Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-07-2023 Ran by nickj (administrator) on LAPTOP-4LBAS2EC (Razer Blade 14 - RZ09-0370) (21-07-2023 16:07:41) Running from C:\Users\nickj\Downloads\FRST64.exe Loaded Profiles: nickj Platform: Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) Language: English (United States) Default browser: Chrome Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe (C:\Program Files (x86)\EaseUS\ENS\ensserver.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\ENS\AliyunWrapExe.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\avpui.exe (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.82\identity_helper.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe (C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> The Qt Company Ltd.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m\radeonsoftware\QtWebEngineProcess.exe (DriverStore\FileRepository\u0371455.inf_amd64_2605bed45e270d20\B370101\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0371455.inf_amd64_2605bed45e270d20\B370101\atieclxx.exe (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <21> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0371455.inf_amd64_2605bed45e270d20\B370101\atiesrxx.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\ENS\ensserver.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\avp.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe (services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_5ca0829c4e804b3f\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (THX LTD. -> VisiSonics) C:\Windows\System32\VSSrv.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2327.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21508.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21508.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (VSSrv.exe ->) (THX LTD. -> VisiSonics) C:\Windows\System32\VSHelper.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_12da6ad5ef67a6ed\RtkAudUService64.exe [1262168 2021-05-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [138214768 2022-11-03] (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-3323940460-2476448031-453550397-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3524216 2021-12-10] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-3323940460-2476448031-453550397-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607496 2023-07-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3323940460-2476448031-453550397-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [479632 2021-12-19] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-3323940460-2476448031-453550397-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37137360 2023-06-06] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3323940460-2476448031-453550397-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4362600 2023-03-25] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3323940460-2476448031-453550397-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [7660496 2023-07-03] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3323940460-2476448031-453550397-1001\...\Run: [MicrosoftEdgeAutoLaunch_4067112C14B2850457CBDDD7DEA1E50C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113856 2023-07-13] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3323940460-2476448031-453550397-1001\...\MountPoints2: {71345c2a-a47f-11ed-a029-f44ee394eaa7} - "F:\SETUP.EXE" HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3524216 2021-12-10] (Razer USA Ltd. -> Razer Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC) Startup: C:\Users\nickj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2023-03-13] ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Scheduled Tasks (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {C926EF93-D86F-49C5-B351-765C3B2215B3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.) Task: {95A31E25-C601-43F4-A8D0-87FCBBE29134} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5308592 2023-07-13] (Microsoft Windows -> Microsoft Corporation) Task: {64CCC1D1-09D6-4111-8D65-82765ADB66BD} - System32\Tasks\GoogleUpdateTaskMachineCore{AA90D5CB-63F7-4D66-886A-DEAE946B4D87} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-04-08] (Google LLC -> Google LLC) Task: {F7249318-5F94-46FE-B14A-647C964EB5E8} - System32\Tasks\GoogleUpdateTaskMachineUA{FB260BA8-BB50-4429-B58B-D815C594AC43} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-04-08] (Google LLC -> Google LLC) Task: {F3E6D61C-5675-4F87-95ED-931872CED620} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [726288 2023-05-12] (Kaspersky Lab JSC -> AO Kaspersky Lab) Task: {63D9D701-DB7F-4446-973C-78423CCE0CFD} - System32\Tasks\kpm_tray.exe => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [623760 2021-12-02] (AO Kaspersky Lab -> AO Kaspersky Lab) Task: {6C00C2A3-0405-44E6-ACA0-A87CC0CC58B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616832 2023-07-14] (Microsoft Corporation -> Microsoft Corporation) Task: {7ADF8EF5-78B1-4318-A9E4-F81505A8A061} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616832 2023-07-14] (Microsoft Corporation -> Microsoft Corporation) Task: {1CD79FD3-4E51-482D-B3AE-A2BF2B30707B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-14] (Microsoft Corporation -> Microsoft Corporation) Task: {8DEB145D-10D4-4B1C-A851-77CBE51844BE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-14] (Microsoft Corporation -> Microsoft Corporation) Task: {4DB8C466-81C6-40A5-9DC3-6E91256543DF} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [164752 2023-07-06] (Microsoft Corporation -> Microsoft Corporation) Task: {EE9715D8-30D0-4EE2-B3A1-6C496EEE80F6} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4387016 2023-07-14] (Microsoft Corporation -> Microsoft Corporation) Task: {FA3D4EEA-F0EB-43A6-BC49-606AAB8C0194} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-16] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {FE4AD356-07C7-4224-9BDB-EC7B9B2C3BFB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-28] (Nvidia Corporation -> NVIDIA Corporation) Task: {D6CC2588-DE70-45DD-9801-84B999F7451E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {50A60B3D-7313-453D-B506-67C515A7B48F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F0A36BC6-B0D0-4323-B8A3-54DA73C8ABEA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {92304627-8959-4308-882D-E8702260D6F2} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9F3E742F-F056-4A01-8002-F17E4B6DD612} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C31161AF-3459-4F9F-ADB4-1976D68AD042} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4742AEA5-B190-417B-8604-978B6BC1ABEA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D45BBCC1-1B34-4B49-B61B-8ADA30D1A6A0} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125560 2023-07-15] (Microsoft Corporation -> Microsoft Corporation) Task: {91B88229-CB85-462E-9D54-54697547BDD3} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3323940460-2476448031-453550397-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125560 2023-07-15] (Microsoft Corporation -> Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{3e546cd7-5487-46c0-9326-8d9a38ec1290}: [DhcpNameServer] 192.168.15.1 Tcpip\..\Interfaces\{f177f56e-670f-403c-b886-6c1b9fb4b931}: [DhcpNameServer] 192.168.1.1 192.168.68.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\nickj\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-21] Edge Notifications: Default -> hxxps://ecythicrotic.co.in Edge Extension: (Kaspersky Protection) - C:\Users\nickj\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2023-06-15] Edge Extension: (Edge relevant text changes) - C:\Users\nickj\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-20] Edge HKU\S-1-5-21-3323940460-2476448031-453550397-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-09] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-09] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-07-03] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-07-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-07-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-3323940460-2476448031-453550397-1001: connective.be/BrowserPlugin -> C:\Users\nickj\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2021-07-05] (Connective n.v.) [File not signed] Chrome: ======= CHR Profile: C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default [2023-07-21] CHR Notifications: Default -> hxxps://www.repco.com.au; hxxps://www.tijd.be CHR Extension: (Magic Actions for YouTube™) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2023-01-19] CHR Extension: (Just Black) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-12-12] CHR Extension: (Kaspersky Protection) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2023-06-11] CHR Extension: (MEGA) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2023-07-21] CHR Extension: (YouTube Control Center) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\boplfaeblpnpahldaijlikpgdbgdmhko [2022-10-29] CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-07-14] CHR Extension: (Google Docs Offline) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-20] CHR Extension: (Connective signing extension) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2023-03-17] CHR Extension: (SmartVideo For YouTube™) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\lnkdbjbjpnpjeciipoaflmpcddinpjjp [2022-10-29] CHR Extension: (Chrome Web Store Payments) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-11] CHR Extension: (Privacy Test) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2022-07-02] CHR Extension: (Outlook.com) - C:\Users\nickj\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2022-01-13] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.) R2 AVP21.13; C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\avp.exe [32008 2023-04-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851240 2023-07-14] (Microsoft Corporation -> Microsoft Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4958096 2021-12-19] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2022-02-22] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.132.0625.0001\FileSyncHelper.exe [3447688 2023-07-15] (Microsoft Corporation -> Microsoft Corporation) S3 klvssbridge64_21.13; C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.13\x64\vssbridge64.exe [501008 2023-04-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [375440 2021-12-02] (AO Kaspersky Lab -> AO Kaspersky Lab) S4 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-12-11] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9266864 2023-07-13] (Malwarebytes Inc. -> Malwarebytes) R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-11-21] (nordvpn s.a. -> nordvpn S.A.) R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [254328 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.132.0625.0001\OneDriveUpdaterService.exe [3783544 2023-07-15] (Microsoft Corporation -> Microsoft Corporation) S4 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1142808 2021-10-20] (Razer USA Ltd. -> Razer Inc.) S4 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [451608 2021-11-17] (Razer USA Ltd. -> Razer Inc.) S4 Razer Chroma Stream Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe [1347640 2021-10-19] (Razer USA Ltd. -> Razer Inc.) S4 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-10-19] (Razer USA Ltd. -> Razer Inc) S4 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294520 2021-12-10] (Razer USA Ltd. -> Razer Inc.) S4 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533824 2021-10-21] (Razer USA Ltd. -> Razer Inc.) R2 VSSrv; C:\Windows\System32\VSSrv.exe [2430008 2023-06-23] (THX LTD. -> VisiSonics) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-11] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_5ca0829c4e804b3f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_5ca0829c4e804b3f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem S4 rsSyncSvc; C:\Program Files\RAVAntivirus\x64\rsSyncSvc.exe -rpn:ravantivirus -lpn:rav_antivirus -url:hxxps://update.reasonsecurity.com/v1/live ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 AMDAfdAudioService; C:\Windows\System32\DriverStore\FileRepository\amdacpafd.inf_amd64_900bfe66302ff6f3\amdacpafd.sys [354688 2021-09-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [41376 2021-07-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0371455.inf_amd64_2605bed45e270d20\B370101\amdkmdag.sys [80463176 2021-09-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [240264 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-12-19] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [63696 2021-12-19] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2023-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R1 klbackupdisk.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\klbackupdisk.sys [112936 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt.Kaspersky4Win-21-13; C:\Windows\System32\DRIVERS\Kaspersky4Win-21-13\klbackupflt.sys [234216 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\kldisk.sys [125736 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [53576 2023-04-15] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 KLFLT.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\klflt.sys [548072 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse.Kaspersky4Win-21-13; C:\Windows\System32\DRIVERS\Kaspersky4Win-21-13\klgse.sys [729136 2023-06-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLHK.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\klhk.sys [1822784 2023-06-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klids.Kaspersky4Win-21-13; C:\ProgramData\Kaspersky Lab\AVP21.13\Bases\klids.sys [235704 2023-06-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF.Kaspersky4Win-21-13; C:\Windows\System32\DRIVERS\Kaspersky4Win-21-13\klif.sys [1163544 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [98552 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klkbdflt.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\klkbdflt.sys [115960 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\klmouflt.sys [113448 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd.Kaspersky4Win-21-13; C:\Windows\System32\DRIVERS\Kaspersky4Win-21-13\klpd.sys [80672 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\klpnpflt.sys [98040 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 kltap; C:\Windows\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_Kaspersky4Win-21-13_arkmon; C:\Windows\System32\Drivers\klupd_Kaspersky4Win-21-13_arkmon.sys [368416 2023-06-28] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_Kaspersky4Win-21-13_klark; C:\Windows\System32\Drivers\klupd_Kaspersky4Win-21-13_klark.sys [350848 2023-05-22] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_Kaspersky4Win-21-13_klbg; C:\Windows\System32\Drivers\klupd_Kaspersky4Win-21-13_klbg.sys [179864 2023-05-22] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_Kaspersky4Win-21-13_mark; C:\Windows\System32\Drivers\klupd_Kaspersky4Win-21-13_mark.sys [259440 2023-05-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\klwfp.sys [179960 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\klwtp.sys [415480 2023-04-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps.Kaspersky4Win-21-13; C:\Windows\system32\DRIVERS\Kaspersky4Win-21-13\kneps.sys [340208 2023-06-06] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2023-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [199640 2023-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [77752 2023-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [181984 2023-07-21] (Malwarebytes Inc. -> Malwarebytes) R2 NDivert; C:\Program Files\NordVPN\7.10.4.0\Drivers\NDivert.sys [131472 2023-05-24] (nordvpn s.a. -> Nordvpn S.A.) R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2022-02-22] (nordvpn s.a. -> TEFINCOM S.A.) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [240152 2023-06-09] (NVIDIA Corporation -> NVIDIA Corporation) S3 R0RazerSynapseService; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.sys [14544 2022-03-28] (Noriyuki MIYAZAKI -> OpenLibSys.org) R1 ReasonCamFilter; C:\Windows\System32\DRIVERS\ReasonCamFilter.sys [49992 2021-12-19] (Reason CyberSecurity Inc. -> Reason Software Company) S3 RtkUsbAD_03F00269; C:\Windows\system32\drivers\RtUsbA64_03F00269.sys [428840 2020-06-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [54632 2021-03-31] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0270; C:\Windows\System32\drivers\RzDev_0270.sys [55368 2021-01-19] (Razer USA Ltd. -> Razer Inc) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2022-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [473376 2022-12-11] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-11] (Microsoft Windows -> Microsoft Corporation) S3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29592 2022-05-07] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-06-08] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2023-07-21 16:07 - 2023-07-21 16:08 - 000034684 _____ C:\Users\nickj\Downloads\FRST.txt 2023-07-21 16:05 - 2023-07-21 16:07 - 002384384 _____ (Farbar) C:\Users\nickj\Downloads\FRST64.exe 2023-07-21 15:58 - 2023-07-21 15:58 - 000181984 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2023-07-19 23:14 - 2023-07-19 23:14 - 000001643 _____ C:\Users\nickj\Desktop\castle.exe - Shortcut.lnk 2023-07-19 22:35 - 2023-07-19 22:40 - 195696114 _____ C:\Users\nickj\Downloads\Castle.Crashers.v2.8.rar 2023-07-19 15:13 - 2023-07-19 15:13 - 000000924 _____ C:\Users\nickj\Desktop\BitTorrent.lnk 2023-07-19 15:13 - 2023-07-19 15:13 - 000000904 _____ C:\Users\nickj\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk 2023-07-19 14:44 - 2023-07-19 14:45 - 000000000 ____D C:\Users\nickj\Downloads\Superwog - Season 1 1080p 2023-07-19 14:37 - 2023-07-19 14:37 - 000000000 ____D C:\Users\nickj\Downloads\The Legend of Zelda - Tears of the Kingdom (v2.5.3 + Switch Emulators + MODs, MULTi12) 2023-07-19 14:34 - 2023-07-19 14:34 - 000000915 _____ C:\Users\nickj\Desktop\qBittorrent.lnk 2023-07-19 14:16 - 2023-07-19 14:16 - 000000000 ____D C:\Users\nickj\Downloads\Cyberpunk.2077.Update.v1.31-CODEX 2023-07-19 14:15 - 2023-07-19 14:16 - 032779052 _____ (The qBittorrent project) C:\Users\nickj\Downloads\qbittorrent_4.5.4_x64_setup.exe 2023-07-18 19:45 - 2023-07-18 19:45 - 340753206 _____ C:\Users\nickj\Downloads\Firmware 16.0.3 (Rebootless Update 2).zip 2023-07-15 19:30 - 2023-07-15 19:30 - 000001449 _____ C:\Users\nickj\Desktop\Launch.exe - Shortcut.lnk 2023-07-15 11:04 - 2023-07-15 11:04 - 000000000 ____D C:\Users\nickj\AppData\Local\Kena 2023-07-15 10:15 - 2023-07-15 10:15 - 000001479 _____ C:\Users\Public\Desktop\Kena - Bridge of Spirits.lnk 2023-07-15 09:30 - 2023-07-15 10:19 - 571748351 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E09.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-14 18:59 - 2023-07-14 18:59 - 000000218 _____ C:\Users\nickj\AppData\Local\recently-used.xbel 2023-07-14 18:51 - 2023-07-14 18:51 - 336197698 _____ C:\Users\nickj\Downloads\Firmware 14.1.2 (Rebootless Update 3).zip 2023-07-14 18:51 - 2023-07-14 18:51 - 000000000 ____D C:\Users\nickj\AppData\Local\gtk-3.0 2023-07-14 18:45 - 2023-07-14 18:57 - 000000000 ____D C:\Users\nickj\AppData\Roaming\Ryujinx 2023-07-14 18:45 - 2023-07-14 18:45 - 000001303 _____ C:\Users\nickj\Desktop\Ryujinx.exe - Shortcut.lnk 2023-07-14 18:22 - 2023-07-15 10:17 - 621943386 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E08.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-14 18:20 - 2023-07-14 18:20 - 000000000 ____D C:\Users\nickj\Documents\CAPCOM 2023-07-14 14:21 - 2023-07-14 14:21 - 000000000 ____D C:\Users\nickj\AppData\Roaming\Warner Bros. Interactive Entertainment 2023-07-14 14:20 - 2023-07-14 14:20 - 000001240 _____ C:\Users\Public\Desktop\Play LEGO Star Wars The Skywalker Saga.lnk 2023-07-14 14:20 - 2023-07-14 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO Star Wars The Skywalker Saga 2023-07-14 13:23 - 2023-07-14 15:08 - 000000000 ____D C:\Users\nickj\AppData\Roaming\XXL1 2023-07-14 12:57 - 2023-07-14 12:57 - 000001615 _____ C:\Users\Public\Desktop\Asterix & Obelix XXL - Romastered.lnk 2023-07-13 11:29 - 2023-07-13 11:29 - 002285204 _____ C:\Windows\Minidump\071323-8171-01.dmp 2023-07-13 10:19 - 2023-07-13 10:19 - 000000000 ___HD C:\$WinREAgent 2023-07-12 20:30 - 2023-07-15 10:19 - 642985680 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E07.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-12 20:22 - 2023-07-15 10:17 - 896786083 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E06.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-12 19:57 - 2023-07-15 09:14 - 629952550 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E05.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-12 19:56 - 2023-07-15 10:04 - 1062834352 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E03.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-12 19:56 - 2023-07-15 09:29 - 772049673 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E02.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-12 19:56 - 2023-07-12 20:29 - 506672309 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E04.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-12 19:55 - 2023-07-12 20:22 - 986392941 _____ C:\Users\nickj\Downloads\The.Last.of.Us.S01E01.1080p.HEVC.x265-MeGusta[eztv.re].mkv 2023-07-11 19:25 - 2023-07-11 19:25 - 000000000 ____D C:\Users\nickj\AppData\Local\Cemu 2023-07-11 17:06 - 2023-07-11 17:06 - 000001899 _____ C:\Users\nickj\Desktop\YuzuModDownloader.exe - Shortcut.lnk 2023-07-11 08:00 - 2023-07-11 08:00 - 000001472 _____ C:\Users\nickj\Desktop\EtG.exe - Shortcut.lnk 2023-07-11 08:00 - 2023-07-11 08:00 - 000000060 _____ C:\Users\nickj\AppData\Roaming\~SiMPLEX.ini 2023-07-11 07:59 - 2023-07-11 07:59 - 000001660 _____ C:\Users\nickj\Desktop\Huntdown.exe - Shortcut.lnk 2023-07-11 07:59 - 2023-07-11 07:59 - 000001617 _____ C:\Users\nickj\Desktop\NStW_x64.exe - Shortcut.lnk 2023-07-09 22:33 - 2023-07-12 21:25 - 000000000 ____D C:\Users\nickj\Downloads\A Perfect Planet (2020) Season 1 S01 (2160p BluRay x265 HEVC 10bit HDR AAC 7.1 Silence) 2023-07-09 20:20 - 2023-07-09 20:20 - 000001542 _____ C:\Users\nickj\Desktop\Little Nightmares.lnk 2023-07-09 20:20 - 2023-07-09 20:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Little Nightmares 2023-07-09 20:20 - 2023-07-09 20:20 - 000000000 ____D C:\Program Files (x86)\Little Nightmares 2023-07-09 19:09 - 2023-07-09 19:35 - 000000000 ____D C:\Users\nickj\Downloads\The.Remains.of.the.Day.1993.1080p.BluRay.x264.anoXmous 2023-07-09 17:58 - 2023-07-09 17:58 - 000000000 ____D C:\Users\nickj\AppData\LocalLow\Coffee Stain Publishing 2023-07-07 14:16 - 2023-07-07 14:16 - 000000000 ____D C:\Users\nickj\AppData\Roaming\Microsoft\PowerPoint 2023-07-02 16:55 - 2023-06-26 18:15 - 000848992 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2023-07-02 16:55 - 2023-06-26 18:15 - 000848992 _____ C:\Windows\system32\vulkaninfo.exe 2023-07-02 16:55 - 2023-06-26 18:15 - 000713824 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-07-02 16:55 - 2023-06-26 18:15 - 000713824 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2023-07-02 16:55 - 2023-06-26 18:14 - 001227312 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2023-07-02 16:55 - 2023-06-26 18:14 - 000653408 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2023-07-02 16:55 - 2023-06-26 18:14 - 000653408 _____ C:\Windows\system32\vulkan-1.dll 2023-07-02 16:55 - 2023-06-26 18:14 - 000637024 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2023-07-02 16:55 - 2023-06-26 18:14 - 000637024 _____ C:\Windows\SysWOW64\vulkan-1.dll 2023-07-02 16:55 - 2023-06-26 18:10 - 000934448 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2023-07-02 16:55 - 2023-06-26 18:10 - 000669232 _____ C:\Windows\system32\nvofapi64.dll 2023-07-02 16:55 - 2023-06-26 18:10 - 000504320 _____ C:\Windows\SysWOW64\nvofapi.dll 2023-07-02 16:55 - 2023-06-26 18:09 - 002168368 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2023-07-02 16:55 - 2023-06-26 18:09 - 001621528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2023-07-02 16:55 - 2023-06-26 18:09 - 001538048 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2023-07-02 16:55 - 2023-06-26 18:09 - 001195520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2023-07-02 16:55 - 2023-06-26 18:09 - 000992816 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2023-07-02 16:55 - 2023-06-26 18:09 - 000777216 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2023-07-02 16:55 - 2023-06-26 18:09 - 000769024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2023-07-02 16:55 - 2023-06-26 18:08 - 000459288 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2023-07-02 16:54 - 2023-06-26 18:08 - 014520344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2023-07-02 16:54 - 2023-06-26 18:08 - 012066328 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2023-07-02 16:54 - 2023-06-26 18:08 - 006190640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2023-07-02 16:54 - 2023-06-26 18:08 - 005844504 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2023-07-02 16:54 - 2023-06-26 18:08 - 005550640 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll 2023-07-02 16:54 - 2023-06-26 18:08 - 003482648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2023-07-02 16:54 - 2023-06-26 18:07 - 000852976 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2023-07-02 16:54 - 2023-06-26 18:06 - 006736984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2023-07-02 16:54 - 2023-06-24 10:50 - 000107938 _____ C:\Windows\system32\nvinfo.pb 2023-06-25 15:25 - 2023-06-07 15:38 - 000341861 ____T C:\Users\nickj\Downloads\Successful INT-MEM - NOTICE - MIGMEM 2300081 Nick Gino J. Debruyne (1).pdf 2023-06-23 09:28 - 2023-06-23 09:28 - 010750560 _____ (THX Ltd.) C:\Windows\system32\spatial-config-util.exe 2023-06-23 09:28 - 2023-06-23 09:28 - 006576112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\THXOutAPO-AVX2-v2.6.dll 2023-06-23 09:28 - 2023-06-23 09:28 - 000042080 _____ () C:\Windows\system32\VSSrvInit.exe ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2023-07-21 16:07 - 2023-02-04 16:54 - 000000000 ____D C:\FRST 2023-07-21 16:07 - 2021-12-19 14:34 - 000000000 ____D C:\Windows\SystemTemp 2023-07-21 16:07 - 2021-12-11 17:19 - 000000000 ____D C:\Program Files (x86)\Google 2023-07-21 16:05 - 2021-06-09 17:54 - 000840598 _____ C:\Windows\system32\PerfStringBackup.INI 2023-07-21 16:05 - 2019-12-07 18:43 - 000000000 ____D C:\Windows\INF 2023-07-21 15:59 - 2021-06-09 17:51 - 000000000 ____D C:\ProgramData\NVIDIA 2023-07-21 15:58 - 2023-04-26 13:34 - 000000000 ____D C:\Users\nickj\AppData\Local\Malwarebytes 2023-07-21 15:58 - 2022-01-15 19:03 - 000000000 ____D C:\Users\nickj\AppData\Roaming\Microsoft\Word 2023-07-21 15:58 - 2021-06-09 17:46 - 000008192 ___SH C:\DumpStack.log.tmp 2023-07-21 15:58 - 2021-06-09 17:46 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-07-21 15:58 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2023-07-21 15:58 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\ServiceState 2023-07-21 15:58 - 2019-12-07 18:44 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-07-21 15:58 - 2019-12-07 18:33 - 001048576 _____ C:\Windows\system32\config\BBI 2023-07-21 15:57 - 2021-06-09 17:52 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-07-21 15:56 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\AppReadiness 2023-07-21 15:53 - 2022-08-01 15:38 - 000000000 ____D C:\Users\nickj\AppData\Roaming\Microsoft\Teams 2023-07-21 15:52 - 2021-06-09 17:46 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-07-21 15:18 - 2021-12-11 17:16 - 000000000 ____D C:\Users\nickj\AppData\Local\ConnectedDevicesPlatform 2023-07-21 14:46 - 2019-12-07 18:44 - 000000000 ___HD C:\Program Files\WindowsApps 2023-07-21 13:59 - 2023-04-01 12:19 - 000004166 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{A46D858E-947D-4B0E-8ADE-069A9ABA9917} 2023-07-20 21:52 - 2023-06-20 18:04 - 000002242 _____ C:\Users\nickj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk 2023-07-20 21:52 - 2023-06-20 18:04 - 000002234 _____ C:\Users\nickj\Desktop\yuzu.lnk 2023-07-20 18:34 - 2019-12-07 18:33 - 000032768 _____ C:\Windows\system32\config\ELAM 2023-07-20 09:37 - 2022-09-24 10:39 - 000002364 _____ C:\Users\nickj\Desktop\Microsoft Teams.lnk 2023-07-20 09:37 - 2022-09-24 10:10 - 000002372 _____ C:\Users\nickj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2023-07-19 23:15 - 2022-01-15 15:04 - 000000000 ____D C:\Users\nickj\AppData\Roaming\BitTorrent 2023-07-19 23:14 - 2022-01-23 09:42 - 000000000 ____D C:\Users\nickj\Downloads\Games 2023-07-19 23:01 - 2022-01-15 15:05 - 000000000 ____D C:\Users\nickj\AppData\Local\BitTorrentHelper 2023-07-19 22:33 - 2021-12-27 07:07 - 000000000 ____D C:\Users\nickj\AppData\Local\CrashDumps 2023-07-19 15:17 - 2021-12-11 17:28 - 000000000 ____D C:\Users\nickj\AppData\Roaming\qBittorrent 2023-07-19 14:45 - 2022-08-22 22:22 - 000000000 ____D C:\Users\nickj\Downloads\Fargo (2014) Season 1 S01 (1080p BluRay x265 HEVC 10bit AAC 5.1 Silence) 2023-07-19 14:42 - 2022-10-28 20:50 - 000000000 ____D C:\Users\nickj\AppData\Roaming\vlc 2023-07-19 10:19 - 2021-12-11 17:16 - 000000000 ____D C:\Users\nickj\AppData\Local\Packages 2023-07-19 09:09 - 2021-12-11 17:16 - 000000000 ____D C:\Users\nickj\AppData\Local\D3DSCache 2023-07-18 19:37 - 2022-07-03 18:07 - 000000000 ____D C:\Games 2023-07-18 17:53 - 2022-02-23 12:59 - 000000000 ____D C:\Users\nickj\Downloads\covid visa 2023-07-17 22:09 - 2022-10-03 14:19 - 000000000 ____D C:\Users\nickj\Desktop\Case notes 2023-07-15 20:19 - 2022-01-21 10:55 - 000000000 ____D C:\Users\nickj\AppData\Roaming\FLT 2023-07-15 19:30 - 2023-03-29 14:49 - 000000000 ____D C:\Program Files (x86)\Steam 2023-07-15 14:18 - 2023-02-13 16:19 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-07-15 10:48 - 2023-02-11 12:00 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-07-15 10:48 - 2023-02-11 12:00 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-07-15 10:48 - 2021-12-11 17:18 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3323940460-2476448031-453550397-1001 2023-07-15 10:24 - 2022-01-21 17:05 - 000000000 ___HD C:\Windows\msdownld.tmp 2023-07-15 10:24 - 2022-01-21 17:05 - 000000000 ____D C:\Windows\SysWOW64\directx 2023-07-15 10:23 - 2022-08-02 08:39 - 000000000 ____D C:\Program Files (x86)\DODI-Repacks 2023-07-15 09:05 - 2023-01-16 19:15 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-07-15 09:05 - 2021-06-09 17:46 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-07-14 22:05 - 2022-05-07 07:02 - 000000000 ____D C:\Users\nickj\AppData\Local\NordVPN 2023-07-14 18:22 - 2022-12-22 18:28 - 000000000 ____D C:\Users\nickj\AppData\Roaming\Goldberg SteamEmu Saves 2023-07-14 14:08 - 2021-06-09 17:49 - 000000000 ____D C:\ProgramData\Package Cache 2023-07-14 13:07 - 2023-01-22 16:44 - 000000000 ____D C:\Program Files\Microsoft Office 2023-07-14 13:06 - 2022-10-14 09:46 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2023-07-14 13:06 - 2022-10-14 09:46 - 000002069 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2023-07-14 13:06 - 2022-01-16 05:53 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2023-07-14 12:54 - 2021-12-11 17:13 - 000000000 ____D C:\Users\nickj 2023-07-13 11:30 - 2022-01-09 16:18 - 000000000 ____D C:\Windows\Minidump 2023-07-13 11:29 - 2023-04-15 13:52 - 1759703343 _____ C:\Windows\MEMORY.DMP 2023-07-13 10:28 - 2021-06-09 17:46 - 000460080 _____ C:\Windows\system32\FNTCACHE.DAT 2023-07-13 10:27 - 2019-12-07 18:44 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2023-07-13 10:27 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\SysWOW64\setup 2023-07-13 10:27 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\SystemResources 2023-07-13 10:27 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\system32\setup 2023-07-13 10:27 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2023-07-13 10:27 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\system32\oobe 2023-07-13 10:27 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\bcastdvr 2023-07-13 10:27 - 2019-12-07 18:33 - 000000000 ____D C:\Windows\CbsTemp 2023-07-13 10:23 - 2021-06-09 17:48 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2023-07-13 10:18 - 2021-12-14 16:06 - 000000000 ____D C:\Windows\system32\MRT 2023-07-13 10:16 - 2021-12-13 19:23 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2023-07-11 14:53 - 2019-12-07 18:44 - 000000000 ____D C:\Windows\LiveKernelReports 2023-07-11 08:19 - 2022-01-09 16:24 - 000000000 ____D C:\Users\nickj\AppData\Local\UnrealEngine 2023-07-11 07:58 - 2022-09-17 17:35 - 000001311 _____ C:\Users\nickj\Desktop\Cemu.exe - Shortcut.lnk 2023-07-09 21:50 - 2023-06-20 18:02 - 000000000 ____D C:\Users\nickj\AppData\Local\yuzu 2023-07-09 21:50 - 2021-12-12 12:28 - 000000000 ____D C:\Users\nickj\AppData\Local\NVIDIA 2023-07-07 14:21 - 2022-09-13 11:20 - 000000000 ____D C:\Users\nickj\Downloads\New ROADS 2023-07-06 07:16 - 2021-06-09 17:46 - 000003536 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-07-06 07:16 - 2021-06-09 17:46 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-06-30 09:53 - 2023-06-08 10:14 - 000000000 ____D C:\Users\nickj\Downloads\NBA.2023.The Finals 2023-06-29 19:31 - 2023-05-12 09:18 - 000000000 ____D C:\Windows\system32\Drivers\Kaspersky4Win-21-13 2023-06-29 07:01 - 2022-05-07 07:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec 2023-06-29 07:01 - 2022-05-07 07:02 - 000000000 ____D C:\Program Files\NordVPN 2023-06-29 07:01 - 2022-04-08 21:37 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-06-29 07:01 - 2022-04-08 21:37 - 000002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-06-26 18:14 - 2023-02-14 09:16 - 001487384 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2023-06-26 18:06 - 2022-04-10 20:25 - 007858072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2023-06-25 16:19 - 2022-08-02 09:40 - 000000000 ____D C:\Users\nickj\AppData\Roaming\EMPRESS 2023-06-25 16:19 - 2022-02-06 17:04 - 000000000 ____D C:\Users\nickj\Documents\Square Enix 2023-06-23 09:28 - 2023-05-03 08:07 - 002430008 _____ (VisiSonics) C:\Windows\system32\VSSrv.exe 2023-06-23 09:28 - 2023-05-03 08:07 - 000310840 _____ (VisiSonics) C:\Windows\system32\VSHelper.exe 2023-06-21 11:29 - 2022-10-22 07:37 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe 2023-06-21 11:29 - 2022-10-22 07:37 - 000062968 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe 2023-06-21 11:29 - 2021-12-12 13:14 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2023-06-21 11:29 - 2021-12-11 17:32 - 002807296 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2023-06-21 11:29 - 2021-12-11 17:32 - 000493048 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2023-06-21 11:29 - 2021-12-11 17:32 - 000247288 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2023-06-21 11:29 - 2021-12-11 17:32 - 000202232 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2023-06-21 11:29 - 2021-12-11 17:32 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll ==================== Files in the root of some directories ======== 2023-03-29 14:47 - 2023-03-29 14:47 - 000012288 _____ () C:\Users\nickj\AppData\Roaming\emp.bin 2023-07-11 08:00 - 2023-07-11 08:00 - 000000060 _____ () C:\Users\nickj\AppData\Roaming\~SiMPLEX.ini 2023-07-14 18:59 - 2023-07-14 18:59 - 000000218 _____ () C:\Users\nickj\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================