Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022 Ran by Michal (administrator) on MSI (Micro-Star International Co., Ltd. GS66 Stealth 10UE) (06-09-2022 20:40:31) Running from C:\Users\Michal\Downloads Loaded Profiles: Michal Platform: Microsoft Windows 10 Home Version 21H2 19044.1949 (X64) Language: English (United States) Default browser: Brave Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (A-Volute SAS -> A-Volute) C:\Users\Michal\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe <2> (C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe (C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe <2> (C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google) C:\Users\Michal\AppData\Local\Google\Chrome\User Data\SwReporter\104.288.200\software_reporter_tool.exe <4> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe (drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe (drivers\RivetNetworks\Killer\KSPSService.exe ->) (Intel Corporation -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\KSPS.exe (drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Intel Corporation -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe (DriverStore\FileRepository\cui_dch.inf_amd64_efb119a73d6b56f6\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_efb119a73d6b56f6\igfxEM.exe (explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <28> (explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE (explorer.exe ->) (GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <29> (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (services.exe ->) (GuinpinSoft inc) [File not signed] C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.0.0_x64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe (services.exe ->) (Intel Corporation -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KSPSService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_efb119a73d6b56f6\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_577b4722c749a41f\OneApp.IGCC.WinService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_8fd80d4662ee466f\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_8fd80d4662ee466f\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel(R) System Usage Report -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe (services.exe ->) (Micro-Star International CO., LTD. -> ) C:\Program Files (x86)\MSI\MSI NBFoundation Service\Sendevsvc.exe (services.exe ->) (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe (services.exe ->) (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIService.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_417542b70c8bb20a\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_31adae5d99f8cd09\RtkAudUService64.exe <2> (services.exe ->) (Shenzhen Moyea Software -> Leawo Software) C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe (services.exe ->) (TBT_DCH_DRV_PROD -> Intel Corporation) C:\Windows\ThunderboltService.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22052.554.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2> (svchost.exe ->) (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\MSI NBFoundation Service\OmApSvcBroker.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Duet\MSI_Duet.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Sound Tune\SoundTune.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_31adae5d99f8cd09\RtkAudUService64.exe [3491784 2022-05-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [MsiTrueColor] => C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe [6354304 2020-11-16] (Portrait Displays, Inc. -> Portrait Displays, Inc.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech) HKLM\...\Policies\Explorer: [HideSCAMeetNow] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-535994172-2959193490-1660769210-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-535994172-2959193490-1660769210-1002\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-535994172-2959193490-1660769210-1002\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13663208 2022-08-25] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-535994172-2959193490-1660769210-1002\...\RunOnce: [Application Restart #2] => C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe [2941240 2022-09-03] (Brave Software, Inc. -> Brave Software, Inc.) HKU\S-1-5-21-535994172-2959193490-1660769210-1002\...\Policies\Explorer: [HideSCAMeetNow] 1 HKU\S-1-5-21-535994172-2959193490-1660769210-1002\...\MountPoints2: {3798a4ba-cd1b-11eb-97e2-845cf35425a8} - "E:\unlock.exe" autoplay=true HKU\S-1-5-21-535994172-2959193490-1660769210-1003\...\Run: [MicrosoftEdgeAutoLaunch_AF2BBCAD27A22A0C1234356BDE5EE233] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [] => [X] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-22] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\105.1.43.89\Installer\chrmstp.exe [2022-09-03] (Brave Software, Inc. -> Brave Software, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-04-22] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS) HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION HKU\S-1-5-21-535994172-2959193490-1660769210-1002\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION HKU\S-1-5-21-535994172-2959193490-1660769210-1003\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {049C8356-E186-4E87-8481-E7E164E276DE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {0510D458-50F4-4236-9BDB-C4CD879CF355} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {0A9B22D6-215D-4CA7-96FF-2AAA7E017BA1} - System32\Tasks\OmApSvcBroker => C:\Program Files (x86)\MSI\MSI NBFoundation Service\OmApSvcBroker.exe [544680 2021-10-14] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) Task: {139CA041-9C02-4A9F-BC3D-3899B15E3460} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1095880 2022-04-11] (A-Volute SAS -> Nahimic) Task: {161893C5-CEDC-4852-8D4A-AD7D6643BD48} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [834760 2022-04-11] (A-Volute SAS -> Nahimic) Task: {1ADDB778-E811-4745-AC36-571887C4AA6F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {2434A09A-3290-42B7-BD42-6BF0CF768E5F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {2C1427A8-5B44-47CC-A2C6-F549D8E160A3} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {450F2EA8-FD7F-4FCF-88C4-7FA77FA3F2FA} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-11] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {45F14B7D-609B-49A4-84C2-0E5EF37A5DB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {478CE2A7-E1DA-43F5-9CB4-50B0D21CBE4C} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-11] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {48AEE010-D82E-43BD-9233-3053F462339E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-04-22] (Google LLC -> Google LLC) Task: {4A7E5ECC-2B8D-4CFC-8894-3078864AE35D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {50872F56-F666-4862-98B6-5248A8E88494} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {51582A1B-5F02-4018-9EA5-504576A89453} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {691EE6F2-8DB4-4FA9-BA8A-142E9B376693} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) Task: {6D58BF4F-66B2-466B-81AF-F0C03C6FC818} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {7F6132BE-A578-4B6A-AC46-ABB943111A99} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1775440 2021-11-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) Task: {815BF0EC-705F-4A36-B2C2-522FE5789B9D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-04-22] (Google LLC -> Google LLC) Task: {85D166F3-46AE-4FC3-B343-7FD9427C7656} - System32\Tasks\OneDC_Updater => C:\Users\Michal\Documents\temp\OneDC_Updater\OneDC_Updater.exe [5311400 2021-04-16] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) <==== ATTENTION Task: {8892AB42-C6F3-4614-B87C-ED767353D751} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1095880 2022-04-11] (A-Volute SAS -> Nahimic) Task: {8C3F5046-8FBA-4888-AFBD-9326C06B73CB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) Task: {8C934ADC-2244-48B2-AB99-23E47B3B0526} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File) Task: {9AA81A64-B05B-4B0A-811E-F90AB0F0761A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A37A9659-2C13-49A6-9566-56C2C4272FAF} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-535994172-2959193490-1660769210-1003 => C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) Task: {BA2E295B-E12D-4371-AC3B-1E8D27B61B9A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {C66D3231-F39B-4B5F-A100-C49D0AA3420C} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) Task: {CB9B4D3C-1B4E-4919-8D49-1953DF84441E} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-535994172-2959193490-1660769210-500 => C:\Users\Michal\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File) Task: {CD2AD514-20A1-4068-B203-BD30306EFDF7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {D1C75E37-0EEC-4C3F-97A6-F8A46E72486C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D81E9933-E9D1-4A0C-B279-AD3955FA0677} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DC87A8B2-FD5A-4C76-B531-359766532469} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) Task: {DDC0EBBB-C113-47CB-89CA-55FFBD5701F3} - System32\Tasks\MSI Task Host - Duet => C:\Program Files (x86)\MSI\One Dragon Center\Duet\MSI_Duet.exe [31992 2020-12-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) Task: {E52367C9-70B1-4907-B65B-9E34C79195A8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {E7CB4F68-EA54-4BA3-962B-5074EFCF69B9} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3074176 2021-04-15] (Intel(R) System Usage Report -> Intel Corporation) Task: {E89EA4EA-7211-458C-A9B8-E2C30FE97868} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3074176 2021-04-15] (Intel(R) System Usage Report -> Intel Corporation) Task: {FB9D25B7-02A9-471C-8FE5-D2A1B1568EDC} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [834760 2022-04-11] (A-Volute SAS -> Nahimic) Task: {FD36C88D-1B24-43BB-AC6C-9DFF54C8865C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FE20579D-156E-4338-9118-D1B1903908B7} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864 2010-05-19] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [193824 2010-05-19] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{f6a5fae0-cd73-40df-b191-a68be4bc3196}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-11] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default [2022-09-06] CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://arstechnica.com/","hxxps://eztv.re/","hxxps://www.revolutiontt.me/browse.php","hxxps://fora.snahp.eu/","hxxps://yts.mx/","hxxps://www.youtube.com/","hxxps://www.reddit.com/r/BABYMETAL/" CHR Extension: (MEGA) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2022-09-06] CHR Extension: (uBlock Origin) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-09-06] CHR Extension: (I don't care about cookies) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2022-08-14] CHR Extension: (Dokumenty Google offline) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-06] CHR Extension: (feedly) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2021-04-22] CHR Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-08-14] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-22] CHR Extension: (Bitwarden - darmowy menedżer haseł) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2022-08-14] CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\System Profile [2022-08-14] Brave: ======= BRA Profile: C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-09-06] BRA StartupUrls: Default -> "hxxps://arstechnica.com/","hxxps://eztv.re/","hxxps://www.revolutiontt.me/browse.php","hxxps://fora.snahp.eu/index.php?sid=9e0e209984c716fbeccaf6d6f9e7750b","hxxps://yts.mx/","hxxps://www.youtube.com/" BRA Extension: (Google Translate) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-04-14] BRA Extension: (MEGA) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2022-09-02] BRA Extension: (SponsorBlock for YouTube - Skip Sponsorships) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mnjggcdmjocbbbhaepdhchncahnbgone [2022-07-22] BRA Extension: (DownThemAll!) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nljkibfhlpcnanjgbnlnbjecgicbjkge [2022-08-03] BRA Extension: (Bitwarden - Free Password Manager) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2022-08-08] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-09-06] BRA Extension: (Brave NTP background images) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-12] BRA Extension: (Wallet Data Files Updater) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-09-05] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-09-06] BRA Extension: (Brave NTP sponsored images) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2022-09-06] BRA Extension: (Brave SpeedReader Updater) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-11] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Michal\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-09-01] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-11] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-11] (Brave Software, Inc. -> BraveSoftware Inc.) R2 CdRomAccessAgentService; C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe [96152 2021-10-01] (Shenzhen Moyea Software -> Leawo Software) R2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.0.0_x64.exe [8704 2021-09-28] (GuinpinSoft inc) [File not signed] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-26] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-06-26] (Epic Games Inc. -> Epic Games, Inc.) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2128360 2022-08-25] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-27] (GOG Sp. z o.o. -> GOG.com) S3 KAPSService; C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe [74048 2022-03-30] (Intel Corporation -> Intel® Corporation) R2 Killer Analytics Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2432832 2022-03-30] (Intel Corporation -> Intel) R2 Killer Network Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2893136 2022-03-30] (Intel Corporation -> Intel) R2 KillerSmartphoneSleepService; C:\Windows\System32\drivers\RivetNetworks\Killer\KSPSService.exe [73528 2022-03-30] (Intel Corporation -> Rivet Networks, LLC.) R3 KNDBWM; C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [74064 2022-03-30] (Intel Corporation -> Intel® Corporation) R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [168056 2019-05-07] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) R2 MSI Foundation Service; C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe [87976 2021-09-23] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) R2 MSI Sendevsvc; C:\Program Files (x86)\MSI\MSI NBFoundation Service\Sendevsvc.exe [307624 2021-04-16] (Micro-Star International CO., LTD. -> ) R2 MSITrueColorService; C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe [200576 2020-11-16] (Portrait Displays, Inc. -> Portrait Displays, Inc.) R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [143160 2021-03-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [39760 2021-05-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) R2 NahimicService; C:\Windows\system32\NahimicService.exe [1921224 2022-04-11] (A-Volute SAS -> Nahimic) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575064 2022-05-06] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-05-06] (Electronic Arts, Inc. -> Electronic Arts) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2559896 2022-02-26] (Rockstar Games, Inc. -> Rockstar Games) S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [31568 2021-04-14] (SteelSeries ApS -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation) S2 xTendSoftAPService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [72984 2021-11-09] (Intel Corporation -> Intel® Corporation) R2 xTendUtilityService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [72992 2021-11-09] (Intel Corporation -> Intel® Corporation) S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\105.1.43.89\elevation_service.exe" [X] R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_417542b70c8bb20a\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_417542b70c8bb20a\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 BlueStacksDrv_msi2; C:\Program Files\BlueStacks_msi2\BstkDrv_msi2.sys [315768 2020-04-07] (Bluestack Systems, Inc -> Bluestack System Inc.) R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [29224 2022-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 duetbus; C:\Windows\System32\DriverStore\FileRepository\duetbus.inf_amd64_66e44262fc0dd065\duetbus.sys [41736 2020-11-18] (Duet, Inc. -> Duet, Inc.) R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 IGO_VSD; C:\Windows\system32\drivers\igovsd.sys [40240 2021-01-25] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelli-go) R3 KfeCoSvc; C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [181944 2022-03-30] (Intel Corporation -> Rivet Networks, LLC.) R3 MpKsl07c5ff15; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8CA9E6A0-5FE1-43C2-A0A1-77B594695FE3}\MpKslDrv.sys [141576 2022-09-06] (Microsoft Windows -> Microsoft Corporation) R3 msihid; C:\Windows\System32\drivers\msihid.sys [43936 2022-07-15] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [85144 2021-09-13] (A-Volute SAS -> Windows (R) Win 7 DDK provider) R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [234568 2022-06-24] (Nvidia Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 OCULUSUDSVR; C:\Windows\System32\drivers\OCULUSUD.sys [3867552 2022-03-10] (Microsoft Windows Hardware Compatibility Publisher -> Oculus VR, LLC.) R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2021-04-14] (SteelSeries ApS -> SteelSeries ApS) R3 ssps2; C:\Windows\System32\drivers\ssps2.sys [37280 2022-06-05] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation) R3 WINIO; C:\Program Files (x86)\MSI\MSI NBFoundation Service\KernCoreLib64.sys [25656 2018-11-15] (Micro-Star International CO., LTD. -> ) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2022-09-06 20:40 - 2022-09-06 20:40 - 000039149 _____ C:\Users\Michal\Downloads\FRST.txt 2022-09-06 20:37 - 2022-09-06 20:38 - 002371072 _____ (Farbar) C:\Users\Michal\Downloads\FRST64.exe 2022-09-06 20:22 - 2022-09-06 20:22 - 001666080 _____ (O&O Software GmbH) C:\Users\test\Downloads\OOSU10.exe 2022-09-06 20:22 - 2022-09-06 20:22 - 000000000 ____D C:\Users\test\AppData\LocalLow\Intel 2022-09-06 20:22 - 2022-09-06 20:22 - 000000000 ____D C:\Users\test\AppData\Local\OO Software 2022-09-06 20:22 - 2022-09-06 20:22 - 000000000 ____D C:\Users\test\AppData\Local\D3DSCache 2022-09-06 20:20 - 2022-09-06 20:20 - 000000000 ____D C:\Users\test\Documents\temp 2022-09-06 20:20 - 2022-09-06 20:20 - 000000000 ____D C:\Users\test\AppData\Local\PlaceholderTileLogoFolder 2022-09-06 20:19 - 2022-09-06 20:19 - 000003352 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-535994172-2959193490-1660769210-1003 2022-09-06 20:19 - 2022-09-06 20:19 - 000002386 _____ C:\Users\test\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk 2022-09-06 20:19 - 2022-09-06 20:19 - 000002367 _____ C:\Users\test\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-09-06 20:19 - 2022-09-06 20:19 - 000000000 ___RD C:\Users\test\OneDrive 2022-09-06 20:19 - 2022-09-06 20:19 - 000000000 ____D C:\Users\test\AppData\Local\NhNotifSys 2022-09-06 20:19 - 2022-09-06 20:19 - 000000000 ____D C:\Users\test\AppData\Local\DBG 2022-09-06 20:18 - 2022-09-06 20:22 - 000000000 ____D C:\Users\test\AppData\Local\Intel 2022-09-06 20:18 - 2022-09-06 20:20 - 000000000 ____D C:\Users\test\AppData\Local\Packages 2022-09-06 20:18 - 2022-09-06 20:20 - 000000000 ____D C:\Users\test\AppData\Local\NVIDIA Corporation 2022-09-06 20:18 - 2022-09-06 20:19 - 000000000 ____D C:\Users\test\AppData\Local\Publishers 2022-09-06 20:18 - 2022-09-06 20:19 - 000000000 ____D C:\Users\test 2022-09-06 20:18 - 2022-09-06 20:18 - 000002402 _____ C:\Users\test\Desktop\Brave.lnk 2022-09-06 20:18 - 2022-09-06 20:18 - 000002291 _____ C:\Users\test\Desktop\Google Chrome.lnk 2022-09-06 20:18 - 2022-09-06 20:18 - 000000020 ___SH C:\Users\test\ntuser.ini 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 __SHD C:\Users\test\IntelGraphicsProfiles 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 ___RD C:\Users\test\3D Objects 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 ____D C:\Users\test\AppData\Roaming\Adobe 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 ____D C:\Users\test\AppData\Local\VirtualStore 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 ____D C:\Users\test\AppData\Local\NVIDIA 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 ____D C:\Users\test\AppData\Local\Google 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 ____D C:\Users\test\AppData\Local\ConnectedDevicesPlatform 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 ____D C:\Users\test\AppData\Local\BraveSoftware 2022-09-06 20:18 - 2022-09-06 20:18 - 000000000 ____D C:\Users\test\ansel 2022-09-06 20:18 - 2021-10-04 19:26 - 000000000 ____D C:\Users\test\AppData\Local\Epic Games 2022-09-06 19:50 - 2022-09-06 20:24 - 000002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-09-06 19:50 - 2022-09-06 20:24 - 000002355 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-09-06 19:50 - 2022-09-06 19:56 - 000003536 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-09-06 19:50 - 2022-09-06 19:56 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-09-05 21:14 - 2022-09-05 22:32 - 000000000 ____D C:\Users\Michal\Downloads\[CHN] Ashes of Love 2022-09-05 18:35 - 2022-09-05 18:36 - 000000000 ____D C:\Users\Michal\Downloads\Hansan.Rising.Dragon.2022.KOREAN.1080p.WEBRip.x265-VXT 2022-09-05 18:32 - 2022-09-05 18:35 - 000000000 ____D C:\Users\Michal\Downloads\Little.Women.S01E02.KOREAN.1080p.NF.WEBRip.DDP2.0.x264-MARK[rartv] 2022-09-05 18:31 - 2022-09-05 18:35 - 000000000 ____D C:\Users\Michal\Downloads\The.Admiral.Roaring.Currents.2014.KOREAN.1080p.BluRay.x265-VXT 2022-09-05 18:31 - 2022-09-05 18:34 - 000000000 ____D C:\Users\Michal\Downloads\Little.Women.S01E01.KOREAN.1080p.NF.WEBRip.DDP2.0.x264-MARK[rartv] 2022-09-05 17:08 - 2022-09-05 17:08 - 1034681723 _____ C:\Users\Michal\Downloads\House.of.the.Dragon.S01E03.1080p.10bit.WEBRip.6CH.x265.HEVC-PSA.mkv 2022-09-03 18:49 - 2022-09-03 18:49 - 000011845 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-09-03 18:48 - 2022-09-03 18:48 - 000413696 _____ C:\Windows\system32\AzureCheck.dll 2022-09-03 18:48 - 2022-09-03 18:48 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-09-03 18:48 - 2022-09-03 18:48 - 000098816 _____ C:\Windows\system32\Drivers\cimfs.sys 2022-09-03 18:43 - 2022-09-03 18:43 - 000000000 ___HD C:\$WinREAgent 2022-09-03 18:04 - 2022-09-03 18:14 - 000000054 _____ C:\Users\Michal\Documents\ersites.txt 2022-09-03 17:45 - 2022-09-03 17:45 - 1699709566 _____ C:\Users\Michal\Downloads\Gold.Rush.Freddy.Dodges.Mine.Rescue.S01E05.A.Fine.Mess.1080p.DSCP.WEB-DL.AAC2.0.H.264-THM.mkv 2022-09-03 17:40 - 2022-09-03 17:40 - 1595539236 _____ C:\Users\Michal\Downloads\Gold.Rush.Freddy.Dodges.Mine.Rescue.S01E04.Young.Guns.1080p.DSCP.WEB-DL.AAC2.0.H.264-THM.mkv 2022-09-03 17:34 - 2022-09-03 17:34 - 1693636067 _____ C:\Users\Michal\Downloads\Gold.Rush.Freddy.Dodges.Mine.Rescue.S01E03.The.Gold.Devil.1080p.DSCP.WEB-DL.AAC2.0.H.264-THM.mkv 2022-09-03 17:27 - 2022-09-03 17:27 - 1765143625 _____ C:\Users\Michal\Downloads\Gold.Rush.Freddy.Dodges.Mine.Rescue.S01E02.For.Pete's.Sake.1080p.DSCP.WEB-DL.AAC2.0.H.264-THM.mkv 2022-09-03 11:27 - 2022-09-03 11:27 - 945651542 _____ C:\Users\Michal\Downloads\The.Lord.of.the.Rings.The.Rings.of.Power.S01E02.1080p.10bit.WEBRip.6CH.x265.HEVC-PSA.mkv 2022-09-03 11:25 - 2022-09-03 11:26 - 1005230562 _____ C:\Users\Michal\Downloads\The.Lord.of.the.Rings.The.Rings.of.Power.S01E01.1080p.10bit.WEBRip.6CH.x265.HEVC-PSA.mkv 2022-09-02 15:14 - 2022-09-05 18:40 - 000000000 ____D C:\Users\Michal\Downloads\And.the.Baton.Was.Passed.2021.JAPANESE.1080p.BluRay.x265-VXT 2022-09-02 13:22 - 2022-09-02 13:22 - 000000000 ____D C:\Users\Michal\Downloads\[JPN] Kamisama No Ekohiiki 2022-09-01 21:29 - 2022-09-01 21:29 - 663210262 _____ C:\Users\Michal\Downloads\House.of.the.Dragon.S01E02.1080p.10bit.WEBRip.6CH.x265.HEVC-PSA.mkv 2022-09-01 21:26 - 2022-09-01 21:26 - 1062176032 _____ C:\Users\Michal\Downloads\House.of.the.Dragon.S01E01.1080p.10bit.WEBRip.6CH.x265.HEVC-PSA.mkv 2022-09-01 21:24 - 2022-09-01 21:24 - 517414021 _____ C:\Users\Michal\Downloads\She-Hulk.Attorney.at.Law.S01E01.1080p.10bit.WEBRip.6CH.x265.HEVC-PSA.mkv 2022-09-01 21:24 - 2022-09-01 21:24 - 376393565 _____ C:\Users\Michal\Downloads\She-Hulk.Attorney.at.Law.S01E03.1080p.10bit.WEBRip.6CH.x265.HEVC-PSA.mkv 2022-09-01 21:24 - 2022-09-01 21:24 - 296879759 _____ C:\Users\Michal\Downloads\She-Hulk.Attorney.at.Law.S01E02.1080p.10bit.WEBRip.6CH.x265.HEVC-PSA.mkv 2022-08-24 20:45 - 2022-08-24 20:45 - 2166017727 _____ C:\Users\Michal\Downloads\Soundtrack.1.S01E04.KOREAN.1080p.DSNP.WEBRip.DDP5.1.x264-HDCTV.mkv 2022-08-24 20:42 - 2022-08-24 20:43 - 1922402945 _____ C:\Users\Michal\Downloads\Soundtrack.1.S01E03.KOREAN.1080p.DSNP.WEBRip.DDP5.1.x264-HDCTV.mkv 2022-08-24 20:23 - 2022-08-24 20:23 - 1718750960 _____ C:\Users\Michal\Downloads\Soundtrack.1.S01E02.KOREAN.1080p.DSNP.WEBRip.DDP5.1.x264-HDCTV.mkv 2022-08-24 20:22 - 2022-08-24 20:23 - 1872990692 _____ C:\Users\Michal\Downloads\Soundtrack.1.S01E01.KOREAN.1080p.DSNP.WEBRip.DDP5.1.x264-HDCTV.mkv 2022-08-23 16:58 - 2022-08-23 22:26 - 000000000 ____D C:\Users\Michal\Downloads\Usotsuki.Paradox.2013.JAPANESE.1080p.WEBRip.x265-VXT 2022-08-22 17:20 - 2022-08-22 17:20 - 000000000 ____D C:\Users\Michal\Downloads\Love.Me.Love.Me.Not.2020.JAPANESE.1080p.BluRay.x265-VXT 2022-08-22 17:19 - 2022-08-22 17:19 - 000000000 ____D C:\Users\Michal\AppData\Local\SolidDocuments 2022-08-21 22:03 - 2022-08-29 18:58 - 000000000 ____D C:\Users\Michal\Downloads\A.Girl.At.My.Door.2014.KOREAN.1080p.BluRay.H264.AAC-VXT 2022-08-21 11:24 - 2022-08-21 11:25 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-08-21 11:24 - 2022-08-21 11:24 - 000000000 ____D C:\Program Files\Common Files\Adobe 2022-08-21 11:24 - 2022-08-21 11:24 - 000000000 ____D C:\Program Files\Adobe 2022-08-20 10:05 - 2022-08-20 10:05 - 001435642 _____ C:\Users\Michal\Downloads\Planer kuchni IKEA.pdf 2022-08-20 01:05 - 2022-08-20 01:05 - 000182913 _____ C:\Users\Michal\Downloads\in-flames-at-the-gates-imminence-orbit-culture-116893.pdf 2022-08-16 16:18 - 2022-08-16 16:31 - 000000000 ____D C:\Users\Michal\Downloads\The.Roundup.2022.KOREAN.PROPER.1080p.WEBRip.x265-VXT 2022-08-14 10:24 - 2022-08-15 18:34 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2022-08-14 10:24 - 2022-08-14 10:24 - 000001162 _____ C:\Users\Michal\Desktop\MSI Afterburner.lnk 2022-08-14 10:24 - 2022-08-14 10:24 - 000000000 ___HD C:\Windows\msdownld.tmp 2022-08-14 10:24 - 2022-08-14 10:24 - 000000000 ____D C:\Windows\SysWOW64\directx 2022-08-14 10:24 - 2022-08-14 10:24 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2022-08-14 10:24 - 2022-08-14 10:24 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2022-08-14 10:20 - 2022-08-14 10:20 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2022-08-13 14:31 - 2022-08-15 16:40 - 000000000 ____D C:\Users\Michal\Documents\Marvel's Spider-Man Remastered 2022-08-13 14:31 - 2022-08-13 14:31 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Insomniac Games 2022-08-13 14:31 - 2022-08-13 14:31 - 000000000 ____D C:\Users\Michal\.insomniac 2022-08-10 19:39 - 2022-08-10 19:39 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-08-10 19:39 - 2022-08-10 19:39 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2022-08-10 19:38 - 2022-08-10 19:38 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-08-10 19:38 - 2022-08-10 19:38 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-10 19:38 - 2022-08-10 19:38 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-09 18:02 - 2022-07-28 09:28 - 001905920 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-08-09 18:02 - 2022-07-28 09:28 - 001905920 _____ C:\Windows\system32\vulkaninfo.exe 2022-08-09 18:02 - 2022-07-28 09:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-08-09 18:02 - 2022-07-28 09:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-08-09 18:02 - 2022-07-28 09:27 - 001471992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-08-09 18:02 - 2022-07-28 09:27 - 001432320 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-08-09 18:02 - 2022-07-28 09:27 - 001432320 _____ C:\Windows\system32\vulkan-1.dll 2022-08-09 18:02 - 2022-07-28 09:27 - 001213432 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-08-09 18:02 - 2022-07-28 09:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-08-09 18:02 - 2022-07-28 09:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-08-09 18:02 - 2022-07-28 09:24 - 000865776 _____ C:\Windows\system32\nvofapi64.dll 2022-08-09 18:02 - 2022-07-28 09:24 - 000771576 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-08-09 18:02 - 2022-07-28 09:24 - 000687608 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-08-09 18:02 - 2022-07-28 09:23 - 002127872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-08-09 18:02 - 2022-07-28 09:23 - 001607680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-08-09 18:02 - 2022-07-28 09:23 - 001536504 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-08-09 18:02 - 2022-07-28 09:23 - 001182712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-08-09 18:02 - 2022-07-28 09:23 - 000714752 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-08-09 18:02 - 2022-07-28 09:22 - 010269688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-08-09 18:02 - 2022-07-28 09:22 - 008803832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-08-09 18:02 - 2022-07-28 09:22 - 005362672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-08-09 18:02 - 2022-07-28 09:22 - 003066872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-08-09 18:02 - 2022-07-28 09:22 - 001059328 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-08-09 18:02 - 2022-07-28 09:22 - 000845296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-08-09 18:02 - 2022-07-28 09:22 - 000456176 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-08-09 18:02 - 2022-07-28 09:21 - 005735920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-08-09 18:02 - 2022-07-28 09:21 - 000852976 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-08-09 18:02 - 2022-07-22 06:25 - 000093241 _____ C:\Windows\system32\nvinfo.pb 2022-08-09 18:02 - 2022-07-22 06:25 - 000043184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2022-08-07 11:41 - 2022-08-07 11:41 - 000000000 ____D C:\Users\Michal\AppData\LocalLow\NVIDIA ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2022-09-06 20:40 - 2021-10-06 19:15 - 000000000 ____D C:\FRST 2022-09-06 20:33 - 2021-04-22 12:36 - 000000000 ____D C:\Users\Michal\AppData\Local\CrashDumps 2022-09-06 20:33 - 2020-12-05 20:31 - 000841190 _____ C:\Windows\system32\PerfStringBackup.INI 2022-09-06 20:33 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-09-06 20:31 - 2021-04-22 12:43 - 000000000 ____D C:\Program Files (x86)\Google 2022-09-06 20:30 - 2021-04-22 14:17 - 000000000 ____D C:\Program Files (x86)\Steam 2022-09-06 20:29 - 2021-05-24 16:37 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32 2022-09-06 20:29 - 2021-05-24 16:37 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64 2022-09-06 20:29 - 2021-04-22 12:36 - 000000000 __SHD C:\Users\Michal\IntelGraphicsProfiles 2022-09-06 20:29 - 2021-01-24 11:54 - 000000000 ____D C:\ProgramData\NVIDIA 2022-09-06 20:29 - 2021-01-24 11:38 - 000000000 ____D C:\Intel 2022-09-06 20:29 - 2020-12-05 20:22 - 000008192 ___SH C:\DumpStack.log.tmp 2022-09-06 20:29 - 2020-11-19 09:30 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-09-06 20:29 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState 2022-09-06 20:29 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-09-06 20:29 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-09-06 20:29 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI 2022-09-06 20:18 - 2020-11-19 09:33 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-09-06 20:18 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-09-06 19:50 - 2021-04-22 12:36 - 000000000 ____D C:\Users\Michal\AppData\Local\Packages 2022-09-06 19:50 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-09-06 19:49 - 2020-11-19 09:30 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-09-06 19:38 - 2021-01-24 13:33 - 000000000 ____D C:\ProgramData\Common 2022-09-06 17:12 - 2022-02-27 12:02 - 000000000 ____D C:\ProgramData\OmApSvcBroker 2022-09-05 22:55 - 2021-04-22 16:14 - 000000000 ____D C:\Users\Michal\.smplayer 2022-09-05 22:55 - 2021-04-22 14:02 - 000000000 ____D C:\Users\Michal\AppData\Roaming\uTorrent 2022-09-05 22:31 - 2021-04-22 20:29 - 000000000 ____D C:\Users\Michal\Downloads\!soft 2022-09-05 17:21 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-09-05 17:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-09-04 08:54 - 2021-01-24 12:03 - 000000000 ____D C:\ProgramData\A-Volute 2022-09-03 19:58 - 2021-11-19 17:47 - 000153040 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2022-09-03 19:58 - 2021-04-22 12:53 - 002835920 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2022-09-03 19:58 - 2021-04-22 12:53 - 000443856 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2022-09-03 19:58 - 2021-04-22 12:53 - 000234984 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2022-09-03 19:58 - 2021-04-22 12:53 - 000198120 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2022-09-03 19:58 - 2021-04-22 12:53 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2022-09-03 19:58 - 2021-04-22 12:53 - 000067024 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2022-09-03 19:56 - 2021-04-22 12:38 - 000000000 ____D C:\Users\Michal\AppData\Local\PlaceholderTileLogoFolder 2022-09-03 18:52 - 2020-11-19 09:30 - 000447088 _____ C:\Windows\system32\FNTCACHE.DAT 2022-09-03 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-09-03 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-09-03 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-09-03 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-09-03 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-09-03 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs 2022-09-03 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning 2022-09-03 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-09-03 18:48 - 2020-11-19 09:32 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-09-03 14:21 - 2022-03-11 17:09 - 000002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2022-09-02 13:22 - 2021-10-03 18:36 - 000000000 ____D C:\Users\Michal\Downloads\!Koncerty 2022-08-30 09:12 - 2021-04-22 12:43 - 000003420 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-08-30 09:12 - 2021-04-22 12:43 - 000003296 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-08-29 18:57 - 2021-09-19 11:23 - 000000000 ____D C:\Users\Michal\AppData\Roaming\HandBrake 2022-08-26 15:44 - 2021-04-22 16:08 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy 2022-08-22 22:13 - 2021-04-22 12:44 - 000002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-22 17:19 - 2021-04-22 12:36 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Adobe 2022-08-21 11:25 - 2021-05-05 21:47 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2022-08-21 11:24 - 2021-05-05 21:47 - 000000000 ____D C:\ProgramData\Adobe 2022-08-15 14:15 - 2022-03-11 17:09 - 000003490 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA 2022-08-15 14:15 - 2022-03-11 17:09 - 000003366 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore 2022-08-15 08:27 - 2021-09-26 19:22 - 000000000 ____D C:\Program Files\7-Zip 2022-08-14 10:26 - 2021-04-22 13:15 - 000000000 ____D C:\Users\Michal\AppData\Local\D3DSCache 2022-08-14 10:20 - 2021-10-01 18:10 - 000000884 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2022-08-14 10:20 - 2021-10-01 18:10 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Notepad++ 2022-08-14 10:20 - 2021-10-01 18:10 - 000000000 ____D C:\Program Files\Notepad++ 2022-08-14 09:59 - 2021-12-12 18:00 - 000000000 ____D C:\Windows\Minidump 2022-08-14 09:59 - 2020-12-05 20:22 - 000000000 ____D C:\Windows\Panther 2022-08-14 09:59 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-08-13 14:31 - 2021-04-22 12:35 - 000000000 ____D C:\Users\Michal 2022-08-11 19:48 - 2020-12-05 21:28 - 000000000 ____D C:\Program Files\Microsoft Office 2022-08-10 22:50 - 2019-12-07 11:52 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-10 22:50 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-08-10 22:50 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-08-10 22:50 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-08-10 19:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2022-08-10 19:31 - 2021-04-22 13:17 - 000000000 ____D C:\Windows\system32\MRT 2022-08-10 19:30 - 2021-04-22 13:17 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-10 18:21 - 2021-04-30 22:46 - 000000000 ____D C:\Users\Michal\AppData\Local\NVIDIA 2022-08-07 11:43 - 2021-04-22 20:27 - 000000000 ____D C:\Users\Michal\Documents\Mieszkanie 2022-08-07 10:07 - 2021-06-27 20:23 - 000000000 ____D C:\Users\Michal\AppData\Local\PokerStars.EU 2022-08-07 10:07 - 2021-06-27 20:23 - 000000000 ____D C:\Program Files (x86)\PokerStars.UK ==================== Files in the root of some directories ======== 2021-04-22 14:27 - 2021-04-22 14:29 - 001065984 _____ () C:\Users\Michal\AppData\Local\file__0.localstorage ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================