrowserpassview
2022-01-08 13:36 – 2022-01-08 13:36 – 000277352 _____ C:UsersJonDownloadswebbrowserpassview.zip
2022-01-08 13:19 – 2022-01-08 13:20 – 000000000 ____D C:AdwCleaner
2022-01-08 13:12 – 2022-01-08 13:12 – 002221840 _____ C:UsersJonDownloadsTCPView.zip
2022-01-08 12:45 – 2022-01-08 12:48 – 000000000 ____D C:UsersJonAppDataLocalTeamViewer
2022-01-08 12:45 – 2022-01-08 12:45 – 000000000 ____D C:UsersJonAppDataRoamingTeamViewer
2022-01-05 13:45 – 2022-01-05 13:45 – 000002569 _____ C:UsersJonDownloadsFSS.txt
2022-01-05 13:44 – 2022-01-05 13:45 – 000909824 _____ (Farbar) C:UsersJonDownloadsFSS.exe
2021-12-27 10:57 – 2021-12-27 10:57 – 000001274 _____ C:UsersJonDesktopAscend.exe – Shortcut.lnk
2021-12-26 00:17 – 2021-12-26 00:17 – 000000000 ____D C:UsersJonDownloadsAscend
2021-12-26 00:12 – 2021-12-26 00:12 – 015832890 _____ C:UsersJonDownloadsAscend.zip
2021-12-18 00:50 – 2021-12-30 17:00 – 000210352 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamChameleon.sys
2021-12-17 17:53 – 2021-12-17 17:53 – 000000000 ____D C:WINDOWSSystemTemp
2021-12-17 14:39 – 2021-12-18 01:49 – 000001476 _____ C:UsersJonDesktopSleepHunter.exe – Shortcut.lnk
2021-12-16 18:34 – 2022-01-08 11:01 – 000000573 _____ C:UsersJonDocumentsao.txt
2021-12-16 09:14 – 2021-12-16 09:14 – 000223744 _____ C:WINDOWSSysWOW64TpmTool.exe
2021-12-16 09:14 – 2021-12-16 09:14 – 000011979 _____ C:WINDOWSsystem32DrtmAuthTxt.wim
2021-12-16 09:13 – 2021-12-16 09:13 – 000272384 _____ C:WINDOWSsystem32TpmTool.exe
2021-12-16 09:13 – 2021-12-16 09:13 – 000162816 _____ C:WINDOWSsystem32DataStoreCacheDumpTool.exe
2021-12-16 09:08 – 2021-12-16 09:08 – 000000000 ___HD C:$WinREAgent
2021-12-15 12:36 – 2021-12-15 12:36 – 000000000 ____D C:UsersJonAppDataRoamingMicrosoftWindowsStart MenuProgramsDark Ages
2021-12-15 12:33 – 2021-12-15 12:33 – 000155636 _____ C:UsersJonDownloadsSleepHunter_2.zip
2021-12-15 00:41 – 2021-12-17 09:19 – 000001069 _____ C:UsersJonDesktopDarkages.exe – Shortcut.lnk
2021-12-14 15:53 – 2021-12-14 15:53 – 000000000 ____D C:UsersJonDownloadsFragments of Temuair
2021-12-14 15:49 – 2021-12-14 15:50 – 391233529 _____ C:UsersJonDownloadsFragments of Temuair.zip
2021-12-14 15:08 – 2021-12-14 15:14 – 000000000 ____D C:UsersJonDocumentsNexusTK
2021-12-14 11:19 – 2021-12-14 11:19 – 000000000 ____D C:UsersJonDownloadsETDA-master
2021-12-14 11:17 – 2021-12-14 11:17 – 053581284 _____ C:UsersJonDownloadsETDA-master.zip
2021-12-13 18:16 – 2021-12-13 18:17 – 208513633 _____ C:UsersJonDownloadsDarkAges741single.exe
2021-12-13 17:49 – 2021-12-13 17:53 – 000000000 ____D C:UsersJonAppDataRoamingSpider2
2021-12-13 17:48 – 2021-12-13 17:48 – 098167591 _____ (SpiderOT) C:UsersJonDownloadsSpiderEU.exe
2021-12-13 17:48 – 2021-12-13 17:48 – 000000000 ____D C:UsersJonAppDataRoamingSpiderOT
2021-12-13 17:44 – 2021-12-13 17:44 – 008077232 _____ C:UsersJonDownloadsTibia_Setup_Simple.exe
2021-12-13 08:51 – 2021-12-13 08:51 – 000003592 _____ C:WINDOWSsystem32TasksOneDrive Reporting Task-S-1-5-21-1135037592-2269068261-1805264048-1001
2021-12-09 16:56 – 2021-12-09 16:57 – 000000000 ____D C:Program FilesLGHUB
2021-12-09 16:56 – 2021-12-09 16:56 – 000000650 _____ C:UsersPublicDesktopLogitech G HUB.lnk
2021-12-09 16:56 – 2021-12-09 16:56 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLogi

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-08 18:03 – 2020-06-20 22:27 – 000000000 ____D C:UsersJonAppDataRoamingdiscord
2022-01-08 17:58 – 2019-12-07 17:13 – 000000000 ____D C:WINDOWSINF
2022-01-08 17:57 – 2020-06-20 22:27 – 000000000 ____D C:UsersJonAppDataLocalDiscord
2022-01-08 17:56 – 2020-06-16 12:42 – 000000000 ____D C:WINDOWSsystem32SleepStudy
2022-01-08 17:32 – 2019-12-07 17:14 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2022-01-08 17:14 – 2020-06-15 22:06 – 000000000 ____D C:UsersJonAppDataLocalJDownloader 2.0
2022-01-08 17:13 – 2020-06-15 21:49 – 000000000 ____D C:Program Files (x86)Google
2022-01-08 17:09 – 2020-07-27 17:58 – 000426216 _____ C:WINDOWSsystem32prfh0804.dat
2022-01-08 17:09 – 2020-07-27 17:58 – 000132774 _____ C:WINDOWSsystem32prfc0804.dat
2022-01-08 17:09 – 2020-06-15 21:48 – 001390662 _____ C:WINDOWSsystem32PerfStringBackup.INI
2022-01-08 17:04 – 2020-06-15 21:50 – 000000000 ____D C:ProgramDataNVIDIA
2022-01-08 17:02 – 2020-07-03 12:40 – 000000000 ____D C:UsersJonAppDataRoamingLGHUB
2022-01-08 17:02 – 2020-07-03 12:40 – 000000000 ____D C:UsersJonAppDataLocalLGHUB
2022-01-08 17:02 – 2020-06-16 12:43 – 000000006 ____H C:WINDOWSTasksSA.DAT
2022-01-08 17:02 – 2020-06-15 20:18 – 000008192 ___SH C:DumpStack.log.tmp
2022-01-08 17:02 – 2019-12-07 17:03 – 000524288 _____ C:WINDOWSsystem32configBBI
2022-01-08 17:01 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSAppReadiness
2022-01-08 16:59 – 2020-11-12 17:51 – 000000000 ____D C:UsersJonAppDataLocalInnkeeper
2022-01-08 16:59 – 2020-06-15 21:47 – 000000000 ____D C:UsersJon
2022-01-08 16:45 – 2020-08-25 15:32 – 000000000 ____D C:UsersJonAppDataRoamingqBittorrent
2022-01-08 16:44 – 2021-10-05 22:08 – 000000000 ____D C:tws
2022-01-08 16:44 – 2020-11-12 17:51 – 000000000 ____D C:UsersJonAppDataRoamingMicrosoftWindowsStart MenuProgramsInnkeeper
2022-01-08 16:44 – 2020-08-25 15:32 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsqBittorrent
2022-01-08 16:44 – 2020-08-25 15:32 – 000000000 ____D C:Program FilesqBittorrent
2022-01-08 16:44 – 2020-06-23 09:45 – 000000000 ____D C:ProgramDataNCTaiwan
2022-01-08 16:44 – 2020-06-23 09:45 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNCTaiwan
2022-01-08 16:44 – 2020-06-23 09:45 – 000000000 ____D C:Program Files (x86)InstallShield Installation Information
2022-01-08 16:42 – 2019-12-07 17:14 – 000000000 ___HD C:Program FilesWindowsApps
2022-01-08 16:41 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSregistration
2022-01-08 14:27 – 2020-06-15 23:30 – 000000000 ____D C:UsersJonAppDataLocalD3DSCache
2022-01-08 12:42 – 2020-06-16 19:08 – 000000000 ____D C:UsersJonAppDataLocalRockstar Games
2022-01-08 12:42 – 2020-06-16 14:54 – 000000000 ____D C:Program Files (x86)BraveSoftware
2022-01-08 12:40 – 2020-06-16 14:54 – 000000000 ____D C:UsersJonAppDataLocalBraveSoftware
2022-01-08 10:21 – 2020-10-31 00:43 – 000002438 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2022-01-08 10:21 – 2020-10-31 00:43 – 000002276 _____ C:UsersPublicDesktopMicrosoft Edge.lnk
2022-01-07 19:40 – 2020-06-15 21:49 – 000002301 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2022-01-07 19:40 – 2020-06-15 21:49 – 000002260 _____ C:UsersPublicDesktopGoogle Chrome.lnk
2022-01-06 17:26 – 2020-06-17 21:49 – 000000000 ____D C:UsersJonDocumentsBlack Desert
2022-01-05 22:15 – 2020-06-17 00:03 – 000000000 ____D C:Program Files (x86)Steam
2022-01-03 23:38 – 2020-07-14 12:10 – 000000000 ____D C:UsersJonAppDataLocalCrashDumps
2022-01-02 12:13 – 2021-12-03 22:06 – 000000000 ____D C:UsersJonDownloadsMy-MS
2021-12-30 17:00 – 2020-06-15 22:59 – 000002033 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk
2021-12-30 17:00 – 2020-06-15 22:59 – 000002021 _____ C:UsersPublicDesktopMalwarebytes.lnk
2021-12-30 16:59 – 2020-06-15 22:58 – 000000000 ____D C:ProgramDataMalwarebytes
2021-12-30 16:59 – 2020-06-15 22:58 – 000000000 ____D C:Program FilesMalwarebytes
2021-12-29 13:48 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSsystem32NDF
2021-12-22 11:16 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSLiveKernelReports
2021-12-22 11:11 – 2019-12-07 17:03 – 000000000 ____D C:WINDOWSCbsTemp
2021-12-19 10:35 – 2020-06-22 12:02 – 000000000 ____D C:Program FilesMicrosoft Office
2021-12-17 17:54 – 2020-06-16 12:42 – 000464928 _____ C:WINDOWSsystem32FNTCACHE.DAT
2021-12-17 17:53 – 2019-12-07 17:54 – 000000000 ____D C:Program FilesWindows Defender Advanced Threat Protection
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ___RD C:WINDOWSImmersiveControlPanel
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSSystemResources
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSsystem32setup
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSsystem32oobe
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSsystem32lv-LV
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSsystem32lt-LT
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSsystem32et-EE
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSsystem32es-MX
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSProvisioning
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSPolicyDefinitions
2021-12-17 17:53 – 2019-12-07 17:14 – 000000000 ____D C:WINDOWSbcastdvr
2021-12-16 10:46 – 2020-06-16 12:43 – 000000000 ____D C:WINDOWSsystem32Driverswd
2021-12-16 09:08 – 2020-06-21 22:16 – 000000000 ____D C:WINDOWSsystem32MRT
2021-12-16 09:07 – 2020-06-21 22:16 – 137938848 ____C (Microsoft Corporation) C:WINDOWSsystem32MRT.exe
2021-12-14 16:29 – 2020-06-24 11:22 – 000000000 ____D C:UsersJonAppDataLocalBattlEye
2021-12-13 17:47 – 2020-07-24 15:00 – 000000000 ____D C:UsersJonAppDataLocalcache
2021-12-13 08:51 – 2020-06-22 12:05 – 000003376 _____ C:WINDOWSsystem32TasksOneDrive Standalone Update Task-S-1-5-21-1135037592-2269068261-1805264048-1001
2021-12-13 08:51 – 2020-06-22 12:05 – 000002377 _____ C:UsersJonAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk
2021-12-11 09:35 – 2020-10-31 00:42 – 000003480 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineUA
2021-12-11 09:35 – 2020-10-31 00:42 – 000003356 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineCore

==================== Files in the root of some directories ========

2020-10-15 16:17 – 2021-06-20 21:08 – 000000081 _____ () C:UsersJonAppDataLocal.bidstack.fault
2020-06-16 12:19 – 2020-07-16 23:14 – 000007598 _____ () C:UsersJonAppDataLocalresmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Ran by Jon (08-01-2022 18:09:51)
Running from C:UsersJonDownloads
Microsoft Windows 10 Pro Version 2004 19041.1415 (X64) (2020-06-15 13:45:24)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1135037592-2269068261-1805264048-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-1135037592-2269068261-1805264048-503 – Limited – Disabled)
Guest (S-1-5-21-1135037592-2269068261-1805264048-501 – Limited – Disabled)
Jon (S-1-5-21-1135037592-2269068261-1805264048-1001 – Administrator – Enabled) => C:UsersJon
WDAGUtilityAccount (S-1-5-21-1135037592-2269068261-1805264048-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Disabled – Out of date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Bitdefender Antivirus Free Antimalware (Enabled – Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AV: Windows Defender (Enabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Battle.net (HKLM-x32…Battle.net) (Version: – Blizzard Entertainment)
Blade & Soul (HKLM-x32…{37EEA701-C7E3-4DC9-BCFB-39C89A6998AD}) (Version: 2.02.0000 – NCTAIWAN) Hidden
Blade & Soul (HKLM-x32…InstallShield_{37EEA701-C7E3-4DC9-BCFB-39C89A6998AD}) (Version: 2.02.0000 – NCTAIWAN)
Cheat Engine 7.1 (HKLM…Cheat Engine_is1) (Version: – Cheat Engine)
CPUID HWMonitor 1.41 (HKLM…CPUID HWMonitor_is1) (Version: 1.41 – CPUID, Inc.)
Dark Ages (HKLM-x32…Dark Ages) (Version: 7.41 – KRU Interactive)
Discord (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…Discord) (Version: 0.0.311 – Discord Inc.)
Epic Games Launcher (HKLM-x32…{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 – Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM…{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
ESET Security (HKLM…{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 – ESET, spol. s r.o.)
Excel (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 – Excel)
FMRTE 20.4.4.47 (HKLM-x32…{14A58A15-B038-4C19-A024-3B6016F86A14}_is1) (Version: 20.4.4.47 – FMRTE)
Geeks3D FurMark 1.21.2.0 (HKLM-x32…{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.21.2.0 – Geeks3D)
Google Chrome (HKLM-x32…Google Chrome) (Version: 97.0.4692.71 – Google LLC)
Google Update Helper (HKLM-x32…{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.101.0 – Google LLC) Hidden
Hearthstone (HKLM-x32…Hearthstone) (Version: – Blizzard Entertainment)
HeavyLoad V3.3 (64 bit) (HKLM…HeavyLoad_is1) (Version: 3.3 – JAM Software)
HELLGATE: London (HKLM-x32…HELLGATE: London_is1) (Version: – )
HitmanPro 3.8 (HKLM…HitmanPro38) (Version: 3.8.23.318 – SurfRight B.V.)
Innkeeper (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…Innkeeper) (Version: 0.4.40 – Curse Inc.)
JDownloader 2 (HKLM-x32…jdownloader2) (Version: 2.0 – AppWork GmbH)
JDownloader 2 (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…jdownloader2) (Version: 2.0 – AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32…{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32…{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
LockHunter 3.3, 32/64 bit (HKLM…LockHunter_is1) (Version: – Crystal Rich Ltd)
Logitech G HUB (HKLM…{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.13.2906 – Logitech)
Malwarebytes version 4.5.0.152 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 – Malwarebytes)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 97.0.1072.55 – Microsoft Corporation)
Microsoft Office Professional Plus 2016 – en-us (HKLM…ProPlusRetail – en-us) (Version: 16.0.14701.20262 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…OneDriveSetup.exe) (Version: 21.230.1107.0004 – Microsoft Corporation)
Microsoft Update Health Tools (HKLM…{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.28.29334 (HKLM-x32…{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.28.29334 (HKLM-x32…{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 – Microsoft Corporation)
monsterandmerebornsetup version 1.5 (HKLM-x32…{4338B54A-3C60-4741-97C6-6348A85F589A}_is1) (Version: 1.5 – Blue Phoenix Gaming)
Mullvad-Wintun (HKLM…{1238DE22-09F9-458D-A86E-A2D413208272}) (Version: 1.0 – Mullvad VPN AB) Hidden
NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 – NVIDIA Corporation)
NVIDIA GeForce Experience 3.22.0.32 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 – NVIDIA Corporation)
NVIDIA Graphics Driver 461.72 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.72 – NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.40 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 – NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 – NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 – NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM…{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM…{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM…{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 – Microsoft Corporation) Hidden
Origin (HKLM-x32…Origin) (Version: 10.5.106.49298 – Electronic Arts, Inc.)
Outlook (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 – Outlook)
Paradox Launcher v2 (HKLM…{A92DB5D9-A24D-4678-9F91-B4FA6D895718}) (Version: 2.0.4.0 – Paradox Interactive)
PowerPoint (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…319814cb56b667dff88f54e08be8f51f) (Version: 1.0 – PowerPoint)
PyCharm Community Edition 2021.1.1 (HKLM-x32…PyCharm Community Edition 2021.1.1) (Version: 211.7142.13 – JetBrains s.r.o.)
Python 3.9.4 (64-bit) (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…{8a52f2bf-c3d0-4872-bc3d-61f6eab0cbf2}) (Version: 3.9.4150.0 – Python Software Foundation)
Python 3.9.4 Add to Path (64-bit) (HKLM…{B943A821-11D8-4FB4-B573-6D04DCC596AD}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 Core Interpreter (64-bit) (HKLM…{1C17C2CE-B315-4C1C-885A-E37181C7368E}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 Development Libraries (64-bit) (HKLM…{CB856DD1-55A4-42B3-B676-73DDE515A589}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 Documentation (64-bit) (HKLM…{73524E2A-5D97-4CB8-8438-5FE8F9653F1C}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 Executables (64-bit) (HKLM…{EDBB67F1-B275-4AC6-9D32-0A033570A705}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 pip Bootstrap (64-bit) (HKLM…{1FDC7BC3-4CE5-4236-A8C2-0C4A7AFFDFA4}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 Standard Library (64-bit) (HKLM…{91ED5736-9D50-4991-87DC-CFB0492D1A22}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 Tcl/Tk Support (64-bit) (HKLM…{4E0E4F08-ECD0-4737-ABFC-030B702AC2BF}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 Test Suite (64-bit) (HKLM…{F12FD64B-8964-4F40-8448-7FA3955C5AD6}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python 3.9.4 Utility Scripts (64-bit) (HKLM…{BBCC595F-93C2-4054-9565-8F4F19B3D706}) (Version: 3.9.4150.0 – Python Software Foundation) Hidden
Python Launcher (HKLM-x32…{BDD80906-41E0-43DB-8C65-D8BCCEB3A3F8}) (Version: 3.9.7400.0 – Python Software Foundation)
qBittorrent 4.2.5 (HKLM-x32…qBittorrent) (Version: 4.2.5 – The qBittorrent project)
R for Windows 4.1.0 (HKLM…R for Windows 4.1.0_is1) (Version: 4.1.0 – R Core Team)
Realtek High Definition Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 – Realtek Semiconductor Corp.)
Revo Uninstaller 2.1.5 (HKLM…{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.5 – VS Revo Group, Ltd.)
RStudio (HKLM-x32…RStudio) (Version: 1.4.1717 – RStudio)
STAR WARS™ Battlefront™ II (HKLM-x32…{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 – Electronic Arts)
Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)
STRATZ 0.9.5 (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…ec5d2fbe-2b0a-57ce-81d1-78e10384a6aa) (Version: 0.9.5 – )
Sublime Text 3 (HKLM…Sublime Text 3_is1) (Version: – Sublime HQ Pty Ltd)
Trader Workstation (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…5889-6375-8446-2021-1) (Version: latest (10.10.2q) 20211005 15:33:23 – Interactive Brokers LLC)
Vortex (HKLM…57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.3.8 – Black Tree Gaming Ltd.)
Windows PC Health Check (HKLM…{B1E7D0FD-7CFE-4E0C-A5DA-0F676499DB91}) (Version: 3.2.2110.14001 – Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32…WinPcapInst) (Version: 4.1.0.2980 – Riverbed Technology, Inc.)
WinRAR 5.90 (64-bit) (HKLM…WinRAR archiver) (Version: 5.90.0 – win.rar GmbH)
Word (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 – Word)
Zoom (HKUS-1-5-21-1135037592-2269068261-1805264048-1001…ZoomUMX) (Version: 5.7.8 (1247) – Zoom Video Communications, Inc.)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-01-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-01-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2022-01-08] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:Program FilesWindowsAppsNVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2022-01-08] (NVIDIA Corp.)
Photos Media Engine Add-on -> C:Program FilesWindowsAppsMicrosoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-01-08] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:Program FilesESETESET SecurityshellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:Program FilesLockHunterLHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:Program FilesESETESET SecurityshellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:Program FilesLockHunterLHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-06-15] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:Program FilesLockHunterLHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WINDOWSSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_272b5c540127d6d2nvshext.dll [2021-02-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:Program FilesESETESET SecurityshellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-06-15] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:UsersJonAppDataRoamingMicrosoftWindowsStart MenuProgramsExcel.lnk -> C:Program Files (x86)MicrosoftEdgeApplicationmsedge_proxy.exe (Microsoft Corporation) -> –profile-directory=Default –app-id=leffmjdabcgaflkikcefahmlgpodjkdm
ShortcutWithArgument: C:UsersJonAppDataRoamingMicrosoftWindowsStart MenuProgramsOutlook.lnk -> C:Program Files (x86)MicrosoftEdgeApplicationmsedge_proxy.exe (Microsoft Corporation) -> –profile-directory=Default –app-id=bjhmmnoficofgoiacjaajpkfndojknpb
ShortcutWithArgument: C:UsersJonAppDataRoamingMicrosoftWindowsStart MenuProgramsPowerPoint.lnk -> C:Program Files (x86)MicrosoftEdgeApplicationmsedge_proxy.exe (Microsoft Corporation) -> –profile-directory=Default –app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:UsersJonAppDataRoamingMicrosoftWindowsStart MenuProgramsWord.lnk -> C:Program Files (x86)MicrosoftEdgeApplicationmsedge_proxy.exe (Microsoft Corporation) -> –profile-directory=Default –app-id=hikhggiobiflkdfdgdajcfklmcibbopi

==================== Loaded Modules (Whitelisted) =============

2021-12-09 16:57 – 2021-12-09 14:39 – 000634880 _____ () [File not signed] \?C:Program FilesLGHUBresourcesapp.asar.unpackednode_moduleskeytarbuildReleasekeytar.node
2020-06-22 12:03 – 2020-06-22 12:03 – 000000000 ____L (Microsoft Corporation) [simlink -> C:Program FilesCommon FilesMicrosoft SharedClickToRunAppvIsvSubsystems64.dll] C:Program FilesMicrosoft OfficeRootOffice16AppVIsvSubsystems64.dll
2020-06-22 12:03 – 2020-06-22 12:03 – 000000000 ____L (Microsoft Corporation) [simlink -> C:Program FilesCommon FilesMicrosoft SharedClickToRunC2R64.dll] C:Program FilesMicrosoft OfficeRootOffice16c2r64.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] E:OriginLIBEAY32.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] E:Originssleay32.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 001611264 _____ (The Qt Company Ltd) [File not signed] E:Originplatformsqwindows.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 005487104 _____ (The Qt Company Ltd) [File not signed] E:OriginQt5Core.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 005841920 _____ (The Qt Company Ltd) [File not signed] E:OriginQt5Gui.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 001179136 _____ (The Qt Company Ltd) [File not signed] E:OriginQt5Network.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 000146432 _____ (The Qt Company Ltd) [File not signed] E:OriginQt5WebSockets.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 005089792 _____ (The Qt Company Ltd) [File not signed] E:OriginQt5Widgets.dll
2021-10-22 21:31 – 2021-10-22 21:31 – 000184832 _____ (The Qt Company Ltd) [File not signed] E:OriginQt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Start Page = about:blank
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Page_URL =
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL =
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Search_URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootOffice16OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootOffice16MSOSB.DLL [2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program FilesMicrosoft OfficerootVFSProgramFilesX86Microsoft OfficeOffice16MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 17:14 – 2019-12-07 17:12 – 000000824 _____ C:WINDOWSsystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKUS-1-5-21-1135037592-2269068261-1805264048-1001Control PanelDesktop\Wallpaper -> C:WINDOWSwebwallpaperWindowsimg0.jpg
DNS Servers: 192.168.1.254
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKUS-1-5-21-1135037592-2269068261-1805264048-1001…StartupApprovedRun: => “Discord”
HKUS-1-5-21-1135037592-2269068261-1805264048-1001…StartupApprovedRun: => “EpicGamesLauncher”
HKUS-1-5-21-1135037592-2269068261-1805264048-1001…StartupApprovedRun: => “Steam”

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{61E07658-FA90-4B28-950C-AD9C657D1C05}] => (Allow) D:SteamSteam.exe => No File
FirewallRules: [{33C912FC-6861-4BA8-B055-EF2FF862FE53}] => (Allow) D:SteamSteam.exe => No File
FirewallRules: [{EC3999AE-90EA-4299-BA34-892B31D3131C}] => (Allow) D:Steambincefcef.win7steamwebhelper.exe => No File
FirewallRules: [{BB32F4C7-651C-454A-A19D-3731D78A6E83}] => (Allow) D:Steambincefcef.win7steamwebhelper.exe => No File
FirewallRules: [{53C6C22E-3F84-4B0B-A000-DE74EB5B3BFC}] => (Allow) D:SteamsteamappscommonCounter-Strike Global Offensivecsgo.exe => No File
FirewallRules: [{2CC58F0D-CB21-477C-8328-3F4A22AB6B4C}] => (Allow) D:SteamsteamappscommonCounter-Strike Global Offensivecsgo.exe => No File
FirewallRules: [{FE4B18A9-B787-4BF1-8A10-D069D5D37F3B}] => (Allow) D:GamesGrand Theft Auto VGTA5.exe => No File
FirewallRules: [{52D0C73C-91F4-49A8-8D17-2ECF3D8F8932}] => (Allow) D:GamesGrand Theft Auto VGTA5.exe => No File
FirewallRules: [{BD7838CD-1000-4394-9018-BBBBAFE26631}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{860750AC-B120-4BDD-923C-485FF41C9F95}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E83DE3BE-B31A-492C-B59E-CBD5FA82F1A8}] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4AE10C0F-1234-48E5-B7D4-F629C1EF2C46}] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4754DF71-116E-4CBC-BAAA-4EB2324E3EED}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5C32F4EF-FA50-47E5-B947-E0CA9B255E13}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E2FC4FFE-FE76-4F73-94D2-111EED2B1CE3}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E45A81A4-10DE-483C-BD96-5285DC4FD1D1}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A1D34D9A-B932-45D7-B618-359A60D13D10}] => (Allow) D:SteamLibrarysteamappscommonFINAL FANTASY XIV Onlinebootffxivboot.exe => No File
FirewallRules: [{C1AFA737-89C8-4F7A-B1E4-EF51121A0AC6}] => (Allow) D:SteamLibrarysteamappscommonFINAL FANTASY XIV Onlinebootffxivboot.exe => No File
FirewallRules: [{7514F659-2206-4353-8A3D-24CDC4273393}] => (Allow) E:SteamLibrarysteamappscommonLeft 4 Dead 2left4dead2.exe () [File not signed]
FirewallRules: [{A44B6152-4AF7-47A1-988E-BCE5AE73CB8A}] => (Allow) E:SteamLibrarysteamappscommonLeft 4 Dead 2left4dead2.exe () [File not signed]
FirewallRules: [{DB2DD3CC-6FD9-41E5-9EA6-B71FC55A5567}] => (Allow) E:SteamLibrarysteamappscommonTale of Wuxiawuxia.exe () [File not signed]
FirewallRules: [{6336ABC2-A99F-4F2B-ABF4-9B76F3B4A4CA}] => (Allow) E:SteamLibrarysteamappscommonTale of Wuxiawuxia.exe () [File not signed]
FirewallRules: [{38998A0D-747A-4BB8-AA8D-AD2C81C469AC}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{04F34EBC-A1BE-45A2-BE4F-B294EA01F93E}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{19A79A38-669C-4350-8D28-C8C57F1E81D8}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C74B2714-150D-476C-B8A8-2BFC5ACA08F7}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D98828E9-9DDA-46A0-859F-22625592C9EF}] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{41703DFC-03F6-47F2-A2DB-CF6636F30A91}] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C835257C-294D-4A1B-8B83-3CC2333A0220}] => (Allow) E:SteamLibrarysteamappscommonSid Meier’s Civilization VILaunchPadLaunchPad.exe => No File
FirewallRules: [{8251FE84-401C-463A-81DB-D2141D361794}] => (Allow) E:SteamLibrarysteamappscommonSid Meier’s Civilization VILaunchPadLaunchPad.exe => No File
FirewallRules: [{BAA4F10E-5FF1-4222-A3EC-DA7ADCDECCDB}] => (Allow) E:SteamLibrarysteamappscommonPathOfWuxiaPathOfWuxia.exe () [File not signed]
FirewallRules: [{A6DB24E8-9F28-40B3-A378-7C958E640675}] => (Allow) E:SteamLibrarysteamappscommonPathOfWuxiaPathOfWuxia.exe () [File not signed]
FirewallRules: [{7801B0DF-2824-4235-8B28-8A35CC167F0D}] => (Allow) C:Program FilesqBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{3A64E284-1AC9-4A47-AFB9-FC3C94FB8454}] => (Allow) C:Program FilesqBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{0B3E5DDE-0C3A-43E7-A907-F84D6624973C}C:program fileslghublghub_agent.exe] => (Allow) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{EFB8A6AF-3E46-4927-A6BF-6368621C34B2}C:program fileslghublghub_agent.exe] => (Allow) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{E27AD1FB-0945-4715-B57B-84E495E844EC}E:steamlibrarysteamappscommontekken 7tekkengamebinarieswin64tekkengame-win64-shipping.exe] => (Allow) E:steamlibrarysteamappscommontekken 7tekkengamebinarieswin64tekkengame-win64-shipping.exe => No File
FirewallRules: [UDP Query User{A03F5FF3-7BAA-4C02-9254-DA9F2DFB515F}E:steamlibrarysteamappscommontekken 7tekkengamebinarieswin64tekkengame-win64-shipping.exe] => (Allow) E:steamlibrarysteamappscommontekken 7tekkengamebinarieswin64tekkengame-win64-shipping.exe => No File
FirewallRules: [{44D2EF6C-5EC0-451A-9D48-183073424A64}] => (Allow) E:SteamLibrarysteamappscommondota 2 betagamebinwin64dota2.exe (Valve -> )
FirewallRules: [{9C9366AD-BE51-4428-AC0C-2345A640AC40}] => (Allow) E:SteamLibrarysteamappscommondota 2 betagamebinwin64dota2.exe (Valve -> )
FirewallRules: [TCP Query User{47203A47-EDB7-4AA2-AFCB-DD6FFEC67614}D:gamesthe sims 4gamebints4_x64.exe] => (Block) D:gamesthe sims 4gamebints4_x64.exe => No File
FirewallRules: [UDP Query User{396A1F1B-536D-4B8D-B031-ABAD7791E56B}D:gamesthe sims 4gamebints4_x64.exe] => (Block) D:gamesthe sims 4gamebints4_x64.exe => No File
FirewallRules: [{0B4BC484-3B76-48AC-A098-10BD8D0BF9A6}] => (Allow) D:SteamLibrarysteamappscommondota 2 betagamebinwin64dota2.exe (Valve Corp. -> )
FirewallRules: [{0553FC0C-5D02-4D60-9172-D118584C8D46}] => (Allow) D:SteamLibrarysteamappscommondota 2 betagamebinwin64dota2.exe (Valve Corp. -> )
FirewallRules: [{6FC0F609-FE84-4A9C-A42D-268D6D36E0D1}] => (Allow) E:SteamLibrarysteamappscommonConqueror’s Blade Frontiergamex64Shipclientproven_ground_client.exe => No File
FirewallRules: [{799B8578-E7A9-42F2-8CDD-88DFAE277998}] => (Allow) E:SteamLibrarysteamappscommonConqueror’s Blade Frontiergamex64Shipclientproven_ground_client.exe => No File
FirewallRules: [{1BD496FD-88F8-44AE-9DE2-B5A6F8E8152E}] => (Allow) E:Program Files (x86)Origin GamesSTAR WARS Battlefront IIstarwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{035BBB0C-226D-4720-A1AA-F0D7BC1988EB}] => (Allow) E:Program Files (x86)Origin GamesSTAR WARS Battlefront IIstarwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{93739348-2E54-4CFE-AA68-87CA6DBECD98}] => (Allow) E:Program Files (x86)Origin GamesSTAR WARS Battlefront IIstarwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{C0B7897B-55B3-496A-B8EA-16C83B20B4C3}] => (Allow) E:Program Files (x86)Origin GamesSTAR WARS Battlefront IIstarwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{D8CE8A4F-8616-44DF-9330-DE924C9E7D58}] => (Allow) E:BlackshotBlackShot_SEABlackShotSystemBlackShot.exe => No File
FirewallRules: [{42B3B0FC-BB6F-4E8E-A881-86B194711486}] => (Allow) E:BlackshotBlackShot_SEABlackShotSystemBlackShot.exe => No File
FirewallRules: [{1DDFC640-AD08-4162-AD63-DF4F25168416}] => (Allow) C:UsersJonAppDataRoamingKamusekcsDownloadV32KCSDownloadV32.exe (KAMUSE Co.,Ltd. -> Kamuse, Incorporated)
FirewallRules: [{94EFB5FC-E338-40F2-AD6D-466413EA8236}] => (Allow) C:UsersJonAppDataRoamingKamusekcsDownloadV32KCSDownloadV32.exe (KAMUSE Co.,Ltd. -> Kamuse, Incorporated)
FirewallRules: [{BF13A9C5-D1BA-4B64-AE2F-D670E71A6B8C}] => (Allow) C:UsersJonAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{BF12AAA2-92DF-4BA5-B1F7-17F3230ADF79}] => (Allow) C:UsersJonAppDataRoamingZoombinairhost.exe => No File
FirewallRules: [{97D35D16-74C5-416A-93E0-5765283D34F9}] => (Allow) C:UsersJonAppDataRoamingZoombinairhost.exe => No File
FirewallRules: [{30007C36-86E5-43B8-8576-C44C6D9EDF47}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5FABF7E2-0E3A-4C83-B62E-7353AB4ED6E0}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5424200A-E621-412D-8ABA-0A78C03C2A69}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4F0FEB79-D2D0-4439-9036-9E969F60BE53}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{241B8E8C-133D-4DCF-8B09-ACB81A031379}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E8E94675-5D5D-4361-8E35-AB7589471D2E}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BC5C8023-6960-44CE-8629-2B88AC3822E3}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3C6481CF-A500-4E11-B83A-7C09B463717A}] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

08-01-2022 12:42:16 Revo Uninstaller’s restore point – qBittorrent 4.2.5
08-01-2022 12:43:12 Revo Uninstaller’s restore point – Trader Workstation
08-01-2022 13:14:21 Revo Uninstaller’s restore point – Innkeeper
08-01-2022 13:18:11 Revo Uninstaller’s restore point – Blade & Soul
08-01-2022 16:40:12 Restore Operation

==================== Faulty Device Manager Devices ============

Name: PCI Encryption/Decryption Controller
Description: PCI Encryption/Decryption Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click “Update Driver”, which starts the Hardware Update wizard.

==================== Event log errors: ========================

Application errors:
==================
Error: (01/08/2022 04:45:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: The Cryptographic Services service failed to initialize the Catalog Database. The ESENT error was: -550.

Error: (01/08/2022 04:45:24 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3760,R,98) SRUJet: Error -1811 (0xfffff8ed) occurred while opening logfile C:WINDOWSsystem32SRUSRU0B57A.log.

Error: (01/08/2022 01:18:11 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {b6ac9263-80e9-43a1-b4c1-37730119d3a8}

Error: (01/08/2022 01:14:21 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {b6ac9263-80e9-43a1-b4c1-37730119d3a8}

Error: (01/08/2022 12:43:12 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {b6ac9263-80e9-43a1-b4c1-37730119d3a8}

Error: (01/08/2022 12:42:16 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {b6ac9263-80e9-43a1-b4c1-37730119d3a8}

Error: (01/08/2022 12:41:25 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {b6ac9263-80e9-43a1-b4c1-37730119d3a8}

Error: (01/05/2022 01:05:04 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn’t complete retrim on New Volume (E:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

System errors:
=============
Error: (01/08/2022 05:01:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-DFDNFVA)
Description: The server Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe!App did not register with DCOM within the required timeout.

Error: (01/08/2022 05:01:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-DFDNFVA)
Description: The server {B9B05098-3E30-483F-87F7-027CA78DA287} did not register with DCOM within the required timeout.

Error: (01/08/2022 02:01:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-DFDNFVA)
Description: The server {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} did not register with DCOM within the required timeout.

Error: (01/08/2022 01:20:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA LocalSystem Container service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (01/08/2022 01:20:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Microsoft Office Click-to-Run Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (01/08/2022 01:20:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The LGHUB Updater Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (01/08/2022 01:20:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA Display Container LS service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 6000 milliseconds: Restart the service.

Error: (01/08/2022 01:13:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Origin Web Helper Service service terminated unexpectedly. It has done this 1 time(s).

Windows Defender:
================
Date: 2022-01-08 11:00:46
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-01-06 11:08:56
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-01-05 13:05:00
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-01-04 14:59:23
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-01-03 11:03:57
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:

Date: 2022-01-08 16:45:25
Description:
Microsoft Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0

CodeIntegrity:
===============
Date: 2022-01-08 17:14:46
Description:
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2Program FilesESETESET Securityeamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2022-01-08 16:47:26
Description:
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2Program FilesESETESET Securityecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 2006 11/13/2019
Motherboard: ASUSTeK COMPUTER INC. B450M-DRAGON
Processor: AMD Ryzen 5 3600 6-Core Processor
Percentage of memory in use: 33%
Total physical RAM: 16315.36 MB
Available physical RAM: 10894.52 MB
Total Virtual: 18747.36 MB
Available Virtual: 11398.14 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:99.43 GB) (Free:9.06 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:124.67 GB) (Free:17.46 GB) NTFS
Drive e: (New Volume) (Fixed) (Total:931.5 GB) (Free:747.79 GB) NTFS

\?Volume{37f95a8a-5210-466a-9f89-4940f7b55bab} () (Fixed) (Total:0.58 GB) (Free:0.16 GB) NTFS
\?Volume{3a32cda9-37a0-4343-942b-eb9f2f8b08c3} () (Fixed) (Total:0.19 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: DB887362)

Partition: GPT.

==================== End of Addition.txt =======================

Edited by Oh My!, 08 January 2022 – 10:24 AM.


https://www.bleepingcomputer.com/forums/t/766551/unsure-if-a-virus-or-keylogger-was-transferred-to-my-pc-from-teamviewer/

Erlando F Rasatro

Next Post

How to Forget a Saved Wi-Fi Network on Windows 11

Tue Feb 8 , 2022
Sometimes while troubleshooting a Wi-Fi connection in Windows 11, it can help to clear or delete stored Wi-Fi network settings and start fresh. Or sometimes you don’t want your PC to connect to a certain hotspot anymore. Luckily, it’s easy to “forget” a Wi-Fi network in just a few clicks. […]