View Single Post
  #19  
Old February 22nd, 2021, 11:56 PM
gaesilva's Avatar
gaesilva gaesilva is offline
Senior Member
 
Join Date: Oct 2004
O/S: Windows 10 Home
Location: Naples, FL
Age: 75
Posts: 129
This is the 2nd part of FRST:
Opera:
=======
OPR Profile: C:\Users\gaele\AppData\Roaming\Opera Software\Opera Stable [2021-02-18]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncod ing}&oe={outputEncoding}
OPR Extension: (LastPass: Free Password Manager) - C:\Users\gaele\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2020-05-23]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Agent; C:\Windows\VPDAgent_x64.exe [148480 2013-02-04] (Two Pilots) [File not signed]
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-01-26] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\88.1.8016.153\elevation_servic e.exe [1456376 2021-02-09] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-01-26] (Piriform Software Ltd -> Piriform Software)
R2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.0.0_x64.exe [8704 2021-02-06] (GuinpinSoft inc) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-13] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [287776 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3750944 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [507936 2020-10-25] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [48832 2020-11-19] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6 .0.7240.285\DSAPI.exe [985584 2021-01-17] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRe medationService.exe [19128 2021-01-29] (Dell Inc -> Dell INC.)
R2 Dell WMI Service; C:\Program Files (x86)\Dell\DELLOSD\DellOSDService.exe [118784 2019-10-08] () [File not signed]
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2021-01-19] (Dell Inc -> )
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.002.0104.0005\FileSyncHelper.exe [2194288 2021-02-08] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-22] (Malwarebytes Inc -> Malwarebytes)
R2 Neat Startup Service; C:\Program Files (x86)\Neat\exec\NeatStartupService.exe [5632 2013-02-23] (The Neat Company) [File not signed]
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.002.0104.0005\OneDriveUpdaterService.e xe [2567552 2021-02-08] (Microsoft Corporation -> Microsoft Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [145736 2013-08-15] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAge nt.exe [39432 2021-01-09] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Wondershare TunesGo (Win) - iOS & Android Devices\DriverInstall.exe [102624 2017-09-08] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 RAPSService; "C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe" [X]
S3 RNDBWM; "C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe" [X]
S2 SmartByte Analytics Service; "C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe" [X]
S2 SmartByte Network Service x64; "C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [231936 2020-04-08] (Microsoft Corporation) [File not signed]
R3 DBUtilDrv2; C:\Windows\System32\drivers\DBUtilDrv2.sys [24952 2021-01-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2021-02-22] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220616 2021-02-22] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [198248 2021-02-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [77496 2021-02-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-02-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [142416 2021-02-22] (Malwarebytes Inc -> Malwarebytes)
S3 SmbCoSvc; C:\Windows\system32\DRIVERS\SmbCo10X64.sys [164424 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49552 2021-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [419040 2021-02-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-22 17:49 - 2021-02-22 17:49 - 002301440 _____ (Farbar) C:\Users\gaele\Desktop\FRST64.exe
2021-02-22 17:49 - 2021-02-22 17:49 - 000037122 _____ C:\Users\gaele\Desktop\FRST.txt
2021-02-22 17:49 - 2021-02-22 17:49 - 000000000 ____D C:\Users\gaele\Desktop\FRST-OlderVersion
2021-02-22 17:26 - 2021-02-22 17:26 - 002301440 _____ (Farbar) C:\Users\gaele\Downloads\FRST64.exe
2021-02-22 16:37 - 2021-02-22 16:37 - 000077496 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2021-02-22 16:36 - 2021-02-22 16:36 - 002084016 _____ (Malwarebytes) C:\Users\gaele\Downloads\MBSetup.exe
2021-02-22 16:36 - 2021-02-22 16:36 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-02-22 16:36 - 2021-02-22 16:36 - 000220616 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-02-22 16:36 - 2021-02-22 16:36 - 000198248 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2021-02-22 16:36 - 2021-02-22 16:36 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-02-22 16:36 - 2021-02-22 16:36 - 000142416 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2021-02-22 16:36 - 2021-02-22 16:36 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2021-02-22 16:36 - 2021-02-22 16:36 - 000002043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-02-22 16:36 - 2021-02-22 16:36 - 000002031 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-02-22 16:36 - 2021-02-22 16:36 - 000000000 ____D C:\Program Files\Malwarebytes
2021-02-22 16:27 - 2021-02-22 16:30 - 000181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2021-02-22 16:27 - 2021-02-22 16:27 - 000980315 _____ C:\Users\gaele\Downloads\Tweaking.com-RepairHostsFile.exe
2021-02-22 16:27 - 2021-02-22 16:27 - 000000000 ____D C:\Users\gaele\Downloads\Tweaking.com - Repair Hosts File
2021-02-22 16:27 - 2021-02-22 16:27 - 000000000 ____D C:\Tweaking.com_Windows_Repair_Logs
2021-02-22 16:14 - 2021-02-22 16:14 - 000001230 _____ C:\Users\gaele\Desktop\Malware Scan Report.txt
2021-02-22 14:48 - 2021-02-22 14:53 - 000000000 ____D C:\AdwCleaner
2021-02-22 14:47 - 2021-02-22 14:47 - 008463216 _____ (Malwarebytes) C:\Users\gaele\Downloads\AdwCleaner.exe
2021-02-21 16:40 - 2021-02-22 17:49 - 000000000 ____D C:\FRST
2021-02-21 00:06 - 2021-02-21 00:06 - 000000000 _____ C:\Windows\invcol.tmp
2021-02-18 11:41 - 2021-02-18 11:41 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-02-18 11:40 - 2021-02-18 11:40 - 030950888 _____ (Piriform Software Ltd) C:\Users\gaele\Downloads\ccsetup577.exe
2021-02-18 10:59 - 2021-02-18 10:59 - 005865713 _____ C:\Users\gaele\Downloads\02-21_February_EN.zip
2021-02-18 10:46 - 2021-02-18 10:46 - 005865713 _____ C:\Users\gaele\Downloads\Doro Cardigan files.zip
2021-02-17 23:51 - 2021-02-17 23:51 - 000010459 _____ C:\Users\gaele\Downloads\Verandas III updated Rules & Regs 2016pdf.pdf
2021-02-17 11:33 - 2021-02-17 11:33 - 003109159 _____ C:\Users\gaele\Downloads\Cute Pouch Tips for sewing with foam - Geta's Quilting Studio.pdf
2021-02-17 11:13 - 2021-02-17 11:13 - 003076065 _____ C:\Users\gaele\Downloads\Buzzs_Toy_Sheep-y9w54t (1).pdf
2021-02-16 18:48 - 2021-02-16 18:48 - 000363549 _____ C:\Users\gaele\Downloads\Bella Frill Dress Size S.pdf
2021-02-15 14:08 - 2021-02-15 14:08 - 000086739 _____ C:\Users\gaele\Downloads\x7203.PES (2).zip
2021-02-15 14:07 - 2021-02-15 14:07 - 000086739 _____ C:\Users\gaele\Downloads\x7203.PES (1).zip
2021-02-15 14:06 - 2021-02-15 14:06 - 000086739 _____ C:\Users\gaele\Downloads\x7203.PES.zip
2021-02-15 14:03 - 2021-02-15 14:03 - 000155261 _____ C:\Users\gaele\Downloads\Face Mask files for Embroidery Machine.zip
2021-02-15 13:54 - 2021-02-15 13:54 - 000692946 _____ C:\Users\gaele\Downloads\Christmas Train.zip
2021-02-15 13:52 - 2021-02-15 13:52 - 000600057 _____ C:\Users\gaele\Downloads\16551303.zip
2021-02-15 13:51 - 2021-02-15 13:51 - 000625389 _____ C:\Users\gaele\Downloads\x15005.PES (3).zip
2021-02-15 13:50 - 2021-02-15 13:50 - 000625389 _____ C:\Users\gaele\Downloads\x15005.PES.zip
2021-02-15 13:50 - 2021-02-15 13:50 - 000625389 _____ C:\Users\gaele\Downloads\x15005.PES (2).zip
2021-02-15 13:50 - 2021-02-15 13:50 - 000625389 _____ C:\Users\gaele\Downloads\x15005.PES (1).zip
2021-02-15 12:15 - 2021-02-15 12:15 - 000000000 ____D C:\Users\gaele\AppData\LocalLow\Temp
2021-02-15 11:03 - 2021-02-15 11:03 - 000004206 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1586963616
2021-02-15 11:03 - 2021-02-15 11:03 - 000001411 _____ C:\Users\gaele\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Opera Browser.lnk
2021-02-15 10:03 - 2021-02-15 10:03 - 000133776 _____ C:\Users\gaele\Desktop\Pinterest Login.html
2021-02-15 10:02 - 2021-02-15 10:03 - 000000000 ____D C:\Users\gaele\Desktop\Pinterest Login_files
2021-02-14 11:26 - 2021-02-20 21:42 - 000000000 ____D C:\Users\gaele\Documents\Projectarian
2021-02-14 11:26 - 2021-02-14 11:26 - 003076065 _____ C:\Users\gaele\Documents\Buzzs_Toy_Sheep-y9w54t.pdf
2021-02-14 11:16 - 2021-02-18 22:21 - 000000000 ____D C:\Users\gaele\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Twilio Inc
2021-02-14 11:16 - 2021-02-18 22:21 - 000000000 ____D C:\Users\gaele\AppData\Local\authy
2021-02-14 09:35 - 2021-02-14 09:35 - 002117675 _____ C:\Users\gaele\Downloads\Bag Making Hardware and Supplies _ _ Andrie Designs.pdf
2021-02-13 17:11 - 2021-02-13 17:11 - 039875000 _____ (Ladislav Vojnic ) C:\Users\gaele\Downloads\SimAQUARIUM-V3.8.B68.exe
2021-02-13 12:02 - 2021-02-13 12:02 - 001011517 _____ C:\Users\gaele\Downloads\OMAFacemask (2).zip
2021-02-13 12:00 - 2021-02-13 12:00 - 001011517 _____ C:\Users\gaele\Downloads\OMAFacemask (1).zip
2021-02-13 11:59 - 2021-02-13 12:00 - 000000022 _____ C:\Users\gaele\Downloads\OMAJuly17Freebie.zip
2021-02-13 11:58 - 2021-02-13 11:58 - 001011517 _____ C:\Users\gaele\Downloads\OMAFacemask.zip
2021-02-13 08:50 - 2021-02-13 08:51 - 002390171 _____ C:\Users\gaele\Documents\01-26-16 LENNOX HOME INSPECTION.pdf
2021-02-13 01:26 - 2021-02-13 01:26 - 000019469 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2021-02-13 01:24 - 2021-02-13 01:24 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-02-13 01:24 - 2021-02-13 01:24 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-02-13 01:24 - 2021-02-13 01:24 - 001271616 _____ C:\Windows\system32\FaceTrackerInternal.dll
2021-02-13 01:24 - 2021-02-13 01:24 - 000662616 _____ C:\Windows\system32\FaceProcessorCore.dll
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2021-02-13 01:24 - 2021-02-13 01:24 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2021-02-13 01:23 - 2021-02-13 01:23 - 000232752 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-12 10:16 - 2021-02-12 10:16 - 000000056 _____ C:\Users\gaele\Desktop\CA Do not sell my info.url
2021-02-10 17:53 - 2021-02-20 21:17 - 000000000 ____D C:\Users\gaele\Documents\Crochet
2021-02-10 17:53 - 2021-02-10 17:53 - 003262735 _____ C:\Users\gaele\Downloads\Sundog-the-Tiger-Ears-vheyhq.pdf
2021-02-10 09:37 - 2021-02-10 09:37 - 001780747 _____ C:\Users\gaele\Downloads\Crochet Hearts Bookmark - free pattern _ Knitca.pdf
2021-02-10 09:10 - 2021-02-14 17:29 - 000466920 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-09 12:10 - 2021-02-09 12:10 - 000000000 ____D C:\Program Files (x86)\DummyDir
2021-02-09 10:04 - 2021-02-09 10:04 - 000511247 _____ C:\Users\gaele\Downloads\CAPITAL ONE DISTRIBUTION NOTICE 2021.pdf
2021-02-08 19:07 - 2021-02-08 19:07 - 000009669 _____ C:\Users\gaele\Desktop\V3 Names.xlsx
2021-02-08 19:06 - 2021-02-08 19:07 - 000009675 _____ C:\Users\gaele\Downloads\V3 Names.xlsx
2021-02-08 12:51 - 2021-02-08 12:51 - 000312056 _____ C:\Users\gaele\Downloads\Blooming-spring-Frame-BumblebeePES-ec92bc.zip
2021-02-08 11:46 - 2021-02-08 11:46 - 000003206 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-02-08 11:46 - 2021-02-08 11:46 - 000002186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-08 08:09 - 2021-02-20 21:42 - 000000000 ____D C:\Users\gaele\Documents\Dog Patterns
2021-02-06 14:43 - 2021-02-06 15:09 - 000001066 _____ C:\Users\gaele\Desktop\MakeMKV.lnk
2021-02-06 14:43 - 2021-02-06 14:43 - 000000000 ____D C:\Users\gaele\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\MakeMKV
2021-02-06 14:43 - 2021-02-06 14:43 - 000000000 ____D C:\Users\gaele\.MakeMKV
2021-02-06 14:43 - 2021-02-06 14:43 - 000000000 ____D C:\Program Files\Common Files\cdarbsvc
2021-02-06 14:43 - 2021-02-06 14:43 - 000000000 ____D C:\Program Files (x86)\MakeMKV
2021-02-06 14:41 - 2021-02-06 14:41 - 014403675 _____ (GuinpinSoft inc) C:\Users\gaele\Downloads\Setup_MakeMKV_v1.15.4.exe
2021-02-03 03:08 - 2021-02-03 03:08 - 000003790 _____ C:\Windows\system32\Tasks\LastPassUpdater
2021-02-03 03:08 - 2021-02-03 03:08 - 000001108 _____ C:\ProgramData\Desktop\My LastPass Vault.lnk
2021-02-03 03:08 - 2021-02-03 03:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2021-02-03 00:06 - 2021-02-03 00:06 - 000000000 ____D C:\Windows\{6D0E596C-59BC-4529-917C-0B86AFC2823D}
2021-02-02 22:07 - 2021-02-02 22:07 - 000064221 _____ C:\Users\gaele\Desktop\December 31 2020 paycheck.pdf
2021-02-02 22:06 - 2021-02-02 22:07 - 000086167 _____ C:\Users\gaele\Desktop\Gae_Lennox_(459859)__01_23_ 2021_(Regular)_-_Complete Paycheck 2.pdf
2021-02-02 22:06 - 2021-02-02 22:06 - 000086109 _____ C:\Users\gaele\Desktop\Gae_Lennox_(459859)__01_09_ 2021_(Regular)_-_Complete paycheck.pdf
2021-02-02 08:39 - 2021-02-02 08:39 - 000195812 _____ C:\Users\gaele\Downloads\Statutes & Constitution _View Statutes _ Online Sunshine.pdf
2021-02-01 15:35 - 2021-02-01 15:35 - 000145461 _____ C:\Users\gaele\Downloads\Letter from Sandcasstle to 701.pdf
2021-02-01 15:35 - 2021-02-01 15:35 - 000000000 ____D C:\Users\gaele\Documents\Smoking in 701
2021-01-28 14:34 - 2021-01-28 14:34 - 000000000 ____D C:\Windows\twain_64
2021-01-27 16:10 - 2021-01-27 16:10 - 008078981 _____ C:\Users\gaele\Downloads\Success-With-Sewing-Lingerie.pdf
2021-01-27 10:30 - 2021-01-27 10:30 - 000100582 _____ C:\Users\gaele\Downloads\JDK 15 Documentation - Home.pdf
2021-01-27 10:29 - 2021-01-27 10:29 - 000069264 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2021-01-27 10:29 - 2021-01-27 10:29 - 000000000 ____D C:\Users\gaele\AppData\LocalLow\Oracle
2021-01-27 10:29 - 2021-01-27 10:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2021-01-27 10:29 - 2021-01-27 10:29 - 000000000 ____D C:\Program Files\Java
2021-01-27 10:29 - 2021-01-27 10:29 - 000000000 ____D C:\Program Files\Common Files\Oracle
2021-01-27 10:28 - 2021-01-27 10:28 - 167464600 _____ (Oracle Corporation) C:\Users\gaele\Downloads\jdk-15.0.2_windows-x64_bin.exe
2021-01-26 12:12 - 2021-01-26 12:12 - 000000000 ____D C:\Users\gaele\AppData\Roaming\MightyText
2021-01-26 12:00 - 2021-01-27 09:48 - 000000000 ____D C:\Users\gaele\AppData\Local\MightyText
2021-01-26 12:00 - 2021-01-26 12:00 - 000000000 ____D C:\ProgramData\gaele
2021-01-25 16:03 - 2021-01-25 16:03 - 000368150 _____ C:\Users\gaele\Documents\How to sew a dog clothes patterns - Pet Store York Shop - Clothes for a dog, Clothes for a Yorkie - Cheap accessories for dogs.pdf
2021-01-23 09:22 - 2021-01-23 09:22 - 000187197 _____ C:\Users\gaele\Documents\Juki model 1.pdf
2021-01-23 09:22 - 2021-01-23 09:22 - 000145573 _____ C:\Users\gaele\Documents\juki 2010q.pdf
2021-01-23 09:10 - 2021-01-23 09:10 - 003897028 _____ C:\Users\gaele\Documents\How To Sew A Scarf Face Mask.pdf
2021-01-23 08:58 - 2021-01-23 08:58 - 002261225 _____ C:\Users\gaele\Downloads\Ruler GL4Q-Online-Catalog.pdf
2021-01-23 08:29 - 2021-01-23 08:29 - 000025054 _____ C:\Users\gaele\Downloads\2020-Rollover-IRA-182603988-Form-1099-R-&-Instructions.pdf
2021-01-23 08:29 - 2021-01-23 08:29 - 000008427 _____ C:\Users\gaele\Downloads\2020-Rollover-IRA-182603988-Form-5498.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-22 17:45 - 2020-04-08 03:54 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-02-22 17:34 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-22 16:49 - 2020-04-08 04:00 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2021-02-22 16:36 - 2020-04-08 04:21 - 000841376 _____ C:\Windows\system32\PerfStringBackup.INI
2021-02-22 16:36 - 2019-03-18 23:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-02-22 16:36 - 2019-03-18 23:50 - 000000000 ____D C:\Windows\INF
2021-02-22 16:34 - 2020-05-24 07:29 - 000000000 ____D C:\Users\gaele\AppData\Roaming\Republic Anywhere
2021-02-22 16:34 - 2020-04-14 16:21 - 000000000 ____D C:\Program Files\CCleaner
2021-02-22 16:32 - 2020-04-14 12:55 - 000000000 __SHD C:\Users\gaele\IntelGraphicsProfiles
2021-02-22 16:32 - 2020-04-08 03:54 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-22 16:32 - 2020-04-08 03:54 - 000000000 ____D C:\Intel
2021-02-22 16:32 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2021-02-22 16:31 - 2019-03-18 23:37 - 000786432 _____ C:\Windows\system32\config\BBI
2021-02-22 15:59 - 2020-04-15 10:43 - 000004168 _____ C:\Windows\system32\Tasks\User_Feed_Synchronizatio n-{648796D0-ED1A-486C-A1A0-F2DCA8991F2A}
2021-02-22 11:29 - 2020-05-01 14:18 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2021-02-22 11:29 - 2020-05-01 14:18 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2021-02-20 21:19 - 2020-12-10 08:19 - 000000000 ____D C:\Users\gaele\Documents\notes
2021-02-20 11:06 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-20 11:06 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\AppReadiness
2021-02-20 09:31 - 2020-04-26 10:11 - 000000000 ____D C:\Users\gaele\Documents\Sewing Patterns
2021-02-19 15:00 - 2020-04-14 13:34 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-02-19 14:16 - 2020-10-01 08:11 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-18 18:57 - 2020-06-19 16:34 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-18 18:57 - 2020-06-19 16:34 - 000002280 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-02-18 11:41 - 2020-04-14 16:21 - 000000867 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-02-18 11:03 - 2020-04-23 11:41 - 000007891 _____ C:\Windows\BRRBCOM.INI
2021-02-17 12:20 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-17 12:10 - 2020-05-10 06:49 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-17 12:10 - 2020-05-10 06:49 - 000002264 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-02-15 14:06 - 2020-04-14 17:37 - 000000000 ____D C:\Users\gaele\Documents\Embroidery Designs
2021-02-14 17:30 - 2020-04-14 12:55 - 000000000 ___RD C:\Users\gaele\3D Objects
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\SystemResources
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\oobe
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\es-MX
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\Dism
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\ShellExperiences
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\bcastdvr
2021-02-14 17:28 - 2019-03-18 23:52 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-14 11:32 - 2020-04-21 13:26 - 000000000 ____D C:\Users\gaele\Documents\Neat Data
2021-02-14 11:16 - 2020-04-16 07:45 - 000000000 ____D C:\Users\gaele\AppData\Local\SquirrelTemp
2021-02-14 09:35 - 2020-04-15 11:04 - 000000000 ____D C:\Users\gaele\Documents\Sew Sweetness Sewing Patterns
2021-02-13 01:26 - 2019-03-18 23:37 - 000000000 ____D C:\Windows\CbsTemp
2021-02-12 09:21 - 2020-04-08 03:54 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-02-10 09:10 - 2021-01-21 11:52 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-02-10 06:23 - 2020-04-14 15:59 - 000000000 ____D C:\Windows\system32\MRT
2021-02-10 06:20 - 2020-04-14 15:59 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-02-09 12:14 - 2020-04-08 04:28 - 000000000 ____D C:\Windows\Panther
2021-02-09 12:10 - 2020-04-08 03:58 - 000000000 ____D C:\ProgramData\Package Cache
2021-02-08 19:07 - 2020-04-14 12:55 - 000000000 ____D C:\Users\gaele\AppData\Local\Packages
2021-02-08 15:51 - 2020-06-19 16:34 - 000003480 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskM achineUA
2021-02-08 15:51 - 2020-06-19 16:34 - 000003356 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskM achineCore
2021-02-08 11:46 - 2020-09-19 04:19 - 000000000 ___RD C:\Users\Visitor\OneDrive
2021-02-08 11:46 - 2020-04-14 12:58 - 000000000 ___RD C:\Users\gaele\OneDrive
2021-02-06 14:43 - 2020-04-14 12:51 - 000000000 ____D C:\Users\gaele
2021-02-05 21:06 - 2020-07-11 09:11 - 000000000 ____D C:\Users\gaele\Documents\purse patterns
2021-02-05 20:30 - 2020-10-01 08:11 - 000916288 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll
2021-02-05 20:30 - 2020-10-01 08:11 - 000437056 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll
2021-02-05 01:02 - 2020-05-10 06:46 - 000003418 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineU A
2021-02-05 01:02 - 2020-05-10 06:46 - 000003294 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineC ore
2021-02-04 23:04 - 2020-04-15 10:42 - 000003682 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-3842255837-3436847461-3918225103-1001UA
2021-02-04 23:04 - 2020-04-15 10:42 - 000003414 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-3842255837-3436847461-3918225103-1001Core
2021-02-03 03:08 - 2020-05-23 10:01 - 000000000 ____D C:\Program Files (x86)\LastPass
2021-01-28 14:36 - 2020-04-21 13:20 - 000000000 ____D C:\ProgramData\Documents\Neat Mobile Scanner
2021-01-27 12:49 - 2019-03-18 23:52 - 000000000 ____D C:\Windows\system32\NDF
2021-01-27 12:40 - 2020-04-15 10:15 - 000000000 ___HD C:\Windows\msdownld.tmp
2021-01-26 12:12 - 2020-04-16 07:45 - 000000000 ____D C:\Users\gaele\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\MightyText
2021-01-26 07:23 - 2020-05-01 14:18 - 000003474 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachin eUA
2021-01-26 07:23 - 2020-05-01 14:18 - 000003350 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachin eCore

==================== Files in the root of some directories ========

2020-11-07 15:57 - 2020-11-07 15:57 - 000000017 _____ () C:\Users\gaele\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt
Reply With Quote