Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25.01.2024
Ran by Katarína (administrator) on KATUSIK (Hewlett-Packard HP ProBook 430 G2) (26-01-2024 09:19:28)
Running from C:\Users\Katarína\Desktop\FRST64.exe
Loaded Profiles: Katarína
Platform: Microsoft Windows 10 Home Version 22H2 19045.3930 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files\ESET\ESET Smart Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Smart Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eOppFrame.exe
(C:\Program Files\HP\HP Enabling Services\NetworkCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe <2>
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Program Files\WindowsApps\MSTeams_23335.232.2637.4844_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.144\msedgewebview2.exe <7>
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\SETCAC8.tmp
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_23335.232.2637.4844_x64__8wekyb3d8bbwe\ms-teams.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Katarína\AppData\Local\Microsoft\OneDrive\23.246.1127.0002\Microsoft.SharePoint.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(services.exe ->) (HP Inc. -> ) C:\Windows\SysWOW64\spdsvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_7ed3bacbb0a8cc67\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <4>
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Validity Sensors, Inc -> Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2310.8.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8515832 2015-09-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [195576 2023-12-11] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [225248 2017-10-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
HKLM\...\Run: [Apoint] => "X:\Program Files\DellTPad\Apoint.exe" (No File)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [419512 2014-04-01] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110008 2015-07-06] (CyberLink Corp. -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [499640 2015-07-06] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [265656 2015-06-15] (CyberLink Corp. -> CyberLink Corp.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\Run: [Google Update] => C:\Users\Katarína\AppData\Local\Google\Update\1.3.35.302\GoogleUpdateCore.exe [1107752 2019-10-08] (Google Inc -> Google LLC)
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\Run: [Akamai NetSession Interface] => C:\Users\Katarína\AppData\Local\Akamai\netsession_win.exe [4586456 2018-04-17] (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Katarína\AppData\Local\Microsoft\Teams\Update.exe [2591152 2023-12-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe [24016824 2024-01-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\Run: [MicrosoftEdgeAutoLaunch_25937D901946FC65590979C69637E9BF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3854376 2024-01-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37188048 2024-01-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\MountPoints2: {34c10575-f6a6-11eb-836d-38b1db255620} - "G:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-1525193979-885687216-1416883372-1002\...\MountPoints2: {4a7509b0-e903-11ec-838c-38b1db255620} - "G:\HiSuiteDownLoader.exe" 
HKLM\...\Windows x64\Print Processors\hpcpp155: C:\Windows\System32\spool\prtprocs\x64\hpcpp155.DLL [597792 2013-09-04] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\ssm4mPC: C:\Windows\System32\spool\prtprocs\x64\ssm4mpc.dll [52088 2019-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\us003PC: C:\Windows\System32\spool\prtprocs\x64\us003pc.dll [43520 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [423936 2014-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\...\Print\Monitors\ssm4m Langmon: C:\WINDOWS\system32\ssm4mlm.dll [22528 2015-06-11] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us003 Langmon: C:\WINDOWS\system32\us003lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.227\Installer\chrmstp.exe [2024-01-26] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2015-06-15] (CyberLink Corp. -> CyberLink)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-01-26]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {091CE281-0ACF-4A70-90AC-801AD263351E} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {1CFC07BE-F28D-42A1-ADAF-F065BC19DA26} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {3981EE81-C0D5-45F5-BA77-57B270BDF416} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {4D937781-2109-46BC-AEAB-1F2A8C712D2F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {62DC36B1-F8F4-4B06-9181-35455B579CCC} - \WPD\SqmUpload_S-1-5-21-1525193979-885687216-1416883372-1002 -> No File <==== ATTENTION
Task: {80FEB852-05EC-49A0-8CEE-2B2947BB62BC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {84E41B3D-3C82-4D5E-93BE-B11428A87044} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {86ED081D-BA58-45F5-85F4-6DA45CE66975} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {87BE4C7B-A8ED-4662-8EA7-A1DF327B56DE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {AC4F48A3-4030-464E-959F-8D11F5C08A9E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D72CF5D8-7025-4BB5-A8E2-8A3C784AE68E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {E45D3C1E-4C93-4C3D-AA24-DCBE88B58124} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {F97E926F-50C2-489A-A863-2687E32266BB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {0A34E8ED-7445-4889-A951-158D282EC3FC} - System32\Tasks\{79648E86-E2AC-48A8-AA61-F7BE1E4AA2E0} => C:\WINDOWS\system32\pcalua.exe [53760 2023-11-22] (Microsoft Windows -> Microsoft Corporation) -> -a F:\Setup.exe -d F:\
Task: {77FF9B19-A767-498E-B8D5-B890D869F684} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {5887F512-F76F-47B0-BF39-BCFEC0CD9B1A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {EFB514E0-5B07-4837-9A2A-DCEEBBAD0D22} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "bacf08f1-e241-4569-802f-b56477844bf0" --version "6.19.10858" --silent
Task: {C88AC65E-1446-4F43-A181-FB290AC5864D} - System32\Tasks\CCleanerSkipUAC - Katarína => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {1266AE14-9FA5-495C-BAC5-E2E337FA8496} - System32\Tasks\GoogleUpdateTaskMachineCore{AF9838B2-E133-4AB5-940E-5EEAE308DE0E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-07-02] (Google LLC -> Google LLC)
Task: {E98FEE8A-6EB6-4DB5-AEDA-594D45688B68} - System32\Tasks\GoogleUpdateTaskMachineUA{44D69059-A2CD-4189-B479-42C93A2DC408} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-07-02] (Google LLC -> Google LLC)
Task: {6AA98FA5-9F44-47BD-9F28-76DAB106416A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1525193979-885687216-1416883372-1002Core => C:\Users\Katarína\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-05-25] (Google Inc -> Google Inc.)
Task: {BDCA94CD-1CA1-4D35-BE6A-DC551AAEFDF3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1525193979-885687216-1416883372-1002Core1d257ed5d5b4941 => C:\Users\Katarína\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-05-25] (Google Inc -> Google Inc.)
Task: {DD784D34-6208-4712-9EF6-B83AE7D09CD5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1525193979-885687216-1416883372-1002UA => C:\Users\Katarína\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-05-25] (Google Inc -> Google Inc.)
Task: {3A56B93F-580F-4F7F-9A61-C92E96F13A7E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1525193979-885687216-1416883372-1002UA1d257ed5d62706e => C:\Users\Katarína\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-05-25] (Google Inc -> Google Inc.)
Task: {00E9FEAD-F6EF-4A1C-B930-81CB6E6C6944} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [703536 2024-01-04] (HP Inc. -> HP Inc.)
Task: {17EF8C37-9E95-4769-B2CC-49ADD012466D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-01-04] (HP Inc. -> HP Inc.)
Task: {AEBF9AB3-9919-493A-970F-C587F535ABF3} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-23] (HP Inc. -> HP Inc.)
Task: {11647F52-A4E1-4815-B3EF-A6ED33ACD173} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-23] (HP Inc. -> HP Inc.)
Task: {F4B72DFE-40CB-4A44-B714-69F9A1E08944} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-1525193979-885687216-1416883372-1002 => MessengerHelper.exe  --lassie (No File)
Task: {41995A43-35F5-4079-A25D-8E847F2EE2DE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {5DC3E359-726D-497B-B38C-15BCB9EEC929} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9BF77DEE-99F1-41BB-A7EB-B79F4CB81858} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {37C61CBF-BDC9-41C2-B0C9-0E384D60FE7B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {8F4863AD-3442-4342-AA3E-74307D372994} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [361488 2024-01-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {445EF93B-B496-4758-8CD1-16FD4C765FD2} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe  join (No File)
Task: {7B38D157-9904-4B82-BD93-4F6000A4A2B5} - System32\Tasks\Opera scheduled Autoupdate 1680186027 => C:\Users\Katarína\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-18] (Opera Norway AS -> Opera Software)
Task: {D1B4C70A-F85E-4D1F-9F79-344BCF131CE8} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3965536 2017-08-19] (Synaptics Incorporated -> Synaptics Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1525193979-885687216-1416883372-1002Core.job => C:\Users\Katarína\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1525193979-885687216-1416883372-1002UA.job => C:\Users\Katarína\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 217.75.71.141
Tcpip\..\Interfaces\{1107ddd1-ed97-43da-95d0-9714814c6960}: [DhcpNameServer] 192.168.1.1 217.75.71.141
Tcpip\..\Interfaces\{1107ddd1-ed97-43da-95d0-9714814c6960}: [DhcpDomain] zyxel.setup
Tcpip\..\Interfaces\{1107ddd1-ed97-43da-95d0-9714814c6960}\544696D61687: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1107ddd1-ed97-43da-95d0-9714814c6960}\544696D61687: [DhcpDomain] edimax.com
Tcpip\..\Interfaces\{1107ddd1-ed97-43da-95d0-9714814c6960}\A54554D21585A4854523: [DhcpNameServer] 192.168.0.1 195.146.128.62
Tcpip\..\Interfaces\{1107ddd1-ed97-43da-95d0-9714814c6960}\F435B4D213137373: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{1107ddd1-ed97-43da-95d0-9714814c6960}\F435B4D213137373: [DhcpDomain] Home
Tcpip\..\Interfaces\{2d8e4204-2038-4f81-a94e-ffcdd3327f8c}: [NameServer] 85.237.225.250 213.151.222.34
Tcpip\..\Interfaces\{54cce12e-658a-45ae-ba31-40277b3166ba}: [DhcpNameServer] 192.168.0.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Katarína\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-26]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\Katarína\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-26]
Edge Extension: (Edge relevant text changes) - C:\Users\Katarína\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]

FireFox:
========
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-04-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1525193979-885687216-1416883372-1002: @talk.google.com/GoogleTalkPlugin -> C:\Users\Katarína\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google Inc -> Google)
FF Plugin HKU\S-1-5-21-1525193979-885687216-1416883372-1002: @talk.google.com/O1DPlugin -> C:\Users\Katarína\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google Inc -> Google)
FF Plugin HKU\S-1-5-21-1525193979-885687216-1416883372-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Katarína\AppData\Local\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1525193979-885687216-1416883372-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Katarína\AppData\Local\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin ProgramFiles/Appdata: C:\Users\Katarína\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-17]
FF Plugin ProgramFiles/Appdata: C:\Users\Katarína\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-17]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Default [2024-01-26]
CHR Notifications: Default -> hxxps://annualconference2021-microbio.web.indrina.com; hxxps://drive.google.com; hxxps://event.worldmicrobeforum.org; hxxps://microbiologynote.com; hxxps://receptik.interez.sk; hxxps://www.facebook.com
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-01-26]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Seznam.cz) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2023-09-18]
CHR Profile: C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-06-18]
CHR Profile: C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-06-18]
CHR Extension: (Prezentácie) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-31]
CHR Extension: (Dokumenty) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-07-31]
CHR Extension: (Disk Google) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-07-31]
CHR Extension: (YouTube) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-07-31]
CHR Extension: (Tabuľky) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-31]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-31]
CHR Extension: (Gmail) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-07-31]
CHR Extension: (Chrome Media Router) - C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-31]
CHR Profile: C:\Users\Katarína\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-18]
CHR HKU\S-1-5-21-1525193979-885687216-1416883372-1005\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1525193979-885687216-1416883372-1005\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]

Opera: 
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5525576 2024-01-26] (philandro Software GmbH -> AnyDesk Software GmbH)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [114960 2019-12-12] (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15772456 2023-12-12] (BattlEye Innovations e.K. -> )
S3 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [88064 2014-03-05] () [File not signed]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13777080 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
S2 DellRctlService; C:\WINDOWS\System32\DellRctlService.exe [528976 2016-07-21] (FPT USA Corp. -> )
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2023-12-11] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Smart Security\efwd.exe [2537928 2023-12-11] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [3850920 2023-12-11] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372408 2013-12-10] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [888360 2023-09-15] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [886824 2023-09-15] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [883136 2023-09-15] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-23] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [886824 2023-09-15] (HP Inc. -> HP Inc.)
S3 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.)
S3 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-11-19] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S3 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2014-01-15] (Huawei Technologies Co., Ltd. -> )
S3 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 mc-wps-secdashboardservice; C:\Program Files (x86)\HP\HP Support Framework\Resources\mc-wps-secdashboardservice.exe [1204608 2024-01-04] (McAfee, LLC -> McAfee, LLC)
S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [651856 2013-10-26] (Huawei Technologies Co., Ltd. -> )
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-05-16] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-05-16] (Hewlett-Packard) [File not signed]
R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-04-25] (HP Inc. -> )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2016-05-24] (Samsung Electronics CO., LTD. -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aksfridge; C:\WINDOWS\System32\drivers\aksfridge.sys [487352 2018-11-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 akshasp; C:\WINDOWS\System32\drivers\akshasp.sys [69560 2018-11-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 akshhl; C:\WINDOWS\System32\drivers\akshhl.sys [68536 2018-11-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 aksusb; C:\WINDOWS\System32\drivers\aksusb.sys [313784 2018-11-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 bcmnfcusb; C:\WINDOWS\System32\drivers\bcmnfcusb.sys [54872 2017-05-25] (Broadcom Corporation -> Broadcom Corporation.)
S3 BrSerIb; C:\WINDOWS\System32\drivers\BrSerIb.sys [95344 2013-05-22] (Brother Industries, Ltd. -> Brother Industries Ltd.)
S3 BrUsbSIb; C:\WINDOWS\System32\drivers\BrUsbSIb.sys [21872 2013-05-22] (Brother Industries, Ltd. -> Brother Industries Ltd.)
S3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [69024 2019-05-29] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
S3 DellRctl; C:\WINDOWS\System32\drivers\DellRctl.sys [42320 2016-07-21] (FPT USA Corp. -> )
S3 dot4; C:\WINDOWS\System32\drivers\Dot4.sys [146856 2013-07-11] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 dot4usb; C:\WINDOWS\System32\drivers\dot4usb.sys [43944 2013-07-11] (BoiseTest -> Microsoft Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [215616 2023-12-11] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [120032 2023-12-11] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [254344 2023-12-11] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55528 2023-12-11] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81824 2023-12-11] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [124168 2023-12-11] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [14976 2012-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 FTSER2K; C:\WINDOWS\system32\drivers\ftser2k.sys [79872 2014-09-09] (Microsoft Windows Hardware Compatibility Publisher -> FTDI Ltd.)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_wwanecm; C:\WINDOWS\system32\DRIVERS\ew_juwwanecm.sys [248320 2014-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys [380672 2014-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 iagpioe; C:\WINDOWS\System32\drivers\iagpioe.sys [32768 2015-07-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
S3 iai2ce; C:\WINDOWS\System32\drivers\iai2ce.sys [81408 2015-07-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
S3 iaspie; C:\WINDOWS\System32\drivers\iaspie.sys [62976 2015-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
S3 iauarte; C:\WINDOWS\System32\drivers\iauarte.sys [103936 2015-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R2 multikey; C:\WINDOWS\System32\drivers\multikey.sys [67584 2015-06-03] (Karl Sabo -> Chingachguk & Denger2k (Elite & SP edition))
S3 nfcgpiomanager; C:\WINDOWS\System32\drivers\nfcgpiomanager.sys [29160 2015-07-07] (NXP Semiconductors India Pvt Ltd. -> Nfc GPIO Driver)
S3 PMIC; C:\WINDOWS\System32\drivers\PMIC.sys [100864 2015-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
S3 SNTUSB64; C:\WINDOWS\System32\drivers\SNTUSB64.SYS [63568 2012-12-11] (SafeNet, Inc. -> SafeNet, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429288 2020-11-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-11] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
U1 aswbdisk; no ImagePath
S3 dg_ssudbus; \SystemRoot\system32\DRIVERS\ssudbus2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-01-26 09:19 - 2024-01-26 09:21 - 000039843 _____ C:\Users\Katarína\Desktop\FRST.txt
2024-01-26 09:19 - 2016-05-12 06:49 - 001435144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2024-01-26 09:19 - 2016-05-12 06:49 - 000532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2024-01-26 09:19 - 2016-05-12 06:49 - 000381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2024-01-26 09:19 - 2016-05-12 06:49 - 000341160 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2024-01-26 09:19 - 2016-05-12 06:49 - 000341160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2024-01-26 09:19 - 2016-05-12 06:49 - 000166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2024-01-26 09:19 - 2016-05-12 06:48 - 000343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2024-01-26 09:19 - 2016-05-12 06:47 - 001355616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2024-01-26 09:19 - 2016-05-12 06:47 - 000689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2024-01-26 09:19 - 2016-05-12 06:47 - 000387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2024-01-26 09:19 - 2016-05-12 06:47 - 000214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2024-01-26 09:19 - 2016-05-12 06:47 - 000110992 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2024-01-26 09:19 - 2016-05-12 06:47 - 000088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2024-01-26 09:19 - 2016-05-12 06:42 - 000574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2024-01-26 09:19 - 2016-05-12 06:42 - 000118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2024-01-26 09:19 - 2016-05-12 06:33 - 003199232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2024-01-26 09:19 - 2016-05-12 06:33 - 002895104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2024-01-26 09:19 - 2016-05-12 06:32 - 002060032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2024-01-26 09:19 - 2016-05-12 06:29 - 000122328 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2024-01-26 09:19 - 2016-05-12 06:23 - 000467168 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2024-01-26 09:19 - 2016-05-12 06:23 - 000321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2024-01-26 09:19 - 2016-05-12 06:23 - 000321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2024-01-26 09:18 - 2024-01-26 09:18 - 002389504 _____ (Farbar) C:\Users\Katarína\Downloads\FRST64.exe
2024-01-26 09:18 - 2024-01-26 09:18 - 002389504 _____ (Farbar) C:\Users\Katarína\Desktop\FRST64.exe
2024-01-26 09:17 - 2024-01-26 09:21 - 001388448 _____ C:\Users\Public\VOIP.dat
2024-01-26 09:17 - 2024-01-26 09:21 - 000000000 ____D C:\WINDOWS\LastGood
2024-01-26 09:17 - 2017-10-31 13:44 - 002650360 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCamU64.exe
2024-01-26 09:17 - 2017-10-31 13:44 - 000667104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCamP64.dll
2024-01-26 09:17 - 2017-10-31 13:44 - 000578016 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtCamP.dll
2024-01-26 09:17 - 2017-10-31 13:43 - 001980664 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsDecode.dll
2024-01-26 09:09 - 2024-01-26 09:15 - 000000000 ____D C:\ProgramData\AnyDesk
2024-01-26 09:09 - 2024-01-26 09:09 - 000001964 _____ C:\Users\Public\Desktop\AnyDesk.lnk
2024-01-26 09:09 - 2024-01-26 09:09 - 000000000 ____D C:\Users\Katarína\AppData\Roaming\AnyDesk
2024-01-26 09:09 - 2024-01-26 09:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyDesk
2024-01-26 09:09 - 2024-01-26 09:09 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-01-26 09:08 - 2024-01-26 09:08 - 005525576 _____ (AnyDesk Software GmbH) C:\Users\Katarína\Downloads\AnyDesk (2).exe
2024-01-26 09:08 - 2024-01-26 09:08 - 005525576 _____ (AnyDesk Software GmbH) C:\Users\Katarína\Downloads\AnyDesk (1).exe
2024-01-26 09:05 - 2024-01-26 09:05 - 005525576 _____ (AnyDesk Software GmbH) C:\Users\Katarína\Downloads\AnyDesk.exe
2024-01-26 09:05 - 2024-01-26 09:05 - 000000000 ___HD C:\OneDriveTemp
2024-01-10 18:03 - 2024-01-10 18:09 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-01-26 09:21 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-01-26 09:21 - 2017-06-06 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2024-01-26 09:20 - 2019-10-20 16:53 - 000000000 ____D C:\FRST
2024-01-26 09:20 - 2017-06-06 21:44 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2024-01-26 09:16 - 2020-09-20 00:51 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2024-01-26 09:13 - 2023-07-02 19:36 - 000002266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-01-26 09:13 - 2023-07-02 19:36 - 000002225 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-01-26 09:13 - 2021-12-21 20:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-26 09:13 - 2015-05-25 21:11 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-26 09:08 - 2023-03-30 15:20 - 000004194 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1680186027
2024-01-26 09:08 - 2023-03-30 15:20 - 000001485 _____ C:\Users\Katarína\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2024-01-26 09:07 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-26 09:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-01-26 09:05 - 2015-05-25 19:16 - 000000000 ___RD C:\Users\Katarína\OneDrive
2024-01-26 08:58 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-26 08:55 - 2020-09-20 21:58 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-01-26 08:55 - 2020-09-20 21:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-01-24 21:28 - 2018-03-25 00:00 - 000000000 ____D C:\Users\Katarína\AppData\Local\PlaceholderTileLogoFolder
2024-01-24 21:08 - 2020-01-23 21:24 - 000000000 ____D C:\Users\Katarína\AppData\Roaming\Microsoft\Teams
2024-01-24 21:07 - 2017-06-06 21:44 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-01-24 21:07 - 2015-05-25 19:12 - 000000000 __SHD C:\Users\Katarína\IntelGraphicsProfiles
2024-01-22 16:53 - 2020-09-20 21:46 - 001841486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-01-22 16:53 - 2019-12-07 15:41 - 000756318 _____ C:\WINDOWS\system32\perfh005.dat
2024-01-22 16:53 - 2019-12-07 15:41 - 000170268 _____ C:\WINDOWS\system32\perfc005.dat
2024-01-22 16:49 - 2020-09-20 21:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-01-22 16:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-01-22 16:49 - 2019-12-07 10:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2024-01-21 15:11 - 2020-08-10 09:10 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-01-21 15:11 - 2020-08-10 09:10 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-01-18 16:55 - 2020-09-20 00:59 - 000000000 ____D C:\Users\Katarína
2024-01-13 17:46 - 2020-09-20 21:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2024-01-13 17:45 - 2020-09-20 21:21 - 000474848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-01-13 17:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-01-13 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-01-13 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-01-13 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-01-13 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-01-13 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-01-11 18:06 - 2014-08-29 02:22 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-01-10 18:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-01-10 18:01 - 2015-06-30 20:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-01-10 17:53 - 2015-06-30 20:39 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-12-30 13:12 - 2017-02-28 12:32 - 000000000 ____D C:\Program Files\CCleaner

==================== Files in the root of some directories ========

2024-01-26 09:17 - 2024-01-26 09:21 - 001388448 _____ () C:\Users\Public\VOIP.dat
2015-08-06 21:17 - 2015-08-06 21:17 - 000000000 _____ () C:\Users\Katarína\AppData\Local\{81906975-1546-4E07-BEEC-40A0CFBF6A8F}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================