Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Ran by sizeg (administrator) on DESKTOP-7K9JIJ6 (Micro-Star International Co., Ltd. MS-7A34) (27-11-2023 19:36:42)
Running from C:\Users\sizeg\Desktop\FRST64.exe
Loaded Profiles: sizeg & SQLTELEMETRY$CV & SQLTELEMETRY$TEW_SQLEXPRESS
Platform: Microsoft Windows 11 Pro Version 23H2 22635.2771 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: "C:\Program Files\WindowsApps\Mozilla.Firefox_120.0.0.0_x64__n80bbvh6b1yt2\VFS\ProgramFiles\Firefox Package Root\firefox.exe" -osint -url "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(082E9164-EE6C-4EC8-B62C-441FAE7BEFA1 -> Mozilla Corporation) C:\Program Files\WindowsApps\Mozilla.Firefox_120.0.0.0_x64__n80bbvh6b1yt2\VFS\ProgramFiles\Firefox Package Root\firefox.exe <19>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.72\msedgewebview2.exe <7>
(Discord Inc. -> Discord Inc.) C:\Users\sizeg\AppData\Local\Discord\app-1.0.9024\Discord.exe <6>
(explorer.exe ->) (Akeo Consulting -> Akeo Consulting) C:\Users\sizeg\Downloads\Windows 11 X64 Pro Activated + Office 2016 en-US OCT 2021 TPM 2.0 Bypassed - DS\Rufus USB-tool\rufus-3.17.exe
(explorer.exe ->) (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7zFM.exe
(Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2310.13.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Rémi Mercier) [File not signed] C:\fancontrol\FanControl.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (D-Link Corporation -> ) C:\Program Files (x86)\D-Link\DWA-172\WPSService20.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Windows Firewall Control\wfcs.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.CV\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL15.CV\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForLinux_2.0.11.0_x64__8wekyb3d8bbwe\wslinstaller.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WSL\wslservice.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlceip.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_1e678564fff99713\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\AOC G-Menu\DisplayTuneService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_6.123.11012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows\UUS\Packages\1212.2309.20012.0\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270560 2019-05-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [DisplayTune.exe] => C:\Program Files\Portrait Displays\AOC G-Menu\DisplayTune.exe [5588768 2019-08-13] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)
HKLM\...\Run: [AOC G-Menu] => C:\Program Files\Portrait Displays\AOC G-Menu\DisplayTune.exe [5588768 2019-08-13] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)
HKLM\...\Run: [Autodesk Access] => "C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe" --minimizedUi --autoLaunch (No File)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [367456 2023-10-08] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Trust GXT Gaming Mouse] => C:\Program Files (x86)\Trust\GXT 164\hid.exe [954368 2019-03-15] () [File not signed]
HKLM-x32\...\Run: [Glimmr Tray] => C:\Program Files\Glimmr\GlimmrTray.exe [14848 2021-11-14] (YANG Huan) [File not signed]
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2311840 2020-05-29] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe (No File)
HKLM\...\Policies\Explorer: [HideSCAMeetNow] 1
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableActivityFeed] 0
HKLM\Software\Policies\...\system: [PublishUserActivities] 0
HKLM\Software\Policies\...\system: [UploadUserActivities] 0
HKLM\Software\Policies\...\system: [AllowClipboardHistory] 0
HKLM\Software\Policies\...\system: [AllowCrossDeviceClipboard] 0
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [Discord] => C:\Users\sizeg\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1785864 2023-11-21] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [Spotify] => C:\Users\sizeg\AppData\Roaming\Spotify\Spotify.exe [20984184 2023-06-18] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [AltServer] => C:\Program Files (x86)\AltServer\AltServer.exe [2218496 2023-01-23] (AltStore LLC) [File not signed]
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [iFunBox] => C:\Program Files (x86)\i-Funbox DevTeam\iFunBox.exe [10124968 2021-07-29] (Appholly Technology Co., Ltd. -> i-Funbox.com)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374888 2023-09-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [Viber] => C:\Users\sizeg\AppData\Local\Viber\Viber.exe [72645840 2023-03-21] (Viber Media S.à r.l. -> Viber Media S.Ã  r.l.)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [MicrosoftEdgeAutoLaunch_5DABE8655EEBFA6B16696A1A875BE69E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3844032 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [com.blitz.app] => C:\Users\sizeg\AppData\Local\Programs\Blitz\Blitz.exe [166160592 2023-10-15] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [Opera GX Stable] => C:\Users\sizeg\AppData\Local\Programs\Opera GX\launcher.exe (No File)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70912472 2023-10-25] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\sizeg\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe (No File)
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Policies\Explorer: [HideSCAMeetNow] 1
HKU\S-1-5-21-3719303412-1536690661-2595606811-1001\...\Policies\Explorer: [] 
HKLM\...\Print\Monitors\Bullzip PDF Print Monitor: C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll [221696 2023-07-27] (Bullzip) [File not signed]
AppInit_DLLs-x32: C:\PROGRA~1\COMMON~1\System\symsrv.dll => C:\Program Files\Common Files\System\symsrv.dll [69337 2023-11-26] (Microsoft Corporation) [File not signed] <==== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Nástroj pro stahování na pozadí.lnk [2023-07-10]
ShortcutTarget: SOLIDWORKS Nástroj pro stahování na pozadí.lnk -> C:\Program Files (x86)\Common Files\Manažer instalací SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
Startup: C:\Users\sizeg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutoUpdate_tv.bat [2022-04-12] () [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {6AA490D4-4699-4C73-AA0E-8CF705686AFC} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
Task: {FFF9F767-E57B-4D86-BD86-B51790A52556} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {F9D90F4E-C889-4723-8C7F-36926B01B833} - System32\Tasks\CCleanerSkipUAC - sizeg => C:\Users\sizeg\Desktop\resources\stage_1_tempclean\ccleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B1838CA5-BD86-4265-872E-2BCE4E6DA2EA} - System32\Tasks\FanControl => c:\windows\system32\cmd.exe [323584 2023-11-18] (Microsoft Windows -> Microsoft Corporation) -> /C start /B FanControl.exe
Task: {FA9F0756-A3E4-4E4D-A024-E52C528BA07B} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [73648 2023-01-28] (Microsoft Corporation -> Microsoft)
Task: {DF8BD92C-7617-4954-8937-FB270EE4EBFC} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [311296 2023-11-18] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
Task: {93970434-C299-4483-B484-96E42C1A90DA} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {A068F52A-4E56-458F-8DD4-B53FF1C00C34} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {DF1B12BC-5AF5-40D8-A1E9-1B628FDA4832} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {C4720EA1-A148-45B6-9AF0-00F18690C595} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [680632 2018-07-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {9F0AFE71-4E0F-416E-87EB-61909A279B81} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {E1D31DCF-CB33-497E-A13B-BC1E37F5A25A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {BD7AC31F-4A30-407D-BB34-F950D1BE27BC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2DAF4E96-5CF2-4232-93C9-CCE9D51D512E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DDDDC082-BB1E-4C74-8FCB-B0795B74D44A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B00FDF6F-A1CF-4AA0-BE0A-CB7BBFAA8B31} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5487BC25-1D80-457A-9CA9-9DD6200BC4C3} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ED0DD7B3-7A84-488F-9E7F-2A3E8BD8732E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {36476AA0-C0B7-4CEC-BEF2-1A1E089AB569} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3485F67F-4E4A-4F8B-94FD-A806A114F329} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1696431897 => C:\Users\sizeg\AppData\Local\Programs\Opera GX\launcher.exe  -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\sizeg\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {89973DFD-1046-45C5-9AB9-F88FBDE4D5EF} - System32\Tasks\Opera GX scheduled Autoupdate 1695222260 => C:\Users\sizeg\AppData\Local\Programs\Opera GX\launcher.exe  --scheduledautoupdate $(Arg0) (No File)
Task: {D890D6F5-53A5-48D5-A90A-90E649C37DDC} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-11-21] (Overwolf Ltd -> Overwolf LTD)
Task: {B260F296-654C-4B29-933F-C78DEFD4177E} - System32\Tasks\VivaldiUpdateCheck-69c8ce12faf44ac1 => C:\Users\sizeg\AppData\Local\Vivaldi\Application\update_notifier.exe  --from-scheduler (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\MSIGH_Host.job => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
Task: C:\WINDOWS\Tasks\MSILEDKeeper_Host.job => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 1.1.1.1 1.0.0.1
Tcpip\..\Interfaces\{030468f1-efd8-4573-9140-5e7b06d0e6b5}: [DhcpNameServer] 1.1.1.1 1.0.0.1
Tcpip\..\Interfaces\{0b6f0be5-6072-4a3e-82ca-9068a5ef80b4}: [DhcpNameServer] 1.1.1.1 1.0.0.1
Tcpip\..\Interfaces\{6d70fa76-9d8d-4e70-a8d9-582fe4f52eee}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{6d70fa76-9d8d-4e70-a8d9-582fe4f52eee}: [DhcpNameServer] 1.1.1.1 1.0.0.1

Edge: 
=======
Edge Profile: C:\Users\sizeg\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-21]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (Dokumenty Google offline) - C:\Users\sizeg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-20]
Edge Extension: (Edge relevant text changes) - C:\Users\sizeg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-20]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\sizeg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-11-15]

FireFox:
========
FF DefaultProfile: 3d6e2b4g.default
FF ProfilePath: C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1 [2023-11-27]
FF Notifications: Mozilla\Firefox\Profiles\xauodr0o.default-release-1 -> hxxps://www.reddit.com; hxxps://app.element.io; hxxps://www.instagram.com; hxxps://traderie.com; hxxps://www.projectdiablo2.com
FF Extension: (HTML5 Video Everywhere) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\h5vew@tik.tn.xpi [2022-03-23]
FF Extension: (SoundCloud MP3 Downloader) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\jid1-hnmMaq1milpehc6uI@jetpack.xpi [2023-09-21]
FF Extension: (AdBlocker for YouTube™) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2023-11-06]
FF Extension: (Language: Čeština (Czech)) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\langpack-cs@firefox.mozilla.org.xpi [2023-11-25]
FF Extension: (Language: English (CA)) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\langpack-en-CA@firefox.mozilla.org.xpi [2023-11-25]
FF Extension: (Truffle) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\mogultv@mogultv.org.xpi [2023-11-03] [UpdateUrl:hxxps://v2.truffle.vip/firefox.json]
FF Extension: (SCDL SoundCloud Downloader) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\scdl@mrvv.net.xpi [2022-03-23]
FF Extension: (Simple Translate) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\simple-translate@sienori.xpi [2023-09-14]
FF Extension: (uBlock Origin) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\uBlock0@raymondhill.net.xpi [2023-11-03]
FF Extension: (Free music downloader pro VK | VKD) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\xauodr0o.default-release-1\Extensions\{a8fff5e8-00c2-455a-9958-d8cd10f8206d}.xpi [2023-06-07]
FF ProfilePath: C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\3d6e2b4g.default [2021-11-10]
FF ProfilePath: C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release [2023-09-21]
FF Notifications: Mozilla\Firefox\Profiles\gg15puuf.default-release -> hxxps://www.reddit.com; hxxps://traderie.com; hxxps://diablo2.io
FF Extension: (Real-Debrid) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release\Extensions\firefox@realdebrid.xpi [2022-01-06] [UpdateUrl:hxxps://app.real-debrid.com/rest/1.0/firefox/update.json]
FF Extension: (HTML5 Video Everywhere) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release\Extensions\h5vew@tik.tn.xpi [2021-11-10]
FF Extension: (SoundCloud MP3 Downloader) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release\Extensions\jid1-hnmMaq1milpehc6uI@jetpack.xpi [2021-11-10]
FF Extension: (AdBlocker for YouTube™) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2021-11-10]
FF Extension: (SCDL SoundCloud Downloader) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release\Extensions\scdl@mrvv.net.xpi [2021-11-10]
FF Extension: (Simple Translate) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release\Extensions\simple-translate@sienori.xpi [2022-03-08]
FF Extension: (uBlock Origin) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-02-25]
FF Extension: (Free music downloader pro VK | VKD) - C:\Users\sizeg\AppData\Roaming\Mozilla\Firefox\Profiles\gg15puuf.default-release\Extensions\{a8fff5e8-00c2-455a-9958-d8cd10f8206d}.xpi [2021-11-22]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50826.0\npctrl.dll [2010-08-26] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)

Opera: 
=======
StartMenuInternet: (HKU\S-1-5-21-3719303412-1536690661-2595606811-1001) Opera GXStable - "C:\Users\sizeg\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AOCDTAOCGMenuService; C:\Program Files\Portrait Displays\AOC G-Menu\DisplayTuneService.exe [212768 2019-08-13] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2023-10-02] (Apple Inc. -> Apple Inc.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1355776 2023-11-18] (Microsoft Windows -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-03-24] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9343840 2023-11-26] (Malwarebytes Inc. -> Malwarebytes)
S2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSSQL$CV; C:\Program Files\Microsoft SQL Server\MSSQL15.CV\MSSQL\Binn\sqlservr.exe [624680 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [624680 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [31928 2018-03-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_1e678564fff99713\Display.NvContainer\NVDisplay.Container.exe [1274888 2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641928 2023-11-21] (Overwolf Ltd -> Overwolf LTD)
S2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [296568 2022-01-17] (Razer USA Ltd. -> Razer Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-11-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2023-07-10] (SolidWorks) [File not signed]
S2 SQLAgent$CV; C:\Program Files\Microsoft SQL Server\MSSQL15.CV\MSSQL\Binn\SQLAGENT.EXE [690216 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [690216 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
S2 SQLBrowser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [395759 2023-08-15] (Microsoft Corporation) [File not signed]
R2 SQLTELEMETRY$CV; C:\Program Files\Microsoft SQL Server\MSSQL15.CV\MSSQL\Binn\sqlceip.exe [284608 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlceip.exe [284608 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [20713272 2023-07-10] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [804712 2022-10-19] (Oracle Corporation -> Oracle and/or its affiliates)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142304 2022-06-01] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 wfcs; C:\Program Files\Malwarebytes\Windows Firewall Control\wfcs.exe [138368 2023-08-05] (Malwarebytes Inc. -> Malwarebytes)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WPSService20; C:\Program Files (x86)\D-Link\DWA-172\WPSService20.exe [103056 2021-09-01] (D-Link Corporation -> )
R2 WslInstaller; C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForLinux_2.0.11.0_x64__8wekyb3d8bbwe\wslinstaller.exe [2770352 2023-11-24] (Microsoft Corporation -> Microsoft Corporation)
R2 WSLService; C:\Program Files\WSL\wslservice.exe [6253088 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
S2 AdskLicensingService; "C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe" [X]
S2 AdskNLM; "C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe" [X]
S2 Autodesk Access Service Host; "C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [540672 2023-03-24] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-03-24] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-12-24] (Microsoft Corporation) [File not signed]
S3 EasyAntiCheatSys; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys [13864408 2023-03-05] (EasyAntiCheat Oy -> EasyAntiCheat Oy)
S1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [35728 2018-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
R3 HidHide; C:\WINDOWS\System32\drivers\HidHide.sys [60960 2021-08-05] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S1 hwinterface; C:\Windows\SysWOW64\Drivers\hwinterface.sys [3026 2023-06-03] (Logix4u) [File not signed]
R3 I1KBFLTR; C:\WINDOWS\system32\drivers\I1KBFLTR.sys [29440 2014-06-26] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2021-11-27] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
S3 ipadtst2; C:\Program Files (x86)\MSI\Super Charger\ipadtst2_64.sys [26824 2020-02-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2023-05-04] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222784 2023-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-11-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt11.sys [233704 2023-11-26] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2023-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2023-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188008 2023-11-26] (Malwarebytes Inc. -> Malwarebytes)
R2 mi2c; C:\Windows\system32\drivers\mi2c.sys [20784 2021-11-10] (AOC International (Europe) GmbH -> Nicomsoft Ltd.)
S3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 R0FanControl; C:\fancontrol\FanControl.sys [14544 2023-11-26] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 R0RazerSynapseService; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.sys [14544 2022-02-10] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S4 RsFx0600; C:\WINDOWS\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0098; C:\WINDOWS\System32\drivers\RzDev_0098.sys [55624 2021-01-28] (Razer USA Ltd. -> Razer Inc)
R2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [205552 2021-02-12] (RH Software Ltd -> Ray Hinchliffe)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [278208 2023-02-21] (Valve Corp. -> Valve Corporation)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-08-20] (Microsoft Windows -> Microsoft Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 UsbDk; C:\WINDOWS\System32\Drivers\UsbDk.sys [103128 2020-03-13] (Red Hat, Inc. -> Red Hat Inc.)
S3 UsbNcm; C:\WINDOWS\System32\drivers\UsbNcm.sys [167936 2023-10-13] (Microsoft Windows -> )
S3 VBAudioHFVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_hfvaio64_win7.sys [33512 2021-12-27] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [254608 2022-10-19] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [265480 2022-10-19] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1060888 2022-10-19] (Oracle Corporation -> Oracle and/or its affiliates)
S3 VoiceAIDriver; C:\WINDOWS\System32\DriverStore\FileRepository\voiceaidriver.inf_amd64_214d6aacf9c41414\voiceaidriver.sys [73616 2023-06-20] (Voice AI LLC -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55744 2023-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [578856 2023-11-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-06] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsla5148613; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{216038A3-67CE-4126-96BE-806A27265E77}\MpKslDrv.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-11-27 19:36 - 2023-11-27 19:37 - 000038587 _____ C:\Users\sizeg\Desktop\FRST.txt
2023-11-27 11:57 - 2023-11-27 11:57 - 000000000 ____D C:\Program Files\PowerShell
2023-11-26 17:35 - 2023-11-26 17:35 - 030732945 ____N (projectdiablo2.com ) C:\Users\sizeg\Downloads\ProjectD2Installer(1).exe
2023-11-26 16:21 - 2023-11-26 16:21 - 000957822 _____ C:\WINDOWS\system32\perfh005.dat
2023-11-26 16:21 - 2023-11-26 16:21 - 000246162 _____ C:\WINDOWS\system32\perfc005.dat
2023-11-26 16:16 - 2023-11-26 16:16 - 000233704 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys
2023-11-26 16:16 - 2023-11-26 16:16 - 000188008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-11-26 13:46 - 2023-11-26 13:47 - 000161612 _____ C:\Users\sizeg\Downloads\Addition.txt
2023-11-26 13:44 - 2023-11-27 19:37 - 000000000 ____D C:\FRST
2023-11-26 13:44 - 2023-11-26 13:47 - 000067890 _____ C:\Users\sizeg\Downloads\FRST.txt
2023-11-26 13:43 - 2023-11-26 13:44 - 002383872 _____ (Farbar) C:\Users\sizeg\Desktop\FRST64.exe
2023-11-26 13:39 - 2023-11-27 16:17 - 000000000 ____D C:\Users\sizeg\AppData\Local\Malwarebytes
2023-11-26 13:39 - 2023-11-26 13:39 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-11-26 13:39 - 2023-11-26 13:39 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-11-26 13:39 - 2023-11-26 13:39 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-11-26 13:29 - 2023-11-26 13:29 - 008791352 _____ (Malwarebytes) C:\Users\sizeg\Downloads\AdwCleaner.exe
2023-11-26 13:29 - 2023-11-26 13:29 - 000000000 ____D C:\AdwCleaner
2023-11-26 13:17 - 2023-11-26 13:17 - 041173103 _____ C:\Users\sizeg\Downloads\iFRPFILE AIO v2.8.6.zip
2023-11-26 12:44 - 2023-11-26 12:44 - 082525958 _____ C:\Users\sizeg\Downloads\iRemoval PRO v6.6.1(2).zip
2023-11-25 19:45 - 2023-11-25 19:45 - 002606880 ____N (Malwarebytes) C:\Users\sizeg\Downloads\MBSetup(1).exe
2023-11-25 19:45 - 2023-11-25 19:45 - 000000000 ____D C:\Users\sizeg\AppData\Local\mbam
2023-11-25 19:22 - 2023-11-25 19:22 - 002419524 _____ C:\Users\sizeg\Downloads\EFI.rar
2023-11-25 19:22 - 2023-11-25 19:22 - 000002536 _____ C:\Users\sizeg\Downloads\config.rar
2023-11-25 19:04 - 2023-11-25 19:07 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\balena-etcher
2023-11-25 19:02 - 2023-11-25 19:02 - 139442712 _____ (Balena Ltd.) C:\Users\sizeg\Downloads\balenaEtcher-Portable-1.18.11.exe
2023-11-25 18:37 - 2023-11-25 18:55 - 797614599 _____ C:\Users\sizeg\Downloads\ModRa1n-AMD-By-JustATech.rar
2023-11-25 18:00 - 2023-11-25 18:00 - 000000000 ____D C:\Users\sizeg\.mitmproxy
2023-11-25 16:50 - 2023-11-25 16:50 - 082525958 _____ C:\Users\sizeg\Downloads\iRemoval PRO v6.6.1(1).zip
2023-11-25 16:32 - 2023-11-25 16:32 - 116064768 _____ (iKeyTools) C:\Users\sizeg\Downloads\WinRa1n2.0.exe
2023-11-25 16:32 - 2023-11-25 16:32 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\WinRa1n
2023-11-25 16:31 - 2023-11-25 16:31 - 025751552 _____ C:\Users\sizeg\Downloads\ipwn1x-1.0.iso
2023-11-25 16:29 - 2023-11-25 16:29 - 077790790 _____ C:\Users\sizeg\Downloads\F3arWin.zip
2023-11-25 16:16 - 2023-11-25 16:17 - 215029086 _____ C:\Users\sizeg\Downloads\Justatech Checkra1n 0.12.4 Windows.zip
2023-11-25 15:48 - 2023-11-25 15:48 - 000000000 ____D C:\Program Files (x86)\3uToolsV3
2023-11-25 14:38 - 2023-11-25 14:38 - 113735680 _____ C:\Users\sizeg\Downloads\c-palen1x-v1.0.10-2-amd64.iso
2023-11-25 14:18 - 2023-11-25 14:19 - 028663808 _____ C:\Users\sizeg\Downloads\checkn1x-1.1.7.iso
2023-11-25 13:46 - 2023-11-25 13:47 - 441450496 _____ C:\Users\sizeg\Downloads\bootra1n-x86_64-0.10.2-20200526.iso
2023-11-25 13:08 - 2023-11-25 13:08 - 082525958 _____ C:\Users\sizeg\Downloads\iRemoval PRO v6.6.1.zip
2023-11-25 13:08 - 2023-05-04 20:48 - 000100352 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\system32\libusbK.dll
2023-11-25 13:08 - 2023-05-04 20:48 - 000083968 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\SysWOW64\libusbK.dll
2023-11-25 13:08 - 2023-05-04 20:48 - 000047928 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\system32\Drivers\libusbK.sys
2023-11-25 13:08 - 2023-05-04 20:48 - 000046080 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\SysWOW64\libusb0.dll
2023-11-25 13:08 - 2018-05-04 09:18 - 006112072 _____ (Apple, Inc.) C:\WINDOWS\system32\usbaaplrc.dll
2023-11-25 13:06 - 2023-11-25 13:06 - 046458818 _____ C:\Users\sizeg\Downloads\iBypasserRamdiskAIOxSNv2.8 (WINDOWS OS).zip
2023-11-25 13:06 - 2023-11-25 13:06 - 000069337 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlcoer.dll
2023-11-25 12:27 - 2023-11-25 12:27 - 117091720 _____ C:\Users\sizeg\Downloads\Checkm8.info_Software_3.3_win.zip
2023-11-25 12:20 - 2023-11-25 12:20 - 017670676 _____ C:\Users\sizeg\Downloads\iBypass LPro V1.1.zip
2023-11-25 12:20 - 2023-11-25 12:20 - 016929081 _____ C:\Users\sizeg\Downloads\iBypass LPro V1.0.zip
2023-11-25 12:03 - 2023-11-25 12:03 - 236749126 _____ C:\Users\sizeg\Downloads\iBypasserMultiToolGSM_MEIDv4.1 (WINDOWS OS).zip
2023-11-25 01:47 - 2023-11-25 01:47 - 000149924 _____ C:\Users\sizeg\Downloads\EE_CEN_REL_K_210601_DOM_EGD.pdf
2023-11-25 01:44 - 2023-11-25 01:44 - 000247199 _____ C:\Users\sizeg\Downloads\EE_CEN_OPTplus_200123_DOM_EON.pdf
2023-11-21 21:57 - 2023-11-25 13:54 - 000000000 ____D C:\3uToolsV3
2023-11-21 21:57 - 2023-11-21 21:57 - 000000000 ____D C:\Users\sizeg\AppData\Local\3uTools
2023-11-21 21:56 - 2023-11-21 21:56 - 193589320 _____ C:\Users\sizeg\Downloads\3uTools_v3.05.031_Setup_x86.exe
2023-11-21 21:56 - 2023-11-21 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3uToolsV3
2023-11-21 21:50 - 2023-11-21 21:50 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2023-11-21 21:50 - 2023-11-21 21:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2023-11-21 21:50 - 2023-11-21 21:50 - 000000000 ____D C:\Program Files\iTunes
2023-11-19 21:16 - 2023-11-19 21:16 - 000224068 _____ C:\Users\sizeg\Downloads\dark.filter
2023-11-18 20:55 - 2023-11-18 20:57 - 000000000 ___HD C:\$WinREAgent
2023-11-17 19:58 - 2023-11-17 19:58 - 005519200 _____ C:\Users\sizeg\Downloads\IMG_0119.mp4
2023-11-17 19:49 - 2023-11-17 19:49 - 016066735 _____ C:\Users\sizeg\Downloads\RPReplay_Final1611244241 (1).mov
2023-11-16 22:03 - 2023-11-16 22:03 - 000000000 ____D C:\Users\sizeg\AppData\LocalLow\NVIDIA
2023-11-16 21:18 - 2023-11-10 12:38 - 001487368 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-11-16 21:18 - 2023-11-10 12:38 - 001424064 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-11-16 21:18 - 2023-11-10 12:38 - 001424064 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-11-16 21:18 - 2023-11-10 12:38 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-11-16 21:18 - 2023-11-10 12:38 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-11-16 21:18 - 2023-11-10 12:38 - 001226872 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-11-16 21:18 - 2023-11-10 12:38 - 000850512 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-11-16 21:18 - 2023-11-10 12:38 - 000850512 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-11-16 21:18 - 2023-11-10 12:38 - 000731216 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-11-16 21:18 - 2023-11-10 12:38 - 000731216 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-11-16 21:18 - 2023-11-10 12:34 - 001541256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-11-16 21:18 - 2023-11-10 12:34 - 001198200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-11-16 21:18 - 2023-11-10 12:34 - 000669712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2023-11-16 21:18 - 2023-11-10 12:34 - 000504840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2023-11-16 21:18 - 2023-11-10 12:33 - 002171000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-11-16 21:18 - 2023-11-10 12:33 - 001624712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-11-16 21:18 - 2023-11-10 12:33 - 000997512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-11-16 21:18 - 2023-11-10 12:33 - 000810104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-11-16 21:18 - 2023-11-10 12:33 - 000774280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-11-16 21:18 - 2023-11-10 12:32 - 015095416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-11-16 21:18 - 2023-11-10 12:32 - 012375160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-11-16 21:18 - 2023-11-10 12:32 - 006462600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-11-16 21:18 - 2023-11-10 12:32 - 005862520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-11-16 21:18 - 2023-11-10 12:32 - 005861000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-11-16 21:18 - 2023-11-10 12:32 - 003619960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-11-16 21:18 - 2023-11-10 12:32 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-11-16 21:18 - 2023-11-10 12:32 - 000459384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-11-16 21:18 - 2023-11-10 03:07 - 000113883 _____ C:\WINDOWS\system32\nvinfo.pb
2023-11-16 20:54 - 2023-11-16 20:54 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-11-16 20:54 - 2023-11-16 20:54 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-11-15 22:07 - 2023-11-15 22:08 - 1195311104 _____ C:\Users\sizeg\Downloads\Win_10_Pro_Build_18363.1909.476.iso
2023-11-06 19:30 - 2023-11-06 19:30 - 001430872 _____ C:\Users\sizeg\Downloads\iksp_vyzkum.pdf
2023-11-05 16:35 - 2023-11-05 16:35 - 000002321 _____ C:\Users\sizeg\Desktop\DiabloDex.lnk
2023-11-05 16:34 - 2023-11-05 16:34 - 002098344 _____ (Overwolf Ltd.) C:\Users\sizeg\Downloads\DiabloDex - Installer.exe
2023-11-02 21:03 - 2023-11-02 21:03 - 002169540 _____ C:\Users\sizeg\Downloads\seo-by-rank-math-pro-3.0.47.zip
2023-11-02 20:46 - 2023-11-02 20:46 - 003663382 _____ C:\Users\sizeg\Downloads\wp-rocket_3.12.4.zip
2023-11-02 20:45 - 2023-11-02 20:45 - 007993838 _____ C:\Users\sizeg\Downloads\Rank Math Pro Complete Package (Unzip First).rar
2023-11-02 20:45 - 2023-01-25 20:26 - 001579897 _____ C:\Users\sizeg\Desktop\seo-by-rank-math-pro-shineads.zip
2023-11-02 18:14 - 2023-11-02 18:47 - 000030744 _____ C:\Users\sizeg\Downloads\Nový-1.php
2023-11-02 18:11 - 2023-11-02 18:12 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\Brackets
2023-11-02 18:10 - 2023-11-02 18:10 - 000000720 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2023-11-02 18:10 - 2023-11-02 18:10 - 000000000 ____D C:\ProgramData\Caphyon
2023-11-02 18:10 - 2023-11-02 18:10 - 000000000 ____D C:\Program Files (x86)\Brackets
2023-11-02 18:07 - 2023-11-02 18:23 - 000027754 _____ C:\Users\sizeg\Downloads\nav-search-aktual.php
2023-11-02 13:05 - 2023-11-02 13:05 - 002782732 _____ C:\WINDOWS\Minidump\110223-7000-01.dmp
2023-11-02 12:54 - 2023-11-03 23:36 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\d2trader
2023-11-02 12:54 - 2023-11-02 12:54 - 087660375 _____ (D2Trader) C:\Users\sizeg\Downloads\d2trader.exe
2023-11-02 12:54 - 2023-11-02 12:54 - 000002323 _____ C:\Users\sizeg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D2Trader.net.lnk
2023-11-02 12:54 - 2023-11-02 12:54 - 000002315 _____ C:\Users\sizeg\Desktop\D2Trader.net.lnk
2023-11-02 12:54 - 2023-11-02 12:54 - 000000000 ____D C:\Users\sizeg\AppData\Local\d2trader-updater
2023-11-01 22:58 - 2023-11-01 22:58 - 000121146 _____ C:\Users\sizeg\Downloads\privat logo google.psd
2023-11-01 22:51 - 2023-11-01 22:51 - 003856979 _____ C:\Users\sizeg\Downloads\memberpress11119.rar
2023-11-01 19:56 - 2023-11-01 19:56 - 000000681 _____ C:\Users\sizeg\Desktop\login-language.php
2023-11-01 19:48 - 2023-11-01 19:48 - 006667342 _____ C:\Users\sizeg\Downloads\net2ftp-1698864526.zip
2023-11-01 19:45 - 2023-11-01 19:45 - 011338928 _____ C:\Users\sizeg\Downloads\wpml-multilingual-v4.5.0-beta1.zip
2023-11-01 18:37 - 2023-11-01 18:37 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\CLR Security Config
2023-10-31 23:54 - 2023-10-31 23:54 - 000028622 _____ C:\Users\sizeg\Downloads\velvet-blues-update-urls.3.2.10.zip
2023-10-31 23:47 - 2023-10-31 23:47 - 001643315 _____ C:\Users\sizeg\Downloads\really-simple-ssl.7.1.3.zip
2023-10-31 23:16 - 2023-10-31 23:16 - 006664458 _____ C:\Users\sizeg\Downloads\TOP-PRIVAT ZALOHA.zip
2023-10-31 19:13 - 2023-11-01 22:58 - 000487689 _____ C:\Users\sizeg\Downloads\grafika nahled stranky topprivat.psd
2023-10-31 18:43 - 2023-10-31 18:43 - 005325949 _____ C:\Users\sizeg\Downloads\Yoast-SEO-Premium-v21.4.zip
2023-10-31 18:36 - 2023-10-31 18:36 - 000746466 _____ C:\Users\sizeg\Downloads\WooCommerce-Dynamic-Pricing-Discounts-with-AI-v2.6.0.zip
2023-10-31 18:33 - 2023-10-31 18:33 - 002722401 _____ C:\Users\sizeg\Downloads\woocommerce-subscriptions.zip
2023-10-31 17:47 - 2023-10-31 17:48 - 000008047 _____ C:\Users\sizeg\Desktop\header.php
2023-10-29 15:31 - 2023-10-29 15:31 - 000030533 _____ C:\Users\sizeg\Downloads\class-wp-meta-query.php
2023-10-29 13:14 - 2023-10-29 13:14 - 000002534 _____ C:\Users\sizeg\Desktop\slider-css.css
2023-10-29 12:22 - 2023-10-29 12:22 - 000029570 _____ C:\Users\sizeg\Documents\nav-search.php
2023-10-29 12:22 - 2023-10-29 12:22 - 000028203 _____ C:\Users\sizeg\Downloads\nav-search.php
2023-10-29 12:19 - 2023-10-29 13:53 - 000033343 _____ C:\Users\sizeg\Desktop\nav-search (2).php

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-11-27 19:38 - 2021-11-10 02:26 - 000000000 ____D C:\Users\sizeg\AppData\Local\CrashDumps
2023-11-27 19:34 - 2022-02-26 21:17 - 000000000 ____D C:\Users\sizeg\AppData\Local\D3DSCache
2023-11-27 19:23 - 2021-11-14 19:12 - 000000000 ____D C:\Users\sizeg\AppData\Local\Discord
2023-11-27 19:22 - 2022-07-25 12:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-27 18:46 - 2021-12-18 22:45 - 000000000 ____D C:\Program Files (x86)\Overwolf
2023-11-27 16:16 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-27 12:25 - 2022-02-26 21:14 - 000000000 ____D C:\ProgramData\NVIDIA
2023-11-27 11:57 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-27 11:57 - 2021-11-28 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerShell
2023-11-27 11:57 - 2021-11-09 23:46 - 000000000 ____D C:\ProgramData\Package Cache
2023-11-26 17:36 - 2023-09-21 14:51 - 000000725 _____ C:\Users\Public\Desktop\Project Diablo 2.lnk
2023-11-26 17:23 - 2021-11-10 11:28 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\discord
2023-11-26 17:12 - 2022-08-13 15:41 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\vlc
2023-11-26 16:21 - 2022-07-25 12:43 - 002397086 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-26 16:21 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-11-26 16:20 - 2022-02-11 02:34 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-26 16:18 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-26 16:16 - 2023-07-11 14:26 - 000000000 ____D C:\Program Files\TeamViewer
2023-11-26 16:16 - 2022-07-25 12:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-26 16:16 - 2022-02-12 18:11 - 000000000 ____D C:\fancontrol
2023-11-26 16:16 - 2021-11-10 08:15 - 000012288 ___SH C:\DumpStack.log.tmp
2023-11-26 16:15 - 2022-07-25 12:39 - 000000296 ____H C:\WINDOWS\Tasks\MSILEDKeeper_Host.job
2023-11-26 16:15 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-11-26 15:42 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-26 13:39 - 2023-01-15 13:07 - 000000000 ____D C:\Program Files\Malwarebytes
2023-11-26 13:39 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-11-26 13:32 - 2022-07-25 12:26 - 000000000 ____D C:\Users\sizeg
2023-11-26 13:31 - 2023-07-10 19:40 - 000000000 ____D C:\SolidWorks_Flexnet_Server
2023-11-26 13:01 - 2021-11-29 20:28 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2023-11-26 13:01 - 2021-11-29 20:27 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2023-11-26 12:43 - 2022-01-06 23:53 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\Telegram Desktop
2023-11-25 19:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-11-25 15:11 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-25 13:51 - 2023-10-27 19:14 - 000000000 ____D C:\Users\sizeg\Downloads\cache
2023-11-25 13:48 - 2021-11-28 04:53 - 000000000 ____D C:\Users\sizeg\AppData\Local\Rufus
2023-11-25 12:56 - 2023-02-25 10:18 - 000000000 ____D C:\Users\sizeg\Downloads\Telegram Desktop
2023-11-21 21:50 - 2022-01-06 12:27 - 000000000 ____D C:\ProgramData\Apple Computer
2023-11-21 21:38 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-11-21 21:29 - 2023-01-16 19:48 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-11-21 21:29 - 2021-11-10 08:15 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-21 21:21 - 2022-07-25 12:39 - 000713288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-21 04:01 - 2022-07-25 12:17 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-11-21 04:01 - 2022-07-25 12:17 - 000000000 ____D C:\WINDOWS\system32\cs
2023-11-21 04:01 - 2022-05-07 08:39 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-11-21 04:01 - 2022-05-07 08:39 - 000000000 ____D C:\WINDOWS\InboxApps
2023-11-21 04:01 - 2022-05-07 08:39 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\lxss
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\id-ID
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-21 04:01 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-21 04:01 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2023-11-20 23:11 - 2022-07-25 12:42 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3719303412-1536690661-2595606811-1001
2023-11-20 23:11 - 2022-07-25 12:42 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3719303412-1536690661-2595606811-1001
2023-11-20 23:11 - 2021-11-09 23:45 - 000002381 _____ C:\Users\sizeg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-18 21:07 - 2022-05-07 08:39 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-18 21:07 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-18 21:07 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-18 21:07 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-18 21:03 - 2022-07-25 12:41 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-16 22:04 - 2022-02-26 21:37 - 000000000 ____D C:\Users\sizeg\AppData\Local\NVIDIA
2023-11-16 22:03 - 2022-02-26 21:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-11-16 20:54 - 2022-07-25 12:42 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-11-16 20:54 - 2022-07-25 12:42 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-11-16 20:54 - 2022-07-25 12:42 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-11-16 20:54 - 2022-07-25 12:42 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-11-16 20:54 - 2022-07-25 12:42 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-11-16 20:54 - 2022-07-25 12:42 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-11-16 20:54 - 2022-02-26 21:37 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2023-11-16 20:54 - 2022-02-26 21:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-11-16 20:54 - 2022-02-26 21:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-11-16 20:54 - 2022-02-26 21:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-11-16 20:20 - 2023-10-21 09:23 - 000002195 _____ C:\Users\sizeg\Desktop\youtupe.txt
2023-11-16 20:19 - 2023-09-22 21:41 - 000000000 ____D C:\Users\sizeg\Desktop\lolscript
2023-11-16 19:53 - 2021-11-10 02:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-16 19:48 - 2021-11-10 02:22 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-16 19:47 - 2021-12-15 16:14 - 000000000 ____D C:\Users\Default\.dotnet
2023-11-16 19:46 - 2021-11-28 11:32 - 000000000 ____D C:\Program Files\dotnet
2023-11-14 23:16 - 2021-11-10 11:28 - 000002231 _____ C:\Users\sizeg\Desktop\Discord.lnk
2023-11-10 12:34 - 2022-07-21 12:47 - 000957960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-11-10 12:31 - 2022-07-21 12:47 - 007866472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-11-10 12:30 - 2022-07-21 12:47 - 006745880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-11-07 23:13 - 2021-11-10 02:26 - 000000000 ____D C:\Users\sizeg\AppData\Local\Battle.net
2023-11-06 23:12 - 2021-11-10 08:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-05 17:20 - 2023-10-04 19:20 - 000000000 ____D C:\Diablo II Resurrected
2023-11-05 16:35 - 2021-12-18 22:45 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2023-11-05 16:35 - 2021-12-18 22:18 - 000000000 ____D C:\Users\sizeg\AppData\Local\Overwolf
2023-11-03 22:16 - 2021-11-09 23:44 - 000000000 ____D C:\Users\sizeg\AppData\Local\Packages
2023-11-03 03:29 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-02 13:05 - 2023-05-04 18:47 - 1529227087 _____ C:\WINDOWS\MEMORY.DMP
2023-11-02 13:05 - 2022-07-31 10:47 - 000000000 ____D C:\WINDOWS\Minidump
2023-11-02 05:00 - 2022-02-26 21:37 - 002905128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2023-11-02 05:00 - 2022-02-26 21:37 - 002235944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2023-11-02 05:00 - 2022-02-26 21:37 - 001296936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2023-11-02 04:33 - 2021-11-10 00:01 - 000086568 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2023-11-02 04:33 - 2021-11-10 00:01 - 000075304 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2023-10-31 19:18 - 2022-01-04 15:47 - 000001456 _____ C:\Users\sizeg\AppData\Local\Adobe Save for Web 13.0 Prefs
2023-10-31 19:00 - 2023-01-08 19:04 - 000000000 ____D C:\Users\sizeg\AppData\Local\Adobe
2023-10-31 17:42 - 2021-11-09 23:44 - 000000000 ____D C:\Users\sizeg\AppData\Roaming\Adobe

==================== Files in the root of some directories ========

2021-12-09 17:37 - 2023-10-16 19:08 - 000000032 _____ () C:\Users\sizeg\AppData\Roaming\.machineId
2021-12-26 21:33 - 2023-10-24 20:42 - 000000132 _____ () C:\Users\sizeg\AppData\Roaming\Adobe PNG Format CS6 Prefs
2021-11-23 23:55 - 2021-11-29 23:08 - 000001187 _____ () C:\Users\sizeg\AppData\Roaming\CascView.ini
2022-01-04 15:47 - 2023-10-31 19:18 - 000001456 _____ () C:\Users\sizeg\AppData\Local\Adobe Save for Web 13.0 Prefs
2022-12-23 04:16 - 2022-12-23 04:16 - 000000017 _____ () C:\Users\sizeg\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================