Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-03-2020
Ran by admin-kosacek (administrator) on MTR-N1049 (HP HP ProBook 450 G5) (29-03-2020 14:27:03)
Running from C:\Users\admin\Desktop
Loaded Profiles: kosacek & admin-kosacek (Available Profiles: q & kosacek & admin-kosacek)
Platform: Windows 10 Pro Version 1709 16299.1087 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(0) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(0) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1804.11545.0_x64__8wekyb3d8bbwe\Calculator.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\Conexant\Flow\Flow.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\Conexant\Flow\Flow.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\Conexant\SA3\HP-NB-AIO\SmartAudio3.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\Conexant\SA3\HP-NB-AIO\SmartAudio3.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(Conexant Systems LLC -> Conexant) C:\Windows\System32\MicTray64.exe
(Conexant Systems LLC -> Conexant) C:\Windows\System32\MicTray64.exe
(Conexant Systems LLC.) [File not signed] C:\Windows\CxSvc\CxAudioSvc.exe
(DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\DPAgent.exe
(DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\DPAgent.exe
(DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpAgent.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpAgent.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\kosacek\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(GlavSoft LLC -> GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(GlavSoft LLC -> GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(GlavSoft LLC -> GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Google Inc -> Google) C:\Users\admin\AppData\Local\Google\Chrome\User Data\SwReporter\29.154.200\software_reporter_tool.exe
(Google Inc -> Google) C:\Users\admin\AppData\Local\Google\Chrome\User Data\SwReporter\29.154.200\software_reporter_tool.exe
(Google Inc -> Google) C:\Users\admin\AppData\Local\Google\Chrome\User Data\SwReporter\29.154.200\software_reporter_tool.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerSt.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerSt.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP 3D DriveGuard\hpservice.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\LanWlanSwitchingService.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_862bac15d0efb48d\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_862bac15d0efb48d\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_862bac15d0efb48d\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_862bac15d0efb48d\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_862bac15d0efb48d\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Kerio Technologies, Inc. -> Kerio Technologies Inc.) C:\Program Files (x86)\Kerio\UpdaterService\ktupdaterservice.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Users\admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated) [File not signed] C:\Windows\System32\SynaMonApp.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(truconneXion a.s. -> truconneXion, a. s.) C:\AuditPro\Scan.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) E:\Steam\steam.exe
(www.smartmontools.org) [File not signed] C:\Program Files\smartmontools for Windows\bin\smartd.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-06-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [225248 2017-06-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1725920 2016-09-23] (GlavSoft LLC -> GlavSoft LLC.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [179536 2019-10-31] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP Inc. -> HP)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\HP\HP 3D DriveGuard\AccelerometerST.exe [133952 2017-06-21] (HP Inc. -> HP)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\DPAgent.exe, <==== ATTENTION
HKU\S-1-5-21-407287996-4117368936-2895187249-1003\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [643200 2017-09-26] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-407287996-4117368936-2895187249-1003\...\Run: [Gaijin.Net Updater] => C:\Users\kosacek\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-11-28] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-407287996-4117368936-2895187249-1004\...\Run: [Steam] => E:\Steam\steam.exe [3370272 2020-03-27] (Valve -> Valve Corporation)
HKU\S-1-5-21-407287996-4117368936-2895187249-1004\...\Run: [NoxDaemon] => C:\Users\admin\AppData\Roaming\NoxSrv\NoxSrv.exe [111616 2019-06-12] () [File not signed]
HKU\S-1-5-21-407287996-4117368936-2895187249-1004\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365160 2020-03-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-407287996-4117368936-2895187249-1004\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [643200 2017-09-26] (OpenVPN Technologies, Inc. -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> %SystemRoot%\inf\unregmp2.exe /ShowWMP
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-18] (Google LLC -> Google LLC)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2018-05-16]
ShortcutTarget: GameRanger.lnk -> C:\Users\admin\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies -> GameRanger Technologies)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01B38C49-AB20-457A-B2A3-A77C6E400AA3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-04-07] (HP Inc. -> HP Inc.)
Task: {0D25197C-A031-42F9-B543-8BF3A277F997} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {12AFBF7C-AA15-4901-ABFF-191811242919} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D1A9E64-0F90-432C-9E15-54915DD81BA4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1487392 2017-04-07] (HP Inc. -> HP Inc.)
Task: {42171C72-B68F-4D66-BC6A-6B1086CBF7C9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1869008 2018-04-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {43984C76-DF28-4B09-801C-B392D13ED14A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {47D2FE23-ED2D-46D2-9451-418889483905} - System32\Tasks\Microsoft\Windows\Conexant\SynaMonApp => C:\Windows\System32\SynaMonApp.exe [170496 2018-10-30] (Synaptics Incorporated) [File not signed]
Task: {5C8B87F7-532E-4A20-9F90-8CE4B7337B89} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [2938448 2018-12-20] (Conexant Systems LLC -> Conexant)
Task: {5E1EE12D-C2DE-498D-BD31-344040760143} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {70094C05-F64C-4CDE-B487-463EBAC4A5A0} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1179648 2017-12-20] () [File not signed]
Task: {7991AB78-89E4-42DB-8500-2987BCB582E7} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2017-04-07] (HP Inc. -> HP Inc.)
Task: {7C0DE835-58C1-43A6-BCC3-BB4AF6BD473A} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {85535A57-FCA0-4B08-B038-5278A02936DB} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
Task: {ABA98C04-F4DD-46A7-967E-FF1D4493310E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [208744 2017-04-07] (HP Inc. -> HP Inc.)
Task: {B06AEE56-FBE5-4AE9-A148-3FA78913201A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)
Task: {B862C30E-79B3-4F3F-93AD-835FD1FBCBF4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1487392 2017-04-07] (HP Inc. -> HP Inc.)
Task: {C4892253-AA0F-468F-9B70-D17FFAEED4C9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [60448 2017-04-07] (HP Inc. -> HP Inc.)
Task: {CDE0AE18-CC12-482A-BFB3-3EDCF821883F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8CFB44D-57CF-4E50-8BE1-0EEE43F17D87} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {DEA007C1-1B15-4969-BE99-E4F03440A11C} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [969208 2017-07-17] (HP Inc. -> HP)
Task: {E61AB4E3-C852-46AE-859C-5E80420ACCD8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [625512 2017-04-07] (HP Inc. -> HP Inc.)
Task: {EB82CFC3-B0D2-4694-92A8-994F1ABCC379} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast Business\AvastEmUpdate.exe
Task: {FF0BB4DD-11C3-4B75-83AE-F182E5771483} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-24] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{37a7452d-3ab3-455b-bd02-8337450246dd}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{60cc932d-cbfe-4ab6-88b7-37e901aaa847}: [DhcpNameServer] 8.8.8.8

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-407287996-4117368936-2895187249-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-407287996-4117368936-2895187249-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-407287996-4117368936-2895187249-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-407287996-4117368936-2895187249-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-04-07] (HP Inc. -> HP Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-07-19] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-19] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-04-07] (HP Inc. -> HP Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-17] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: t10lry7r.default
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\t10lry7r.default [2020-03-29]
FF NetworkProxy: Mozilla\Firefox\Profiles\t10lry7r.default -> type", 4
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - c:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome => not found
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconfig.js [2017-04-11] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-03-29]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2017-07-26] <==== ATTENTION

Chrome: 
=======
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default [2020-03-29]
CHR Extension: (Prezentace) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-05-15]
CHR Extension: (Dokumenty) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-15]
CHR Extension: (Disk Google) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-05-15]
CHR Extension: (YouTube) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-15]
CHR Extension: (Adobe Acrobat) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-29]
CHR Extension: (Tabulky) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-05-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-03]
CHR Extension: (Gmail) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-03-03]
CHR Extension: (Chrome Media Router) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-29]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AuditPro Scan; C:\AuditPro\Scan.exe [2840504 2017-02-13] (truconneXion a.s. -> truconneXion, a. s.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [39424 2019-01-17] (Conexant Systems LLC.) [File not signed]
R2 CxUtilSvc; C:\WINDOWS\CxSvc\CxUtilSvc.exe [181584 2019-01-25] (Conexant Systems LLC -> Conexant Systems, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-03-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DpHost; c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe [527808 2017-06-20] (DigitalPersona, Inc. -> Crossmatch, Inc.)
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55424 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2253376 2019-10-31] (ESET, spol. s r.o. -> ESET)
R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1598400 2019-10-24] (ESET, spol. s r.o. -> ESET)
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [1701480 2017-07-07] (Intel Corporation -> Intel Corporation)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [589392 2017-06-22] (Hewlett Packard Enterprise Company -> Hewlett-Packard Company)
R2 fpCsEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [29544 2018-07-19] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1326888 2017-07-31] (HP Inc. -> HP Inc.)
R2 HP Hotkey Service; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [965952 2017-07-17] (HP Inc. -> HP)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP Inc. -> HP)
R2 hpsrv; C:\Program Files (x86)\HP\HP 3D DriveGuard\hpservice.exe [30200 2017-06-21] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc. -> HP Inc.)
S3 iaStorAfsService; C:\windows\IAStorAfsService\iaStorAfsService.exe [2413720 2017-06-10] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\System32\ibtsiva.exe [529912 2018-12-21] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [732448 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [548648 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 IntelAudioService; C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe [160856 2017-07-24] (Intel(R) Smart Sound Technology -> Intel)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [197264 2017-06-26] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 ktupdaterservice; C:\Program Files (x86)\Kerio\UpdaterService\ktupdaterservice.exe [982224 2017-09-27] (Kerio Technologies, Inc. -> Kerio Technologies Inc.)
R2 LanWlanSwitchingService; C:\Program Files (x86)\HP\HP Hotkey Support\LanWlanSwitchingService.exe [593728 2017-07-17] (HP Inc. -> HP)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] (Intel Corporation -> )
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [73856 2017-09-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [73856 2017-09-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4888400 2019-03-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 smartd; C:\Program Files\smartmontools for Windows\bin\smartd.exe [1045504 2016-05-07] (www.smartmontools.org) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269912 2017-08-22] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13216272 2020-03-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1725920 2016-09-23] (GlavSoft LLC -> GlavSoft LLC.)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [90976 2018-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-09-05] (Intel Corporation -> Intel® Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [54416 2020-02-11] (HP Inc. -> HP)
R3 CnxtHdAudService; C:\WINDOWS\system32\drivers\CHDRT64ISST.sys [2418472 2019-01-28] (Synaptics Incorporated -> Conexant Systems Inc.)
S3 DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [74768 2017-06-22] (Hewlett Packard Enterprise Company -> Hewlett-Packard Enterpise Company)
R1 dfmirage; C:\WINDOWS\System32\drivers\dfmirage.sys [36432 2008-03-05] (DemoForge LLC -> DemoForge, LLC)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [74168 2017-07-07] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [69560 2017-07-07] (Intel Corporation -> Intel Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-03-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-03-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-10-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186832 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77176 2019-10-31] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [114640 2019-10-31] (ESET, spol. s r.o. -> ESET)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [382392 2017-07-07] (Intel Corporation -> Intel Corporation)
R0 hpdskflt; C:\WINDOWS\System32\DRIVERS\hpdskflt.sys [43664 2020-02-11] (HP Inc. -> HP)
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [98944 2017-06-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [70632 2017-06-10] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [199192 2018-05-11] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw06; C:\WINDOWS\System32\drivers\Netwtw06.sys [8831152 2018-10-12] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [954368 2017-04-19] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [783328 2017-06-08] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3231200 2017-06-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [58456 2017-08-22] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-03-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-03-27] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-27] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [35392 2019-11-15] (HP Inc. -> HP)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-06-16] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
U4 edevmon; system32\DRIVERS\edevmon.sys [X]
U4 ekbdflt; \SystemRoot\system32\DRIVERS\ekbdflt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-29 14:27 - 2020-03-29 14:27 - 000037808 _____ C:\Users\admin\Desktop\FRST.txt
2020-03-29 14:26 - 2020-03-29 14:26 - 002280448 _____ (Farbar) C:\Users\admin\Downloads\FRST64.exe
2020-03-29 14:26 - 2020-03-29 14:26 - 002280448 _____ (Farbar) C:\Users\admin\Desktop\FRST64.exe
2020-03-29 14:25 - 2020-03-29 14:25 - 000000000 ____D C:\Users\admin\AppData\Roaming\Intel Corporation
2020-03-29 14:24 - 2020-03-29 14:24 - 000003294 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2020-03-29 14:24 - 2020-03-29 14:24 - 000002394 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ___RD C:\Users\admin\OneDrive
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ___HD C:\Users\admin\MicrosoftEdgeBackups
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\OpenVPN
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\Roaming\Mozilla
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\LocalLow\Mozilla
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\Local\NoxSrv
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\Local\NoxPopup
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\Local\Mozilla
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\Local\Disc_Soft_Ltd
2020-03-29 14:24 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\Local\Conexant
2020-03-29 14:23 - 2020-03-29 14:26 - 000000000 ____D C:\Users\admin\AppData\Local\Packages
2020-03-29 14:23 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\Local\Intel
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ___RD C:\Users\admin\3D Objects
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ____D C:\Users\admin\AppData\Roaming\Intel
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ____D C:\Users\admin\AppData\Roaming\hpqLog
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ____D C:\Users\admin\AppData\Roaming\DigitalPersona
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ____D C:\Users\admin\AppData\Local\VirtualStore
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ____D C:\Users\admin\AppData\Local\Publishers
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ____D C:\Users\admin\AppData\Local\MicrosoftEdge
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ____D C:\Users\admin\AppData\Local\DigitalPersona
2020-03-29 14:23 - 2020-03-29 14:23 - 000000000 ____D C:\Users\admin\AppData\Local\ConnectedDevicesPlatform
2020-03-29 12:22 - 2020-03-29 12:23 - 002010372 _____ C:\WINDOWS\Minidump\032920-14796-01.dmp
2020-03-29 11:00 - 2020-03-29 11:00 - 000312485 _____ C:\Users\kosacek\Downloads\D.1.1.4_Půdorys 1.NP_28032020.pdf
2020-03-29 11:00 - 2020-03-29 11:00 - 000255758 _____ C:\Users\kosacek\Downloads\D.1.1.6_Řez A-A´_28032020.pdf
2020-03-27 12:31 - 2020-03-27 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2020-03-27 12:31 - 2020-03-27 12:31 - 000000000 ____D C:\ProgramData\ESET
2020-03-27 12:31 - 2020-03-27 12:31 - 000000000 ____D C:\Program Files\ESET
2020-03-27 12:26 - 2020-03-27 12:26 - 000004190 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9B859BA8-C360-4940-A036-F124DF72774B}
2020-03-27 12:20 - 2020-03-29 12:22 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-03-27 12:20 - 2020-03-27 12:20 - 000001119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2020-03-27 12:20 - 2020-03-27 12:20 - 000001107 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2020-03-27 12:20 - 2020-03-27 12:20 - 000000000 ____D C:\Users\admin\AppData\Roaming\TeamViewer
2020-03-27 12:16 - 2020-03-27 12:16 - 027292336 _____ (TeamViewer Germany GmbH) C:\Users\kosacek\Downloads\TeamViewer_Setup (2).exe
2020-03-27 12:06 - 2020-01-30 10:47 - 237491712 _____ (ESET) C:\Users\kosacek\Desktop\EES_x64_cs_CZ.exe
2020-03-27 12:01 - 2020-03-27 12:02 - 000000000 ____D C:\Users\kosacek\AppData\Local\TeamViewer
2020-03-27 12:01 - 2020-03-27 12:01 - 027292336 _____ (TeamViewer Germany GmbH) C:\Users\kosacek\Downloads\TeamViewer_Setup (1).exe
2020-03-27 10:05 - 2020-03-27 10:05 - 000024885 _____ C:\Users\kosacek\Desktop\log.zip
2020-03-27 09:59 - 2020-03-27 10:00 - 000060152 _____ C:\Users\kosacek\Desktop\Addition.txt
2020-03-27 09:53 - 2020-03-29 14:27 - 000000000 ____D C:\FRST
2020-03-27 09:53 - 2020-03-27 10:00 - 000045262 _____ C:\Users\kosacek\Desktop\FRST.txt
2020-03-27 09:53 - 2020-03-27 09:53 - 002279936 _____ (Farbar) C:\Users\kosacek\Downloads\FRST64.exe
2020-03-27 09:53 - 2020-03-27 09:53 - 002279936 _____ (Farbar) C:\Users\kosacek\Desktop\FRST64.exe
2020-03-23 21:51 - 2020-03-23 21:51 - 000490452 _____ C:\Users\kosacek\Downloads\usti_1-00.zip
2020-03-23 21:51 - 2020-03-23 21:51 - 000490452 _____ C:\Users\kosacek\Downloads\usti_1-00 (1).zip
2020-03-23 21:51 - 2020-03-23 21:51 - 000179768 _____ C:\Users\kosacek\Downloads\decin_2-01.zip
2020-03-23 21:50 - 2020-03-23 21:50 - 000706449 _____ C:\Users\kosacek\Downloads\usti_2-01.zip
2020-03-23 21:50 - 2020-03-23 21:50 - 000000000 ____D C:\Users\kosacek\Documents\usti_2-01
2020-03-23 21:38 - 2020-03-23 21:38 - 009440795 _____ C:\Users\kosacek\Downloads\LZB-Richtig-verstehen-und-bedienen.pptx
2020-03-21 23:04 - 2020-03-21 23:04 - 000306668 _____ C:\Users\kosacek\Downloads\D.1.1.4_Půdorys 1.NP.pdf
2020-03-19 09:39 - 2020-03-19 09:39 - 000490621 _____ C:\Users\kosacek\Documents\Berufung zum Prüfer für Tf - Fzg-Kenntnisse Kosacek.pdf
2020-03-18 11:44 - 2020-03-18 11:44 - 000000039 _____ C:\Users\kosacek\Desktop\pozemek sz.txt
2020-03-15 22:25 - 2020-03-15 22:25 - 000359424 _____ C:\Users\kosacek\Downloads\wgslist_20PRGHAM20267.xls
2020-03-15 19:19 - 2020-03-17 18:17 - 000156216 _____ C:\UkLog.dat
2020-03-11 12:08 - 2020-03-11 12:08 - 000003759 _____ C:\Users\kosacek\Downloads\2020_03_11_110900_Engineers_Activity_Kosáček Lukáš.xlsx
2020-03-11 12:07 - 2020-03-11 12:07 - 000003721 _____ C:\Users\kosacek\Downloads\2020_03_11_110743_Engineers_Activity_Kosáček Lukáš.xlsx
2020-03-07 21:24 - 2020-03-07 21:24 - 004297730 _____ C:\Users\kosacek\Downloads\10251r60.pdf
2020-03-07 12:34 - 2020-03-07 12:34 - 000032457 _____ C:\Users\kosacek\Downloads\Doda_1_k_185_2017_AN.pdf
2020-03-07 12:27 - 2020-03-07 12:27 - 000327852 _____ C:\Users\kosacek\Downloads\dodatek 1.pdf
2020-03-07 12:27 - 2020-03-07 12:27 - 000131191 _____ C:\Users\kosacek\Downloads\Netstone_dod1_AN.pdf
2020-03-05 16:11 - 2020-03-05 16:11 - 000002339 _____ C:\Users\kosacek\Desktop\Google Chrome.lnk
2020-03-04 11:31 - 2020-03-04 11:31 - 000027374 _____ C:\Users\kosacek\Downloads\2020_03_04_103158_Engineers_Activity_CZ-Německo Rott.xlsx
2020-03-04 11:24 - 2020-03-04 11:24 - 000099292 _____ C:\Users\kosacek\Downloads\2020_03_04_102431_Engineers_Activity_CZ-Německo.xlsx
2020-03-04 11:23 - 2020-03-04 11:23 - 000087340 _____ C:\Users\kosacek\Downloads\2020_03_04_102344_Engineers_Activity_CZ-CETR.xlsx
2020-03-04 10:58 - 2020-03-04 10:58 - 000027979 _____ C:\Users\kosacek\Downloads\2020_03_04_095857_Engineers_Activity_CZ-Německo Rott.xlsx
2020-03-04 10:57 - 2020-03-04 10:57 - 000101261 _____ C:\Users\kosacek\Downloads\2020_03_04_095721_Engineers_Activity_CZ-Německo.xlsx
2020-03-03 14:29 - 2020-03-03 14:29 - 048713704 _____ C:\Users\kosacek\Downloads\vietcong_cz_gsp.cbf
2020-03-03 14:28 - 2020-03-03 14:29 - 109497496 _____ C:\Users\kosacek\Downloads\vietcong_cz_dub.cbf
2020-03-03 14:07 - 2020-03-03 14:07 - 000511019 _____ C:\Users\kosacek\Desktop\TZ - Koronavirus a pracovněprávní souvislosti.pdf
2020-03-03 14:02 - 2020-03-03 14:02 - 000001506 _____ C:\Users\admin\Desktop\Vietcong.lnk
2020-03-03 14:02 - 2020-03-03 14:02 - 000000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vietcong
2020-03-03 13:57 - 2020-03-03 14:38 - 000000000 ____D C:\Vietcong
2020-03-03 13:54 - 2020-03-29 14:24 - 000000000 ____D C:\Users\admin\AppData\Roaming\DAEMON Tools Lite
2020-03-03 13:54 - 2020-03-03 13:56 - 000000000 ____D C:\Users\kosacek\AppData\Roaming\DAEMON Tools Lite
2020-03-03 13:54 - 2020-03-03 13:54 - 000059360 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys
2020-03-03 13:54 - 2020-03-03 13:54 - 000042256 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2020-03-03 13:54 - 2020-03-03 13:54 - 000000841 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2020-03-03 13:54 - 2020-03-03 13:54 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2020-03-03 13:54 - 2020-03-03 13:54 - 000000000 ____D C:\Users\Public\Documents\Catch!
2020-03-03 13:54 - 2020-03-03 13:54 - 000000000 ____D C:\Users\kosacek\AppData\Local\Disc_Soft_Ltd
2020-03-03 13:54 - 2020-03-03 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2020-03-03 13:53 - 2020-03-03 13:54 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2020-03-03 13:53 - 2020-03-03 13:54 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2020-03-03 13:51 - 2020-03-03 13:51 - 000791712 _____ (Disc Soft Ltd.) C:\Users\kosacek\Downloads\DTLiteInstaller.exe
2020-03-03 13:49 - 2020-03-03 13:49 - 011193664 _____ (DT Soft Ltd.) C:\Users\kosacek\Downloads\Lite 4.40.2_DTLite4402-0131 (1).exe
2020-03-03 13:46 - 2020-03-03 13:46 - 011193664 _____ (DT Soft Ltd.) C:\Users\kosacek\Downloads\Lite 4.40.2_DTLite4402-0131.exe
2020-03-03 13:44 - 2020-03-03 21:38 - 000000000 ____D C:\Users\kosacek\Downloads\Vietcong + Fist Alpha + Patches -1.60 + crack
2020-03-03 10:25 - 2020-03-03 10:28 - 501242839 _____ C:\Users\kosacek\Downloads\vietcong-2_2.zip
2020-03-03 10:24 - 2020-03-03 10:42 - 2846825328 _____ C:\Users\kosacek\Downloads\Vietcong + Fist Alpha + Patches -1.60 + crack.rar
2020-03-03 09:35 - 2020-03-03 09:35 - 000099292 _____ C:\Users\kosacek\Downloads\2020_03_03_083515_Engineers_Activity_CZ-Německo.xlsx
2020-03-03 09:24 - 2020-03-03 09:24 - 000027392 _____ C:\Users\kosacek\Downloads\2020_03_03_082504_Engineers_Activity_CZ-Německo Rott.xlsx

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-03-29 14:26 - 2019-06-16 11:40 - 000000000 ____D C:\Users\admin\.android
2020-03-29 14:26 - 2019-06-16 11:31 - 000000297 _____ C:\Users\admin\d4ac4633ebd6440fa397b84f1bc94a3c.7z
2020-03-29 14:26 - 2019-06-16 11:16 - 000000000 ____D C:\Users\admin\vmlogs
2020-03-29 14:26 - 2019-06-16 11:16 - 000000000 ____D C:\Users\admin\.BigNox
2020-03-29 14:26 - 2019-06-16 11:15 - 000000000 ____D C:\Users\admin\AppData\Local\Nox
2020-03-29 14:26 - 2018-04-24 08:10 - 000000000 ____D C:\Users\admin
2020-03-29 14:24 - 2018-05-16 10:12 - 000000000 ____D C:\Users\admin\AppData\Roaming\GameRanger
2020-03-29 14:23 - 2018-05-15 12:35 - 000002339 _____ C:\Users\admin\Desktop\Google Chrome.lnk
2020-03-29 14:23 - 2017-11-16 08:24 - 000000000 ____D C:\Intel
2020-03-29 14:23 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-03-29 14:23 - 2017-04-01 05:06 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-03-29 13:45 - 2018-04-23 18:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-03-29 12:32 - 2018-04-23 18:05 - 004817542 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-29 12:32 - 2017-09-30 16:30 - 002236484 _____ C:\WINDOWS\system32\perfh005.dat
2020-03-29 12:32 - 2017-09-30 16:30 - 000607996 _____ C:\WINDOWS\system32\perfc005.dat
2020-03-29 12:22 - 2018-09-19 08:30 - 1005217097 _____ C:\WINDOWS\MEMORY.DMP
2020-03-29 12:22 - 2018-09-19 08:30 - 000000000 ____D C:\WINDOWS\Minidump
2020-03-29 12:22 - 2018-04-24 08:07 - 000000000 __SHD C:\Users\kosacek\IntelGraphicsProfiles
2020-03-29 12:22 - 2018-04-24 08:07 - 000000000 ____D C:\Users\kosacek
2020-03-29 12:22 - 2018-04-23 18:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-29 12:22 - 2018-04-23 18:02 - 000392200 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-03-29 12:22 - 2017-11-16 08:24 - 000000000 ____D C:\ProgramData\Synaptics
2020-03-29 11:03 - 2020-02-06 20:21 - 000000000 ____D C:\Users\kosacek\Desktop\DŮM
2020-03-29 08:57 - 2018-05-14 16:38 - 000004202 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{48B1D06F-0848-4A62-B88B-8A8EA9087062}
2020-03-28 20:31 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2020-03-28 10:29 - 2018-05-01 13:56 - 000057859 _____ C:\Users\kosacek\Documents\finance.xlsx
2020-03-27 12:32 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2020-03-27 12:31 - 2017-09-29 15:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-03-27 12:24 - 2019-05-06 21:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-03-27 12:24 - 2018-04-25 23:23 - 000004288 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-03-27 12:01 - 2018-05-30 09:02 - 000000000 ____D C:\Users\kosacek\AppData\Roaming\TeamViewer
2020-03-25 23:51 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-23 21:39 - 2018-04-24 08:07 - 000000000 ____D C:\Users\kosacek\AppData\Local\Packages
2020-03-21 22:55 - 2018-04-24 08:09 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-407287996-4117368936-2895187249-1003
2020-03-21 22:55 - 2018-04-24 08:09 - 000002374 _____ C:\Users\kosacek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-21 22:55 - 2018-04-24 08:09 - 000000000 ___RD C:\Users\kosacek\OneDrive
2020-03-20 21:54 - 2018-04-24 16:40 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-20 21:54 - 2018-04-24 16:40 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-18 20:32 - 2018-04-24 16:40 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-18 18:34 - 2017-09-29 10:45 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2020-03-18 15:23 - 2018-04-24 07:19 - 000000000 ____D C:\ProgramData\AVAST Software
2020-03-18 11:50 - 2018-04-24 07:15 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-03-18 11:50 - 2018-04-24 07:15 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-03-17 09:23 - 2017-09-29 15:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-17 09:21 - 2017-04-01 05:07 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-03-11 20:02 - 2018-04-24 07:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-11 20:00 - 2018-04-24 07:23 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-03-05 11:58 - 2018-04-24 08:07 - 000000000 ____D C:\Users\kosacek\AppData\Roaming\hpqLog
2020-03-03 14:04 - 2018-04-23 17:33 - 000000000 ___DC C:\WINDOWS\Panther
2020-03-03 07:26 - 2018-04-24 16:42 - 000000000 ____D C:\Users\kosacek\AppData\Roaming\Google
2020-03-02 22:00 - 2018-04-24 08:25 - 000000000 ____D C:\Users\kosacek\AppData\Local\PlaceholderTileLogoFolder

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-03-23 16:35
==================== End of FRST.txt ========================