Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.30 Platform: x64 Windows 10 (Pro), 10.0.19045.4046 (ReleaseId: 2009, 22H2), Service Pack: 0 Time: 24.02.2024 - 12:29 (UTC-05:00) Language: OS: English (0x409). Display: English (0x409). Non-Unicode: English (0x409) Memory: 23915 MiB Free (26 %). CPU Loading: (0 %) Elevated: Yes Ran by: lovel (group: Administrators) on DESKTOP-L6SCBEC, FirstRun: yes Chrome: 121.0.6167.189 Internet Explorer: 11.0.19041.3636 Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome) Boot mode: Normal Running processes: Number | Path 1 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 1 C:\Program Files (x86)\Common Files\Steam\steamservice.exe 2 C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe 1 C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe 10 C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe 6 C:\Program Files (x86)\Microsoft\EdgeWebView\Application\121.0.2277.128\msedgewebview2.exe 6 C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe 1 C:\Program Files (x86)\Steam\steam.exe 1 C:\Program Files\AMD\CNext\CNext\AMDGameConfigServ.exe 1 C:\Program Files\AMD\CNext\CNext\amdow.exe 1 C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe 1 C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe 1 C:\Program Files\AMD\CNext\CNext\cncmd.exe 1 C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe 1 C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe 1 C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe 1 C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe 1 C:\Program Files\GIGABYTE\Control Center\GCC.exe 12 C:\Program Files\Google\Chrome\Application\chrome.exe 2 C:\Program Files\Norton Security\Engine\22.24.1.6\NortonSecurity.exe 1 C:\Program Files\Norton Security\Engine\22.24.1.6\nsWscSvc.exe 1 C:\Program Files\Norton\Utilities\NortonUtilitiesSvc.exe 2 C:\Program Files\Norton\Utilities\NortonUtilitiesUI.exe 1 C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe 1 C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe 1 C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe 1 C:\Program Files\WindowsApps\Microsoft.GamingServices_18.86.14001.0_x64__8wekyb3d8bbwe\gamingservices.exe 1 C:\Program Files\WindowsApps\Microsoft.GamingServices_18.86.14001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe 1 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24012.92.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe 6 C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe 6 C:\Users\lovel\AppData\Local\Discord\app-1.0.9034\Discord.exe 1 C:\Users\lovel\AppData\Local\Microsoft\OneDrive\24.020.0128.0003\FileCoAuth.exe 1 C:\Users\lovel\AppData\Local\Microsoft\OneDrive\OneDrive.exe 1 C:\Users\lovel\Downloads\HiJackThis.exe 1 C:\Windows\explorer.exe 1 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 1 C:\Windows\servicing\TrustedInstaller.exe 1 C:\Windows\System32\AggregatorHost.exe 1 C:\Windows\System32\amdfendrsr.exe 1 C:\Windows\System32\ApplicationFrameHost.exe 1 C:\Windows\System32\audiodg.exe 1 C:\Windows\System32\backgroundTaskHost.exe 1 C:\Windows\System32\cmd.exe 2 C:\Windows\System32\conhost.exe 2 C:\Windows\System32\csrss.exe 1 C:\Windows\System32\ctfmon.exe 1 C:\Windows\System32\dllhost.exe 1 C:\Windows\System32\DriverStore\FileRepository\u0400139.inf_amd64_5620c4efdf31e94d\B399690\atieclxx.exe 1 C:\Windows\System32\DriverStore\FileRepository\u0400139.inf_amd64_5620c4efdf31e94d\B399690\atiesrxx.exe 1 C:\Windows\System32\dwm.exe 2 C:\Windows\System32\fontdrvhost.exe 1 C:\Windows\System32\GigabyteUpdateService.exe 1 C:\Windows\System32\lsass.exe 1 C:\Windows\System32\oobe\UserOOBEBroker.exe 2 C:\Windows\System32\RtkAudUService64.exe 1 C:\Windows\System32\rundll32.exe 6 C:\Windows\System32\RuntimeBroker.exe 1 C:\Windows\System32\SearchFilterHost.exe 1 C:\Windows\System32\SearchIndexer.exe 1 C:\Windows\System32\SearchProtocolHost.exe 1 C:\Windows\System32\SecurityHealthService.exe 1 C:\Windows\System32\SecurityHealthSystray.exe 1 C:\Windows\System32\services.exe 1 C:\Windows\System32\SgrmBroker.exe 1 C:\Windows\System32\sihost.exe 1 C:\Windows\System32\smartscreen.exe 1 C:\Windows\System32\smss.exe 1 C:\Windows\System32\SnippingTool.exe 1 C:\Windows\System32\spoolsv.exe 84 C:\Windows\System32\svchost.exe 3 C:\Windows\System32\taskhostw.exe 1 C:\Windows\System32\wbem\unsecapp.exe 2 C:\Windows\System32\wbem\WmiPrvSE.exe 1 C:\Windows\System32\wininit.exe 1 C:\Windows\System32\winlogon.exe 1 C:\Windows\System32\WUDFHost.exe 1 C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe 2 C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe 1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe 1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre-1.8\bin\ssv.dll O2 - HKLM\..\BHO: Norton Password Manager - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security\Engine\22.24.1.6\coIEPlg.dll O2-32 - HKLM\..\BHO: Norton Password Manager - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security\Engine32\22.24.1.6\coIEPlg.dll O3 - HKLM\..\Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.24.1.6\coIEPlg.dll O3-32 - HKLM\..\Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.24.1.6\coIEPlg.dll O4 - HKCU\..\Run: [AMDNoiseSuppression] = C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe O4 - HKCU\..\Run: [Discord] = C:\Users\lovel\AppData\Local\Discord\Update.exe --processStart Discord.exe O4 - HKCU\..\Run: [EpicGamesLauncher] = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe -silent -launchcontext=boot O4 - HKCU\..\Run: [Microsoft Edge Update] = C:\Users\lovel\AppData\Local\Microsoft\EdgeUpdate\1.3.185.17\MicrosoftEdgeUpdateCore.exe O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_BD8C235524BC171CE59FB38574CFD343] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --win-session-start O4 - HKCU\..\Run: [OneDrive] = C:\Users\lovel\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft) O4 - HKCU\..\Run: [Steam] = C:\Program Files (x86)\Steam\steam.exe -silent O4 - HKLM\..\Run: [NortonUtilitiesUI.exe] = C:\Program Files\Norton\Utilities\NortonUtilitiesUI.exe /nogui O4 - HKLM\..\Run: [RtkAudUService] = C:\Windows\System32\RtkAudUService64.exe -background O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiSpyware] = 1 O7 - Policy: HKLM\Software\Microsoft\Windows Defender: [DisableAntiVirus] = 1 O17 - DHCP DNS 1: 192.168.2.1 O21 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files\Norton Security\Engine\22.24.1.6\buShell.dll O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ - C:\Program Files\Norton Security\Engine32\22.24.1.6\buShell.dll O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (Microsoft) (user missing) O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (Microsoft) (user missing) O22 - Tasks: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\Windows\system32\MusNotification.exe /RunOnAC Reboot (Microsoft) O22 - Tasks: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\Windows\system32\MusNotification.exe /RunOnBattery Reboot (Microsoft) O22 - Tasks: (disabled) \Microsoft\Windows\Clip\LicenseImdsIntegration - C:\Windows\system32\fclip.exe (Microsoft) O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (Microsoft) O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (Microsoft) O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft) O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft) O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (Microsoft) O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\Windows\system32\usoclient.exe StartWork (Microsoft) O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (Microsoft) O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (Microsoft) O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (Microsoft) O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft) O22 - Tasks: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem124.0.6315.0{FBA3B352-9F7B-42C4-8341-C278C5B6274E} - C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe --wake --system --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 O22 - Tasks: \Microsoft\Windows\AppListBackup\BackupNonMaintenance - {E0DCC2CC-3354-45F2-8914-519E07809082} - C:\Windows\system32\AppListBackupLauncher.dll (Microsoft) O22 - Tasks: \Microsoft\Windows\AppxDeploymentClient\UCPD velocity - C:\Windows\system32\UCPDMgr.exe (Microsoft) O22 - Tasks: \Microsoft\Windows\CloudRestore\Backup - {722D0F89-B69C-4700-AE8C-4A44350E4876},$(Arg0) - C:\Windows\System32\CloudRestoreLauncher.dll (Microsoft) O22 - Tasks: \Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask - {82aa0895-198a-4c1b-b2d1-c16894218afb} - C:\Windows\System32\unifiedconsent.dll (Microsoft) O22 - Tasks: \Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache - {07369A67-07A6-4608-ABEA-379491CB7C46} - C:\Windows\System32\UpdatePolicy.dll (Microsoft) O22 - Tasks: \Norton 360\Norton 360 Autofix - C:\Program Files\Norton Security\Engine\22.24.1.6\SymErr.exe /ui O22 - Tasks: \Norton 360\Norton 360 Error Analyzer - C:\Program Files\Norton Security\Engine\22.24.1.6\SymErr.exe /analyze O22 - Tasks: \Norton 360\Norton 360 Error Processor - C:\Program Files\Norton Security\Engine\22.24.1.6\SymErr.exe /submit O22 - Tasks: \Norton\Norton Utilities BugReport - C:\Program Files\Norton\Utilities\AvBugReport.exe --send "dumps|report" --silent --product 189 --programpath "C:\Program Files\Norton\Utilities\Setup\.." --configpath "C:\Program Files\Norton\Utilities\Setup" --path "C:\ProgramData\Norton\Utilities\log" --path "C:\ProgramData\Norton\Icarus\Logs" --logpath "C:\ProgramData\Norton\Utilities\log" --guid 640ff03b-093e-4e12-ba02-bbe63d9fe563 O22 - Tasks: \Norton\Norton Utilities Update - C:\Program Files\Common Files\Norton\Icarus\norton-tu\icarus.exe /update:norton-tu /silent O22 - Tasks: \Remediation\AntimalwareMigrationTask - C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe /upgrade /user_logon O22 - Tasks: AMDAutoUpdate - C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe O22 - Tasks: AMDInstallLauncher - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe /InstallAUEP O22 - Tasks: AMDLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -AMDLinkUpdate O22 - Tasks: AMDRyzenMasterSDKTask - C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe O22 - Tasks: GCC - C:\Program Files\GIGABYTE\Control Center\GCC.exe -b O22 - Tasks: MicrosoftEdgeUpdateTaskUserS-1-5-21-2942685310-805080187-3657931111-1001Core{3379F42A-D311-4839-9170-FDAF8913BFE1} - C:\Users\lovel\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /c O22 - Tasks: MicrosoftEdgeUpdateTaskUserS-1-5-21-2942685310-805080187-3657931111-1001UA{CB6CF96D-3D12-4F33-888D-2E3EEE04C213} - C:\Users\lovel\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /ua /installsource scheduler O22 - Tasks: ModifyLinkUpdate - C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe -UpdateCurrentUser O22 - Tasks: Norton WSC Integration - C:\Program Files\Norton Security\Engine\22.24.1.6\WSCStub.exe /taskschd O22 - Tasks: OneDrive Reporting Task-S-1-5-21-2942685310-805080187-3657931111-1001 - C:\Users\lovel\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting O22 - Tasks: StartAUEP - C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe O22 - Tasks: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay O22 - Tasks: StartCNBM - C:\Program Files\AMD\CNext\CNext\cncmd.exe benchmark O22 - Tasks: StartDVR - C:\Program Files\AMD\CNext\CNext\RSServCmd.exe O23 - Service R2: AMD Crash Defender Service - C:\Windows\System32\amdfendrsr.exe O23 - Service R2: AMD External Events Utility - C:\Windows\System32\DriverStore\FileRepository\u0400139.inf_amd64_5620c4efdf31e94d\B399690\atiesrxx.exe O23 - Service R2: AMD User Experience Program Data Uploader - (AUEPLauncher) - C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe O23 - Service R2: Gaming Services - (GamingServices) - C:\Program Files\WindowsApps\Microsoft.GamingServices_18.86.14001.0_x64__8wekyb3d8bbwe\GamingServices.exe O23 - Service R2: Gaming Services - (GamingServicesNet) - C:\Program Files\WindowsApps\Microsoft.GamingServices_18.86.14001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe O23 - Service R2: GIGABYTE Update Service - (GigabyteUpdateService) - C:\Windows\system32\GigabyteUpdateService.exe 2\C:\Windows\system32\ O23 - Service R2: Norton Security - (NortonSecurity) - C:\Program Files\Norton Security\Engine\22.24.1.6\NortonSecurity.exe /s "NortonSecurity" /m "C:\Program Files\Norton Security\Engine\22.24.1.6\diMaster.dll" /prefetch:1 O23 - Service R2: Norton Utilities - (NortonUtilitiesSvc) - C:\Program Files\Norton\Utilities\NortonUtilitiesSvc.exe O23 - Service R2: Norton WSC Service - (nsWscSvc) - C:\Program Files\Norton Security\Engine\22.24.1.6\nsWscSvc.exe O23 - Service R2: Oculus VR Runtime Service - (OVRService) - C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\RtkAudUService64.exe O23 - Service R3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\steamservice.exe /RunAsService O23 - Service S2: GameInput Service - C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe O23 - Service S2: GoogleUpdater InternalService 124.0.6315.0 (GoogleUpdaterInternalService124.0.6315.0) - (GoogleUpdaterInternalService124.0.6315.0) - C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe --system --windows-service --service=update-internal --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 O23 - Service S2: GoogleUpdater Service 124.0.6315.0 (GoogleUpdaterService124.0.6315.0) - (GoogleUpdaterService124.0.6315.0) - C:\Program Files (x86)\Google\GoogleUpdater\124.0.6315.0\updater.exe --system --windows-service --service=update --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe O23 - Service S3: Easy Anti-Cheat (Epic Online Services) - (EasyAntiCheat_EOS) - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe O23 - Service S3: Epic Online Services - (EpicOnlineServices) - C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\121.0.6167.189\elevation_service.exe O23 - Service S3: Oculus VR Library Service - (OVRLibraryService) - C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe O23 - Service S3: Rockstar Game Library Service - (Rockstar Service) - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe -- End of file - Time spent: 3.9 sec. - 35200 bytes, CRC32: FFFFFFFF. Sign: 㶰