Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-04-2020
Ran by casyo (administrator) on DESKTOP-FOMQ4FQ (Gigabyte Technology Co., Ltd. B450 AORUS PRO) (24-04-2020 15:49:39)
Running from C:\Users\casyo\OneDrive\Počítač
Loaded Profiles: casyo (Available Profiles: casyo)
Platform: Windows 10 Pro Version 1909 18363.592 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\qBittorrent\qbittorrent.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <2>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.120.4062.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.120.4062.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.120.4062.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-22] (Kilonova LLC -> )
HKU\S-1-5-21-1237953686-2037993472-3780050099-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3371296 2020-04-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-1237953686-2037993472-3780050099-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31740816 2020-04-15] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1237953686-2037993472-3780050099-1001\...\Run: [qBittorrent] => C:\Program Files\qBittorrent\qbittorrent.exe [25294848 2019-12-18] () [File not signed]
HKU\S-1-5-21-1237953686-2037993472-3780050099-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [71464072 2020-04-19] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1237953686-2037993472-3780050099-1001\...\MountPoints2: {9cd64be0-5c58-11ea-b623-e0d55eaeb3a8} - "E:\HiSuiteDownLoader.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.122\Installer\chrmstp.exe [2020-04-23] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09A75FA6-FBB5-478C-8644-D476DFB1C523} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {0A2E2CB8-B66E-4C2D-BFA2-679394DFAB08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {136C7C5B-2DBA-4058-8418-43805F48FCAE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-26] (Google LLC -> Google LLC)
Task: {1F5A794D-9A07-4832-B113-F602808A9032} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-26] (Google LLC -> Google LLC)
Task: {25183294-28B0-4687-9EF2-CF79EDBFCB07} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {545B138B-FAAB-4B3E-9A01-AFA028914BD0} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5687C941-8B13-46F7-A48F-0C214AC1AB74} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702832 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F8190C8-2C3A-462D-9EBD-3B31CE6AFA0C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147496 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {61F37D05-DC30-4D1E-8AAB-9758C9196800} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702832 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7097F11C-4959-4746-81A9-00359888257D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {70B0A23F-AC0C-4E0C-8FB3-679D4BFB6E5D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {746AF089-DE51-40F8-B02B-802E1536F63D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {85784B9A-11DD-42BB-A87E-C892E2C830A6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9221D25D-7BD5-43A3-9EB8-BB847370FD3F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9394CC59-19A2-4B0A-99AB-9983FBF2140A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {99636600-2E11-45AE-A900-8D8281F33F84} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {A85B68DC-574A-4019-89D5-56A97447B9AE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AD0F4056-924E-48F7-B5CB-911405A07A2D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C26B901B-E152-4C22-9C50-8C66BB3EF4D8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D1CE6666-47DB-4FAE-9D47-AFE77734F24E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD440347-BD02-4E1A-BADC-F6516030FB5F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E264876D-DBF9-402B-9DD0-9DE0617445FF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {E55F9284-1C40-4E74-BFE4-00B56176E060} - System32\Tasks\update-S-1-5-21-1237953686-2037993472-3780050099-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {EA2DA249-CB78-4CC5-B0A5-A4B80B4362A3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147496 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {EA548544-050E-41AA-9D76-17CF45D1231F} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\update-S-1-5-21-1237953686-2037993472-3780050099-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 178.18.67.3 8.8.8.8
Tcpip\..\Interfaces\{5e9dd8cc-a698-4852-962d-1f9159a71ca7}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5e9dd8cc-a698-4852-962d-1f9159a71ca7}: [DhcpNameServer] 192.168.88.1 178.18.67.3 8.8.8.8

Internet Explorer:
==================
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-27] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1237953686-2037993472-3780050099-1001 -> No Name - {EF293C5A-9F37-49FD-91C4-2B867063FC54} -  No File
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-10] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-27] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-27] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default [2020-04-24]
CHR Notifications: Default -> hxxps://chat.g2g.com
CHR Extension: (Prezentácie) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-26]
CHR Extension: (Dokumenty) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-26]
CHR Extension: (Disk Google) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-26]
CHR Extension: (YouTube) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-26]
CHR Extension: (Tabuľky) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-26]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-20]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-14]
CHR Extension: (Search AliExpress by Image) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocnlahnjacckbiffghcopjfbifdjocj [2020-03-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-26]
CHR Extension: (Gmail) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-26]
CHR Extension: (Chrome Media Router) - C:\Users\casyo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-10]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8567960 2020-04-15] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10626648 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2020-03-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB/lghub_updater.exe [10131080 2020-04-19] (Logitech Inc -> Logitech, Inc.)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [18534552 2020-01-11] (Mail.Ru LLC -> LLC Mail.Ru)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8102192 2019-05-12] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [46040 2019-10-30] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24528 2019-04-18] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [32520 2019-09-17] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R0 amdpsp; C:\Windows\System32\drivers\amdpsp.sys [138064 2019-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
S3 dump_wmimmc; D:\Program Files (x86)\Webzen\Mu\GameGuard\dump_wmimmc.sys [2471096 2020-04-03] (INCA Internet Co.,Ltd. -> )
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\47127\driver_cpu_temperature\logi_core_temp.sys [25448 2020-04-19] (Logitech Inc. -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [38136 2019-12-31] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [20624 2019-12-31] (WDKTestCert sqa,131523902232810150 -> Logitech, Inc.)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [66808 2019-12-31] (Logitech Inc -> Logitech)
S3 mracdrv; C:\Windows\System32\drivers\mracdrv.sys [17770920 2020-01-11] (Mail.Ru LLC -> LLC Mail.Ru)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\nvlddmkm.sys [23439288 2020-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
R3 UcmCxUcsiNvppc; C:\Windows\System32\drivers\UcmCxUcsiNvppc.sys [715680 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45960 2020-03-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [391392 2020-03-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [2719256 2020-03-01] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-24 15:49 - 2020-04-24 15:49 - 000000000 ____D C:\FRST
2020-04-24 15:48 - 2020-04-24 15:48 - 000000000 ____D C:\rsit
2020-04-24 15:48 - 2020-04-24 15:48 - 000000000 ____D C:\Program Files\trend micro
2020-04-23 18:11 - 2020-04-23 18:16 - 000000000 ____D C:\Users\casyo\AppData\Roaming\projectascension
2020-04-23 18:10 - 2020-04-23 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ascension Launcher
2020-04-23 18:10 - 2020-04-23 18:10 - 000000000 ____D C:\Users\casyo\AppData\Roaming\Ascension Launcher
2020-04-20 12:34 - 2020-04-20 15:10 - 1728899190 _____ C:\Users\casyo\Downloads\SuperStar VI (10. díl) - (19.4.2020).avi
2020-04-19 18:46 - 2020-04-19 18:47 - 000000000 ____D C:\ProgramData\LogiShrd
2020-04-19 16:15 - 2020-04-24 15:28 - 000000000 ____D C:\Users\casyo\AppData\Local\LGHUB
2020-04-19 16:15 - 2020-04-19 16:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2020-04-19 16:15 - 2020-04-19 16:15 - 000000000 ____D C:\ProgramData\LGHUB
2020-04-19 16:15 - 2020-04-19 16:15 - 000000000 ____D C:\Program Files\LGHUB
2020-04-16 16:21 - 2020-04-16 16:21 - 000002559 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk
2020-04-16 16:21 - 2020-04-16 16:21 - 000000000 ____D C:\Program Files (x86)\MSECache
2020-04-15 16:36 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-04-15 16:36 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-04-15 14:58 - 2020-04-15 14:58 - 000000000 ____D C:\Windows\system32\Tasks\S-1-5-21-1237953686-2037993472-3780050099-1001
2020-04-15 08:52 - 2020-04-15 08:52 - 000000000 ____D C:\Users\casyo\AppData\Local\Fallout76
2020-04-03 11:54 - 2020-04-03 11:54 - 000000000 ____D C:\Users\casyo\OneDrive\Documents\EVE
2020-04-03 11:38 - 2020-04-03 11:38 - 000000000 ____D C:\Users\casyo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVE Launcher
2020-04-03 11:38 - 2020-04-03 11:38 - 000000000 ____D C:\Users\casyo\AppData\Local\LauncherCrashes
2020-04-03 11:38 - 2020-04-03 11:38 - 000000000 ____D C:\Users\casyo\AppData\Local\CCP
2020-04-01 19:07 - 2020-04-01 19:07 - 000000000 ____D C:\Users\casyo\AppData\Roaming\com.wurmonline.client.launcherfx.WurmMain
2020-03-28 14:54 - 2020-03-28 14:54 - 000000000 ____D C:\Users\casyo\AppData\Local\cuisine_royale
2020-03-28 14:53 - 2020-03-28 14:53 - 000000000 ____D C:\Users\casyo\AppData\Roaming\EasyAntiCheat
2020-03-28 13:27 - 2020-03-28 13:27 - 000000000 ____D C:\Users\casyo\AppData\Local\TslGame
2020-03-28 13:27 - 2020-03-28 13:27 - 000000000 ____D C:\Users\casyo\AppData\Local\BattlEye

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-24 15:45 - 2019-12-27 11:39 - 000000000 ____D C:\Users\casyo\AppData\Roaming\qBittorrent
2020-04-24 15:43 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-24 15:31 - 2019-12-26 23:39 - 000000000 ____D C:\ProgramData\NVIDIA
2020-04-24 15:28 - 2019-12-31 17:00 - 000000000 ____D C:\Users\casyo\AppData\Roaming\LGHUB
2020-04-24 15:28 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-24 15:28 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness
2020-04-23 19:33 - 2019-12-26 23:35 - 000011784 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-04-23 19:33 - 2019-12-26 23:30 - 000000000 ____D C:\Users\casyo
2020-04-23 18:26 - 2019-12-26 23:40 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-23 18:10 - 2019-12-26 23:39 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-23 17:38 - 2019-12-26 23:33 - 000795992 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-23 17:38 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2020-04-23 17:32 - 2019-12-26 23:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-04-23 17:32 - 2019-12-26 23:27 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-04-23 08:51 - 2019-12-27 20:49 - 000013589 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2020-04-23 08:43 - 2019-12-26 23:36 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-23 08:43 - 2019-12-26 23:33 - 000019784 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-04-21 22:08 - 2019-12-27 19:52 - 000013986 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-04-21 20:30 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\CbsTemp
2020-04-21 18:42 - 2019-12-27 15:35 - 000013989 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-04-21 13:24 - 2019-12-26 23:33 - 000014005 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-04-20 18:15 - 2019-12-26 23:35 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1237953686-2037993472-3780050099-1001
2020-04-20 18:15 - 2019-12-26 23:35 - 000000000 ___RD C:\Users\casyo\OneDrive
2020-04-20 18:15 - 2019-12-26 23:30 - 000002355 _____ C:\Users\casyo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-20 14:06 - 2019-12-26 23:32 - 000000000 ____D C:\Users\casyo\AppData\Local\Packages
2020-04-20 12:36 - 2019-12-27 17:43 - 000000000 ____D C:\Users\casyo\AppData\Roaming\vlc
2020-04-20 12:21 - 2019-12-26 23:43 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-04-20 12:21 - 2019-12-26 23:33 - 000163957 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-04-19 15:35 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-04-19 15:34 - 2020-01-26 18:32 - 000000000 ____D C:\Program Files\Microsoft Office
2020-04-16 19:20 - 2019-12-26 23:27 - 000448824 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-16 19:19 - 2019-03-19 06:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-04-16 19:00 - 2020-01-30 18:40 - 000000000 ____D C:\Users\casyo\AppData\Local\CrashDumps
2020-04-16 16:21 - 2020-01-26 18:08 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-04-16 13:43 - 2019-12-29 02:50 - 000011801 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2020-04-15 22:54 - 2019-12-28 03:25 - 000013569 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2020-04-15 08:53 - 2019-12-28 19:27 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-28 19:27 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-28 19:27 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-28 19:27 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-26 23:39 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-26 23:39 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-26 23:39 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-26 23:39 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-26 23:39 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-26 23:39 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 08:53 - 2019-12-26 23:39 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-04-15 08:53 - 2019-12-26 23:33 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-04-15 08:53 - 2019-12-26 23:33 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-15 08:52 - 2019-12-27 00:51 - 000000000 ____D C:\Users\casyo\OneDrive\Documents\My Games
2020-04-14 10:46 - 2019-12-27 00:01 - 000000000 ____D C:\Users\casyo\AppData\Local\D3DSCache
2020-04-12 21:54 - 2020-01-04 02:24 - 000013006 _____ C:\ProgramData\DisplaySessionContainer17.log_backup1
2020-04-11 19:43 - 2020-01-02 16:50 - 000014326 _____ C:\ProgramData\DisplaySessionContainer14.log_backup1
2020-04-10 19:37 - 2019-12-31 03:34 - 000014006 _____ C:\ProgramData\DisplaySessionContainer11.log_backup1
2020-04-09 18:12 - 2020-03-23 23:14 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-04-07 19:58 - 2019-12-26 23:39 - 002799416 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2020-04-07 19:58 - 2019-12-26 23:39 - 002159592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2020-04-07 19:58 - 2019-12-26 23:39 - 001314792 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2020-04-07 19:52 - 2019-12-29 15:58 - 000011448 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2020-04-02 09:48 - 2019-12-27 00:31 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-04-02 01:58 - 2020-01-04 12:55 - 000011430 _____ C:\ProgramData\DisplaySessionContainer18.log_backup1
2020-03-31 22:29 - 2020-01-03 19:04 - 000013989 _____ C:\ProgramData\DisplaySessionContainer16.log_backup1
2020-03-31 18:50 - 2020-01-03 02:06 - 000009642 _____ C:\ProgramData\DisplaySessionContainer15.log_backup1
2020-03-30 16:10 - 2020-01-02 02:45 - 000006623 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
2020-03-30 01:13 - 2019-12-31 17:40 - 000013987 _____ C:\ProgramData\DisplaySessionContainer12.log_backup1
2020-03-29 22:00 - 2019-12-27 13:45 - 000000000 ____D C:\Users\casyo\AppData\Local\RabanSoft
2020-03-29 02:04 - 2019-12-30 18:09 - 000011426 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2020-03-28 21:28 - 2019-12-29 17:16 - 000013986 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2020-03-28 13:27 - 2020-01-12 19:45 - 000000000 ____D C:\Users\casyo\AppData\Local\UnrealEngine
2020-03-27 07:55 - 2019-12-26 23:39 - 000170472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2020-03-27 07:55 - 2019-12-26 23:39 - 000146408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2020-03-25 21:54 - 2019-12-26 23:27 - 000000000 ____D C:\Windows\system32\Drivers\wd

==================== Files in the root of some directories ========

2019-12-27 15:59 - 2019-12-27 15:59 - 000000003 _____ () C:\Users\casyo\AppData\Local\updater.log
2019-12-27 15:59 - 2019-12-27 15:59 - 000000424 _____ () C:\Users\casyo\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================