Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-07-2022
Ran by CYBER (administrator) on CYBER (Acer Swift SF114-32) (24-07-2022 11:07:23)
Running from C:\Users\nutsa\OneDrive\Desktop
Loaded Profiles: CYBER
Platform: Microsoft Windows 11 Home Version 21H2 22000.832 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Support.com, Inc. -> SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9b07ffc7fa5e6661\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9b07ffc7fa5e6661\IntelCpHeciSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.549981c3f5f10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2020-12-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618096 2020-12-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-3951519236-3290055131-3229015962-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [10994528 2022-06-21] (Support.com, Inc. -> SUPERAntiSpyware)
HKU\S-1-5-21-3951519236-3290055131-3229015962-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [176128 2022-05-10] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-20] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {255C8F46-0BB6-4BBE-84CF-F4E4B56D1F4E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {26212E8D-8D48-4242-BCE1-3D7BDB39F1AE} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [217088 2022-07-24] (Microsoft Windows -> Microsoft Corporation)
Task: {26E78909-AE46-4F93-A08B-E9F4EB992175} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {32E9B141-0B3C-4425-B21A-105401FCE2BA} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {58E50062-9086-4457-882D-889C65D31084} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [217088 2022-07-24] (Microsoft Windows -> Microsoft Corporation)
Task: {5CBD3320-13E5-468E-BC93-57981D2CA12B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3951519236-3290055131-3229015962-1001UA => C:\Users\nutsa\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (No File)
Task: {7BD5C9C3-A5E9-454B-AFE0-859E6BFB7C67} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {8B3C47E0-A02B-4214-8FBB-F6B1B25699AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8D6CA196-9F37-4E8D-8B30-5320A6267FE8} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3951519236-3290055131-3229015962-1001Core => C:\Users\nutsa\AppData\Local\Google\Update\GoogleUpdate.exe /c (No File)
Task: {9E094E16-9083-46BF-8F9B-41ECCBF3D9B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BA91D9BD-53A7-497B-846A-89F5F8CFE19A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2022-06-20] (Google LLC -> Google LLC)
Task: {D72A1A95-6989-4255-801F-2ADE7B34FC01} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2022-06-20] (Google LLC -> Google LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{1a453473-ab08-4f60-aa87-d2de20019bbd}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Edge:
=======
Edge Profile: C:\Users\nutsa\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-14]
FireFox:
========
FF DefaultProfile: wt8spyzs.default
FF ProfilePath: C:\Users\nutsa\AppData\Roaming\Mozilla\Firefox\Profiles\wt8spyzs.default [2022-06-20]
FF ProfilePath: C:\Users\nutsa\AppData\Roaming\Mozilla\Firefox\Profiles\1omi4txb.default-release-1657635647205 [2022-07-22]
FF Homepage: Mozilla\Firefox\Profiles\1omi4txb.default-release-1657635647205 ->
www.kiro7.com
FF Notifications: Mozilla\Firefox\Profiles\1omi4txb.default-release-1657635647205 -> hxxps://www.instagram.com
FF Extension: (uBlock Origin) - C:\Users\nutsa\AppData\Roaming\Mozilla\Firefox\Profiles\1omi4txb.default-release-1657635647205\Extensions\
uBlock0@raymondhill.net.xpi [2022-07-12]
FF Extension: (Colour-Spectrum) - C:\Users\nutsa\AppData\Roaming\Mozilla\Firefox\Profiles\1omi4txb.default-release-1657635647205\Extensions\{03cbb341-1206-45d2-8011-8152310ce478}.xpi [2022-07-12]
Chrome:
=======
CHR Profile: C:\Users\nutsa\AppData\Local\Google\Chrome\User Data\Default [2022-07-24]
CHR Notifications: Default -> hxxps://mail.yahoo.com; hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://www.kiro7.com/
CHR StartupUrls: Default -> "hxxps://www.kiro7.com/"
CHR Extension: (Earth and Moon) - C:\Users\nutsa\AppData\Local\Google\Chrome\User Data\Default\Extensions\afmfhbdfjlfminjglfhcgcblgicnfcka [2022-06-20]
CHR Extension: (WOT Website Security & Privacy Protection) - C:\Users\nutsa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2022-06-20]
CHR Extension: (uBlock Origin) - C:\Users\nutsa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-06-20]
CHR Extension: (Google Docs Offline) - C:\Users\nutsa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-19]
CHR Extension: (Video DownloadHelper) - C:\Users\nutsa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2022-06-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\nutsa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-20]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2021-01-09] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\System32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [31896 2021-08-08] (Acer Incorporated -> Acer Incorporated)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-05-10] (Microsoft Corporation) [File not signed]
S3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2020-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-22] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-22] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-07-24 11:07 - 2022-07-24 11:07 - 000000000 ____D C:\FRST
2022-07-24 10:41 - 2022-07-24 10:41 - 000327680 _____ C:\WINDOWS\system32\pnpdiag.dll
2022-07-24 10:41 - 2022-07-24 10:41 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-07-24 10:41 - 2022-07-24 10:41 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-07-24 10:41 - 2022-07-24 10:41 - 000015022 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-07-24 10:40 - 2022-07-24 10:40 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-07-24 10:35 - 2022-07-24 10:35 - 000000000 ___HD C:\$WinREAgent
2022-07-21 18:51 - 2022-07-24 10:52 - 078643200 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-07-12 10:42 - 2022-07-12 10:42 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-12 10:42 - 2022-07-12 10:42 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-12 07:20 - 2022-07-12 07:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-07-12 07:20 - 2022-07-12 07:20 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-07-12 07:20 - 2022-07-12 07:20 - 000000997 _____ C:\Users\Public\Desktop\Firefox.lnk
2022-07-12 07:20 - 2022-07-12 07:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-07-12 07:20 - 2022-07-12 07:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-07-06 07:17 - 2022-07-21 18:51 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-06-29 08:33 - 2022-06-29 08:33 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\6157577C.sys
2022-06-29 08:33 - 2022-06-29 08:33 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-06-29 08:32 - 2022-06-29 09:52 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2022-06-29 08:32 - 2022-06-29 08:32 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2022-06-28 07:46 - 2022-06-28 07:46 - 000000000 ____D C:\ProgramData\Sophos
2022-06-28 07:45 - 2022-06-28 07:45 - 000002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2022-06-28 07:45 - 2022-06-28 07:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2022-06-28 07:45 - 2022-06-28 07:45 - 000000000 ____D C:\Program Files (x86)\Sophos
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-07-24 11:07 - 2022-06-20 18:02 - 000000000 ____D C:\WINDOWS\INF
2022-07-24 10:57 - 2022-06-20 17:27 - 000848772 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-24 10:55 - 2022-06-20 18:00 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-24 10:54 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-07-24 10:54 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-24 10:54 - 2022-06-20 18:04 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-24 10:53 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\ServiceState
2022-07-24 10:53 - 2022-06-20 17:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-24 10:53 - 2022-06-20 17:18 - 000292920 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-07-24 10:52 - 2022-06-20 17:56 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-07-24 10:52 - 2022-06-20 17:18 - 000012288 ___SH C:\DumpStack.log.tmp
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\Provisioning
2022-07-24 10:51 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-24 10:48 - 2022-06-20 17:58 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-24 10:40 - 2022-06-20 17:21 - 003102720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-07-24 10:33 - 2022-06-20 18:04 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-24 10:33 - 2022-06-20 17:19 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-24 10:30 - 2022-06-20 17:53 - 000000000 ____D C:\Users\nutsa\AppData\LocalLow\Mozilla
2022-07-22 16:11 - 2022-06-20 17:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-22 01:51 - 2022-06-20 18:30 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-21 18:02 - 2022-06-20 17:41 - 000000000 ____D C:\Users\nutsa\AppData\Local\D3DSCache
2022-07-20 17:25 - 2022-06-20 17:19 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-07-20 17:25 - 2022-06-20 17:19 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-07-20 12:29 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-07-20 10:41 - 2022-06-20 18:00 - 000002251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-07-20 10:41 - 2022-06-20 18:00 - 000002210 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-07-13 11:32 - 2022-06-20 17:40 - 000000000 ____D C:\Users\nutsa\AppData\Local\ConnectedDevicesPlatform
2022-07-12 10:47 - 2022-06-20 18:04 - 000000000 ____D C:\WINDOWS\system32\setup
2022-07-12 10:30 - 2022-06-20 17:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-07-12 10:27 - 2022-06-20 17:44 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-28 07:36 - 2022-06-20 17:40 - 000000000 ____D C:\Users\nutsa\AppData\Local\Packages
2022-06-24 14:25 - 2022-06-20 17:41 - 000000000 ____D C:\ProgramData\Packages
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================