Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11.01.2024
Ran by nitro (administrator) on DESKTOP-J5U6QGF (Acer Nitro AN515-55) (15-01-2024 21:54:22)
Running from C:\Users\nitro\OneDrive\Desktop\FRST64.exe
Loaded Profiles: nitro & Natálie & D3StinyCZ
Platform: Microsoft Windows 11 Home Version 22H2 22621.3007 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.400.20.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.133\msedgewebview2.exe <7>
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft FZE LLC) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_fa6b3fb2c05394c2\esif_uf.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_9ebfa3a30e04ccef\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe
(services.exe ->) (Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2401.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5287.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.400.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <8>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\nitro\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9971779a1c712866\RtkAudUService64.exe [1201968 2020-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CNAP2 Launcher] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC. -> CANON INC.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [196264 2023-12-12] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711328 2022-06-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2012-01-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [YHP 3035 Gaming Headset 7.1] => C:\Program Files (x86)\YENKEE\Gaming Headset\YHP 3035\YHP 3035 Gaming Headset 7.1.exe [11706368 2023-11-12] (Solid State System) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [482128 2023-08-09] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13872608 2023-08-09] (GOG  sp. z o.o -> GOG.com)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [PureVPN] => C:\Program Files (x86)\GZ Systems\PureVPN\PureVPN.exe [4521984 2023-12-18] (GZ Systems Limited -> GZ Systems)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\Microsoft.SharePoint.exe [545824 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37157328 2023-11-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [Gaijin.Net Updater] => C:\Users\nitro\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3065544 2023-10-06] (Gaijin Network Ltd -> Gaijin)
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Run: [Gili File Lock Helper] => C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\WinFLockerHelp.exe [28944 2019-02-15] (SiChuan HengYiDa XinXiJiShu YouXianGongSi -> )
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\MountPoints2: {a6bfd0f6-36dc-11ee-b94b-e4a8dff932bc} - "D:\start.exe" 
HKU\S-1-5-21-175739054-1859323861-2923461289-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-175739054-1859323861-2923461289-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-175739054-1859323861-2923461289-1003\...\Run: [MicrosoftEdgeAutoLaunch_DF58177FAFB93C07F3BD36749EE51E3A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854272 2024-01-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-175739054-1859323861-2923461289-1003\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-18] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\CNAP2 Monitor: C:\WINDOWS\system32\CNAP2LMD.DLL [486400 2012-09-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\novaPDF Port Monitor: C:\WINDOWS\system32\novamn8.dll [18944 2017-06-06] (Softland) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.217\Installer\chrmstp.exe [2024-01-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
Startup: C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2022-05-26]
ShortcutTarget: MEGAsync.lnk -> C:\Users\nitro\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {90950C53-5996-4D01-A282-8567C135A921} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> )
Task: {20700F66-5CB2-4FE4-8FD2-92677FF16CDB} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41632 2021-12-30] (Acer Incorporated -> )
Task: {6237CAEC-0F96-40F0-A017-FFBDB1D22396} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836512 2021-12-30] (Acer Incorporated -> )
Task: {5A12BE80-827D-4F27-8F46-29BDDD0BE78E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {F6960E98-3AF3-4CC5-BC31-61BFD68AA51E} - System32\Tasks\CareCenter\Steam_Reg_HKCURun_S-1-5-21-175739054-1859323861-2923461289-1001 => C:\Program Files (x86)\Steam\steam.exe [4388200 2024-01-13] (Valve Corp. -> Valve Corporation)
Task: {0A2A9F39-E9E2-4432-B890-EC8DD0AB46F5} - System32\Tasks\CareCenter\Wargaming.net Game Center_Reg_HKCURun_S-1-5-21-175739054-1859323861-2923461289-1001 => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2189592 2023-11-15] (Wargaming Group Limited -> Wargaming.net)
Task: {720F58DF-2DFA-4FA2-9863-CC3BDF43A90C} - System32\Tasks\GoogleUpdateTaskMachineCore{386273D7-5774-4A13-B3D0-6D9DCCDD1AF5} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-30] (Google LLC -> Google LLC)
Task: {06AF6C09-CC64-4CF5-A299-B9CF14BC7ABD} - System32\Tasks\GoogleUpdateTaskMachineUA{1CFCF0EB-333B-4CD7-A702-2AC7F28E0844} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-30] (Google LLC -> Google LLC)
Task: {3EB8AEC7-A766-46B8-805C-5D43F7E01FE4} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2023-07-06] () [File not signed]
Task: {BDD7F4E3-4F85-4B2F-86D2-98629D697256} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-175739054-1859323861-2923461289-1001 => C:\Users\nitro\AppData\Local\MEGAsync\MEGAupdater.exe [2530736 2023-11-20] (Mega Limited -> )
Task: {2D8D9AA1-79CE-4640-8223-A51E74CE3235} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {ECE86B4B-B238-4A21-B54C-1CAA367031A7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {DB6C321A-C2A8-4617-AA8C-0E7DEA284170} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305744 2024-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {7431FD46-5F44-42A1-96EA-D1EEF585F9A8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305744 2024-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B98456B-34A4-49F9-903C-DBE8F0AB35FC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170048 2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe  (No File)
Task: {221CBE38-9391-4C34-9568-12C4D2B99535} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe  /RunOnAC RebootDialog (No File)
Task: {E7DDB80E-9ED9-4603-B531-F1FE211628FC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe  /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
Task: {1658F5A6-9BFD-4DB6-BA0C-513AA10E06BC} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [610832 2021-03-26] (Acer Incorporated -> Acer Incorporated)
Task: {9E7662B0-3B61-45B8-B332-DAA1463CA44C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {45E952FF-1F48-4651-9865-6F54187E3A8D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {07914161-D1A0-4741-BA77-A289BDE0DC65} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D23B119E-826E-467A-8E8A-67AB44B5B422} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6FBF2FC1-6FBB-45E9-831D-17EDEEC5A26C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DE4B9156-4E56-4D55-93E3-61926C75CA1D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E069641-84EB-46F5-8D41-659799F83432} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {39B5B34E-D84B-45FA-B009-16000AD58109} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {27C5A618-0B4E-481C-9AA1-7329466A628C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {258B0ACA-AD90-4F65-887F-6FD6DD5FBC4A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {55E66D7C-AD15-4ADF-A249-4CB6466C6C6E} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-175739054-1859323861-2923461289-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {36D7E9AB-587D-4702-82E7-BF9DBB63483B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-175739054-1859323861-2923461289-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {E615AE7F-C5BE-437E-BD8F-91C1C270B355} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-175739054-1859323861-2923461289-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {FBD03CBF-CF76-4231-B91F-8EF990CF95BD} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-175739054-1859323861-2923461289-1002 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {4517A6CD-008F-4802-8273-EEA464B043B8} - System32\Tasks\PowerToys\Autorun for nitro => C:\Users\nitro\AppData\Local\PowerToys\PowerToys.exe [1216544 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {C56ECB61-3B02-4D93-9716-5344A8B267DA} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2021-12-30] (Acer Incorporated -> Acer Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 telemetry.malwarebytes.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{7ba205da-76c0-46b9-a0b8-abfd2f38db23}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{7ba205da-76c0-46b9-a0b8-abfd2f38db23}\14355535F5745756374713: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7ba205da-76c0-46b9-a0b8-abfd2f38db23}\5435341405540223E2437484A5: [DhcpNameServer] 192.168.0.177
Tcpip\..\Interfaces\{bccca449-76ea-4873-b196-2a8c47079aa5}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-15]
Edge Extension: (JSONView) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\biaiohdllmhjchjdhgamfmdjfhpbaohf [2022-02-03]
Edge Extension: (Avira Safe Shopping) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2023-07-18]
Edge Extension: (Checker Plus for Gmail™) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkjkomkbjefdadfgbgdfgnpbmhmppiaa [2023-11-30]
Edge Extension: (Empty New Tab Page) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dpjamkmjmigaoobjbekmfgabipmfilij [2022-02-03]
Edge Extension: (Avira Password Manager) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2023-11-04]
Edge Extension: (Dokumenty Google offline) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-12]
Edge Extension: (No History) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hdifnhiliocdiomkphonngpedadhinof [2022-02-03]
Edge Extension: (Cisco Webex Extension) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ikdddppdhmjcdfgilpnbkdeggoiicjgo [2022-08-14]
Edge Extension: (Edge relevant text changes) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-15]
Edge Extension: (Google Hangouts) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2022-04-15]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-01-14]
Edge Extension: (ESET Browser Privacy & Security) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nkapkmklnmidbbgjaipbgpcnbomnaakc [2024-01-03]
Edge Extension: (Ochrana hesla) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\noondiphcddnnabmjcihcjfbhfklnnep [2022-02-03]
Edge Extension: (Cookie Notice Blocker) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odhmfmnoejhihkmfebnolljiibpnednn [2022-02-03]
Edge Extension: (PureVPN Proxy - Best VPN for Edge) - C:\Users\nitro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pmekdamgipmmgecfoogolgafcdfigoec [2023-07-18]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files (x86)\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2023-09-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files (x86)\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2023-09-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-01-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default [2024-01-15]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://mail.protonmail.com; hxxps://rtd.rt.com; hxxps://twitter.com; hxxps://web.telegram.org; hxxps://wp.aliexpress.com; hxxps://www.aliexpress.com; hxxps://www.bluesunhotels.com; hxxps://www.heureka.cz; hxxps://www.kurzy.cz; hxxps://www.mesec.cz; hxxps://www.netflix.com; hxxps://www.rt.com
CHR NewTab: Default ->  Not-active:"chrome-extension://ehpgcagmhpndkmglombjndkdmggkgnge/index.vulcanized.html"
CHR Extension: (Překladač Google) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-12-23]
CHR Extension: (PureVPN Proxy - Best VPN for Chrome) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfidboloedlamgdmenmlbipfnccokknp [2024-01-13]
CHR Extension: (Flash Player Emulator 2024) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecbnojockcgfohpopbphhgefkfbigcej [2023-12-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-23]
CHR Extension: (Proton Pass: Free Password Manager) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghmbeldphafepmbegfdlkpapadhbakde [2024-01-14]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-01-12]
CHR Extension: (stahovač videa) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjlekdknhjogancdagnndeenmobeofgm [2023-12-23]
CHR Extension: (Stream Recorder - download HLS as MP4) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\iogidnfllpdhagebkblkgbfijkbkjdmm [2023-12-23]
CHR Extension: (Cisco Webex Extension) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2023-12-23]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-12-25]
CHR Extension: (Live Stream Downloader) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\looepbdllpjgdmkpdcdffhdbmpbcfekj [2023-12-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-25]
CHR Extension: (Cookie Notice Blocker) - C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Extensions\odhmfmnoejhihkmfebnolljiibpnednn [2023-12-23]
CHR HKU\S-1-5-21-175739054-1859323861-2923461289-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-175739054-1859323861-2923461289-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [bfidboloedlamgdmenmlbipfnccokknp]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
S2 AtomService; C:\Program Files (x86)\GZ Systems\Atom\AtomService\Atom.SDK.WindowsService.exe [195928 2023-12-15] (GZ Systems Limited -> )
S2 AudioDeviceService; C:\WINDOWS\system32\AudioDeviceService.exe [2930584 2023-11-12] (SSS) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13777080 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4974416 2023-08-09] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
S2 dlpsrv; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [707864 2022-08-24] (ESET, spol. s r.o. -> ESET)
S2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [243432 2022-07-08] (DTS, Inc. -> DTS Inc.)
S4 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2022-03-01] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2539384 2023-12-12] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3890064 2023-12-12] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3890064 2023-12-12] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
S2 FLService; C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\FLService.exe [105904 2021-07-29] (Guang Dong Ji Tong Zhi Neng Ke Ji You Xian Gong Si -> )
S2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2432608 2023-08-14] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2346976 2023-08-09] (GOG  sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6841416 2023-08-09] (GOG Sp. z o.o. -> GOG.com)
S2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [1748992 2020-01-10] (Rivet Networks LLC -> Rivet Networks)
S2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2651640 2020-01-10] (Rivet Networks LLC -> Rivet Networks)
S3 Killer Wifi Optimization Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [73704 2020-01-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [73712 2020-01-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9410296 2024-01-09] (Malwarebytes Inc. -> Malwarebytes)
S2 mosquitto; C:\Program Files\mosquitto\mosquitto.exe [382464 2022-08-16] () [File not signed]
S2 NativePushService; C:\Users\nitro\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [52152 2017-06-06] (Softland SRL -> Microsoft)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_9ebfa3a30e04ccef\Display.NvContainer\NVDisplay.Container.exe [1275424 2023-11-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
S4 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [841744 2021-03-26] (Acer Incorporated -> Acer Incorporated)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1201648 2023-11-26] (Rockstar Games, Inc. -> Rockstar Games)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [17900856 2023-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [73720 2020-01-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
S2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [73720 2020-01-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
S2 AvgWscReporter; "C:\Program Files\AVG\Antivirus\wsc_proxy.exe" /runassvc /rpcserver [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
R1 avpndriver; C:\WINDOWS\System32\drivers\avpndriver.sys [104424 2023-07-10] (GZ Systems Limited -> Windows (R) Win 7 DDK provider)
S3 AX88772; C:\WINDOWS\System32\DriverStore\FileRepository\netax88772.inf_amd64_f1efe88b4f90c639\ax88772.sys [116736 2022-05-07] (Microsoft Windows -> ASIX Electronics Corp.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 DLMFENC; C:\WINDOWS\System32\DRIVERS\DLMFENC.sys [242168 2022-09-21] (ESET, spol. s r.o. -> ESET, spol. s r.o.)
R0 DLPCRYPT; C:\WINDOWS\System32\DRIVERS\dlpcrypt.sys [121728 2022-08-24] (DESlock Limited -> DESlock Ltd.)
R0 dlpvdisk; C:\WINDOWS\System32\DRIVERS\dlpvdisk.sys [98296 2022-08-24] (DESlock Limited -> DESlock Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2023-08-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2023-08-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [215616 2023-12-12] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [120032 2023-12-12] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2023-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [254344 2023-12-12] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55528 2023-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81824 2023-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [124168 2023-12-12] (ESET, spol. s r.o. -> ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 FileLock; C:\WINDOWS\System32\drivers\FileLock.sys [61600 2023-12-30] (Shaanxi Hundred Mile Electroic Technology Co., Ltd -> Shaanxi Hundred Mile Electroic Technology Co., Ltd)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [177272 2020-01-10] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-01-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt11.sys [233704 2024-01-15] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-01-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-01-15] (Malwarebytes Inc. -> Malwarebytes)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
U5 rtp_filesystem_filter; C:\Windows\System32\Drivers\rtp_filesystem_filter.sys [219448 2023-07-18] (Avira Operations GmbH -> Avira Operations GmbH)
U5 rtp_process_monitor; C:\Windows\System32\Drivers\rtp_process_monitor.sys [199992 2023-07-18] (Avira Operations GmbH -> Avira Operations GmbH)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2020-03-26] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 UAExt; C:\WINDOWS\System32\DRIVERS\UAExt.sys [151056 2023-11-12] (Solid State System Co., Ltd. -> Solid State System.)
R0 VDLPToken2; C:\WINDOWS\System32\DRIVERS\vdlptkn2.sys [135672 2022-08-24] (DESlock Limited -> DESlock Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-12-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [594304 2023-12-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-23] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-02-27] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-01-15 21:54 - 2024-01-15 21:54 - 000041550 _____ C:\Users\nitro\OneDrive\Desktop\FRST.txt
2024-01-15 21:46 - 2024-01-15 21:47 - 000075041 _____ C:\Users\nitro\Downloads\Addition.txt
2024-01-15 21:45 - 2024-01-15 21:47 - 000066816 _____ C:\Users\nitro\Downloads\FRST.txt
2024-01-15 21:44 - 2024-01-15 21:54 - 000000000 ____D C:\FRST
2024-01-15 21:44 - 2024-01-15 21:44 - 002389504 _____ (Farbar) C:\Users\nitro\OneDrive\Desktop\FRST64.exe
2024-01-15 21:44 - 2024-01-15 21:44 - 000000000 ____D C:\Users\nitro\Downloads\FRST-OlderVersion
2024-01-15 21:42 - 2024-01-15 21:42 - 008791352 _____ (Malwarebytes) C:\Users\nitro\Downloads\adwcleaner (1).exe
2024-01-15 21:42 - 2024-01-15 21:42 - 000233704 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt11.sys
2024-01-15 21:42 - 2024-01-15 21:42 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-01-15 21:41 - 2024-01-15 21:41 - 000693828 _____ C:\WINDOWS\system32\perfh005.dat
2024-01-15 21:41 - 2024-01-15 21:41 - 000143682 _____ C:\WINDOWS\system32\perfc005.dat
2024-01-15 21:37 - 2024-01-15 21:38 - 000000000 ____D C:\AdwCleaner
2024-01-15 21:37 - 2024-01-15 21:37 - 008791352 _____ (Malwarebytes) C:\Users\nitro\Downloads\adwcleaner.exe
2024-01-15 20:35 - 2024-01-15 20:35 - 051325978 _____ C:\Users\nitro\Downloads\20240115_203326.mp4
2024-01-15 18:08 - 2024-01-15 18:08 - 010166856 _____ C:\Users\nitro\Downloads\Nepotvrzeno 114304.crdownload
2024-01-14 23:30 - 2024-01-14 23:30 - 054382592 _____ C:\Users\nitro\Downloads\PureEncrypt-1.1.0.msi
2024-01-14 23:23 - 2024-01-14 23:23 - 000019772 _____ C:\Users\nitro\OneDrive\Dokumenty\Hesla Chrome.csv
2024-01-14 15:31 - 2024-01-14 15:31 - 000000000 ___HD C:\OneDriveTemp
2024-01-14 14:34 - 2024-01-14 14:34 - 001090927 _____ C:\Users\nitro\Downloads\QuickGuide_TP-LINK TL-SG105_CZ_SK_HU.pdf
2024-01-14 09:52 - 2024-01-14 10:09 - 000000000 ____D C:\Users\nitro\AppData\Roaming\tpPLC
2024-01-14 09:51 - 2024-01-14 09:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2024-01-14 09:51 - 2024-01-14 09:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-Link
2024-01-14 09:51 - 2024-01-14 09:51 - 000000000 ____D C:\Program Files (x86)\WinPcap
2024-01-14 09:51 - 2024-01-14 09:51 - 000000000 ____D C:\Program Files (x86)\TP-Link
2024-01-14 09:50 - 2024-01-14 09:50 - 074182534 _____ C:\Users\nitro\Downloads\PowerLineUtility_2.3.4751.12_230128.exe.zip
2024-01-13 18:38 - 2024-01-13 18:38 - 007972829 _____ C:\Users\nitro\OneDrive\Dokumenty\video_2024-01-13_18-38-09.mp4
2024-01-13 15:36 - 2024-01-13 15:36 - 070462650 _____ C:\Users\nitro\OneDrive\Dokumenty\video_2024-01-13_17-06-22.mp4
2024-01-13 12:19 - 2024-01-13 12:19 - 3020298103 _____ C:\Users\nitro\Downloads\Angelcam _ Live video from Basketbal Kyjov camera 2024-01-13 10_26.mp4
2024-01-13 12:18 - 2024-01-13 12:18 - 123191661 _____ C:\Users\nitro\Downloads\Angelcam _ Live video from Basketbal Kyjov camera 2024-01-13 09_33.mp4
2024-01-13 12:01 - 2024-01-13 12:01 - 000204186 _____ C:\Users\nitro\Downloads\Daňové potvrzení za rok 2023 3008896937.pdf
2024-01-13 09:43 - 2024-01-13 09:43 - 000340472 _____ C:\Users\nitro\Downloads\OneDrive_2024-01-13.zip
2024-01-13 09:32 - 2024-01-13 09:32 - 903069603 _____ C:\Users\nitro\Downloads\Angelcam _ Live video from Basketbal Kyjov camera 2024-01-13 08_59.mp4
2024-01-12 22:34 - 2024-01-12 22:34 - 002030514 _____ C:\Users\nitro\Downloads\Presentation K-Residents 2023.pdf
2024-01-12 22:14 - 2024-01-12 22:14 - 000016720 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-01-12 22:09 - 2024-01-12 22:12 - 000000000 ___HD C:\$WinREAgent
2024-01-12 21:45 - 2024-01-12 21:45 - 000205607 _____ C:\Users\nitro\Downloads\doc05129720240111222348.pdf
2024-01-12 21:45 - 2024-01-12 21:45 - 000063203 _____ C:\Users\nitro\Downloads\Mercedes_4067036802.pdf
2024-01-12 20:53 - 2024-01-12 20:53 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-01-11 19:35 - 2024-01-11 19:35 - 000056467 _____ C:\Users\nitro\Downloads\B2J_Update.zip
2024-01-11 19:33 - 2024-01-11 19:33 - 058348544 _____ C:\Users\nitro\Downloads\Admin.db
2024-01-10 22:15 - 2024-01-10 22:15 - 000146998 _____ C:\Users\nitro\Downloads\Malwarebytes-Premium-Reset.bat
2024-01-10 22:11 - 2024-01-10 22:10 - 000145552 _____ C:\Users\nitro\Downloads\Malwarebytes-Premium-Reset.ps1
2024-01-09 23:31 - 2024-01-15 21:43 - 000000000 ____D C:\Users\nitro\AppData\Local\Malwarebytes
2024-01-09 23:31 - 2024-01-09 23:31 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-01-09 23:31 - 2024-01-09 23:31 - 000000000 ____D C:\Users\nitro\AppData\Local\mbam
2024-01-09 23:30 - 2024-01-09 23:30 - 002606880 _____ (Malwarebytes) C:\Users\nitro\Downloads\MBSetup.exe
2024-01-09 23:30 - 2024-01-09 23:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-01-09 23:30 - 2024-01-09 23:30 - 000000000 ____D C:\Program Files\Malwarebytes
2024-01-09 23:23 - 2024-01-09 23:31 - 000000000 ____D C:\Users\nitro\OneDrive\Desktop\HiJackThis
2024-01-09 23:22 - 2024-01-09 23:22 - 002346738 _____ C:\Users\nitro\Downloads\HiJackThis_stable.zip
2024-01-09 23:16 - 2024-01-15 21:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2024-01-09 23:16 - 2024-01-09 23:16 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2024-01-09 23:16 - 2024-01-09 23:16 - 000000000 ____D C:\Users\nitro\AppData\Local\PowerToys
2024-01-09 23:16 - 2024-01-09 23:16 - 000000000 ____D C:\Users\nitro\AppData\Local\Package Cache
2024-01-09 23:02 - 2024-01-09 23:14 - 000001853 _____ C:\Users\nitro\OneDrive\Desktop\FixIt App.lnk
2024-01-09 23:02 - 2024-01-09 23:02 - 000348546 _____ C:\Users\nitro\Downloads\FixIt_V1.13.5_en.exe
2024-01-09 22:11 - 2024-01-11 21:46 - 000000000 ____D C:\Users\nitro\Downloads\Telegram Desktop
2024-01-09 21:05 - 2024-01-09 21:05 - 000000000 ____D C:\Users\nitro\AppData\Local\DESlock+
2024-01-09 19:36 - 2024-01-09 19:36 - 000152013 _____ C:\Users\nitro\Downloads\Global Sort - Objednávka 8.1.2024.pdf
2024-01-08 20:05 - 2024-01-08 20:05 - 000355858 _____ C:\Users\nitro\Downloads\2024-Call-off_EVOLUTIONvsCAPACITY.pptx
2024-01-04 18:55 - 2024-01-04 18:55 - 000476736 _____ C:\Users\nitro\Downloads\CV_2024-01-04-105316.pdf
2024-01-01 17:50 - 2024-01-01 17:50 - 000000000 ____D C:\Users\nitro\AppData\Roaming\org.wfdownloader.app.WFDownloaderApp
2024-01-01 17:50 - 2024-01-01 17:50 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WFDownloaderApp
2024-01-01 17:50 - 2024-01-01 17:50 - 000000000 ____D C:\Users\nitro\AppData\Local\WFDownloaderApp
2024-01-01 17:48 - 2024-01-01 17:50 - 000000000 ____D C:\Users\nitro\OneDrive\Dokumenty\MEGA Downloads
2023-12-30 20:18 - 2024-01-14 04:01 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Gili File Lock
2023-12-30 20:15 - 2023-12-30 20:15 - 000000000 ____D C:\Users\nitro\AppData\Roaming\GiliSoft
2023-12-30 20:10 - 2023-12-30 20:10 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\Comms
2023-12-30 20:07 - 2023-12-30 20:08 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\Publishers
2023-12-30 20:07 - 2023-12-30 20:07 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-175739054-1859323861-2923461289-1003
2023-12-30 20:07 - 2023-12-30 20:07 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Roaming\Wondershare
2023-12-30 20:07 - 2023-12-30 20:07 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\PlaceholderTileLogoFolder
2023-12-30 20:07 - 2023-12-30 20:07 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\Google
2023-12-30 20:07 - 2023-12-30 20:07 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\CEF
2023-12-30 20:07 - 2023-12-30 20:07 - 000000000 ____D C:\Users\D3StinyCZ\ansel
2023-12-30 20:06 - 2024-01-15 21:54 - 000003077 _____ C:\WINDOWS\FileLock.bin
2023-12-30 20:06 - 2023-12-30 20:10 - 000000000 __SHD C:\Users\D3StinyCZ\IntelGraphicsProfiles
2023-12-30 20:06 - 2023-12-30 20:10 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\Packages
2023-12-30 20:06 - 2023-12-30 20:08 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\NVIDIA Corporation
2023-12-30 20:06 - 2023-12-30 20:07 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\Windows
2023-12-30 20:06 - 2023-12-30 20:07 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\Intel
2023-12-30 20:06 - 2023-12-30 20:07 - 000000000 ____D C:\Users\D3StinyCZ
2023-12-30 20:06 - 2023-12-30 20:06 - 000000020 ___SH C:\Users\D3StinyCZ\ntuser.ini
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\Šablony
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\Soubory cookie
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\Poslední
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\Okolní tiskárny
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\Okolní síť
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\Nabídka Start
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\Dokumenty
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\Data aplikací
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 _SHDL C:\Users\D3StinyCZ\AppData\Local\Data aplikací
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ___SD C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\SystemCertificates
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ___SD C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\Protect
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ___SD C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\Crypto
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ___SD C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\Credentials
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\Vault
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\Spelling
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Roaming\Adobe
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ____D C:\Users\D3StinyCZ\AppData\LocalLow\Intel
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\VirtualStore
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\NVIDIA
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\ESET
2023-12-30 20:06 - 2023-12-30 20:06 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Local\ConnectedDevicesPlatform
2023-12-30 20:06 - 2022-10-06 19:40 - 000000000 ____D C:\Users\D3StinyCZ\AppData\Roaming\Microsoft\Network
2023-12-30 20:06 - 2022-02-13 00:21 - 000000000 ___RD C:\Users\D3StinyCZ\OneDrive
2023-12-30 20:04 - 2023-12-30 20:04 - 000061600 _____ (Shaanxi Hundred Mile Electroic Technology Co., Ltd) C:\WINDOWS\system32\Drivers\FileLock.sys
2023-12-30 20:04 - 2023-12-30 20:04 - 000001350 _____ C:\Users\nitro\OneDrive\Desktop\Folder Password Lock Pro 11.8.0.lnk
2023-12-30 20:04 - 2023-12-30 20:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ThunderSoft
2023-12-30 20:04 - 2023-12-30 20:04 - 000000000 ____D C:\ProgramData\GiliSoft
2023-12-30 20:04 - 2023-12-30 20:04 - 000000000 ____D C:\Program Files (x86)\ThunderSoft
2023-12-29 23:52 - 2023-12-29 23:52 - 000002249 _____ C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PureVPN.lnk
2023-12-29 23:52 - 2023-12-29 23:52 - 000000000 ____D C:\ProgramData\Atom
2023-12-29 22:52 - 2023-12-29 22:52 - 000000760 _____ C:\Users\nitro\OneDrive\Desktop\WarThunder.lnk
2023-12-29 22:52 - 2023-12-29 22:52 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2023-12-26 12:12 - 2023-12-26 12:12 - 000056709 _____ C:\Users\nitro\OneDrive\Dokumenty\Battle2json.zip
2023-12-25 12:46 - 2023-12-25 12:46 - 000000894 _____ C:\Users\nitro\OneDrive\Desktop\File Shredder.lnk
2023-12-25 12:46 - 2023-12-25 12:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Shredder
2023-12-25 12:46 - 2023-12-25 12:46 - 000000000 ____D C:\Program Files\File Shredder
2023-12-23 13:11 - 2023-12-23 13:11 - 000000000 ____D C:\Users\Natálie\AppData\Roaming\Thunderbird
2023-12-23 13:11 - 2023-12-23 13:11 - 000000000 ____D C:\Users\Natálie\AppData\Roaming\Mozilla
2023-12-23 13:11 - 2023-12-23 13:11 - 000000000 ____D C:\Users\Natálie\AppData\Local\Thunderbird
2023-12-23 13:10 - 2024-01-09 21:05 - 000000000 ____D C:\Program Files\ESET
2023-12-23 13:10 - 2023-12-23 13:10 - 000000000 ____D C:\Users\nitro\AppData\Local\ESET
2023-12-23 13:10 - 2023-12-23 13:10 - 000000000 ____D C:\Users\Natálie\AppData\Local\ESET
2023-12-23 13:10 - 2023-12-23 13:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2023-12-23 13:10 - 2023-12-23 13:10 - 000000000 ____D C:\ProgramData\ESET
2023-12-22 15:44 - 2023-12-22 15:44 - 000045070 _____ C:\Users\Natálie\Downloads\9.a - bludiště- Kristýna Zemánková (1).sb3
2023-12-22 15:41 - 2023-12-22 15:41 - 000045070 _____ C:\Users\Natálie\Downloads\9.a - bludiště- Kristýna Zemánková.sb3

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-01-15 21:43 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-15 21:43 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-15 21:41 - 2022-10-06 19:43 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-01-15 21:41 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2024-01-15 21:41 - 2022-01-30 20:01 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-15 21:38 - 2022-01-19 19:13 - 000000000 ____D C:\ProgramData\NVIDIA
2024-01-15 21:37 - 2022-04-13 10:32 - 000000000 ____D C:\Program Files (x86)\Steam
2024-01-15 21:34 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-01-15 21:34 - 2022-01-19 19:06 - 000000000 ___RD C:\Users\nitro\OneDrive
2024-01-15 21:33 - 2023-09-08 18:55 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2024-01-15 21:33 - 2022-10-06 19:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-01-15 21:33 - 2022-10-06 19:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-01-15 21:33 - 2022-10-06 19:26 - 000000000 ____D C:\Users\nitro
2024-01-15 21:33 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-01-15 21:33 - 2022-01-19 19:12 - 000000000 __SHD C:\Users\nitro\IntelGraphicsProfiles
2024-01-15 21:33 - 2022-01-19 19:12 - 000000000 ____D C:\Intel
2024-01-15 21:33 - 2022-01-19 19:04 - 000000000 ____D C:\Users\nitro\AppData\Local\Packages
2024-01-15 21:23 - 2022-01-30 22:19 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Wot Numbers
2024-01-15 21:07 - 2022-01-19 19:04 - 000000000 ___SD C:\Users\nitro\AppData\Roaming\Microsoft\Credentials
2024-01-15 20:16 - 2022-01-30 17:54 - 000000000 ____D C:\Users\nitro\AppData\Local\D3DSCache
2024-01-14 15:29 - 2022-05-07 06:17 - 001572864 _____ C:\WINDOWS\system32\config\BBI
2024-01-14 10:09 - 2022-10-06 19:39 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-01-14 09:51 - 2023-08-25 18:53 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-01-14 09:50 - 2022-06-16 20:37 - 000000000 ____D C:\Users\nitro\AppData\Local\Downloaded Installations
2024-01-14 04:16 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-01-14 04:02 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-14 04:00 - 2023-09-27 01:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-01-14 04:00 - 2022-10-06 19:39 - 000530720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-01-14 04:00 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-01-14 04:00 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-01-14 04:00 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-01-14 04:00 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-01-14 04:00 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-01-14 04:00 - 2022-01-19 19:01 - 000012288 ___SH C:\DumpStack.log.tmp
2024-01-13 16:07 - 2022-01-30 23:01 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-01-13 12:21 - 2022-02-13 19:41 - 000000000 ____D C:\Users\nitro\AppData\Roaming\vlc
2024-01-13 09:44 - 2022-02-13 00:28 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Microsoft\UProof
2024-01-13 09:44 - 2022-02-13 00:27 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Microsoft\Word
2024-01-13 09:14 - 2022-02-13 00:21 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Microsoft\Excel
2024-01-12 22:17 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-01-12 22:15 - 2022-10-06 19:41 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-01-12 20:52 - 2022-02-13 00:19 - 000000000 ____D C:\Program Files\Microsoft Office
2024-01-12 20:06 - 2022-01-30 22:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-01-12 20:03 - 2022-01-30 22:45 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-01-12 02:31 - 2022-01-30 20:02 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-01-11 19:30 - 2022-05-20 23:34 - 000000000 ____D C:\Program Files\dotnet
2024-01-11 19:30 - 2022-01-30 23:30 - 000000000 ____D C:\ProgramData\Package Cache
2024-01-09 23:36 - 2022-10-17 21:02 - 000000000 ____D C:\Users\nitro\AppData\Roaming\uTorrent Web
2024-01-09 23:31 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-01-09 23:16 - 2022-01-19 19:04 - 000000000 ____D C:\ProgramData\Packages
2024-01-09 22:57 - 2022-02-07 20:25 - 000000000 ____D C:\Users\nitro\AppData\Local\CrashDumps
2024-01-09 22:54 - 2022-10-17 21:04 - 000000000 ____D C:\Users\nitro\AppData\Local\BitTorrentHelper
2024-01-09 17:24 - 2022-10-25 18:24 - 000000000 ____D C:\WINDOWS\Minidump
2024-01-09 17:24 - 2022-01-19 19:01 - 002651415 ____N C:\WINDOWS\Minidump\010924-10718-01.dmp
2024-01-06 22:42 - 2022-02-19 10:38 - 000000000 ____D C:\Users\nitro\AppData\LocalLow\Adobe
2024-01-06 22:09 - 2022-01-19 19:01 - 002749851 ____N C:\WINDOWS\Minidump\010624-11890-01.dmp
2024-01-04 16:33 - 2022-10-13 20:11 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-01-04 16:33 - 2022-10-06 19:42 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-01-04 08:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-01-02 17:15 - 2022-06-16 18:57 - 000000000 ____D C:\Users\nitro\AppData\Roaming\Signal
2024-01-02 17:13 - 2022-06-16 18:57 - 000002397 _____ C:\Users\nitro\OneDrive\Desktop\Signal.lnk
2023-12-30 20:20 - 2022-01-30 20:03 - 000000000 ____D C:\Games
2023-12-30 20:07 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-30 20:07 - 2022-01-19 19:04 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-12-30 19:59 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-12-30 00:08 - 2022-01-30 23:31 - 000000000 ____D C:\Users\nitro\AppData\Local\GZ_Systems
2023-12-29 23:52 - 2023-01-02 20:24 - 000001259 _____ C:\Users\nitro\OneDrive\Desktop\PureVPN.lnk
2023-12-29 23:52 - 2022-01-30 23:30 - 000000000 ____D C:\ProgramData\purevpn
2023-12-28 18:02 - 2023-10-14 13:49 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-12-28 18:02 - 2023-09-01 21:48 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-12-23 21:53 - 2023-09-01 21:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-12-23 21:53 - 2023-01-22 13:03 - 000000000 ____D C:\Users\Natálie\AppData\Local\AVAST Software
2023-12-23 21:53 - 2022-12-23 12:08 - 000000000 ____D C:\ProgramData\Avast Software
2023-12-23 13:40 - 2023-01-22 13:05 - 000000000 ____D C:\Users\Natálie\AppData\Local\D3DSCache
2023-12-23 13:26 - 2023-07-29 08:29 - 000000000 ____D C:\Program Files\Recuva
2023-12-23 13:11 - 2023-09-01 21:48 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-12-23 13:09 - 2022-01-19 19:01 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-12-23 12:59 - 2022-01-30 20:18 - 000918960 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-12-23 12:45 - 2023-01-22 13:03 - 000000000 ____D C:\Users\Natálie\AppData\Local\Packages
2023-12-23 12:38 - 2023-09-18 21:16 - 000000000 ____D C:\Users\nitro\OneDrive\Desktop\BimmerGeeks Standard Tools
2023-12-23 12:38 - 2023-09-16 06:14 - 000000000 ____D C:\Users\nitro\OneDrive\Dokumenty\packs
2023-12-23 12:38 - 2023-09-16 06:12 - 000000000 ____D C:\Users\nitro\OneDrive\Dokumenty\DAVAProject
2023-12-23 12:38 - 2023-08-24 21:39 - 000000000 ____D C:\Users\nitro\OneDrive\Dokumenty\Backup REVO
2023-12-22 16:14 - 2023-01-22 13:21 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-175739054-1859323861-2923461289-1002
2023-12-22 16:14 - 2022-12-27 20:19 - 000003024 _____ C:\WINDOWS\system32\Tasks\klcp_update
2023-12-22 16:14 - 2022-10-06 19:42 - 000004302 _____ C:\WINDOWS\system32\Tasks\Software Update Application
2023-12-22 16:14 - 2022-10-06 19:42 - 000003852 _____ C:\WINDOWS\system32\Tasks\ACCAgent
2023-12-22 16:14 - 2022-10-06 19:42 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-12-22 16:14 - 2022-10-06 19:42 - 000003486 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{1CFCF0EB-333B-4CD7-A702-2AC7F28E0844}
2023-12-22 16:14 - 2022-10-06 19:42 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-12-22 16:14 - 2022-10-06 19:42 - 000003262 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{386273D7-5774-4A13-B3D0-6D9DCCDD1AF5}
2023-12-22 16:14 - 2022-10-06 19:42 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-175739054-1859323861-2923461289-1001
2023-12-22 16:14 - 2022-10-06 19:42 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-12-22 16:14 - 2022-10-06 19:42 - 000002730 _____ C:\WINDOWS\system32\Tasks\ACC
2023-12-22 16:14 - 2022-10-06 19:42 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-12-22 16:14 - 2022-10-06 19:42 - 000002328 _____ C:\WINDOWS\system32\Tasks\ACCBackgroundApplication
2023-12-22 16:14 - 2022-10-06 19:42 - 000002174 _____ C:\WINDOWS\system32\Tasks\NitroSense
2023-12-22 15:35 - 2023-01-22 13:36 - 000000000 ____D C:\Users\Natálie\AppData\Local\Publishers
2023-12-22 15:34 - 2023-01-22 13:19 - 000000000 ____D C:\Users\Natálie\AppData\Local\PlaceholderTileLogoFolder
2023-12-22 15:33 - 2023-01-22 13:03 - 000000000 __SHD C:\Users\Natálie\IntelGraphicsProfiles
2023-12-18 19:58 - 2022-01-30 20:34 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-12-18 19:58 - 2022-01-30 20:34 - 000002086 _____ C:\Users\nitro\OneDrive\Desktop\Google Slides.lnk
2023-12-18 19:58 - 2022-01-30 20:34 - 000002086 _____ C:\Users\nitro\OneDrive\Desktop\Google Sheets.lnk
2023-12-18 19:58 - 2022-01-30 20:34 - 000002074 _____ C:\Users\nitro\OneDrive\Desktop\Google Docs.lnk
2023-12-18 19:58 - 2022-01-30 20:34 - 000002050 _____ C:\Users\nitro\OneDrive\Desktop\Google Drive.lnk
2023-12-17 03:31 - 2022-02-13 20:05 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-12-16 10:23 - 2022-02-13 00:21 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

==================== Files in the root of some directories ========

2022-11-07 20:53 - 2022-11-07 20:53 - 000000068 _____ () C:\Users\nitro\AppData\Roaming\changzhi_leidian.data
2023-12-07 21:11 - 2023-12-07 21:11 - 000007676 _____ () C:\Users\nitro\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================