Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-12-2023
Ran by micha (administrator) on NEWGAMINGPC (ASUS System Product Name) (19-12-2023 10:22:58)
Running from C:\Users\micha\OneDrive\Plocha\FRST64.exe
Loaded Profiles: micha
Platform: Microsoft Windows 11 Home Version 22H2 22621.2861 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.147\BraveCrashHandler64.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzAppManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzDiagnostic
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzIoTDeviceManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSmartlightingDeviceManager
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\Softdeluxe\Free Download Manager\wenativehost.exe ->) (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.77\msedgewebview2.exe <6>
(C:\Users\micha\AppData\Local\Discord\app-1.0.9027\Discord.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(C:\Users\micha\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\micha\AppData\Local\Programs\Opera GX\105.0.4970.56\opera_crashreporter.exe
(C:\Users\micha\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\micha\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(cmd.exe ->) (ACLAP -> Node.js) C:\Program Files\net.downloadhelper.coapp\bin\net.downloadhelper.coapp-win-64.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(cmd.exe ->) (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\wenativehost.exe
(Discord Inc. -> Discord Inc.) C:\Users\micha\AppData\Local\Discord\app-1.0.9027\Discord.exe <6>
(DriverStore\FileRepository\u0397406.inf_amd64_327265d4e3c6acee\B397164\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0397406.inf_amd64_327265d4e3c6acee\B397164\atieclxx.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\AMD\ANR\AMDNoiseSuppression.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <38>
(explorer.exe ->) (FACE IT LIMITED -> ) C:\Program Files\FACEIT AC\faceitclient.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <3>
(Opera Norway AS -> Opera Software) C:\Users\micha\AppData\Local\Programs\Opera GX\opera.exe <34>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(services.exe ->) () [File not signed] C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0397406.inf_amd64_327265d4e3c6acee\B397164\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (FACE IT LIMITED -> ) C:\Program Files\FACEIT AC\faceitservice.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_ec6acb81b9300f24\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Plarium Global LTD -> PlariumPlayClientService) C:\Users\micha\AppData\Local\PlariumPlay\8.3.0-0.0.7\PlariumPlayClientService\PlariumPlayClientService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Urban Cyber Security Inc. -> ) C:\Program Files\UrbanVPN\bin\urbanvpnserv.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\micha\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <5>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [UniConverterUpdateHelper] => C:\Program Files\Wondershare\Wondershare UniConverter 14 for Windows\WSVCUUpdateHelper.exe [41712 2022-11-09] (Wondershare Technology Group Co.,Ltd -> )
HKLM\...\Run: [UrbanVPN] => C:\Program Files\UrbanVPN\bin\urbanvpn-gui.exe [23796072 2022-09-29] (Urban Cyber Security Inc. -> )
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.104\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-13] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [YKB 3400 PANZER] => C:\Program Files\FAST\PANZER\YKB 3400 PANZER.exe [1828864 2019-08-01] (TODO: <Company name>) [File not signed]
HKLM-x32\...\Run: [Launcher6015B] => C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\Launcher\xrlaunch.exe [2569728 2011-04-28] (Xerox) [File not signed]
HKLM-x32\...\Run: [6015B RUN] => C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmRun.exe [355840 2012-07-16] () [File not signed]
HKLM-x32\...\Run: [StatusAutoRun6015B] => "C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe" Xerox WorkCentre 6015B,hide,\S (No File)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543736 2023-11-21] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-07-30] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2023-09-15] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [460944 2023-01-20] (Power Software Limited -> Power Software Ltd)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Opera GX Stable] => C:\Users\micha\AppData\Local\Programs\Opera GX\launcher.exe [2296224 2023-12-18] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Discord] => C:\Users\micha\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-12-08] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Free Download Manager] => C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe [5654016 2022-08-18] (Softdeluxe) [File not signed]
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [com.blitz.app] => C:\Users\micha\AppData\Local\Programs\Blitz\Blitz.exe [166160592 2023-12-17] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\micha\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [978560 2023-10-24] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [MicrosoftEdgeAutoLaunch_ED02E366447D09E4F124EF89B233D989] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854376 2023-12-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2022-06-11] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1784664 2023-03-14] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3572488 2023-12-08] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [PlariumPlay] => C:\Users\micha\AppData\Local\PlariumPlay\PlariumPlay --args -run-with-os (No File)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Gaijin.Net Updater] => C:\Users\micha\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3036096 2022-10-20] (Gaijin Network LTD -> Gaijin)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Stryda] => C:\Users\micha\AppData\Local\Stryda\Update.exe [1908480 2023-10-06] (G-Loot Global Esports AB -> )
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [45945088 2023-10-26] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [RiotClient] => D:\Riot Games\Riot Client\RiotClientServices.exe [70918144 2023-12-12] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11517400 2023-11-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [VideoDownloadCapture] => C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe /autoStart (No File)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [AvastBrowserAutoLaunch_E8760D060CAF6C1EB31EBFCD30386D60] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3043480 2023-11-30] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2646120 2023-11-28] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [145336 2023-08-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\MountPoints2: E - "E:\fhm10setup.exe" 
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\MountPoints2: {32755366-7013-11ee-b3db-50ebf67840e6} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-337787295-885085327-400922016-1001\...\MountPoints2: {32755be2-7013-11ee-b3db-50ebf67840e6} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-18\...\Run: [RazerAxon] => C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe [452904 2023-12-15] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3572488 2023-12-08] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Windows x64\Print Processors\xrhk1apps: C:\Windows\System32\spool\prtprocs\x64\xrhk1apps.dll [33280 2012-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Xerox)
HKLM\...\Print\Monitors\Xerox WorkCentre 6015B Language Monitor: C:\Windows\system32\xrhk1alm.dll [22528 2012-03-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\120.0.23442.109\Installer\chrmstp.exe [2023-12-14] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.110\Installer\chrmstp.exe [2023-12-19] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\119.1.23320.200\Installer\chrmstp.exe [2023-12-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.104\Installer\chrmstp.exe [2023-12-14] (Brave Software, Inc. -> Brave Software, Inc.)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EE317E9-1CE5-4857-8A27-D29D18537FF3} - System32\Tasks\Opera scheduled Autoupdate 1647980794
Task: {9EC03411-B5A4-484C-95D4-D9FAED0758F7} - System32\Tasks\RazerCortexScheduleClean
Task: {BFFA01A7-6909-4254-B6C2-8FDB94A2A831} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {ADF6DEF1-C617-4973-810D-68970F1C9AA8} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-10-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {F66EAFDB-BF08-4CB1-B3F6-4F7E1FFFEBAF} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-10-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {E0429033-D404-4244-9CBD-EDFF71409706} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [309608 2022-09-27] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {D38222BC-1305-418B-8E57-E58B27E1D060} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1858920 2022-09-27] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {9E4FF232-CBB8-497C-908D-183C0C4BCE4A} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d8ff68f9a69eba => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-23] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {6A3BA70F-0A14-4396-975A-C40190EAA466} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-23] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {D8816B05-ADEE-45A2-8DB0-BE65C4155AF9} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [43797544 2022-09-01] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {441A74D2-D51F-45A6-B3F6-5F56E16207E1} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2022-09-29] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {45CA9D42-A82B-4E1A-8BFD-E7641DE69A05} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe  (No File)
Task: {C3593DA7-102D-47D0-BE85-2AD7CE4135D0} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3043480 2023-11-30] (Avast Software s.r.o. -> AVAST Software)
Task: {DB3D3CBD-DBD9-4420-A017-5E05B78815F9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3043480 2023-11-30] (Avast Software s.r.o. -> AVAST Software)
Task: {A4D22581-31EF-4BBF-B00C-92FA3676AB5F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-09-18] (Avast Software s.r.o. -> AVAST Software)
Task: {608A6E3F-3516-427F-B5FD-5C2E1789B6D0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-09-18] (Avast Software s.r.o. -> AVAST Software)
Task: {346E59C0-5958-4644-87C8-AAAB6B04FD7D} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3058000 2023-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {FB55E984-2180-404D-882B-9CC8F3475BF2} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3058000 2023-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3972213D-8706-4FD9-8B0F-B65065DC030F} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2023-10-02] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {7F40E176-84D2-4797-A400-9EBB230063AF} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2023-10-02] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {5EC57EBD-7780-4F46-9A75-19D177F565C1} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-23] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {3D84CC79-A685-42C4-AAEC-8C68579BB870} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-23] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {0460AC89-C8C0-4D2D-A925-F62FFDB605F4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F1DA16B1-3577-4C9A-B02D-0892595A0D84} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "bcbed447-3d7d-4765-88be-3367c13a2217" --version "6.10.10347" --silent
Task: {3BE4600F-6FF8-4318-8A47-9DEAEB3A6A3F} - System32\Tasks\CCleanerSkipUAC - micha => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {404C9632-2ED7-47E3-86F6-F38BBB883556} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe [128000 2022-08-18] (Softdeluxe) [File not signed]
Task: {BDBA1FCD-8543-495C-8FB9-237318771F04} - System32\Tasks\GoogleUpdateTaskMachineCore{9957A7C1-837A-4CC8-A2E0-0441D2431D08} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-23] (Google LLC -> Google LLC)
Task: {4A83F3FB-12BD-47CD-8604-A065D64EFA46} - System32\Tasks\GoogleUpdateTaskMachineUA{C44AED35-AA20-4B5E-8291-13054B22B67B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-23] (Google LLC -> Google LLC)
Task: {A8CA6F9D-F85F-4D53-9A28-10C43B73BC1C} - System32\Tasks\Christmas Task (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\9.5.0\xmas.exe"  /xr (No File)
Task: {4DA02AF8-25C9-421C-B18C-E7AFA8604DFB} - System32\Tasks\iTop BLACK FRIDAY Task (One-Time) => "C:\Program Files\iTop Screen Recorder\Pub\isrbfr.exe"  /isr (No File)
Task: {1E64E8FD-D803-477E-9E60-9EB214DC3D7F} - System32\Tasks\iTop Screen Recorder SkipUAC (micha) => C:\Program Files\iTop Screen Recorder\IScrRec.exe [16960768 2023-08-14] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {78CFFD85-9D80-4C87-ACAF-F7D72977991D} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files\iTop Screen Recorder\IScrRec.exe [16960768 2023-08-14] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {3CEAEC85-310F-4DF6-B6E7-AF2C5A3BB6DC} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files\iTop Screen Recorder\iScrInit.exe [2291456 2023-07-03] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {0AACFFF1-991B-4978-A209-9555C07B405F} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files\iTop Screen Recorder\AutoUpdate.exe [3435776 2023-07-04] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {9CE94A5F-7E44-4428-BC72-DBDF89CE9BB4} - System32\Tasks\iTop Screenshot SkipUAC (defaultuser100000) => C:\Program Files\iTop Screenshot\iScrShot.exe [7622400 2023-05-11] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {9AD5F85A-CED7-4AAA-9DB5-BE4AF70E6CAA} - System32\Tasks\iTop Screenshot SkipUAC (micha) => C:\Program Files\iTop Screenshot\iScrShot.exe [7622400 2023-05-11] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {1A8FA32A-63F1-43D7-A9E0-4472EB36A872} - System32\Tasks\iTop Screenshot Startup => C:\Program Files\iTop Screenshot\iScrShot.exe [7622400 2023-05-11] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {5B3C0003-CE9C-43A5-AB2C-6A2983D9670E} - System32\Tasks\iTop Screenshot Update => C:\Program Files\iTop Screenshot\AutoUpdate.exe [3081472 2023-05-17] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {B4EFD2E8-8D7F-472E-A83A-5138AA3B743B} - System32\Tasks\iTop XMS Task (One-Time) => C:\Program Files\iTop Screen Recorder\Pub\itopxmsp23.exe [15108144 2023-12-15] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {9452AEE9-1314-4328-9275-962378366EC6} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [253368 2023-07-18] (Microsoft Corporation -> Microsoft)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
Task: {5B2A046A-39E7-4988-B75C-9BF825BC3A87} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D9923AD2-A2D9-484F-9C99-22BE6838E99F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D1785B57-5DD5-4139-B4EC-C4FAAAC8B764} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {549C4955-A454-4650-9974-189AFE191362} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9C4C1F85-31FF-4635-87A9-045D5B7DD341} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-10-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {1A6D0269-F996-469D-997C-71D5047B0DD1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {71C9997C-F79B-432C-BFB4-57DEFE7E81A7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9675775F-4562-46FF-89D5-720D5422AADA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E5BB4026-1326-48B2-AD96-2C472C6C8D37} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B2BBFAA7-F0C3-4954-8F53-674A9942DA85} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DF31C376-44D7-4EA6-9D07-2A113CA3EFCF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5458D9B6-FA8C-48D7-9AEA-39E0FC74F9BD} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {17897D6C-4A39-4A69-A118-EBA2513B5E72} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D24ACBA0-921F-46F7-A326-550D9DE73D83} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {965FBF3D-2692-4E3F-8F8F-8CDFCEE599C8} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1648128177 => C:\Users\micha\AppData\Local\Programs\Opera GX\launcher.exe [2296224 2023-12-18] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\micha\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {4EB575B9-B35B-40EA-8927-F392173458F4} - System32\Tasks\Opera GX scheduled Autoupdate 1647985166 => C:\Users\micha\AppData\Local\Programs\Opera GX\launcher.exe [2296224 2023-12-18] (Opera Norway AS -> Opera Software)
Task: {C2BC1204-914B-46AE-9FDC-EC6FA8EFEBC0} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2638856 2023-03-14] (Overwolf Ltd -> Overwolf LTD)
Task: {5C9FD7E8-519F-40AA-90D5-A7766E3D6B95} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60344 2023-10-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {650E71BF-D42A-4073-AE7B-2D696732AF1D} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324024 2023-10-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {C79FA680-D56F-4FD7-8523-FD48EBAAE040} - System32\Tasks\Sump Task (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\9.5.0\sump.exe"  /sup2 (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2b4c3e9e-cffd-4951-ba6f-62a9693325f4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8ff7ec88-b4a4-4c7c-93bc-e8f838e36d3a}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-19]
Edge Notifications: Default -> hxxps://csgo500.com
Edge Extension: (Avira Safe Shopping) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2023-10-07]
Edge Extension: (MetaMask) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ejbalbakoplchlghecdalmeeeajnimhm [2023-11-07]
Edge Extension: (Dokumenty Google offline) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
Edge Extension: (Esportal+) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ifhcmneekidaiocafljckjjldjliidjk [2023-09-03]
Edge Extension: (Edge relevant text changes) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-18]
Edge Extension: (Free VPN for Edge - VPN Proxy VeePN) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\panammoooggmlehahpcjckcncfeffcoi [2023-12-14]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-09-15] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-09-18] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-09-18] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1650.5\npAvgBrowserUpdate3.dll [2023-10-02] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1650.5\npAvgBrowserUpdate3.dll [2023-10-02] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-09-15] (Adobe Inc. -> Adobe Systems)

Chrome: 
=======
CHR Profile: C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default [2023-12-18]
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Torrent Scanner) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-03-25]
CHR Extension: (The FFZ Add-On Pack) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimboljphncldaakcnapfolgnjonlea [2022-03-23]
CHR Extension: (BetterTTV) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2023-11-17]
CHR Extension: (Avira Password Manager) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-11-03]
CHR Extension: (Avira Safe Shopping) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2023-12-18]
CHR Extension: (Steam Inventory Helper) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2023-12-18]
CHR Extension: (Black green shards) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojkleigdijnbfecdhjigpgalhfhkdee [2022-03-23]
CHR Extension: (FrankerFaceZ) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2022-03-23]
CHR Extension: (Avira Browser Safety) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2023-10-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (VPN Free Unlimited - VPNLY) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaocagcijjdpkcabeanfpdbmapcjjg [2023-12-08]
CHR Extension: (Repeek (formerly FACEIT Enhancer)) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mokknliiomknodkdmpcellamkopbdmao [2023-12-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-23]
CHR Extension: (Extension for P2P) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmfjgkjalfcnnipmgfkeipkbehecpjbk [2023-10-29]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

Opera: 
=======
OPR Profile: C:\Users\micha\AppData\Roaming\Opera Software\Opera Stable [2023-10-20]
OPR Notifications: Opera Stable -> hxxps://csgo500.com
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={searchTerms}&sourceid=opera&ie={inputEncoding}&oe={outputEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Rich Hints Agent) - C:\Users\micha\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-10-20]
OPR Extension: (Opera Wallet) - C:\Users\micha\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-10-20]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\micha\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-03-22]
OPR Extension: (Opera AI Prompts) - C:\Users\micha\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-10-20]
StartMenuInternet: (HKU\S-1-5-21-337787295-885085327-400922016-1001) Opera GXStable - "C:\Users\micha\AppData\Local\Programs\Opera GX\Launcher.exe"

Brave: 
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-12-19]
BRA DefaultSearchKeyword: Default -> :g
BRA Extension: (Překladač Google) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-22]
BRA Extension: (Torrent Scanner) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-03-22]
BRA Extension: (Free Download Manager) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2022-03-23]
BRA Extension: (The FFZ Add-On Pack) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aiimboljphncldaakcnapfolgnjonlea [2022-03-23]
BRA Extension: (BetterTTV) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2023-11-18]
BRA Extension: (Steam Inventory Helper) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2023-12-19]
BRA Extension: (AHA Music - Hledač písní pro prohlížeč) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2023-09-22]
BRA Extension: (Obnovit stránku - automaticky obnovit stránku) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\egikkennjmdkmenllfmbigafjhicmeep [2023-07-14]
BRA Extension: (FrankerFaceZ) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2022-03-23]
BRA Extension: (Free VPN ZenMate-Best VPN for Chrome) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2023-05-19]
BRA Extension: (Esportal+) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ifhcmneekidaiocafljckjjldjliidjk [2023-01-20]
BRA Extension: (Video DownloadHelper) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2023-09-29]
BRA Extension: (Free VPN for Chrome - VPN Proxy VeePN) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\majdfhpaihoncoakbjgbdhglocklcgno [2023-12-12]
BRA Extension: (Shazam: Hledejte názvy skladeb v prohlížeči) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2023-10-20]
BRA Extension: (Repeek (formerly FACEIT Enhancer)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mokknliiomknodkdmpcellamkopbdmao [2023-12-16]
BRA Extension: (Automaticky obnovit stránku – znovu načíst stránku) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nagebjgefhenmjbjhjmdifchbnbmjgpa [2023-07-14]
BRA Extension: (MetaMask) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2023-12-15]
BRA Extension: (ShadowPay Trademanager) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\obhadkdgdffnnbdfpigjklinjhbkinfh [2023-11-03]
BRA Extension: (Esportal Enhancer) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\olmfkdaefegfpkolccopfmohncemakcj [2022-04-14]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-12-17]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-12-19]
BRA Extension: (Brave NTP background images) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-09-18]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-12-19]
BRA Extension: (Wallet Data Files Updater) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-12-18]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-12-19]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-12-01]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2023-04-11]
BRA Extension: (Brave NTP sponsored images) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2023-12-19]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-07]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2022-03-23]
BRA Extension: (Brave Ads Resources) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2023-11-17]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-12-19]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-23]
BRA Extension: (Brave Ad Block Updater (Easylist-Cookie List - Filter Obtrusive Cookie Notices)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfgnenkkneohplacnfabidofpgcdpofm [2022-12-01]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-12-05]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-11-26]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2022-12-01]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-24]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-09-15] (Adobe Inc. -> Adobe Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [394864 2022-09-27] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.15\atkexComSvc.exe [468504 2022-09-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-23] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-09-06] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-11-23] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [678256 2022-11-23] (ASUSTeK COMPUTER INC. -> ASUS)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [842128 2023-12-18] (ASUSTeK Computer Inc. -> )
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-09-18] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-09-18] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\119.1.23320.200\elevation_service.exe [1838472 2023-11-30] (Avast Software s.r.o. -> AVAST Software)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2023-10-02] (AVG Technologies USA, LLC -> AVG Technologies)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2023-10-02] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\120.0.23442.109\elevation_service.exe [1847248 2023-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15772456 2023-12-05] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-23] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-23] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.104\brave_vpn_helper.exe [2765336 2023-12-13] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.104\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-13] (Brave Software, Inc. -> Brave Software, Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1072440 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CortexLauncherService; C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe [588712 2023-11-21] (Razer USA Ltd. -> Razer Inc.)
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2022-06-11] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11187816 2023-11-28] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1137576 2023-12-02] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2023-10-10] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-09-02] (Epic Games Inc. -> Epic Games, Inc.)
R3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [70988680 2023-12-15] (FACE IT LIMITED -> )
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10738432 2023-10-26] (Logitech Inc -> Logitech, Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4799336 2023-09-13] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9343840 2023-12-08] (Malwarebytes Inc. -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [895152 2023-12-07] (McAfee, LLC -> McAfee, LLC)
R2 NativePushService; C:\Users\micha\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [595352 2023-08-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2638856 2023-03-14] (Overwolf Ltd -> Overwolf LTD)
R2 Plarium Play Client Service; C:\Users\micha\AppData\Local\PlariumPlay\8.3.0-0.0.7\PlariumPlayClientService\PlariumPlayClientService.exe [200512 2023-03-15] (Plarium Global LTD -> PlariumPlayClientService)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [2165168 2023-11-15] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [305072 2023-11-15] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma Stream Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe [1361360 2023-03-06] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256264 2023-02-10] (Razer USA Ltd. -> Razer Inc)
R2 Razer Game Manager Service 3; C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe [362760 2023-06-14] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [297736 2023-12-07] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; D:\Rockstar Games\Launcher\RockstarService.exe [4505072 2023-12-18] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [538424 2023-11-09] (Razer USA Ltd. -> Razer Inc.)
R2 UrbanVPNServiceInteractive; C:\Program Files\UrbanVPN\bin\urbanvpnserv.exe [450768 2022-09-29] (Urban Cyber Security Inc. -> )
S3 UrbanVPNUpdater; C:\Program Files\UrbanVPN\UrbanVPNUpdater.exe [1022312 2022-09-29] (Urban Cyber Security Inc. -> Urban Security)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142304 2022-06-01] (Microsoft Corporation -> Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2022-06-11] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XRNADB; C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe [96768 2012-07-16] () [File not signed]
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.104\elevation_service.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0397406.inf_amd64_327265d4e3c6acee\B397164\amdkmdag.sys [106410120 2023-11-03] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [49256 2022-08-15] (ASUSTeK COMPUTER INC. -> )
S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [2786712 2023-10-23] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2022-06-11] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-12-08] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-12-08] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-12-08] (Microsoft Corporation) [File not signed]
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2022-11-23] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R1 FACEIT; C:\Program Files\FACEIT AC\FACEIT_AC.sys [77297328 2023-12-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2022-03-22] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_1308f85f1b0adf27\iaLPSS2_I2C_TGL.sys [204440 2022-03-22] (Intel Corporation -> Intel Corporation)
R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [35344 2022-09-21] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.)
R3 iriuna0; C:\WINDOWS\system32\drivers\iriuna0.sys [46976 2021-04-06] (Iriun Oy -> Windows (R) Win 7 DDK provider)
R3 iriunvid; C:\WINDOWS\System32\DriverStore\FileRepository\iriunvid.inf_amd64_daa9f7b9ae89ea8c\iriunvid.sys [164976 2023-01-10] (Iriun Oy -> Windows (R) Win 7 DDK provider)
S3 ksophon_x64; C:\Windows\system32\drivers\ksophon_x64.sys [9966728 2022-08-17] (PROXIMA BETA PTE. LIMITED -> PROXIMA BETE)
R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [52672 2023-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-06-04] (Logitech Inc -> Logitech)
S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-06-04] (Logitech Inc -> Logitech)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-05-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2023-12-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl322b421f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EBAF02D0-4332-4AD9-B41F-95928B67E9C1}\MpKslDrv.sys [263560 2023-12-19] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2023-03-06] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_89da3c8218c64ec3\rt25cx21x64.sys [652264 2022-08-22] (Realtek Semiconductor Corp. -> Realtek)
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0084; C:\WINDOWS\System32\drivers\RzDev_0084.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2022-11-27] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [1432232 2023-09-21] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
S3 PDFWKRNL; \??\C:\Users\micha\AppData\Local\Temp\USBCPDFW\pdfwkrnl.sys [X] <==== ATTENTION
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-19 10:22 - 2023-12-19 10:23 - 000066269 _____ C:\Users\micha\OneDrive\Plocha\FRST.txt
2023-12-19 10:22 - 2023-12-19 10:23 - 000000000 ____D C:\FRST
2023-12-19 10:22 - 2023-12-18 22:20 - 002387456 _____ (Farbar) C:\Users\micha\OneDrive\Plocha\FRST64.exe
2023-12-18 20:20 - 2023-12-18 20:20 - 000000000 ____D C:\Users\micha\AppData\Local\DrugDealerSimulator2
2023-12-18 19:29 - 2023-12-18 19:29 - 000000649 _____ C:\Users\micha\OneDrive\Plocha\Rockstar Games Launcher.lnk
2023-12-18 19:07 - 2023-12-18 19:07 - 000725758 _____ C:\WINDOWS\system32\perfh005.dat
2023-12-18 19:07 - 2023-12-18 19:07 - 000151026 _____ C:\WINDOWS\system32\perfc005.dat
2023-12-18 18:14 - 2023-12-18 18:29 - 2553961891 _____ C:\Users\micha\Downloads\3pWHNlUXmfKJf1mtg9tPmUz4SBrig8Ij7iEmhQGIlNFyltoBS1Qt1wiZwCqWf59ImESP8TYqIWGCe5unbhPeTe4tYJcqYSERT0Euo9ILbTmvSmQHpBso7.mp4
2023-12-16 04:33 - 2023-12-16 04:33 - 033778043 _____ C:\Users\micha\Downloads\9_16 _ 202312160422 _ default (1).mp4
2023-12-16 04:30 - 2023-12-16 04:30 - 033972787 _____ C:\Users\micha\Downloads\9_16 _ 202312160422 _ default.mp4
2023-12-16 03:48 - 2023-12-16 03:48 - 032474866 _____ C:\Users\micha\Downloads\default.mp4
2023-12-15 10:13 - 2023-12-15 10:13 - 000003334 _____ C:\WINDOWS\system32\Tasks\iTop XMS Task (One-Time)
2023-12-14 11:15 - 2023-12-14 11:15 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-13 23:08 - 2023-12-13 23:08 - 028153308 _____ C:\Users\micha\Downloads\202312132307.mp4
2023-12-13 22:33 - 2023-12-13 22:33 - 000001460 _____ C:\Users\micha\OneDrive\Plocha\Wondershare Filmora 13.lnk
2023-12-13 22:33 - 2023-12-13 22:33 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wondershare
2023-12-13 22:32 - 2023-12-13 23:03 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2023-12-13 22:29 - 2023-12-13 22:29 - 002084344 _____ C:\Users\micha\Downloads\filmora_setup_full846.exe
2023-12-13 22:25 - 2023-12-13 22:26 - 013386873 _____ C:\Users\micha\Downloads\vod-1999830221-offset-478_V1.mp4
2023-12-13 22:18 - 2023-12-13 22:18 - 005441553 _____ C:\Users\micha\Downloads\de3134fc-82d5-4ac8-871f-b8caed2e7343.mp4
2023-12-13 22:01 - 2023-12-13 22:01 - 002084344 _____ C:\Users\micha\Downloads\filmora-idco_setup_full1901 (1).exe
2023-12-13 22:00 - 2023-12-13 22:01 - 002084344 _____ C:\Users\micha\Downloads\filmora-idco_setup_full1901.exe
2023-12-13 21:38 - 2023-12-13 21:38 - 017244004 _____ C:\Users\micha\Downloads\vod-1999830221-offset-478 (1).mp4
2023-12-13 20:59 - 2023-12-13 20:59 - 011958948 _____ C:\Users\micha\Downloads\AWP.mp4
2023-12-13 20:41 - 2023-12-13 20:41 - 023135753 _____ C:\Users\micha\Downloads\vod-1999830221-offset-478.mp4
2023-12-13 19:48 - 2023-12-13 20:13 - 1942702498 _____ C:\Users\micha\Downloads\gy1sX0cYVfVWu73UAnSBKc1GhVMUKNiN0u7GIoehQPSdXTn3f9muXzFV5s6nSRBHjKSaxi4DSJ8CZpIGWi6aueaCAGIBnu8Jh76fkQCa6Sgku3Xh8ESyY.mp4
2023-12-13 09:21 - 2023-12-13 09:23 - 000000000 ___HD C:\$WinREAgent
2023-12-09 20:15 - 2023-12-09 20:41 - 2456326673 _____ C:\Users\micha\Downloads\bELsDMhXvS12sGySdZIeyh5PF39i91treUYgFQXseYu2kTWOiEmcw6Tdru5kSxAtd2tr7iadHDZtOQTyxt3EH1pt53I1kIk7He5TRPc4bHVDHXqizPfWA.mp4
2023-12-06 00:00 - 2023-12-06 00:00 - 003167292 _____ C:\WINDOWS\Minidump\120623-13421-01.dmp
2023-12-05 20:37 - 2023-12-05 20:37 - 000000000 ____D C:\Users\micha\AppData\Local\BattlEye
2023-12-05 19:38 - 2023-12-05 19:38 - 002917940 _____ C:\WINDOWS\Minidump\120523-41031-01.dmp
2023-12-05 19:37 - 2023-12-06 00:00 - 1565370281 _____ C:\WINDOWS\MEMORY.DMP
2023-12-04 16:01 - 2023-12-04 16:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2023-12-04 00:05 - 2023-12-07 21:27 - 000001593 _____ C:\QueryAllDevice.xml
2023-12-04 00:05 - 2023-12-04 00:05 - 000000228 _____ C:\SetMatrixLEDScript.xml
2023-12-02 17:00 - 2023-12-02 17:00 - 000000000 ____D C:\Users\micha\AppData\Local\EpicOnlineServicesUIHelper
2023-12-01 21:17 - 2023-12-01 21:17 - 000031314 _____ C:\Users\micha\OneDrive\Plocha\proof 4.jpeg
2023-11-30 23:07 - 2023-11-30 23:10 - 000000000 ____D C:\Users\micha\AppData\Local\AkiVer
2023-11-30 23:07 - 2023-11-30 23:07 - 000000000 ____D C:\Users\micha\AppData\Roaming\AkiVer
2023-11-30 23:07 - 2023-11-30 23:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CSGO Demos Manager
2023-11-30 23:07 - 2023-11-30 23:07 - 000000000 ____D C:\Program Files (x86)\CSGO Demos Manager
2023-11-30 23:05 - 2023-11-30 23:05 - 102052184 _____ (AkiVer ) C:\Users\micha\Downloads\csgo-demos-manager-2.16.0.exe
2023-11-30 22:43 - 2023-11-30 22:43 - 000160108 _____ C:\Users\micha\Downloads\ACB-boiler-86898e45757b.zip
2023-11-30 22:38 - 2023-11-30 23:05 - 000000000 ____D C:\Users\micha\OneDrive\Plocha\CS 2 demo
2023-11-30 22:37 - 2023-11-30 22:37 - 000362269 _____ C:\Users\micha\Downloads\Boiler.rar
2023-11-30 09:44 - 2023-11-30 09:44 - 000093866 _____ C:\Users\micha\OneDrive\Plocha\proof 3.jpeg
2023-11-29 00:21 - 2023-11-29 00:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-11-28 23:26 - 2023-11-28 23:26 - 000000000 ____D C:\WINDOWS\Panther
2023-11-28 11:32 - 2023-11-28 11:32 - 000218187 _____ C:\Users\micha\OneDrive\Plocha\Unable to connect to steam error.jpeg
2023-11-28 10:16 - 2023-11-28 10:17 - 000000000 ___HD C:\adobeTemp
2023-11-27 13:52 - 2023-11-27 13:52 - 000000219 _____ C:\Users\micha\OneDrive\Plocha\Left 4 Dead.url
2023-11-26 13:31 - 2023-11-26 13:31 - 000071891 _____ C:\Users\micha\OneDrive\Plocha\proof 1.jpeg
2023-11-24 18:03 - 2023-11-24 18:03 - 011195935 _____ C:\Users\micha\Downloads\video.mkv
2023-11-24 15:57 - 2023-11-25 05:12 - 000000000 ____D C:\Users\micha\AppData\Roaming\Descript
2023-11-24 15:57 - 2023-11-25 01:47 - 000000000 ____D C:\Users\micha\AppData\Local\descript-updater
2023-11-24 15:57 - 2023-11-24 15:57 - 000002265 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Descript.lnk
2023-11-24 15:57 - 2023-11-24 15:57 - 000002263 _____ C:\Users\micha\OneDrive\Plocha\Descript.lnk
2023-11-24 15:55 - 2023-11-24 15:56 - 235089984 _____ (Descript, Inc.) C:\Users\micha\Downloads\Descript Setup 77.1.3-release.20231117.29658.exe
2023-11-22 19:20 - 2023-11-22 19:20 - 000560501 _____ C:\Users\micha\Downloads\Male Rap.mp4
2023-11-21 14:13 - 2023-11-21 14:14 - 209741308 _____ C:\Users\micha\Downloads\BOONDOCKS s03e02 SuperDrsňákův konec.avi
2023-11-19 17:41 - 2023-11-19 17:41 - 000000000 ____D C:\Users\micha\OneDrive\Plocha\Nová složka (6)
2023-11-19 11:40 - 2023-11-19 11:40 - 000000218 _____ C:\Users\micha\OneDrive\Plocha\Half-Life.url

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-19 10:13 - 2022-03-23 09:49 - 000000000 ____D C:\Program Files (x86)\Steam
2023-12-19 10:13 - 2022-03-23 08:46 - 000000000 ____D C:\Users\micha\AppData\Local\Discord
2023-12-19 10:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-19 10:04 - 2022-03-24 14:49 - 000000000 ____D C:\Program Files\CCleaner
2023-12-19 09:58 - 2022-03-26 01:07 - 000000000 ____D C:\Users\micha\AppData\Local\CrashDumps
2023-12-19 09:38 - 2022-03-23 08:32 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-19 09:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-19 09:18 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-19 09:14 - 2022-08-22 14:32 - 000000000 ____D C:\Program Files\FACEIT AC
2023-12-19 09:13 - 2023-11-17 10:46 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-12-19 09:13 - 2023-11-17 10:40 - 000003102 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2023-12-19 09:13 - 2023-05-16 08:47 - 000000000 ____D C:\Users\micha\AppData\Local\Malwarebytes
2023-12-19 09:13 - 2022-12-08 14:49 - 000004194 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1647985166
2023-12-19 09:13 - 2022-03-23 08:46 - 000000000 ____D C:\Users\micha\AppData\Roaming\discord
2023-12-19 09:13 - 2022-03-22 22:39 - 000001430 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera GX.lnk
2023-12-19 09:13 - 2022-03-22 21:14 - 000000000 ____D C:\ProgramData\iTop
2023-12-19 09:12 - 2022-03-22 21:29 - 000000000 ____D C:\ProgramData\NVIDIA
2023-12-19 02:31 - 2022-12-08 14:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-19 00:39 - 2022-03-23 08:33 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-18 23:43 - 2022-03-26 11:26 - 000000000 ____D C:\Users\micha\AppData\Roaming\EasyAntiCheat
2023-12-18 20:59 - 2022-12-24 16:03 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2023-12-18 20:59 - 2022-03-27 18:47 - 000000000 ____D C:\Program Files\Rockstar Games
2023-12-18 20:20 - 2022-03-22 21:08 - 000000000 ____D C:\Users\micha\AppData\Local\D3DSCache
2023-12-18 19:35 - 2022-03-30 17:51 - 000007592 _____ C:\Users\micha\AppData\Local\Resmon.ResmonCfg
2023-12-18 19:18 - 2022-04-18 18:30 - 000000000 ____D C:\Users\micha\AppData\Local\FiveM
2023-12-18 19:07 - 2022-12-08 15:52 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-18 19:07 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-12-18 19:00 - 2022-12-08 14:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-18 19:00 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-12-18 19:00 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-18 19:00 - 2022-03-23 03:58 - 000880672 _____ C:\WINDOWS\system32\wpbbin.exe
2023-12-18 19:00 - 2022-03-23 03:58 - 000842128 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2023-12-18 18:59 - 2022-12-08 14:47 - 000000000 ____D C:\Users\micha
2023-12-18 18:48 - 2023-03-17 17:38 - 000000000 ____D C:\WINDOWS\system32\AMD
2023-12-18 18:48 - 2022-03-23 03:58 - 000012288 ___SH C:\DumpStack.log.tmp
2023-12-18 18:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-12-18 09:18 - 2022-12-10 10:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon
2023-12-17 04:24 - 2022-03-23 14:35 - 000000000 ____D C:\Users\micha\AppData\Roaming\Blitz
2023-12-17 01:06 - 2022-11-27 18:04 - 000000000 ____D C:\Users\micha\AppData\Roaming\slobs-client
2023-12-17 00:23 - 2022-03-23 14:35 - 000000032 _____ C:\Users\micha\AppData\Roaming\.machineId
2023-12-17 00:18 - 2022-03-22 22:03 - 000000000 ____D C:\ProgramData\Riot Games
2023-12-16 20:38 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-15 16:50 - 2022-03-23 03:58 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-15 14:38 - 2022-11-23 19:25 - 000000000 ____D C:\Program Files\ASUS
2023-12-14 20:02 - 2023-10-02 14:56 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2023-12-14 11:16 - 2023-03-21 00:56 - 000000000 ____D C:\Program Files\AMD
2023-12-14 11:16 - 2022-12-08 14:46 - 000344656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-14 11:15 - 2023-10-13 09:08 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-14 11:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-14 11:15 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2023-12-14 00:37 - 2022-03-23 08:21 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-12-13 22:34 - 2022-11-15 11:34 - 000000000 ____D C:\Users\micha\AppData\Roaming\Wondershare
2023-12-13 22:33 - 2022-11-15 10:35 - 000000000 ____D C:\Users\micha\AppData\Local\Wondershare
2023-12-13 09:26 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-13 09:24 - 2022-12-08 14:47 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-10 15:27 - 2022-12-08 14:49 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-12-10 15:27 - 2022-10-13 14:04 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-12-09 17:05 - 2022-11-27 18:01 - 000000000 ____D C:\Program Files\Streamlabs OBS
2023-12-08 12:14 - 2022-09-16 08:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2023-12-08 01:33 - 2022-04-03 15:36 - 000239576 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2023-12-07 21:29 - 2022-09-16 08:09 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2023-12-07 21:27 - 2023-11-01 19:50 - 000014122 _____ C:\GetDeviceStatus.xml
2023-12-07 21:27 - 2023-11-01 19:50 - 000008577 _____ C:\GetDeviceCap.xml
2023-12-07 12:27 - 2022-03-23 03:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-12-07 10:30 - 2022-12-08 14:49 - 000003496 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2023-12-07 10:30 - 2022-12-08 14:49 - 000003372 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2023-12-06 17:11 - 2023-09-18 14:47 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2023-12-06 13:04 - 2023-04-25 21:32 - 000000000 ____D C:\Users\micha\AppData\Local\FACEIT
2023-12-06 13:04 - 2022-08-22 14:16 - 000000000 ____D C:\Users\micha\AppData\Roaming\FACEIT
2023-12-06 00:00 - 2023-01-10 15:42 - 000000000 ____D C:\WINDOWS\Minidump
2023-12-05 19:33 - 2022-12-08 14:49 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{C44AED35-AA20-4B5E-8291-13054B22B67B}
2023-12-05 19:33 - 2022-12-08 14:49 - 000003720 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{9957A7C1-837A-4CC8-A2E0-0441D2431D08}
2023-12-04 16:07 - 2023-02-17 00:00 - 000000000 ____D C:\Users\micha\AppData\Roaming\Stryda
2023-12-04 16:06 - 2023-07-30 21:53 - 000000000 ___RD C:\Users\micha\Creative Cloud Files
2023-12-04 16:06 - 2022-03-22 21:14 - 000000000 ____D C:\Program Files\iTop Screen Recorder
2023-12-04 16:04 - 2023-10-07 18:29 - 000000000 ____D C:\Program Files (x86)\Avira
2023-12-04 16:02 - 2022-03-22 21:13 - 000000000 ____D C:\ProgramData\ProductData
2023-12-04 16:02 - 2022-03-22 21:12 - 000000000 ____D C:\Program Files (x86)\IObit
2023-12-04 16:00 - 2023-03-18 16:29 - 000000000 ____D C:\Users\micha\AppData\Roaming\Easeware
2023-12-04 15:59 - 2022-03-23 13:53 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-12-03 16:28 - 2023-10-08 18:35 - 000000000 ____D C:\Users\Public\Security Sessions
2023-12-02 17:00 - 2022-03-23 23:40 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-12-01 10:53 - 2023-03-17 17:50 - 000000000 ____D C:\Users\micha\AppData\Local\AMD_Common
2023-11-30 07:57 - 2022-12-10 10:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex
2023-11-30 07:57 - 2022-09-16 08:12 - 000000000 ____D C:\Users\micha\AppData\Local\Razer
2023-11-29 02:16 - 2022-03-24 14:53 - 000000000 ____D C:\Users\micha\AppData\Local\LGHUB
2023-11-29 00:26 - 2023-09-11 20:28 - 000000000 ____D C:\Users\micha\AppData\Roaming\G HUB
2023-11-29 00:21 - 2023-06-04 19:11 - 000000000 ____D C:\Users\micha\AppData\Roaming\lghub
2023-11-29 00:21 - 2023-03-18 11:54 - 000000000 ____D C:\Program Files\LGHUB
2023-11-28 12:54 - 2022-12-08 14:49 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - micha
2023-11-23 22:11 - 2023-09-19 15:00 - 000000000 ____D C:\Users\micha\.lim
2023-11-21 21:20 - 2023-11-12 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA

==================== Files in the root of some directories ========

2022-03-23 14:35 - 2023-12-17 00:23 - 000000032 _____ () C:\Users\micha\AppData\Roaming\.machineId
2023-01-18 09:40 - 2023-01-18 20:41 - 000000076 _____ () C:\Users\micha\AppData\Roaming\BattleBitConfig.ini
2022-08-24 14:31 - 2022-09-15 22:00 - 000012288 _____ () C:\Users\micha\AppData\Roaming\emp.bin
2022-08-17 18:23 - 2022-08-17 18:23 - 000001004 _____ () C:\Users\micha\AppData\Roaming\tof_launcher.reg
2022-11-27 20:06 - 2022-11-27 20:08 - 000008146 _____ () C:\Users\micha\AppData\Roaming\VoiceMeeterDefault.xml
2022-11-25 23:45 - 2022-11-26 01:30 - 000001685 _____ () C:\Users\micha\AppData\Local\PlariumPlay.log
2022-03-30 17:51 - 2023-12-18 19:35 - 000007592 _____ () C:\Users\micha\AppData\Local\Resmon.ResmonCfg

==================== FCheck ================================

(If an entry is included in the fixlist, the file/folder will be moved.)

FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2022-12-16] <==== ATTENTION (zero byte File/Folder)

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================