Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-02-2022
Ran by f3rn (administrator) on DESKTOP-5FI3QOG (Micro-Star International Co., Ltd. GL62M 7RDX) (02-03-2022 21:52:55)
Running from C:\Users\f3rn\Desktop
Loaded Profiles: f3rn
Platform: Microsoft Windows 10 Home Version 21H2 19044.1526 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(A-Volute -> Nahimic) C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe ->) (A-Volute -> ) C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe
(C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe ->) (A-Volute -> ) C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe
(C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxEM.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) D:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\55.0.3.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(explorer.exe ->) (Lexmark International, Inc. -> ) C:\Program Files (x86)\Lexmark\ErrorApp\lmab1err.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) D:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Micro-Star International Co., Ltd.) [File not signed] C:\Program Files (x86)\SCM\MSIService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmisig.inf_amd64_de43862c8301ca91\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Sony Imaging Products & Solutions Inc. -> Sony Corporation) D:\Program Files (x86)\PlayMemories Home\PMBDeviceInfoProvider.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21102.11411.0_x64__8wekyb3d8bbwe\Music.UI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1525_none_7e00daaa7c97a563\TiWorker.exe
(svchost.exe ->) (Micro-Star International CO., LTD. -> ) [File not signed] C:\ProgramData\MSI\Dragon Center\DragonCenter_Updater.exe
(svchost.exe ->) (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [File not signed] C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPHelper.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [301848 2017-06-08] (Micro-Star International CO., LTD. -> ) [File not signed]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270560 2019-05-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Nahimic2UILauncher] => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [734904 2017-07-04] (A-Volute -> Nahimic)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2022-01-13] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2022-02-22] (Intel Corporation -> Intel)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-04-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\Run: [2886DB210C38507C8A78693AF9ED4A2791C09A0F._service_run] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [4268456 2022-01-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35646080 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\Run: [LMab1err] => C:\Program Files (x86)\Lexmark\ErrorApp\LMab1err.exe [645736 2013-07-11] (Lexmark International, Inc. -> )
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\MountPoints2: {346dbe04-130a-11eb-a527-f894c23540cf} - "E:\Setup.exe" 
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\MountPoints2: {3bd275bf-92bb-11eb-a54f-f894c23540cf} - "E:\Setup.exe" 
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\MountPoints2: {3bd2761d-92bb-11eb-a54f-f894c23540cf} - "E:\Setup.exe" 
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\MountPoints2: {779ed778-3a22-11eb-a531-f894c23540cf} - "E:\autorun.exe" 
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\MountPoints2: {d6eec80a-1507-11eb-a527-f894c23540cf} - "E:\Setup.exe" 
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\MountPoints2: {f9195cb8-fc81-11eb-a561-f894c23540cf} - "E:\Setup.exe" 
HKU\S-1-5-21-3183132213-805255280-2740908323-1002\...\MountPoints2: {f9195cc0-fc81-11eb-a561-f894c23540cf} - "E:\Setup.exe" 
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\Canon MX720 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBK.DLL [30208 2012-09-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon TS8100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDO.DLL [482816 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\LMADTP4C: C:\Windows\System32\spool\prtprocs\x64\LMADTP4C.DLL [269312 2013-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Windows x64\Print Processors\LMUD1P4C: C:\Windows\System32\spool\prtprocs\x64\LMUD1P4C.DLL [294400 2020-01-28] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MX720 series: C:\Windows\system32\CNCALBK.DLL [303104 2012-09-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MX720 series: C:\Windows\system32\CNMLMBK.DLL [390656 2012-09-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS8100 series: C:\Windows\system32\CNMLMDO.DLL [1302016 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS8100 series XPS: C:\Windows\system32\CNMXLMDO.DLL [1304064 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\LM_LMADTP: C:\Windows\system32\LMADTPLANG.DLL [3059712 2013-07-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-15] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-03-04]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
Startup: C:\Users\f3rn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2018-05-24]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> D:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04882B75-B012-4F46-99A6-25475E1E11FF} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-09-13] (Intel Corporation -> Intel Corporation)
Task: {2B32F285-7230-437D-B3D7-94429BDAA2EC} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
Task: {3E4B938B-6493-467A-87B2-CF1567C2C84D} - System32\Tasks\Microsoft\VisualStudio\Updates\UpdateConfiguration_S-1-5-21-3183132213-805255280-2740908323-1002 => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXConfigurationUpdater.exe [24528 2022-02-17] (Microsoft Corporation -> Microsoft)
Task: {42B4BCBF-6DDF-4AF9-9039-5FAC0D6C86A9} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {49DBAF8E-115B-48A6-8B9A-6C2AACA885FA} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38504 2021-05-09] (HP Inc. -> HP Inc.)
Task: {5FEB6184-7EF7-475F-8638-6CD220D33B87} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {5FFE0B49-3C37-48A5-9245-19040ECFCD46} - System32\Tasks\Dragon_Center_updater => C:\ProgramData\MSI\Dragon [Argument = Center\DragonCenter_Updater.exe DragonCenter]
Task: {72CC4EDC-D1F6-4065-BC06-E02716D1F5E8} - System32\Tasks\Nahimic2svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2svc64.exe [520376 2017-07-04] (A-Volute -> )
Task: {893E1271-BF07-4D59-A805-38755F6B3373} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38504 2021-05-09] (HP Inc. -> HP Inc.)
Task: {9650BF3A-7D10-43C0-A7E8-5A849FBC575E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {97BE0EC2-1C6F-4092-9547-152A6DD87A3C} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {9B8DD4BA-3F86-4D78-AA2C-9C43928BF4B2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => D:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5B72CEF-1599-43CB-90D1-5C184B5D384D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-02-14] (Piriform Software Ltd -> Piriform)
Task: {A6240D42-A362-4FC1-BA5D-72709ADA49A5} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [734904 2017-07-04] (A-Volute -> Nahimic)
Task: {ACCB7AD2-F97E-4798-B793-CDFBCE7C240F} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [66472 2022-02-17] (Microsoft Corporation -> Microsoft)
Task: {BDB33EEB-6ADA-49C8-B303-7C97BE9707E8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => D:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {C1821361-A500-48D8-8A79-423983A04426} - System32\Tasks\MSI_Dragon Center => C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe [5607192 2018-02-05] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [File not signed]
Task: {C4870D3C-6F83-4BB0-B7D7-70013E7DF238} - System32\Tasks\Nahimic2svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2svc32.exe [4412088 2017-07-04] (A-Volute -> )
Task: {C4C7E41E-1D9A-4FB6-A61A-EE58D1406A1B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-09-13] (Intel Corporation -> Intel Corporation)
Task: {C4FE62FC-D88F-4BC6-89E6-A77962140828} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {EA0B3F23-EC28-4D92-907D-7330BC5DC9E8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-24] (Google Inc -> Google Inc.)
Task: {F56DA74A-3CAA-4C5D-9582-AA65266E90F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-24] (Google Inc -> Google Inc.)
Task: {F6873998-F070-4AA8-9F58-F4E2364F4E8F} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXAutoUpdate.exe [191336 2022-02-17] (Microsoft Corporation -> )
Task: {F71AB3F1-7E09-47F1-8414-97B83A91A85D} - System32\Tasks\CCleanerSkipUAC - f3rn => C:\Program Files\CCleaner\CCleaner.exe [29764224 2022-02-14] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{3e9c3738-de03-4224-8b13-8ccb2c15a21d}: [DhcpNameServer] 213.195.213.6 81.30.225.2
Tcpip\..\Interfaces\{9fbd68c4-7b39-43df-9d1e-42ecdd551b0d}: [DhcpNameServer] 213.195.213.6 81.30.225.2 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{fb83909a-9a8f-445c-9682-6187d23a8ced}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge: 
=======
DownloadDir: D:\Dokumenty\downloads
Edge Notifications: HKU\S-1-5-21-3183132213-805255280-2740908323-1002 -> hxxps://www.youtube.com
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\f3rn\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-02]
Edge DownloadDir: Default -> D:\Dokumenty\downloads
Edge Notifications: Default -> hxxps://www.youtube.com
Edge HomePage: Default -> hxxp://seznam.cz/
Edge StartupUrls: Default -> "hxxp://www.seznam.cz/"
Edge DefaultSearchURL: Default -> hxxps://www.google.cz/search?q={searchTerms}&ie={inputEncoding?}&oe={outputEncoding?}
Edge Extension: (Office) - C:\Users\f3rn\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2021-05-06]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\f3rn\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-01-27]

FireFox:
========
FF ProfilePath: C:\Users\f3rn\AppData\Roaming\Greyfirst\Celtx\Profiles\9uwinuwm.default [2019-08-03]
FF Extension: (Timezone Definitions for Mozilla Calendar) - D:\Program Files (x86)\Celtx\extensions\calendar-timezones@mozilla.org [2019-07-14] [Legacy] [not signed]
FF Extension: (Default Shot Palette) - D:\Program Files (x86)\Celtx\extensions\default-palette@celtx.com [2019-07-14] [Legacy] [not signed]
FF Extension: (DOM Inspector) - D:\Program Files (x86)\Celtx\extensions\inspector@mozilla.org [2019-07-14] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2022-02-09] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-01-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-01-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> D:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-10-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)

Chrome: 
=======
CHR Profile: C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default [2022-03-02]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-24]
CHR Extension: (Dokumenty) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-24]
CHR Extension: (Disk Google) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-24]
CHR Extension: (Tabulky) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-24]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-02-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-17]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-27]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-27]
CHR Extension: (QR Code Generator) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nanmadekhdoofgmhichkcjlgiofmofbl [2019-03-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-26]
CHR Profile: C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-02-21]
CHR Profile: C:\Users\f3rn\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-21]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-3183132213-805255280-2740908323-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 Disc Soft Lite Bus Service; d:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3606120 2018-04-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [39352 2022-02-22] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [181176 2022-02-22] (Intel Corporation -> Intel)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2022-01-13] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2022-01-13] (ESET, spol. s r.o. -> ESET)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-09] (HP Inc. -> HP Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [397256 2018-11-19] (Canon Inc. -> )
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971912 2022-02-09] (McAfee, LLC -> McAfee, LLC)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2017-06-08] (Micro-Star International Co., Ltd.) [File not signed]
R2 nebula; C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe [4486896 2018-06-26] (Logitech Inc -> Logitech)
R2 PMBDeviceInfoProvider; D:\Program Files (x86)\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [32912 2021-03-03] (SteelSeries ApS -> )
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmisig.inf_amd64_de43862c8301ca91\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmisig.inf_amd64_de43862c8301ca91\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [69016 2019-03-04] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [33592 2015-05-24] (DEV47 APPS -> Dev47Apps)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-05-05] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-05-05] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [184464 2022-01-13] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [122944 2022-01-13] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2022-01-12] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201976 2022-01-13] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43904 2022-01-13] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69704 2022-01-13] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [110560 2022-01-13] (ESET, spol. s r.o. -> ESET)
R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
S3 SjtWinIo20; C:\WINDOWS\System32\drivers\SjtWinIo_v2_0.sys [11776 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> SpeedJet Technology INC.)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS)
S3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [121120 2021-10-06] (WDKTestCert dant_ppxe9ny,132750999598161733 -> Wacom Technology, Corp.)
S3 wacomrouterfilter; C:\WINDOWS\System32\drivers\wacomrouterfilter.sys [20720 2021-10-06] (WDKTestCert dant_ppxe9ny,132750999598161733 -> Wacom Technology, Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\Dragon Center\winio64.sys [15160 2015-06-11] (Micro-Star Int'l Co. Ltd. -> )
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-03-02 21:52 - 2022-03-02 21:53 - 000036967 _____ C:\Users\f3rn\Desktop\FRST.txt
2022-03-02 20:52 - 2022-03-02 20:55 - 000000000 ____D C:\AdwCleaner
2022-03-02 20:22 - 2022-03-02 21:53 - 000000000 ____D C:\FRST
2022-03-02 20:20 - 2022-03-02 20:20 - 002312192 _____ (Farbar) C:\Users\f3rn\Desktop\FRST64.exe
2022-03-02 15:09 - 2022-03-02 15:09 - 000005856 _____ C:\Users\f3rn\AppData\Local\recently-used.xbel
2022-03-02 12:25 - 2022-03-02 12:25 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\Wondershare
2022-03-02 12:24 - 2022-03-02 12:24 - 000001006 _____ C:\Users\Public\Desktop\Wondershare Filmora 11.lnk
2022-03-01 15:19 - 2022-03-01 15:19 - 001383755 _____ C:\Program Files (x86)\unins000.exe
2022-03-01 10:01 - 2022-03-01 10:01 - 001038458 _____ C:\Users\f3rn\Desktop\voucher_2022679.pdf
2022-02-25 23:07 - 2022-02-25 23:07 - 000000000 _____ C:\WINDOWS\SysWOW64\wsmand.log.lock
2022-02-25 23:05 - 2022-02-25 23:05 - 000002016 _____ C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2022-02-25 23:04 - 2022-02-25 23:04 - 000000000 ____D C:\Users\f3rn\AppData\Local\ESET
2022-02-25 23:03 - 2022-02-25 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2022-02-25 23:03 - 2022-02-25 23:03 - 000000000 ____D C:\ProgramData\ESET
2022-02-25 23:03 - 2022-02-25 23:03 - 000000000 ____D C:\Program Files\ESET
2022-02-25 23:02 - 2022-02-25 23:02 - 008426600 _____ (ESET) C:\Users\f3rn\Desktop\eset_smart_security_premium_live_installer.exe
2022-02-25 22:54 - 2022-03-02 21:50 - 157024256 _____ C:\WINDOWS\system32\config\SOFTWARE
2022-02-25 22:49 - 2022-02-25 22:49 - 000000000 ____D C:\WINDOWS\Panther
2022-02-25 22:25 - 2022-02-25 22:25 - 002242059 _____ C:\Users\f3rn\Desktop\IMG_20210826_0001.pdf
2022-02-24 22:27 - 2022-02-24 22:28 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\SysInfoTool
2022-02-24 21:30 - 2022-03-01 16:17 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\SheetCam TNG
2022-02-24 21:30 - 2022-02-24 21:30 - 000000933 _____ C:\Users\Public\Desktop\SheetCam TNG.lnk
2022-02-24 21:29 - 2022-02-24 21:29 - 000000000 ____D C:\Users\gw
2022-02-24 21:29 - 2022-02-24 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SheetCam TNG
2022-02-24 16:44 - 2022-02-24 16:44 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\EDrawings
2022-02-24 16:43 - 2022-02-24 16:43 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\DassaultSystemes
2022-02-24 16:43 - 2022-02-24 16:43 - 000000000 ____D C:\Users\f3rn\AppData\Local\DassaultSystemes
2022-02-24 16:43 - 2022-02-24 16:43 - 000000000 ____D C:\ProgramData\DassaultSystemes
2022-02-24 16:25 - 2022-02-24 16:25 - 000000000 _____ C:\Users\f3rn\AppData\Local\Temptable.xml
2022-02-24 16:21 - 2022-02-24 16:21 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\DWGeditor
2022-02-24 16:18 - 2022-02-24 16:18 - 000000000 ____D C:\ProgramData\FLEXnet
2022-02-24 16:16 - 2022-02-24 16:16 - 000000000 _____ C:\WINDOWS\eDrawingOfficeAutomator.INI
2022-02-24 16:15 - 2022-02-24 16:15 - 000000023 ____H C:\WINDOWS\yacht.xws
2022-02-24 16:13 - 2022-02-24 23:28 - 000000000 ____D C:\ProgramData\SolidWorks
2022-02-24 16:13 - 2022-02-24 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
2022-02-24 16:13 - 2022-02-24 16:13 - 000000000 ____D C:\Program Files\Microsoft Visual Studio 8
2022-02-24 16:13 - 2022-02-24 16:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2022-02-24 16:12 - 2022-02-24 16:12 - 000000000 ____D C:\Program Files (x86)\MSECache
2022-02-24 15:34 - 2022-02-24 23:29 - 000000000 ____D C:\WINDOWS\SolidWorks
2022-02-24 15:33 - 2022-02-24 16:39 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\SolidWorks
2022-02-23 15:43 - 2022-02-23 15:43 - 000000000 ____D C:\Users\f3rn\AppData\Local\Yandex
2022-02-23 15:21 - 2022-02-23 15:21 - 000209011 _____ C:\Users\f3rn\Desktop\RychlaRuze.nc
2022-02-23 15:03 - 2022-02-23 15:03 - 011881328 _____ (Autodesk, Inc) C:\Users\f3rn\Desktop\Fusion 360 Client Downloader.exe
2022-02-22 22:28 - 2022-02-22 22:28 - 000001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2022-02-22 14:30 - 2022-02-22 14:55 - 000000128 _____ C:\Users\f3rn\AppData\Local\PUTTY.RND
2022-02-21 13:52 - 2022-02-21 13:52 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\Python-Eggs
2022-02-17 20:21 - 2022-02-17 20:21 - 000001371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2022.lnk
2022-02-17 19:46 - 2022-02-17 19:46 - 000001368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2022.lnk
2022-02-16 14:19 - 2022-02-16 14:19 - 000000000 ____D C:\Users\f3rn\.librarymanager
2022-02-15 08:58 - 2022-02-15 08:58 - 000011776 _____ (SpeedJet Technology INC.) C:\WINDOWS\system32\Drivers\SjtWinIo_v2_0.sys
2022-02-14 22:23 - 2022-02-14 22:23 - 000000259 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2022-02-14 22:04 - 2022-02-14 22:06 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700}
2022-02-14 22:04 - 2022-02-14 22:04 - 000000000 ____D C:\Users\f3rn\Intel
2022-02-14 21:06 - 2022-01-28 20:19 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-14 21:06 - 2022-01-28 20:19 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-14 21:06 - 2022-01-28 20:19 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-14 21:06 - 2022-01-28 20:19 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-14 21:06 - 2022-01-28 20:19 - 001466000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-14 21:06 - 2022-01-28 20:19 - 001432312 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-02-14 21:06 - 2022-01-28 20:19 - 001432312 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-14 21:06 - 2022-01-28 20:19 - 001207440 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-14 21:06 - 2022-01-28 20:19 - 001144552 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-14 21:06 - 2022-01-28 20:19 - 001144552 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-14 21:06 - 2022-01-28 20:16 - 001528448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-02-14 21:06 - 2022-01-28 20:16 - 001179584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-02-14 21:06 - 2022-01-28 20:16 - 000795264 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-02-14 21:06 - 2022-01-28 20:16 - 000714880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-02-14 21:06 - 2022-01-28 20:16 - 000638912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-02-14 21:06 - 2022-01-28 20:15 - 008610432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-02-14 21:06 - 2022-01-28 20:15 - 002121360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-02-14 21:06 - 2022-01-28 20:15 - 001602704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-02-14 21:06 - 2022-01-28 20:15 - 000985024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-02-14 21:06 - 2022-01-28 20:15 - 000794552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-02-14 21:06 - 2022-01-28 20:15 - 000710800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-02-14 21:06 - 2022-01-28 20:15 - 000455808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-02-14 21:06 - 2022-01-28 20:14 - 007715256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-02-14 21:06 - 2022-01-28 20:14 - 005726336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-02-14 21:06 - 2022-01-28 20:14 - 005098112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-02-14 21:06 - 2022-01-28 20:14 - 002932864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-02-14 21:06 - 2022-01-28 20:13 - 000850872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-02-14 21:06 - 2022-01-28 20:11 - 006459952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-02-14 21:06 - 2022-01-28 12:28 - 000089185 _____ C:\WINDOWS\system32\nvinfo.pb
2022-02-09 15:40 - 2022-02-09 15:40 - 000001426 _____ C:\WINDOWS\system32\default_error_stack-000001-000000.txt
2022-02-09 15:00 - 2022-02-09 15:00 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-09 15:00 - 2022-02-09 15:00 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-09 14:59 - 2022-02-09 14:59 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-09 14:59 - 2022-02-09 14:59 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-09 14:59 - 2022-02-09 14:59 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-09 14:54 - 2022-02-09 14:54 - 000000000 ___HD C:\$WinREAgent
2022-02-08 15:18 - 2022-02-08 15:18 - 000000255 _____ C:\Users\f3rn\AppData\Local\kritadisplayrc
2022-02-07 12:49 - 2022-02-07 12:49 - 000499136 _____ (Intel) C:\WINDOWS\system32\libvpl.dll
2022-02-07 12:49 - 2022-02-07 12:49 - 000431936 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll
2022-02-07 12:48 - 2022-02-07 12:48 - 000943472 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2022-02-07 12:48 - 2022-02-07 12:48 - 000703224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2022-02-07 12:48 - 2022-02-07 12:48 - 000588128 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2022-02-07 12:48 - 2022-02-07 12:48 - 000448392 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2022-02-07 12:47 - 2022-02-07 12:47 - 027889576 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2022-02-07 12:47 - 2022-02-07 12:47 - 020629912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2022-02-07 12:47 - 2022-02-07 12:47 - 000453032 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2022-02-07 12:47 - 2022-02-07 12:47 - 000375720 _____ C:\WINDOWS\system32\ze_loader.dll
2022-02-07 12:47 - 2022-02-07 12:47 - 000142240 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2022-02-07 12:46 - 2022-02-07 12:46 - 000209944 _____ C:\WINDOWS\system32\ControlLib.dll
2022-02-07 12:46 - 2022-02-07 12:46 - 000166024 _____ C:\WINDOWS\system32\ControlLib32.dll
2022-02-03 16:10 - 2022-02-03 16:10 - 000000000 ____D C:\Users\f3rn\.redhat
2022-02-03 13:59 - 2022-02-22 15:43 - 000000000 ____D C:\Users\f3rn\.lemminx
2022-02-03 00:15 - 2022-02-03 00:15 - 000001368 _____ C:\Users\f3rn\Desktop\Visual Studio 2022.lnk
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\3082
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\2052
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1055
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1049
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1046
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1045
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1042
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1041
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1040
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1036
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1031
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1029
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\WINDOWS\system32\1028
2022-02-02 23:48 - 2022-02-02 23:48 - 000000000 ____D C:\Program Files\Android
2022-02-02 23:24 - 2022-02-17 19:48 - 000000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2022-02-02 23:19 - 2022-02-02 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2022
2022-02-01 20:42 - 2022-02-01 21:22 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\Nicepage
2022-02-01 20:42 - 2022-02-01 20:42 - 000000000 ____D C:\Users\f3rn\AppData\Local\nicepage-updater

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-03-02 21:53 - 2020-10-20 20:01 - 000000000 ____D C:\Program Files\CCleaner
2022-03-02 21:53 - 2018-10-24 20:55 - 000000000 ____D C:\Program Files (x86)\Google
2022-03-02 21:53 - 2018-05-04 21:10 - 000000000 ___RD C:\Users\f3rn\OneDrive
2022-03-02 21:51 - 2021-09-08 17:50 - 000000297 _____ C:\Users\f3rn\Disk Google.lnk
2022-03-02 21:51 - 2020-10-26 12:56 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\WTablet
2022-03-02 21:51 - 2020-07-21 19:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-02 21:51 - 2020-07-21 18:37 - 000000000 ____D C:\Users\f3rn
2022-03-02 21:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-03-02 21:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-03-02 21:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-03-02 21:51 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-02 21:51 - 2018-05-05 04:01 - 000000000 ____D C:\Users\f3rn\AppData\Local\CrashDumps
2022-03-02 21:51 - 2018-05-04 04:08 - 000000000 __SHD C:\Users\f3rn\IntelGraphicsProfiles
2022-03-02 21:51 - 2018-05-02 22:33 - 000000000 ____D C:\ProgramData\NVIDIA
2022-03-02 21:51 - 2018-05-02 22:26 - 000000000 ____D C:\Intel
2022-03-02 21:50 - 2020-07-21 19:08 - 000008192 ___SH C:\DumpStack.log.tmp
2022-03-02 21:50 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-03-02 21:47 - 2019-08-08 12:45 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2022-03-02 20:21 - 2021-09-07 08:13 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\FileZilla
2022-03-02 20:14 - 2020-07-21 19:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-03-02 15:08 - 2021-03-15 14:58 - 000000000 ____D C:\Users\f3rn\.dbus-keyrings
2022-03-02 12:27 - 2019-07-04 08:29 - 000000000 ____D C:\Users\f3rn\AppData\Local\Wondershare
2022-03-02 12:24 - 2019-07-04 08:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2022-03-02 12:12 - 2018-05-04 21:22 - 000000000 ____D C:\Users\f3rn\AppData\Local\D3DSCache
2022-03-02 08:16 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-03-01 15:19 - 2020-01-02 23:25 - 000024529 _____ C:\Program Files (x86)\unins000.dat
2022-03-01 15:19 - 2020-01-02 23:25 - 000000771 _____ C:\Users\Public\Desktop\LaserGRBL.lnk
2022-03-01 15:19 - 2020-01-02 23:25 - 000000771 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LaserGRBL.lnk
2022-03-01 15:19 - 2020-01-02 23:25 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\LaserGRBL
2022-03-01 15:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-03-01 14:01 - 2020-08-29 20:58 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\Code
2022-02-28 21:17 - 2018-06-26 19:43 - 000007603 _____ C:\Users\f3rn\AppData\Local\Resmon.ResmonCfg
2022-02-27 20:37 - 2021-09-04 09:36 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\npm-cache
2022-02-27 20:37 - 2020-10-16 15:47 - 000000000 ____D C:\Users\f3rn\AppData\Local\.IdentityService
2022-02-27 15:36 - 2018-05-05 21:28 - 000000000 ____D C:\ProgramData\TEMP
2022-02-26 14:05 - 2020-06-08 23:27 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-26 14:05 - 2020-06-08 23:27 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-26 07:38 - 2018-05-06 18:55 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\Client
2022-02-25 23:08 - 2018-05-05 07:29 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\uTorrent
2022-02-25 23:03 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-25 23:03 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-25 23:00 - 2020-07-21 19:12 - 001796796 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-25 23:00 - 2019-12-07 15:41 - 000752106 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-25 23:00 - 2019-12-07 15:41 - 000162644 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-25 22:55 - 2020-07-21 19:08 - 005042304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-25 22:54 - 2018-05-06 23:15 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2022-02-25 22:45 - 2021-10-17 20:19 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\UnityHub
2022-02-24 23:29 - 2018-05-05 23:07 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-02-24 21:35 - 2021-12-11 20:43 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3183132213-805255280-2740908323-1002
2022-02-24 21:35 - 2020-07-21 19:12 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3183132213-805255280-2740908323-1002
2022-02-24 21:35 - 2020-07-21 18:37 - 000002374 _____ C:\Users\f3rn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-23 15:10 - 2020-08-28 19:22 - 000000000 ____D C:\Users\f3rn\AppData\Local\Autodesk
2022-02-22 22:28 - 2018-05-02 22:27 - 000000000 ____D C:\Program Files (x86)\Intel
2022-02-22 22:28 - 2018-05-02 22:21 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-22 21:14 - 2020-10-25 18:05 - 000000000 ____D C:\Users\f3rn\AppData\Local\GameMakerStudio2
2022-02-22 21:14 - 2020-10-25 18:05 - 000000000 ____D C:\ProgramData\GameMakerStudio2
2022-02-22 18:38 - 2020-10-25 18:05 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\GameMakerStudio2
2022-02-22 18:34 - 2021-10-17 21:27 - 000000000 ____D C:\Users\f3rn\AppData\LocalLow\Unity
2022-02-22 13:45 - 2018-09-29 11:31 - 000000000 ____D C:\Users\f3rn\AppData\Local\gtk-2.0
2022-02-22 10:12 - 2020-10-20 20:01 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-02-22 09:59 - 2021-10-17 21:33 - 000000000 ____D C:\Users\f3rn\AppData\LocalLow\DefaultCompany
2022-02-21 22:08 - 2020-01-21 15:49 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-02-21 22:02 - 2021-10-13 09:50 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2022-02-21 21:49 - 2018-05-06 21:35 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2022-02-21 21:43 - 2020-10-16 12:37 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2022-02-21 20:24 - 2019-04-03 15:38 - 000001881 _____ C:\Users\f3rn\Desktop\Disk Google.lnk
2022-02-21 20:22 - 2020-08-20 21:37 - 000000000 ____D C:\Users\f3rn\AppData\Local\NVIDIA
2022-02-21 20:18 - 2018-05-16 17:12 - 000000000 ____D C:\WINDOWS\SHELLNEW
2022-02-20 21:56 - 2020-10-16 13:43 - 000000000 ____D C:\Users\f3rn\.dotnet
2022-02-19 10:21 - 2021-01-24 20:47 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-17 19:55 - 2020-10-16 13:43 - 000000000 ____D C:\Program Files\dotnet
2022-02-17 19:48 - 2021-09-02 08:06 - 000000000 ____D C:\Program Files\IIS Express
2022-02-17 19:48 - 2021-09-02 08:06 - 000000000 ____D C:\Program Files (x86)\IIS Express
2022-02-17 19:47 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-02-17 19:47 - 2019-04-11 19:48 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-02-17 19:20 - 2020-10-16 12:37 - 000001429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2022-02-16 22:24 - 2020-08-29 20:48 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2022-02-15 21:34 - 2018-10-24 20:57 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-15 16:01 - 2022-01-28 15:06 - 000000000 ____D C:\Users\f3rn\AppData\Local\FileZilla
2022-02-14 22:06 - 2018-05-02 22:27 - 000000000 ____D C:\ProgramData\Intel
2022-02-14 22:06 - 2018-05-02 22:21 - 000000000 ____D C:\Program Files\Intel
2022-02-14 21:07 - 2018-05-02 22:32 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-10 08:06 - 2018-05-02 22:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-09 15:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-09 15:40 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-09 14:59 - 2020-07-21 19:09 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-09 14:53 - 2018-05-09 16:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-09 14:49 - 2018-05-09 16:20 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-08 15:18 - 2021-12-08 13:49 - 000034269 _____ C:\Users\f3rn\AppData\Local\kritarc
2022-02-08 15:18 - 2021-12-08 13:49 - 000000000 ____D C:\Users\f3rn\AppData\Roaming\krita
2022-02-03 00:11 - 2020-10-16 17:00 - 000000000 ____D C:\Users\f3rn\.templateengine
2022-02-02 23:57 - 2020-10-16 12:35 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2022-02-02 23:48 - 2019-04-11 19:53 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2022-02-02 23:48 - 2019-04-11 19:51 - 000000000 ____D C:\WINDOWS\system32\1033
2022-02-02 23:39 - 2022-01-29 12:41 - 000011173 _____ C:\Users\f3rn\Desktop\Penize.xlsx
2022-02-02 23:24 - 2018-05-16 17:16 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2022-02-02 23:24 - 2018-05-16 17:16 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2022-02-02 18:32 - 2021-09-03 18:09 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-02-02 18:32 - 2021-09-03 18:09 - 000001899 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-02-02 18:32 - 2021-09-03 18:09 - 000001899 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-02-02 18:32 - 2021-09-03 18:09 - 000001887 _____ C:\Users\Default\Desktop\Google Docs.lnk

==================== Files in the root of some directories ========

2020-01-02 23:25 - 2022-03-01 15:19 - 000024529 _____ () C:\Program Files (x86)\unins000.dat
2022-03-01 15:19 - 2022-03-01 15:19 - 001383755 _____ () C:\Program Files (x86)\unins000.exe
2020-04-28 13:28 - 2020-04-28 13:28 - 000284338 _____ () C:\Users\f3rn\AppData\Roaming\5x4_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-04-30 18:43 - 2019-05-10 12:08 - 000000125 _____ () C:\Users\f3rn\AppData\Roaming\settings.xml
2020-06-14 12:42 - 2020-06-21 18:56 - 000000799 _____ () C:\Users\f3rn\AppData\Roaming\SGFED.ini
2020-12-08 12:04 - 2020-12-08 12:04 - 003541264 _____ () C:\Users\f3rn\AppData\Local\14j3k4qh.owv
2020-12-08 11:44 - 2020-12-08 11:44 - 009423760 _____ () C:\Users\f3rn\AppData\Local\1hsgdbde.cdz
2020-12-08 11:48 - 2020-12-08 11:48 - 009419728 _____ () C:\Users\f3rn\AppData\Local\2dzpcgbq.2un
2020-11-13 23:41 - 2020-11-13 23:41 - 000011365 _____ () C:\Users\f3rn\AppData\Local\2knf2y3h.2gn
2020-12-08 11:54 - 2020-12-08 11:54 - 008273040 _____ () C:\Users\f3rn\AppData\Local\2qv03mpu.3mp
2020-12-08 11:39 - 2020-12-08 11:39 - 009423760 _____ () C:\Users\f3rn\AppData\Local\32l3qhfc.vz4
2020-12-08 11:54 - 2020-12-08 11:54 - 000032979 _____ () C:\Users\f3rn\AppData\Local\3fjufy3d.je0
2020-10-26 12:25 - 2020-10-26 12:25 - 000003635 _____ () C:\Users\f3rn\AppData\Local\3frneqam.jb4
2020-11-13 23:41 - 2020-11-13 23:41 - 005681720 _____ () C:\Users\f3rn\AppData\Local\51vw5ckf.bo2
2020-12-08 12:11 - 2020-12-08 12:11 - 000032979 _____ () C:\Users\f3rn\AppData\Local\5vaenvia.wzb
2020-12-08 12:13 - 2020-12-08 12:13 - 000032979 _____ () C:\Users\f3rn\AppData\Local\ahgyvyov.n43
2020-11-13 23:41 - 2020-11-13 23:41 - 005681720 _____ () C:\Users\f3rn\AppData\Local\ajcfpjtn.zyn
2020-10-26 12:25 - 2020-10-26 12:25 - 003500380 _____ () C:\Users\f3rn\AppData\Local\am2eh35d.omj
2020-12-08 12:04 - 2020-12-08 12:04 - 000032979 _____ () C:\Users\f3rn\AppData\Local\ct0ne2ak.1za
2020-11-12 17:16 - 2020-11-12 17:16 - 009121612 _____ () C:\Users\f3rn\AppData\Local\d1mst4pb.s2w
2020-11-13 17:48 - 2020-11-13 17:48 - 003296536 _____ () C:\Users\f3rn\AppData\Local\d315pu5o.u5y
2020-11-13 17:46 - 2020-11-13 17:46 - 000009378 _____ () C:\Users\f3rn\AppData\Local\dagxodai.tno
2020-11-13 23:39 - 2020-11-13 23:39 - 000011365 _____ () C:\Users\f3rn\AppData\Local\dbollnsr.r5z
2020-12-08 12:10 - 2020-12-08 12:10 - 003551248 _____ () C:\Users\f3rn\AppData\Local\degnoga1.0yn
2020-10-26 12:15 - 2020-10-26 12:16 - 000666096 _____ () C:\Users\f3rn\AppData\Local\dvu2fpbg.em2
2020-10-26 12:17 - 2020-10-26 12:17 - 000666096 _____ () C:\Users\f3rn\AppData\Local\e213v5l3.sea
2020-11-13 17:46 - 2020-11-13 17:46 - 005670072 _____ () C:\Users\f3rn\AppData\Local\e5003d3x.av3
2020-12-08 12:13 - 2020-12-08 12:13 - 003551248 _____ () C:\Users\f3rn\AppData\Local\evptibua.zx2
2020-11-13 23:39 - 2020-11-13 23:39 - 005681720 _____ () C:\Users\f3rn\AppData\Local\fogriyue.rdv
2020-10-26 12:17 - 2020-10-26 12:17 - 000003635 _____ () C:\Users\f3rn\AppData\Local\g13dsxra.bvv
2020-12-04 18:38 - 2020-12-04 18:38 - 005590200 _____ () C:\Users\f3rn\AppData\Local\ihvm5gcu.dai
2020-12-08 12:10 - 2020-12-08 12:10 - 000032979 _____ () C:\Users\f3rn\AppData\Local\jb4lzj25.ren
2020-11-13 23:43 - 2020-11-13 23:44 - 003313176 _____ () C:\Users\f3rn\AppData\Local\jbtjwtbf.rxs
2020-12-08 12:11 - 2020-12-08 12:11 - 003551248 _____ () C:\Users\f3rn\AppData\Local\k0vlwkvl.tc3
2021-12-08 15:03 - 2021-12-08 15:03 - 000000354 _____ () C:\Users\f3rn\AppData\Local\karboncalligraphyrc
2020-12-08 11:48 - 2020-12-08 11:48 - 000032979 _____ () C:\Users\f3rn\AppData\Local\kclj4bnz.vtc
2021-12-08 13:49 - 2022-02-08 10:18 - 000016278 _____ () C:\Users\f3rn\AppData\Local\krita-sysinfo.log
2021-12-08 13:49 - 2022-02-08 15:18 - 000269348 _____ () C:\Users\f3rn\AppData\Local\krita.log
2022-02-08 15:18 - 2022-02-08 15:18 - 000000255 _____ () C:\Users\f3rn\AppData\Local\kritadisplayrc
2021-12-08 13:49 - 2022-02-08 15:18 - 000034269 _____ () C:\Users\f3rn\AppData\Local\kritarc
2021-12-08 13:49 - 2021-12-09 22:23 - 000026331 _____ () C:\Users\f3rn\AppData\Local\kritarc.backup
2020-11-13 17:43 - 2020-11-13 17:43 - 000009378 _____ () C:\Users\f3rn\AppData\Local\lhln030i.x3z
2020-10-25 23:02 - 2020-10-25 23:02 - 002226248 _____ () C:\Users\f3rn\AppData\Local\m1mtxtcg.ber
2020-11-13 23:41 - 2020-11-13 23:41 - 000011365 _____ () C:\Users\f3rn\AppData\Local\nooscpyq.rsu
2018-09-29 13:14 - 2018-09-29 13:14 - 000000000 _____ () C:\Users\f3rn\AppData\Local\oobelibMkey.log
2020-10-26 12:16 - 2020-10-26 12:16 - 000003635 _____ () C:\Users\f3rn\AppData\Local\p4gjwute.oas
2020-11-12 17:17 - 2020-11-12 17:17 - 007846296 _____ () C:\Users\f3rn\AppData\Local\pcvyplzd.tl5
2022-02-22 14:30 - 2022-02-22 14:55 - 000000128 _____ () C:\Users\f3rn\AppData\Local\PUTTY.RND
2020-11-13 23:44 - 2020-11-13 23:44 - 000011365 _____ () C:\Users\f3rn\AppData\Local\ratlt5hx.2hu
2020-12-08 11:44 - 2020-12-08 11:44 - 000032993 _____ () C:\Users\f3rn\AppData\Local\rbk2p41z.t1n
2022-03-02 15:09 - 2022-03-02 15:09 - 000005856 _____ () C:\Users\f3rn\AppData\Local\recently-used.xbel
2018-06-26 19:43 - 2022-02-28 21:17 - 000007603 _____ () C:\Users\f3rn\AppData\Local\Resmon.ResmonCfg
2020-11-13 17:48 - 2020-11-13 17:48 - 000009378 _____ () C:\Users\f3rn\AppData\Local\rjwuoa4n.5qu
2020-12-08 12:08 - 2020-12-08 12:08 - 003541264 _____ () C:\Users\f3rn\AppData\Local\sjjqetai.dre
2022-02-24 16:25 - 2022-02-24 16:25 - 000000000 _____ () C:\Users\f3rn\AppData\Local\Temptable.xml
2020-12-08 12:05 - 2020-12-08 12:05 - 003541264 _____ () C:\Users\f3rn\AppData\Local\tned1wfq.vwc
2020-10-25 23:02 - 2020-10-25 23:02 - 000003589 _____ () C:\Users\f3rn\AppData\Local\uiv2rhik.dcz
2020-11-12 17:17 - 2020-11-12 17:17 - 000005435 _____ () C:\Users\f3rn\AppData\Local\uziulnl1.bwr
2020-11-12 17:16 - 2020-11-12 17:16 - 000005435 _____ () C:\Users\f3rn\AppData\Local\varczkgw.ucp
2020-12-08 12:05 - 2020-12-08 12:05 - 000032979 _____ () C:\Users\f3rn\AppData\Local\vd01r3ql.yvk
2020-12-04 18:38 - 2020-12-04 18:38 - 000031406 _____ () C:\Users\f3rn\AppData\Local\vmygdhnw.ih3
2020-11-13 17:42 - 2020-11-13 17:43 - 005670072 _____ () C:\Users\f3rn\AppData\Local\x5roxcno.2mr
2020-12-08 11:39 - 2020-12-08 11:39 - 000032993 _____ () C:\Users\f3rn\AppData\Local\y1oxhud5.qda
2020-12-08 12:08 - 2020-12-08 12:08 - 000032979 _____ () C:\Users\f3rn\AppData\Local\z41cqp5g.lc5
2020-03-08 13:51 - 2020-03-08 13:52 - 000000000 _____ () C:\Users\f3rn\AppData\Local\{41246F7E-2EE6-4FE1-8D7C-17355C973EC8}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================