Jump to content

Landets

Honorary Members
 View Profile  See their activity

  • Posts

    54

  • Joined

  • Last visited

 Content Type 

Everything posted by Landets

  1. Landets
    Hi and thank you for fast and clear response! I have now scanned my pc with Farbar Recovery Scan tool in below I have pasted the FRST.txt log: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-11-2020 Ran by kukkuu (administrator) on DESKTOP-ORVKSU4 (22-11-2020 21:33:26) Running from C:\Users\kukkuu\Downloads Loaded Profiles: kukkuu Platform: Windows 10 Pro Version 2004 19041.630 (X64) Language: suomi (Suomi) Default browser: Chrome Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2> (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (Discord Inc. -> Discord Inc.) C:\Users\kukkuu\AppData\Local\Discord\app-0.0.307\Discord.exe <6> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23> (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel(R) Software -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (juvlarN) [File not signed] C:\Users\kukkuu\Downloads\vibranceGUI\vibranceGUI.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4> (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe (Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe (Spotify AB -> Spotify Ltd) C:\Users\kukkuu\AppData\Roaming\Spotify\Spotify.exe <5> (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3421472 2020-11-21] (Valve -> Valve Corporation) HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [915848 2020-03-30] (Nota Inc. -> Nota Inc.) HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\...\Run: [Spotify] => C:\Users\kukkuu\AppData\Roaming\Spotify\Spotify.exe [23232232 2020-11-17] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\...\Run: [vibranceGUI] => C:\Users\kukkuu\Downloads\vibranceGUI\vibranceGUI.exe [794624 2020-02-19] (juvlarN) [File not signed] HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\...\Run: [Discord] => C:\Users\kukkuu\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [104586376 2020-10-31] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\kukkuu\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-11-08] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5491248 2020-10-23] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-2394993855-2793199360-2321698513-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [154624 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\Installer\chrmstp.exe [2020-11-20] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2020-11-22] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS) Startup: C:\Users\kukkuu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2017-04-11] ShortcutTarget: Twitch.lnk -> C:\Users\kukkuu\AppData\Roaming\Curse Client\Bin\Twitch.exe (No File) ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {04FB6B38-1DC2-4305-B692-EDF3932B25AE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {257D00D3-9556-4DEA-A7F7-4EC1F099D30D} - System32\Tasks\Agent Activation Runtime\S-1-5-21-2394993855-2793199360-2321698513-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-10-18] (Microsoft Windows -> ) Task: {30892DFC-2314-4C5E-A31B-F87EA987C35E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117600 2020-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {3945AE5C-7EE2-4C3D-8E70-89BCD7CCD690} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1460176 2015-11-11] (ASUSTeK Computer Inc. -> ) Task: {43B22C91-15E0-4E2E-AB50-85231434C449} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [238392 2013-07-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {4B90E307-E214-4AAD-A492-FF013076D280} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {507ACE94-A93D-4E68-8B07-0BFAF64A607A} - System32\Tasks\ASUS\Push Notice Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264 2014-05-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {582279D1-B051-42BA-9178-9514AD69514A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-10] (Google Inc -> Google Inc.) Task: {5858934D-89FF-4203-8A3E-5F88D15F8171} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1939416 2016-07-27] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {66B7AEC0-20E5-4197-9EE6-CBA372793207} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6807D043-2571-454A-B965-57F9E099C637} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1269208 2016-07-28] (ASUSTeK Computer Inc. -> ) Task: {6CB7363E-AB6C-491B-AEC8-AFAEDC6AF3CD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117600 2020-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {7F7EDDA2-8272-4443-8860-78F9E6928A34} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {8914BBC6-6EFD-4D1D-AF3D-71110A59CF06} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {97D28B65-65D8-4E93-BB15-2CEBFDD1D143} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3982744 2020-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {9C530AA0-DCD3-44AF-B492-82257DC66170} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [667856 2020-11-08] (Mozilla Corporation -> Mozilla Foundation) Task: {A2E8F6FC-0D04-4098-9BD7-42151295F70E} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4331288 2016-03-07] (ASUSTeK Computer Inc. -> TODO: <Company name>) Task: {A567B57B-AA14-41AC-A88C-603EA84A7272} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A597812B-5F36-4D5A-8E38-F18FFDA940D5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {B00D3119-784A-4A43-892A-1C2262198345} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BEFE6CAA-1522-4ECC-882C-9A343C35049F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BFFC825B-231D-46D3-9B95-CF4E69997CAC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.) Task: {C0E23E55-5A45-47D5-8739-AEA1B70D16D8} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION Task: {C218849D-EBDA-4E7B-A657-A4BBE7412876} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D8989847-4A18-4D9A-852A-4EF2EB744869} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {E7364E0C-A365-4A7A-97AC-AD1ABF1F52EA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {E755B130-9CA0-4945-8A22-D1BC1DDAC627} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1146776 2020-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {E9CC986E-0166-483C-8AA8-AE7E2A0F2AA6} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2020-03-30] (Nota Inc. -> Nota Inc.) Task: {F7329736-FA6C-4A15-A1DF-A3B315D86F99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-10] (Google Inc -> Google Inc.) Task: {F8488848-04BB-477E-9BB8-92600EE3331D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3982744 2020-11-15] (Microsoft Corporation -> Microsoft Corporation) Task: {FEBC60AA-B9AD-4293-A4AE-3D0DE5D45665} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2020-03-30] (Nota Inc. -> Nota Inc.) Task: {FF2C7052-E4C4-4083-85AA-C81F7F24CF2A} - System32\Tasks\Opera scheduled Autoupdate 1536429312 => C:\Users\kukkuu\AppData\Local\Programs\Opera\launcher.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 193.210.18.18 193.210.19.19 Tcpip\..\Interfaces\{32fb867d-d2bc-4c21-b982-90c8edd8489c}: [DhcpNameServer] 192.168.137.1 Tcpip\..\Interfaces\{9f96e5ae-d85d-4edb-8fa2-2f61a1be1d07}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{dfa4ba2b-bece-44b6-8826-90d5e88bc634}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{dfa4ba2b-bece-44b6-8826-90d5e88bc634}: [DhcpNameServer] 193.210.18.18 193.210.19.19 Edge: ====== Edge Profile: C:\Users\kukkuu\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-22] FireFox: ======== FF DefaultProfile: ea8dcghk.default FF ProfilePath: C:\Users\kukkuu\AppData\Roaming\Mozilla\Firefox\Profiles\6jfd3rzo.default-release-1605117272824 [2020-11-21] FF Extension: (uBlock Origin) - C:\Users\kukkuu\AppData\Roaming\Mozilla\Firefox\Profiles\6jfd3rzo.default-release-1605117272824\Extensions\uBlock0@raymondhill.net.xpi [2020-11-11] FF ProfilePath: C:\Users\kukkuu\AppData\Roaming\Mozilla\Firefox\Profiles\ea8dcghk.default [2018-09-08] FF Extension: (Adblock Plus) - C:\Users\kukkuu\AppData\Roaming\Mozilla\Firefox\Profiles\ea8dcghk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-12-10] [Legacy] FF Plugin-x32: @java.com/DTPlugin,version=10.6.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2019-10-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-10-23] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: ", CHR Profile: C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default [2020-11-22] CHR Notifications: Default -> hxxps://huoneistotieto.fi; hxxps://weboodi.oulu.fi; hxxps://www.faceit.com CHR Extension: (Slides) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Docs) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Drive) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21] CHR Extension: (YouTube) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-02] CHR Extension: (Adblock Plus - ilmainen mainosesto) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-11-17] CHR Extension: (Sheets) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Google Docsin offline-tila) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-11] CHR Extension: (Chrome Web Storen maksut) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Gmail) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25] CHR Extension: (Chrome Media Router) - C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20] CHR Profile: C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-04-14] CHR Profile: C:\Users\kukkuu\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-24] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-09-17] (ASUSTeK Computer Inc. -> ) S2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.23\aaHMSvc.exe [963536 2016-04-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2016-03-07] (ASUSTeK Computer Inc. -> ) [File not signed] S2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.15\AsusFanControlService.exe [419288 2016-05-27] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-09-25] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-11-04] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2020-11-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [19329376 2020-11-02] (FACE IT LIMITED -> ) S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10887816 2020-10-31] (Logitech Inc -> Logitech, Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7269976 2020-11-21] (Malwarebytes Inc -> Malwarebytes) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-05] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [32648 2020-11-20] (SteelSeries ApS -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 3dxhid; C:\WINDOWS\System32\drivers\3dxhid.sys [48560 2016-04-08] (3Dconnexion SAM -> 3Dconnexion SAM) R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [22192 2015-10-19] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2015-09-17] (ASUSTeK Computer Inc. -> ) S1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] (ASUSTeK Computer Inc. -> ) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed] S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-09-08] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-09-08] (Disc Soft Ltd -> Disc Soft Ltd) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-11-21] (Malwarebytes Corporation -> Malwarebytes) R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [11952512 2020-11-02] (FACE IT LIMITED -> ) S3 KMJHidMini; C:\WINDOWS\System32\drivers\3dxkmj.sys [18944 2016-04-08] (3Dconnextion Inc.) [File not signed] S3 KMJShim; C:\WINDOWS\System32\drivers\3dxshim.sys [7168 2016-04-08] (3Dconnextion Inc.) [File not signed] S3 ladfGSS; C:\WINDOWS\system32\drivers\ladfGSS.sys [45208 2016-12-08] (Logitech Inc -> Logitech Inc.) R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\69832\driver_cpu_temperature\logi_core_temp.sys [25448 2020-10-31] (Logitech Inc. -> Logitech) R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [44088 2020-10-31] (Logitech Inc -> Logitech) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2020-09-16] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-09-16] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2020-09-16] (Logitech Inc -> Logitech) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [217600 2020-11-21] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197792 2020-11-22] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [74936 2020-11-22] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-11-21] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [134304 2020-11-22] (Malwarebytes Inc -> Malwarebytes) R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS) R3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [57440 2020-11-02] (SteelSeries ApS -> SteelSeries ApS) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-11-20] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-11-20] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2020-11-22 21:33 - 2020-11-22 21:33 - 000026500 _____ C:\Users\kukkuu\Downloads\FRST.txt 2020-11-22 21:32 - 2020-11-22 21:33 - 000000000 ____D C:\FRST 2020-11-22 21:32 - 2020-11-22 21:32 - 002295808 _____ (Farbar) C:\Users\kukkuu\Downloads\FRST64.exe 2020-11-22 20:43 - 2020-11-22 20:43 - 000000000 ____D C:\Users\kukkuu\AppData\LocalLow\IGDump 2020-11-22 16:50 - 2020-11-22 16:50 - 000030586 _____ C:\Users\kukkuu\Downloads\Addition.txt 2020-11-22 16:36 - 2020-11-22 16:36 - 000197792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2020-11-22 16:36 - 2020-11-22 16:36 - 000134304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2020-11-22 16:36 - 2020-11-22 16:36 - 000074936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2020-11-22 16:32 - 2020-11-22 16:33 - 000000000 ____D C:\AdwCleaner 2020-11-22 16:32 - 2020-11-22 16:32 - 008447152 _____ (Malwarebytes) C:\Users\kukkuu\Downloads\adwcleaner_8.0.8.exe 2020-11-21 20:37 - 2020-11-21 20:37 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-11-21 20:37 - 2020-11-21 20:37 - 000217600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-11-21 20:37 - 2020-11-21 20:37 - 000002038 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-11-21 20:37 - 2020-11-21 20:37 - 000002026 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-11-21 20:37 - 2020-11-21 20:36 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-11-21 20:37 - 2020-11-21 20:36 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-11-21 20:37 - 2020-10-19 07:42 - 000069608 _____ C:\WINDOWS\system32\FvSDK_x64.dll 2020-11-21 20:37 - 2020-10-19 07:42 - 000058344 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll 2020-11-21 20:37 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys 2020-11-21 20:36 - 2020-11-21 20:36 - 002076624 _____ (Malwarebytes) C:\Users\kukkuu\Downloads\MBSetup.exe 2020-11-21 20:36 - 2020-11-21 20:36 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-11-21 20:36 - 2020-11-21 20:36 - 000000000 ____D C:\Program Files\Malwarebytes 2020-11-19 18:30 - 2020-11-19 18:30 - 000127131 _____ C:\Users\kukkuu\Downloads\muiden toimijoiden analyysi benchmarkkaus.pptx 2020-11-14 15:15 - 2020-11-14 15:15 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-11-14 15:15 - 2020-11-14 15:15 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-11-14 15:15 - 2020-11-14 15:15 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2020-11-14 15:15 - 2020-11-14 15:15 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe 2020-11-14 15:15 - 2020-11-14 15:15 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2020-11-12 16:37 - 2020-11-12 16:37 - 000116871 _____ C:\Users\kukkuu\Downloads\Rikosoikeus.pptx 2020-11-11 23:00 - 2020-11-11 23:00 - 003100518 _____ C:\Users\kukkuu\Downloads\Artikkelikategoria I-20200915.zip 2020-11-11 19:54 - 2020-11-11 19:54 - 000334008 _____ (Mozilla) C:\Users\kukkuu\Downloads\Firefox Installer.exe 2020-11-11 19:54 - 2020-11-11 19:54 - 000000998 _____ C:\Users\Public\Desktop\Firefox.lnk 2020-11-11 19:54 - 2020-11-11 19:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2020-11-11 16:34 - 2020-11-11 16:34 - 000114733 _____ C:\Users\kukkuu\Downloads\Oikeudenkäynti.pptx 2020-11-10 16:41 - 2020-11-10 16:41 - 000530404 _____ C:\Users\kukkuu\Downloads\Perintö ja testamentti luennot.pptx 2020-11-08 18:41 - 2020-11-08 18:41 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\Teams 2020-11-08 18:25 - 2020-11-08 18:25 - 005301596 _____ C:\Users\kukkuu\Downloads\Strategiatyöluento 4 11 2020 (1).pptx 2020-11-08 18:25 - 2020-11-08 18:25 - 000552046 _____ C:\Users\kukkuu\Downloads\Strategiasuunnitelmapohja (1).pptx 2020-11-07 21:28 - 2020-11-08 18:37 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\.minecraft 2020-11-07 21:28 - 2020-11-07 21:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 2020-11-07 21:28 - 2020-11-07 21:28 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher 2020-11-07 11:07 - 2020-11-07 11:07 - 000769592 _____ C:\Users\kukkuu\Downloads\HAJO1104A osa III.pdf 2020-11-07 10:15 - 2020-11-07 10:15 - 000724575 _____ C:\Users\kukkuu\Downloads\HAJO1104A II (1).pdf 2020-11-06 16:48 - 2020-11-06 16:48 - 000724575 _____ C:\Users\kukkuu\Downloads\HAJO1104A II.pdf 2020-11-06 16:47 - 2020-11-06 16:47 - 001584271 _____ C:\Users\kukkuu\Downloads\HAJO1104A osa I (1).pdf 2020-11-05 16:34 - 2020-11-05 16:35 - 001584271 _____ C:\Users\kukkuu\Downloads\HAJO1104A osa I.pdf 2020-11-04 16:52 - 2020-11-04 16:52 - 005301596 _____ C:\Users\kukkuu\Downloads\Strategiatyöluento 4 11 2020.pptx 2020-11-04 16:52 - 2020-11-04 16:52 - 000552046 _____ C:\Users\kukkuu\Downloads\Strategiasuunnitelmapohja.pptx 2020-11-04 16:51 - 2020-11-04 16:51 - 000197356 _____ C:\Users\kukkuu\Downloads\Laine Strategiatyöteksti 2019.pdf 2020-11-04 02:02 - 2020-11-04 02:02 - 000026279 _____ C:\Users\kukkuu\Downloads\Fallout_3_Modding_Guide MO 2 Version - 1.6.2 (RTF)-23468-1-6-2-1591118114.7z 2020-11-03 17:01 - 2020-11-03 17:01 - 000693577 _____ C:\Users\kukkuu\Downloads\Henkilö- ja perheoikeus lakitietoa 2020.pptx 2020-11-03 16:26 - 2020-11-03 16:26 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2020-10-31 14:02 - 2020-10-31 14:02 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk 2020-10-31 14:02 - 2020-10-31 14:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2020-10-31 14:02 - 2020-10-31 14:02 - 000000000 ____D C:\Program Files\LGHUB 2020-10-31 13:43 - 2020-10-31 13:43 - 002174656 _____ (Logitech) C:\WINDOWS\system32\logi_audio_headset_capture_apo.dll 2020-10-31 13:43 - 2020-10-31 13:43 - 002040416 _____ (Logitech) C:\WINDOWS\system32\logi_audio_hx2e_render_apo.dll 2020-10-27 16:00 - 2020-10-27 16:00 - 004430760 _____ C:\Users\kukkuu\Downloads\Readius Re-Texture.7z 2020-10-27 15:57 - 2020-10-27 15:57 - 005621206 _____ C:\Users\kukkuu\Downloads\3500mk2 Pip Boy-37250.rar 2020-10-27 15:46 - 2020-10-27 15:46 - 044836311 _____ C:\Users\kukkuu\Downloads\Pip-Boy 2501-65252-1-0.zip 2020-10-27 14:54 - 2020-10-27 14:54 - 000065026 _____ C:\Users\kukkuu\Downloads\Enhanced Camera 1.4c-55334-1-4c-1544995335.zip 2020-10-27 03:40 - 2020-10-27 03:40 - 000001365 _____ C:\Users\kukkuu\Downloads\Content Load Order.txt.7z 2020-10-27 03:39 - 2020-10-27 03:39 - 000565405 _____ C:\Users\kukkuu\Downloads\Content Conflict Resolution FOMOD.7z 2020-10-27 03:28 - 2020-10-27 03:28 - 000007039 _____ C:\Users\kukkuu\Downloads\All Weapon Sounds Overhaul ESP Replacer.7z 2020-10-27 03:09 - 2020-10-27 03:09 - 000013702 _____ C:\Users\kukkuu\Downloads\Lore Friendly Armor Pack.7z 2020-10-27 03:02 - 2020-10-27 03:02 - 227139333 _____ C:\Users\kukkuu\Downloads\Spice of Life Vanilla v1-5 Release Candidate.7z 2020-10-27 03:00 - 2020-10-27 03:00 - 001313249 _____ C:\Users\kukkuu\Downloads\Lore Friendly Weapons Pack Iron Sights Recoil Animations.7z 2020-10-27 02:59 - 2020-10-27 03:00 - 000011350 _____ C:\Users\kukkuu\Downloads\Lore Friendly Weapons Pack.7z 2020-10-27 02:46 - 2020-10-27 02:46 - 006808605 _____ C:\Users\kukkuu\Downloads\Quest Mod Face Textures.7z 2020-10-27 02:41 - 2020-10-27 02:41 - 000007887 _____ C:\Users\kukkuu\Downloads\Afterschool Special Tweaks.7z 2020-10-27 02:39 - 2020-10-27 02:39 - 046212064 _____ C:\Users\kukkuu\Downloads\fallout-nv-mods-the-blue-note-v0-02.zip 2020-10-27 02:32 - 2020-10-27 02:32 - 000002637 _____ C:\Users\kukkuu\Downloads\The Mogul Mausoleum ESP Replacer.7z 2020-10-27 02:30 - 2020-10-27 02:30 - 000202765 _____ C:\Users\kukkuu\Downloads\Vault 22 Flora Overhaul ESP Replacer.7z 2020-10-27 02:10 - 2020-10-27 02:10 - 000001231 _____ C:\Users\kukkuu\Downloads\Gameplay Load Order.txt.7z 2020-10-27 02:09 - 2020-10-27 02:09 - 000576041 _____ C:\Users\kukkuu\Downloads\Gameplay Conflict Resolution FOMOD.7z 2020-10-27 01:41 - 2020-10-27 01:41 - 000007918 _____ C:\Users\kukkuu\Downloads\VNV Follower Tweaks.7z 2020-10-27 01:40 - 2020-10-27 01:40 - 000064037 _____ C:\Users\kukkuu\Downloads\ccc_icons_v2.7z 2020-10-27 01:39 - 2020-10-27 01:39 - 000185068 _____ C:\Users\kukkuu\Downloads\Qolore Gameplay Tweaks.7z 2020-10-27 01:38 - 2020-10-27 01:39 - 006462056 _____ C:\Users\kukkuu\Downloads\Yukichigai Gameplay Tweaks.7z 2020-10-27 01:34 - 2020-10-27 01:34 - 000004938 _____ C:\Users\kukkuu\Downloads\BLEED Addendum.7z 2020-10-27 01:33 - 2020-10-27 01:33 - 000001828 _____ C:\Users\kukkuu\Downloads\Changed Vendor Flags.7z 2020-10-27 01:21 - 2020-10-27 01:21 - 000000870 _____ C:\Users\kukkuu\Downloads\Mojave Raiders Addendum.7z 2020-10-27 01:16 - 2020-10-27 01:16 - 000009621 _____ C:\Users\kukkuu\Downloads\Economy Overhaul Addendum.7z 2020-10-27 01:15 - 2020-10-27 01:15 - 000003278 _____ C:\Users\kukkuu\Downloads\JSUE Addendum.7z 2020-10-27 01:00 - 2020-10-27 01:00 - 000000790 _____ C:\Users\kukkuu\Downloads\Visuals Load Order.txt.7z 2020-10-27 00:56 - 2020-10-27 00:56 - 382213512 _____ C:\Users\kukkuu\Downloads\FNVLODGen Output (High).7z 2020-10-27 00:54 - 2020-10-27 00:54 - 000431191 _____ C:\Users\kukkuu\Downloads\ETL - Terrain LOD Noise.7z 2020-10-27 00:52 - 2020-10-27 00:52 - 000005831 _____ C:\Users\kukkuu\Downloads\LOD Additions and Improvements ESP Replacer.7z 2020-10-27 00:36 - 2020-10-27 00:36 - 021098744 _____ C:\Users\kukkuu\Downloads\Realistic Wasteland Lighting Redesigned.7z 2020-10-27 00:26 - 2020-10-27 00:26 - 000102428 _____ C:\Users\kukkuu\Downloads\Simple Street Lights ESP Replacer.7z 2020-10-27 00:25 - 2020-10-27 00:25 - 000809193 _____ C:\Users\kukkuu\Downloads\Simple_Street_Lights_v1_1.rar 2020-10-27 00:18 - 2020-10-27 00:19 - 001819556 _____ C:\Users\kukkuu\Downloads\Iron Sights Recoil Animations - WRP Patch.7z 2020-10-27 00:18 - 2020-10-27 00:18 - 007954422 _____ C:\Users\kukkuu\Downloads\Iron Sights Recoil Animations - WMIM Patch.7z 2020-10-27 00:07 - 2020-10-27 00:07 - 007121978 _____ C:\Users\kukkuu\Downloads\Ojo Bueno Securitrons.7z 2020-10-26 23:56 - 2020-10-26 23:56 - 000002856 _____ C:\Users\kukkuu\Downloads\YUP - WRP Patch.7z 2020-10-26 23:38 - 2020-10-26 23:38 - 000029757 _____ C:\Users\kukkuu\Downloads\Semi-Transparent Door Glass ESP Replacer.7z 2020-10-26 23:37 - 2020-10-26 23:37 - 001868044 _____ C:\Users\kukkuu\Downloads\Textures Over Time LOD Fix.7z 2020-10-26 22:44 - 2020-10-26 22:44 - 000554030 _____ C:\Users\kukkuu\Downloads\Core Conflict Resolution FOMOD.7z 2020-10-26 22:44 - 2020-10-26 22:44 - 000000717 _____ C:\Users\kukkuu\Downloads\Core Load Order.txt.7z 2020-10-26 22:40 - 2020-10-27 15:37 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\zEdit 2020-10-26 22:39 - 2020-10-26 22:39 - 000027110 _____ C:\Users\kukkuu\Downloads\MCM Matches HUD Color (VUI+ Version).7z 2020-10-26 22:38 - 2020-10-26 22:38 - 000012524 _____ C:\Users\kukkuu\Downloads\No_Traps_Popup-66714-1-2-1564766664.7z 2020-10-26 22:34 - 2020-10-26 22:34 - 000049088 _____ C:\Users\kukkuu\Downloads\Console Paste-65906-1-0-1546350722.zip 2020-10-26 22:27 - 2020-10-26 22:27 - 000629215 _____ C:\Users\kukkuu\Downloads\Vanilla_UI_Plus_New_Vegas_8.50.7z 2020-10-26 22:23 - 2020-10-26 22:23 - 000018141 _____ C:\Users\kukkuu\Downloads\MCM BugFix 2-42507-.7z 2020-10-26 22:13 - 2020-10-26 22:13 - 000018256 _____ C:\Users\kukkuu\Downloads\lStewieAl's Tweaks Custom INI.7z 2020-10-26 22:06 - 2020-10-26 22:06 - 000001961 _____ C:\Users\kukkuu\Downloads\WMIM Addendum.7z 2020-10-26 21:58 - 2020-10-26 21:58 - 000081398 _____ C:\Users\kukkuu\Downloads\FNVModLimitFix-68714-2-5-1588442390.zip 2020-10-26 21:49 - 2020-10-26 21:49 - 000071561 _____ C:\Users\kukkuu\Downloads\NVTF-66537-8-3-1-1603727055.zip 2020-10-26 21:48 - 2020-10-26 21:48 - 000110679 _____ C:\Users\kukkuu\Downloads\NVAC - New Vegas Anti Crash-53635-7-5-1-0.zip 2020-10-26 21:46 - 2020-10-26 21:46 - 000020716 _____ C:\Users\kukkuu\Downloads\FNV 4GB Patch-62552-1-4-1541454309.7z 2020-10-26 21:44 - 2020-10-26 21:44 - 000158530 _____ C:\Users\kukkuu\Downloads\JohnnyGuitar NVSE-66927-3-25-1601043011.zip 2020-10-26 21:43 - 2020-10-26 21:43 - 000171145 _____ C:\Users\kukkuu\Downloads\JIP LN NVSE Plugin-58277-55-67-1603466487.7z 2020-10-26 21:38 - 2020-10-26 21:38 - 000457102 _____ C:\Users\kukkuu\Downloads\nvse_5_1_beta6.7z 2020-10-26 21:17 - 2020-10-26 21:17 - 002093006 _____ C:\Users\kukkuu\Downloads\FNV BSA Decompressor-65854-1-0-1540922518.7z 2020-10-26 21:14 - 2020-10-26 21:14 - 012884227 _____ C:\Users\kukkuu\Downloads\xLODGen.64.7z 2020-10-26 21:11 - 2020-10-26 21:11 - 044073163 _____ C:\Users\kukkuu\Downloads\zEdit_v0.6.5_-_Portable_x64.7z 2020-10-26 21:10 - 2020-10-26 21:10 - 027938669 _____ C:\Users\kukkuu\Downloads\FNVEdit 4_0_3-34703-4-0-3-1575325884.7z 2020-10-26 21:09 - 2020-10-26 21:09 - 000022286 _____ C:\Users\kukkuu\Downloads\mo2-plugins-master.zip 2020-10-26 21:05 - 2020-10-26 21:06 - 082409806 _____ C:\Users\kukkuu\Downloads\Mod Organizer 2 (Archive)-6194-2-3-2-1597663207.7z 2020-10-25 22:46 - 2020-10-26 01:24 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\Vortex 2020-10-25 18:22 - 2020-10-25 18:22 - 000000659 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LOOT.lnk ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-11-22 21:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-11-22 21:31 - 2017-04-24 20:39 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\discord 2020-11-22 20:36 - 2019-05-19 23:51 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\Spotify 2020-11-22 19:48 - 2017-01-02 15:58 - 000000000 ____D C:\Program Files (x86)\Steam 2020-11-22 19:08 - 2020-03-08 19:26 - 000000000 ____D C:\Users\kukkuu\AppData\Local\LGHUB 2020-11-22 18:43 - 2020-10-08 14:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-11-22 16:43 - 2020-10-08 14:54 - 001346474 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-11-22 16:43 - 2019-12-07 16:55 - 000437218 _____ C:\WINDOWS\system32\perfh00B.dat 2020-11-22 16:43 - 2019-12-07 16:55 - 000081316 _____ C:\WINDOWS\system32\perfc00B.dat 2020-11-22 16:43 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2020-11-22 16:39 - 2016-11-11 13:45 - 000000000 ____D C:\Users\kukkuu\AppData\Local\CrashDumps 2020-11-22 16:38 - 2017-05-17 14:56 - 000000000 ____D C:\ProgramData\NVIDIA 2020-11-22 16:37 - 2020-03-08 19:26 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\LGHUB 2020-11-22 16:37 - 2019-05-19 23:51 - 000000000 ____D C:\Users\kukkuu\AppData\Local\Spotify 2020-11-22 16:36 - 2020-10-08 14:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-11-22 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2020-11-22 16:35 - 2020-10-08 14:44 - 000008192 ___SH C:\DumpStack.log.tmp 2020-11-22 16:34 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-11-21 20:37 - 2020-10-08 14:50 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2020-10-08 14:50 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-11-21 20:37 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-11-21 20:37 - 2017-05-17 14:56 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2020-11-21 20:37 - 2017-05-17 14:56 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2020-11-21 20:37 - 2017-05-17 14:56 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2020-11-21 20:37 - 2016-11-11 13:36 - 000001452 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2020-11-21 20:35 - 2016-12-30 20:29 - 000000000 ____D C:\Users\kukkuu\AppData\LocalLow\Mozilla 2020-11-21 18:49 - 2020-08-24 19:12 - 000002430 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-11-21 18:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2020-11-21 18:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-11-20 17:59 - 2018-03-04 20:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2020-11-20 17:56 - 2016-11-08 01:53 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-11-19 18:34 - 2017-11-18 18:28 - 000000000 ____D C:\Users\kukkuu\AppData\Local\Packages 2020-11-19 17:46 - 2018-07-06 16:40 - 000000000 ____D C:\Users\kukkuu\AppData\Local\D3DSCache 2020-11-18 00:55 - 2019-07-12 22:43 - 000000000 ____D C:\ProgramData\USVFS 2020-11-17 20:45 - 2020-10-20 22:34 - 000000000 ____D C:\Users\kukkuu\AppData\Local\ModOrganizer 2020-11-17 17:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-11-15 17:05 - 2018-05-17 13:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2020-11-14 19:14 - 2017-11-18 18:59 - 000000000 ____D C:\Users\kukkuu\AppData\Local\PlaceholderTileLogoFolder 2020-11-14 16:04 - 2020-10-08 14:44 - 000472696 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-11-14 16:04 - 2020-04-27 18:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-11-14 16:03 - 2019-12-07 16:58 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2020-11-14 16:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-11-14 15:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-11-14 15:15 - 2020-10-08 14:49 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2020-11-12 21:44 - 2017-01-02 20:27 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\steelseries-engine-3-client 2020-11-11 19:54 - 2020-04-27 18:30 - 000001010 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-11-11 19:54 - 2020-04-27 18:30 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-11-08 20:49 - 2019-04-06 18:41 - 000000000 ____D C:\Users\kukkuu\AppData\Local\DayZ 2020-11-08 20:47 - 2020-09-13 17:40 - 000000000 ____D C:\Users\kukkuu\Documents\dzsalauncher 2020-11-08 20:29 - 2018-11-06 23:57 - 000000000 ____D C:\Users\kukkuu\AppData\Local\LarianLauncher 2020-11-08 18:41 - 2020-04-09 08:02 - 000002378 _____ C:\Users\kukkuu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2020-11-07 19:59 - 2020-10-19 01:04 - 000000000 ____D C:\Users\kukkuu\Documents\Larian Studios 2020-11-07 10:07 - 2020-10-06 23:15 - 000000000 ___DC C:\WINDOWS\Panther 2020-11-06 00:13 - 2019-02-22 14:59 - 000000000 ____D C:\ProgramData\Origin 2020-11-04 16:36 - 2016-12-10 17:04 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-11-03 22:38 - 2017-05-09 16:01 - 000000000 ___RD C:\Users\kukkuu\Desktop\Settiä 2020-11-03 22:09 - 2017-01-02 20:27 - 000000000 ____D C:\Program Files\SteelSeries 2020-11-03 16:26 - 2020-03-24 12:16 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\Zoom 2020-11-02 21:46 - 2020-07-22 23:52 - 000313368 _____ (SteelSeries) C:\WINDOWS\system32\engineco.dll 2020-11-02 21:46 - 2019-12-23 18:53 - 000057440 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\sshid.sys 2020-11-02 19:36 - 2020-10-08 14:50 - 000003546 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-11-02 19:36 - 2020-10-08 14:50 - 000003422 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-11-02 18:01 - 2018-11-06 18:17 - 000000000 ____D C:\Program Files\FACEIT AC 2020-11-02 18:00 - 2018-11-06 18:17 - 011952512 _____ C:\WINDOWS\system32\Drivers\FACEIT.sys 2020-11-02 01:13 - 2020-02-10 22:30 - 000000000 ____D C:\Users\kukkuu\AppData\Roaming\TS3Client 2020-11-01 01:24 - 2019-05-19 23:51 - 000001860 _____ C:\Users\kukkuu\Desktop\Spotify.lnk 2020-11-01 00:57 - 2020-10-08 21:51 - 000011608 _____ C:\Users\kukkuu\Desktop\LUKUVUOSI 2020-21 KALENTERI.xlsx 2020-10-31 13:43 - 2020-09-16 23:00 - 000044088 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_audio_surround.sys 2020-10-30 19:24 - 2020-01-28 18:00 - 000795000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2020-10-29 18:10 - 2020-10-11 09:54 - 000000000 ____D C:\Users\kukkuu\Desktop\puhelin 2020-10-28 23:27 - 2020-10-08 14:50 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2394993855-2793199360-2321698513-1001 2020-10-28 23:27 - 2020-10-08 14:46 - 000002397 _____ C:\Users\kukkuu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-10-28 23:27 - 2016-10-30 20:36 - 000000000 ___RD C:\Users\kukkuu\OneDrive 2020-10-26 20:41 - 2017-01-02 22:27 - 000000000 ____D C:\Users\kukkuu\Documents\My Games 2020-10-26 01:25 - 2020-07-05 16:36 - 000000000 ____D C:\Program Files\Black Tree Gaming Ltd 2020-10-25 22:51 - 2020-10-20 22:16 - 000000000 ____D C:\Users\kukkuu\AppData\Local\FalloutNV 2020-10-25 21:43 - 2017-01-02 22:37 - 000000000 ____D C:\Users\kukkuu\AppData\Local\Black_Tree_Gaming 2020-10-25 20:46 - 2017-01-03 01:21 - 000000000 ____D C:\Users\kukkuu\AppData\Local\LOOT ==================== Files in the root of some directories ======== 2019-10-26 16:36 - 2019-10-26 16:36 - 000001803 _____ () C:\Users\kukkuu\AppData\Local\opensource-licenses.txt ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ======================== I also have attached the addition.txt as to this reply Addition.txt
  2. Landets
    Hello I downloaded Malwarebytes yesterday, because I begun to think that my PC might be infected even if my Windows Defender Antivirus said everything is okay. Every time I did a manual scan on Windows Defender, it didn't find any threats but notified me that during scan some files and/or applications were excluded on scan because of exception. I have made zero exceptions to any application or file, and when I viewed list it was empty. Also when I do scan on Malwarebytes, it says that I have zero threats or viruses in my computer. However, today Malwarebytes has blocked few websites due RTP-detections. I find these detections weird because they don't have any domains, only IP-address. Connection type has been inbound in every case, and they are trying to use my PC's system files to connect into my PC. According to my understanding inbound connections mean that my PC is not yet infected, but why I am having these potential threats every few hours? I have uploaded logs from these events into this post. I opened a new topic here few hours ago, but It can be deleted now because at that moment I only had one RTP-detection. log 1.txt log 2.txt
  3. Landets
    I begun to use Malwarebytes yesterday, and when I did a manual scan it didn't find any possible threats. What makes things weirder was the reason I decided to actually download Malwarebytes. Before it I used Window's default antivirus, and when it did scan, it reported zero threats but then I got a notification that some files and/or applications were not scanned because of an exception, which I have not done. When I was looking at the list of exceptions, there were none of them.
  4. Landets
    Hello, I am currently using Malwarebytes Home-edition's trial version. Today I got a notification about a dangerous website, which was blocked successfully by Malwarebytes. When I read the log I was little bit confused about what does it means and what did actually happen. In below you can see my log in finnish: Malwarebytes www.malwarebytes.com -Lokitiedot- Suojaustapahtuman päivämäärä: 22.11.2020 Suojaustapahtuman kellonaika: 15.06 Lokitiedosto: 85c16378-2cc3-11eb-8412-3497f69db6cc.json -Ohjelmiston tiedot- Versio: 4.2.3.96 Osien versio: 1.0.1104 Päivityspaketin versio: 1.0.33256 Lisenssi: Kokeiluversio -Järjestelmän tiedot- OS: Windows 10 (Build 19041.630) CPU: x64 Tiedostojärjestelmä: NTFS Käyttäjä: System -Estetyn verkkosivuston tiedot- Haitallinen verkkosivusto: 1 , C:\Windows\System32\svchost.exe, Estetty, -1, -1, 0.0.0, , -Verkkosivuston tiedot- Luokka: Vaarallinen Toimialue: IP-osoite: 194.26.25.123 Portti: 135 Tyyppi: Saapuva Tiedosto: C:\Windows\System32\svchost.exe (end) Does this mean that I need to manually remove something or would it possible be false-positive?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.