Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11.03.2024
Ran by Tomík (administrator) on DESKTOP-3FOKSIO (Micro-Star International Co., Ltd. MS-7D75) (12-03-2024 08:49:01)
Running from C:\Users\Tomík\OneDrive\Plocha\FRST64.exe
Loaded Profiles: Tomík
Platform: Microsoft Windows 10 Home Version 22H2 19045.4046 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG  sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe <2>
(C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG  sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
(C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe ->) (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EACefSubProcess.exe <5>
(C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.AlwaysOnTop.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.Awake.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.ColorPickerUI.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.CropAndLock.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.FancyZones.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.PowerLauncher.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.PowerOCR.exe
(C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\WinUI3Apps\PowerToys.Peek.UI.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe
(explorer.exe ->) () [File not signed] C:\Program Files\Prismatik\Prismatik.exe
(explorer.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\RyzenMaster\bin\AMD Ryzen Master.exe
(explorer.exe ->) (Global Delight Technologies Private Limited -> ) C:\Program Files (x86)\Steam\steamapps\common\Boom 3D\Boom3D.exe
(explorer.exe ->) (GOG  sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <49>
(explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(explorer.exe ->) (LLC Mail.Ru -> ) C:\Users\Tomík\AppData\Roaming\ICQ\bin\icq.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc) C:\Program Files (x86)\Norton\Browser\Application\NortonBrowser.exe <9>
(explorer.exe ->) (Open Source Developer, Noriyuki Miyazaki -> Crystal Dew World) C:\Program Files\CrystalDiskInfo\DiskInfo64.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(GOG  sp. z o.o -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(services.exe ->) () [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (GENESYS LOGIC, INC. -> Genesys Logic, Inc.) C:\Windows\System32\GlHubFltService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.24.1.6\NortonSecurity.exe <2>
(services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.24.1.6\nsWscSvc.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_618b150331c5f4ad\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_dd4cb97d217df0bc\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2409.8.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.025.0204.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2401.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_dd4cb97d217df0bc\RtkAudUService64.exe [1647456 2023-09-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\122.1.63.169\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10880024 2024-03-06] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3591168 2022-10-09] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3785728 2023-09-06] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [M17A] => C:\Windows\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [85912 2021-09-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\RunOnce: [usbfltrb] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2598928 2024-03-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [icq.desktop] => C:\Users\Tomík\AppData\Roaming\ICQ\bin\icq.exe [118272480 2023-09-14] (LLC Mail.Ru -> )
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [MicrosoftEdgeAutoLaunch_F5A7E68338468E6579787F58DC99F90A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4060608 2024-03-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [Boom 3D] => C:\Program Files (x86)\Steam\steamapps\common\Boom 3D\Boom3D.exe [465512 2023-12-29] (Global Delight Technologies Private Limited -> )
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2730600 2024-02-28] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [GoogleChromeAutoLaunch_AC38349123831D64CBD79CDFBD8F806D] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2772256 2024-03-05] (Google LLC -> Google LLC)
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [NortonBrowserAutoLaunch_8B75A424158B76988B96D181BD1CC7BB] => C:\Program Files (x86)\Norton\Browser\Application\NortonBrowser.exe [3376376 2024-03-07] (NortonLifeLock Inc. -> NortonLifeLock Inc)
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [G-Menu] => C:\G-Menu\G-Menu.exe --openAsHidden (No File)
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13993440 2023-10-25] (GOG  sp. z o.o -> GOG.com)
HKU\S-1-5-21-164412472-2611241565-492249232-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{3A3642E6-DE46-4F68-9887-AA017EEFE426}] -> C:\Program Files (x86)\Norton\Browser\Application\122.0.24263.96\Installer\chrmstp.exe [2024-03-08] (NortonLifeLock Inc. -> NortonLifeLock Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.112\Installer\chrmstp.exe [2024-03-08] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\122.1.63.169\Installer\chrmstp.exe [2024-03-07] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\Tomík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DDM2.0.lnk [2023-10-31]
ShortcutTarget: DDM2.0.lnk -> C:\Program Files\Dell\Dell Display Manager 2\DDM.exe (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Prismatik (unofficial) 64bit.lnk [2023-09-15]
ShortcutTarget: Prismatik (unofficial) 64bit.lnk -> C:\Program Files\Prismatik\Prismatik.exe () [File not signed]

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {D884780C-EB50-4887-9ADA-1920B5EDF697} - System32\Tasks\{2B3E483C-6661-4E04-8FF4-C7FCE7D864AE} => C:\Program Files (x86)\east-tec Eraser\etEraser.exe  (No File)
Task: {7E37EC71-CA5F-409E-800C-0E2DF7364246} - System32\Tasks\{2B3E483C-6661-4E04-8FF4-C7FCE7D864BE} => C:\Program Files (x86)\east-tec Eraser\etUpdateMonitor.exe  (No File)
Task: {57713145-D7DC-451D-8A58-E353794FF502} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [672064 2023-08-09] (Advanced Micro Devices Inc. -> )
Task: {371F2F71-D3E5-41B8-96C2-BFB0A882AA1D} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{B4A1A540-40C6-47F7-BF8E-13083A43B762} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-07] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {454FBBAA-04B5-4CAF-A974-D1930A9B77F4} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{C68C03BB-8E8C-47D8-953F-6683BE439480} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-07] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {0FCFBEFF-DCC5-4EB6-B699-EB7735825196} - System32\Tasks\GoogleUpdateTaskMachineCore{02364DD3-D51A-47F9-96A6-3905C0B33A3A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2023-09-14] (Google LLC -> Google LLC)
Task: {8FCB2FB4-19E9-4E13-BAE4-DA5B7E50A4B5} - System32\Tasks\GoogleUpdateTaskMachineUA{88FEB7AF-F2D6-4AEF-9914-A5EF229D0D76} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2023-09-14] (Google LLC -> Google LLC)
Task: {053A983C-DF01-4588-8A18-387CC79529DC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {19A641A9-35A1-47A4-87EE-F88498D5BF86} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28491856 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {39DFA3D9-A9DA-4C07-B836-3FC3D3FBCC55} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {12D5CCB9-550E-4A61-8466-4DACB46ECFD6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309320 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8736A2B-31F1-4FBA-B808-4BFD8FD3567A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170024 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {9A266F59-92C7-4FE4-B09F-BD4E5BDED407} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804312 2023-04-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {5D014CEB-DF1E-460F-88A1-5964CB2A5D22} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.24.1.6\SymErr.exe [379024 2024-02-03] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {DF6C0DF0-0E58-47E6-9BDE-9453349222E9} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.24.1.6\SymErr.exe [379024 2024-02-03] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {F4433F9E-545B-4DF5-947E-8303DD97D5A0} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.24.1.6\SymErr.exe [379024 2024-02-03] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {76C32859-11D7-4026-8736-74D474EA6549} - System32\Tasks\Norton Private Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\Norton\Browser\Application\NortonBrowser.exe [3376376 2024-03-07] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {F34E694C-9BC4-4ABE-B395-2798D51D3F59} - System32\Tasks\Norton Private Browser Heartbeat Task (Logon) => C:\Program Files (x86)\Norton\Browser\Application\NortonBrowser.exe [3376376 2024-03-07] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {6C5836D4-12C5-495B-AE37-46B0118EA1D5} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.24.1.6\WSCStub.exe [646520 2024-02-03] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {F12B2AAB-5D44-415B-9B8C-886B777AC8FE} - System32\Tasks\NortonBrowserProtectS-1-5-21-164412472-2611241565-492249232-1001 => C:\Program Files (x86)\Norton\Browser\Application\NortonBrowserProtect.exe [1895584 2023-10-04] (NortonLifeLock Inc. -> Norton LifeLock) <==== ATTENTION
Task: {4D85D546-3E9C-4753-B797-B74B25756DD3} - System32\Tasks\NortonUpdateTaskMachineCore => C:\Program Files (x86)\Norton\Browser\Update\NortonBrowserUpdate.exe [440608 2023-10-26] (NortonLifeLock Inc. -> Norton LifeLock)
Task: {B6E05BD5-F8E2-45F8-8ABA-FEAC51DCA45D} - System32\Tasks\NortonUpdateTaskMachineUA => C:\Program Files (x86)\Norton\Browser\Update\NortonBrowserUpdate.exe [440608 2023-10-26] (NortonLifeLock Inc. -> Norton LifeLock)
Task: {E95CEBD1-2CF3-4B38-A5FF-425712946F7F} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3867176 2024-02-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7327E6CA-55EC-4C5C-BED1-932F7E30876D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {1ADBD22B-E4B9-4EF0-AB72-088A5E45C70B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-164412472-2611241565-492249232-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {09E7C697-191C-4311-A870-7EF6FBB6987C} - System32\Tasks\PowerToys\Autorun for Tomík => C:\Users\Tomík\AppData\Local\PowerToys\PowerToys.exe [1190336 2024-03-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {25C93078-D058-49E9-BD7C-D7835528A283} - System32\Tasks\Prismatik with Admin Rights => C:\Program  -> Files\Prismatik\Prismatik.exe
Task: {1FE6B77A-3A10-4720-951C-5DCA370E779C} - System32\Tasks\PsiegUpdateElevate_Prismatik => C:\Program Files\Prismatik\UpdateElevate.exe [50176 2022-01-08] () [File not signed]
Task: {39781E62-1E10-49BB-9F11-467E258B1534} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2353000 2024-02-03] (NortonLifeLock Inc. -> NortonLifeLock Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2955b703-6b1b-4ef6-9a4c-df4f0a98ac18}: [DhcpNameServer] 192.168.0.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Tomík\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-12]
Edge Extension: (Dokumenty Google offline) - C:\Users\Tomík\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-08]
Edge Extension: (Edge relevant text changes) - C:\Users\Tomík\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF DefaultProfile: l8aieci6.default
FF ProfilePath: C:\Users\Tomík\AppData\Roaming\Mozilla\Firefox\Profiles\l8aieci6.default [2023-12-31]
FF ProfilePath: C:\Users\Tomík\AppData\Roaming\Mozilla\Firefox\Profiles\2k0hx0vc.default-release [2023-12-31]
FF Homepage: Mozilla\Firefox\Profiles\2k0hx0vc.default-release -> moz-extension://8ae657a4-bf43-48a2-979d-60901f8879d3/homePage.html
FF Session Restore: Mozilla\Firefox\Profiles\2k0hx0vc.default-release -> is enabled.
FF HomepageOverride: Mozilla\Firefox\Profiles\2k0hx0vc.default-release -> Enabled: nortonhomepage@symantec.com
FF NewTabOverride: Mozilla\Firefox\Profiles\2k0hx0vc.default-release -> Enabled: nortonhomepage@symantec.com
FF NewTabOverride: Mozilla\Firefox\Profiles\2k0hx0vc.default-release -> Enabled: nortonsafesearch_ul_2@symantec.com
FF Extension: (Norton Home Page) - C:\Users\Tomík\AppData\Roaming\Mozilla\Firefox\Profiles\2k0hx0vc.default-release\Extensions\nortonhomepage@symantec.com.xpi [2023-12-31] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/hp/updates.json]
FF Extension: (Norton Safe Search) - C:\Users\Tomík\AppData\Roaming\Mozilla\Firefox\Profiles\2k0hx0vc.default-release\Extensions\nortonsafesearch_ul_2@symantec.com.xpi [2023-12-31] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/ds_modified/updates.json]
FF Extension: (Norton Safe Web) - C:\Users\Tomík\AppData\Roaming\Mozilla\Firefox\Profiles\2k0hx0vc.default-release\Extensions\nortonsafeweb@symantec.com.xpi [2023-12-31]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.norton.securebrowser.com/Norton Browser;version=3 -> C:\Program Files (x86)\Norton\Browser\Update\1.8.1649.5\npNortonBrowserUpdate3.dll [2023-10-26] (NortonLifeLock Inc. -> Norton LifeLock)
FF Plugin-x32: @update.norton.securebrowser.com/Norton Browser;version=9 -> C:\Program Files (x86)\Norton\Browser\Update\1.8.1649.5\npNortonBrowserUpdate3.dll [2023-10-26] (NortonLifeLock Inc. -> Norton LifeLock)

Chrome: 
=======
CHR Profile: C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default [2024-03-12]
CHR DownloadDir: G:\STAŽENÉ
CHR Notifications: Default -> hxxps://www.facebook.com
CHR NewTab: Default ->  Active:"chrome-extension://mhffmephdchhhbfjmdpoaldedhhdanbn/homePageRedirect.html", Not-active:"chrome-extension://eoigllimhcllmhedfbmahegmoakcdakd/homePageRedirect.html"
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-09-14]
CHR Extension: (Norton Password Manager) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\admmjipmmciaobhojoghlmleefbicajg [2024-01-22]
CHR Extension: (Zoom to Fill - Ultrawide Video) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\adpjimagbfpknkodpofjphpbdlfkeiho [2024-01-23]
CHR Extension: (UltraWideo) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbnagnphiehemkdgmmficmjfddgfhpl [2024-01-22]
CHR Extension: (DuckDuckGo) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2024-02-01]
CHR Extension: (change-language) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\cofdbpoegempjloogbagkncekinflcnj [2024-03-08]
CHR Extension: (Tampermonkey) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2024-01-20]
CHR Extension: (Lingea_Chrome) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahlchkahklomfnpbcbgmhiocnpifmke [2023-09-14]
CHR Extension: (Norton Safe) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\eoigllimhcllmhedfbmahegmoakcdakd [2023-09-14]
CHR Extension: (Norton Safe Web) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2023-12-22]
CHR Extension: (Return YouTube Dislike) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2023-12-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-28]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-02-22]
CHR Extension: (Auto Refresh Plus | Page Monitor) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgeljhfekpckiiplhkigfehkdpldcggm [2023-10-26]
CHR Extension: (UltraWide Video) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\lngfncacljheahfpahadgipefkbagpdl [2023-10-28]
CHR Extension: (Norton Home Page) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhffmephdchhhbfjmdpoaldedhhdanbn [2024-03-08]
CHR Extension: (Norton Safe) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2024-02-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-14]
CHR Extension: (Karta Automatické aktualizace) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\oomoeacogjkolheacgdkkkhbjipaomkn [2023-09-14]
CHR Extension: (Hlídač Shopů) - C:\Users\Tomík\AppData\Local\Google\Chrome\User Data\Default\Extensions\plmlonggbfebcjelncogcnclagkmkikk [2023-11-16]

Brave: 
=======
BRA Profile: C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-01-11]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-01-07]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-01-11]
BRA Extension: (Brave NTP background images) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-01-07]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-01-11]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-11]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-01-11]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2024-01-11]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-01-07]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2024-01-07]
BRA Extension: (Brave Ads Resources) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2024-01-07]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-01-11]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-01-07]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2024-01-11]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Tomík\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2024-01-07]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2023-09-15] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-07] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-07] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\122.1.63.169\brave_vpn_helper.exe [2729496 2024-03-06] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\122.1.63.169\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10880024 2024-03-06] (Brave Software, Inc. -> Brave Software, Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [377856 2023-07-20] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14097992 2024-03-08] (Microsoft Corporation -> Microsoft Corporation)
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12096104 2024-02-28] (Electronic Arts, Inc. -> Electronic Arts)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.025.0204.0003\FileSyncHelper.exe [3516848 2024-03-07] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2350048 2023-10-25] (GOG  sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7173088 2023-10-25] (GOG  sp. z o.o -> GOG.com)
R2 GlUsbFltService; C:\Windows\system32\GlHubFltService.exe [181072 2023-08-11] (GENESYS LOGIC, INC. -> Genesys Logic, Inc.)
S2 norton; C:\Program Files (x86)\Norton\Browser\Update\NortonBrowserUpdate.exe [440608 2023-10-26] (NortonLifeLock Inc. -> Norton LifeLock)
S3 nortonm; C:\Program Files (x86)\Norton\Browser\Update\NortonBrowserUpdate.exe [440608 2023-10-26] (NortonLifeLock Inc. -> Norton LifeLock)
S3 NortonPrivateBrowserElevationService; C:\Program Files (x86)\Norton\Browser\Application\122.0.24263.96\elevation_service.exe [1753016 2024-03-07] (NortonLifeLock Inc. -> NortonLifeLock Inc)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.24.1.6\NortonSecurity.exe [344888 2024-02-03] (NortonLifeLock Inc. -> NortonLifelock Inc.)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.24.1.6\nsWscSvc.exe [1059176 2024-02-03] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_618b150331c5f4ad\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-03-02] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.025.0204.0003\OneDriveUpdaterService.exe [3853744 2024-03-07] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [4505072 2023-12-27] (Rockstar Games, Inc. -> Rockstar Games)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [11776 2024-01-25] () [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [18944 2024-01-25] () [File not signed]
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\122.1.63.169\elevation_service.exe" [X]
S3 NortonSecureBrowserElevationService; "C:\Program Files (x86)\Norton\Browser\Application\120.0.23647.224\elevation_service.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.23.8.4\Definitions\BASHDefs\20240311.001\BHDrvx64.sys [1706512 2023-09-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\1618010.006\ccSetx64.sys [199224 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527832 2023-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2023-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 GDPL_BOOM; C:\Windows\system32\drivers\boomvad.sys [46632 2023-09-15] (WDKTestCert Adarsh,133180870191105194 -> Windows (R) Win 7 DDK provider)
R3 glusbflt; C:\Windows\system32\drivers\glusbflt.sys [57288 2023-08-11] (GENESYS LOGIC, INC. -> Genesys Logic)
S3 HWiNFO_187; C:\Users\TOMK~1\AppData\Local\Temp\HWiNFO64A_187.SYS [56912 2024-03-07] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm)) <==== ATTENTION
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.23.8.4\Definitions\IPSDefs\20240311.064\IDSvia64.sys [1554400 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 MTKBTFilterx64; C:\Windows\System32\drivers\mtkbtfilterx.sys [350680 2023-09-14] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\Windows\System32\drivers\mtkwl6ex.sys [1591776 2023-09-14] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
S3 nsvst_NGC; C:\Windows\System32\drivers\NGCx64\1618010.006\nsvst.sys [57120 2024-02-03] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 RtkUsbAD_2353; C:\Windows\System32\DriverStore\FileRepository\rtdusbad_msi.inf_amd64_df0242d5fa2ca1e1\RtUsbA64.sys [497560 2023-09-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 SRTSP; C:\Windows\System32\drivers\NGCx64\1618010.006\SRTSP64.SYS [961584 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\1618010.006\SRTSPX64.SYS [53808 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\1618010.006\SYMEFASI64.SYS [2181192 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S0 SymELAM; C:\Windows\System32\drivers\NGCx64\1618010.006\SymELAM.sys [36960 2024-02-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100344 2023-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.23.8.4\SymPlatform\SymEvnt.sys [934912 2024-02-02] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymIRON; C:\Windows\System32\drivers\NGCx64\1618010.006\Ironx64.SYS [307816 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymNetS; C:\Windows\System32\drivers\NGCx64\1618010.006\symnets.sys [493664 2024-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [55872 2023-09-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [574872 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
R1 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\1618010.006\wpCtrlDrv.sys [1016792 2024-02-03] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-03-12 07:16 - 2024-03-12 07:16 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2024-03-11 20:58 - 2024-03-11 20:58 - 008790880 _____ (Malwarebytes) C:\Users\Tomík\OneDrive\Plocha\adwcleaner(4).exe
2024-03-11 20:43 - 2024-03-12 08:49 - 000040639 _____ C:\Users\Tomík\OneDrive\Plocha\FRST.txt
2024-03-11 20:42 - 2024-03-12 08:49 - 000000000 ____D C:\FRST
2024-03-11 20:42 - 2024-03-11 20:42 - 002390528 _____ (Farbar) C:\Users\Tomík\OneDrive\Plocha\FRST64.exe
2024-03-11 20:10 - 2024-03-11 20:10 - 008790880 _____ (Malwarebytes) C:\Users\Tomík\OneDrive\Plocha\adwcleaner(3).exe
2024-03-11 19:52 - 2024-03-11 19:52 - 002585496 _____ (Malwarebytes) C:\Users\Tomík\OneDrive\Plocha\MBSetup.exe
2024-03-11 18:18 - 2024-03-11 18:18 - 000050688 _____ (Atribune.org) C:\Users\Tomík\OneDrive\Plocha\ATF-Cleaner.exe
2024-03-11 18:14 - 2024-03-11 18:15 - 109603696 _____ (AO Kaspersky Lab) C:\Users\Tomík\OneDrive\Plocha\KVRT.exe
2024-03-11 18:06 - 2024-03-11 18:06 - 008790880 _____ (Malwarebytes) C:\Users\Tomík\OneDrive\Plocha\adwcleaner(2).exe
2024-03-11 18:01 - 2024-03-11 18:02 - 000000000 ____D C:\AdwCleaner
2024-03-11 18:01 - 2024-03-11 18:01 - 008791352 _____ (Malwarebytes) C:\Users\Tomík\OneDrive\Plocha\AdwCleaner.exe
2024-03-11 18:01 - 2024-03-11 18:01 - 008790880 _____ (Malwarebytes) C:\Users\Tomík\OneDrive\Plocha\adwcleaner(1).exe
2024-03-09 09:00 - 2024-03-09 09:00 - 000000222 _____ C:\Users\Tomík\OneDrive\Plocha\Assassin's Creed Origins.url
2024-03-08 19:32 - 2024-03-08 19:32 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-03-07 20:50 - 2024-03-07 20:50 - 000000000 ____D C:\Users\Tomík\OneDrive\Documents\Diablo II
2024-03-07 17:19 - 2024-03-11 19:52 - 000000147 _____ C:\Windows\system32\Drivers\etc\hosts.rollback
2024-03-07 10:41 - 2024-03-07 10:41 - 000000000 ____D C:\Users\Tomík\AppData\Local\Banishers Ghosts of New Eden
2024-03-06 11:22 - 2024-03-06 11:22 - 001194777 _____ C:\Users\Tomík\Downloads\TheThaumaturge_V01.7z
2024-03-06 11:16 - 2024-03-06 11:16 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\NVIDIA
2024-03-06 11:16 - 2024-03-06 11:16 - 000000000 ____D C:\Users\Tomík\AppData\Local\TheThaumaturge
2024-03-06 10:00 - 2024-03-06 10:00 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webshare klient
2024-03-06 10:00 - 2024-03-06 10:00 - 000000000 ____D C:\Program Files\Webshare klient
2024-03-06 07:08 - 2024-03-06 07:08 - 000000000 ____D C:\Windows\system32\lxss
2024-03-06 07:08 - 2024-03-06 07:08 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2024-03-06 07:08 - 2024-03-06 07:08 - 000000000 ____D C:\Windows\LastGood
2024-03-06 06:57 - 2024-03-02 17:03 - 002031360 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-03-06 06:57 - 2024-03-02 17:03 - 002031360 _____ C:\Windows\system32\vulkaninfo.exe
2024-03-06 06:57 - 2024-03-02 17:03 - 001578752 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-03-06 06:57 - 2024-03-02 17:03 - 001578752 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-03-06 06:57 - 2024-03-02 17:03 - 001487904 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-03-06 06:57 - 2024-03-02 17:03 - 001445120 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-03-06 06:57 - 2024-03-02 17:03 - 001445120 _____ C:\Windows\system32\vulkan-1.dll
2024-03-06 06:57 - 2024-03-02 17:03 - 001295104 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-03-06 06:57 - 2024-03-02 17:03 - 001295104 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-03-06 06:57 - 2024-03-02 17:03 - 001226760 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-03-06 06:57 - 2024-03-02 17:00 - 001045520 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2024-03-06 06:57 - 2024-03-02 17:00 - 000669704 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2024-03-06 06:57 - 2024-03-02 17:00 - 000505360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2024-03-06 06:57 - 2024-03-02 16:59 - 002173560 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2024-03-06 06:57 - 2024-03-02 16:59 - 001625736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2024-03-06 06:57 - 2024-03-02 16:59 - 001541648 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2024-03-06 06:57 - 2024-03-02 16:59 - 001199752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2024-03-06 06:57 - 2024-03-02 16:59 - 001024032 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2024-03-06 06:57 - 2024-03-02 16:59 - 000841840 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2024-03-06 06:57 - 2024-03-02 16:59 - 000786952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2024-03-06 06:57 - 2024-03-02 16:58 - 016033824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2024-03-06 06:57 - 2024-03-02 16:58 - 012928032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2024-03-06 06:57 - 2024-03-02 16:58 - 006780960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2024-03-06 06:57 - 2024-03-02 16:58 - 005772808 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2024-03-06 06:57 - 2024-03-02 16:58 - 003721752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2024-03-06 06:57 - 2024-03-02 16:58 - 000459808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2024-03-06 06:57 - 2024-03-02 16:57 - 005913096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2024-03-06 06:57 - 2024-03-02 16:57 - 000853640 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2024-03-06 06:57 - 2024-03-02 16:56 - 006943440 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2024-03-06 06:57 - 2024-03-02 16:56 - 006031080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2024-03-06 06:57 - 2024-03-02 00:04 - 000119419 _____ C:\Windows\system32\nvinfo.pb
2024-03-05 07:24 - 2024-03-12 06:49 - 000000000 ____D C:\Windows\system32\Tasks\PowerToys
2024-03-05 07:24 - 2024-03-05 07:24 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2024-03-05 07:24 - 2024-03-05 07:24 - 000000000 ____D C:\Users\Tomík\AppData\Local\PowerToys
2024-03-03 19:49 - 2024-03-03 19:49 - 000000000 ____D C:\Users\Tomík\AppData\LocalLow\Unity
2024-03-03 19:47 - 2024-03-03 19:48 - 262247325 _____ C:\Users\Tomík\Downloads\LastEpoch_V02.7z
2024-03-03 16:13 - 2024-03-11 19:52 - 000000000 ____D C:\KVRT2020_Data
2024-02-29 15:14 - 2024-02-29 15:14 - 000000000 ____D C:\Users\Tomík\AppData\LocalLow\Eleventh Hour Games
2024-02-29 09:50 - 2024-02-29 09:50 - 000000603 _____ C:\Users\Tomík\OneDrive\Plocha\NORTHGARD V3.3.16.36098.lnk
2024-02-28 15:19 - 2024-02-28 15:19 - 000000235 _____ C:\Users\Tomík\OneDrive\Plocha\Assassin's Creed Valhalla.url
2024-02-28 15:19 - 2024-02-28 15:19 - 000000235 _____ C:\Users\Tomík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Assassin's Creed Valhalla.url
2024-02-28 14:49 - 2024-02-28 14:49 - 000000000 ____D C:\Users\Tomík\Screenshot
2024-02-28 10:48 - 2024-02-28 10:48 - 000000223 _____ C:\Users\Tomík\OneDrive\Plocha\Starfield.url
2024-02-28 10:38 - 2024-02-28 10:38 - 000000222 _____ C:\Users\Tomík\OneDrive\Plocha\Dishonored.url
2024-02-23 07:12 - 2024-02-23 07:12 - 000003834 _____ C:\Windows\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-02-23 07:12 - 2024-02-23 07:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-02-23 07:12 - 2024-02-19 10:22 - 003132456 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2024-02-23 07:12 - 2024-02-19 10:22 - 002418216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2024-02-22 21:05 - 2024-02-22 21:05 - 000000000 ____D C:\Windows\LastGood.Tmp
2024-02-18 15:57 - 2024-03-12 06:56 - 000000000 ____D C:\Windows\system32\Tasks\Norton 360
2024-02-18 15:52 - 2024-02-20 06:50 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2024-02-18 15:52 - 2024-02-18 15:52 - 000003374 _____ C:\Windows\system32\Tasks\Norton WSC Integration
2024-02-16 15:12 - 2024-02-16 15:36 - 000000000 ____D C:\Users\Tomík\AppData\Local\Enderal Special Edition
2024-02-16 11:24 - 2024-02-16 11:24 - 000000222 _____ C:\Users\Tomík\OneDrive\Plocha\Fallout 4.url
2024-02-16 08:58 - 2024-02-16 08:58 - 000000223 _____ C:\Users\Tomík\OneDrive\Plocha\Total War WARHAMMER III.url
2024-02-14 10:10 - 2024-02-14 10:10 - 000001983 _____ C:\Users\Tomík\Downloads\priloha_1315181096_1_VypisROB.csv
2024-02-14 10:09 - 2024-02-14 10:09 - 000135041 _____ C:\Users\Tomík\Downloads\priloha_1315181096_0_VypisROB.pdf
2024-02-14 07:38 - 2024-02-14 07:38 - 000019697 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-02-14 07:38 - 2024-02-14 07:38 - 000019697 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-02-14 07:34 - 2024-02-14 07:34 - 000000000 ___HD C:\$WinREAgent
2024-02-13 17:33 - 2024-03-08 19:40 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Private Browser.lnk
2024-02-13 17:33 - 2024-02-13 17:33 - 000003846 _____ C:\Windows\system32\Tasks\Norton Private Browser Heartbeat Task (Hourly)
2024-02-13 17:33 - 2024-02-13 17:33 - 000003262 _____ C:\Windows\system32\Tasks\Norton Private Browser Heartbeat Task (Logon)
2024-02-12 11:02 - 2024-02-12 11:02 - 000016135 _____ C:\Users\Tomík\Downloads\priloha_1313873591_0_notifikace.pdf
2024-02-11 17:25 - 2024-02-12 10:20 - 000000000 ____D C:\Users\Tomík\AppData\Local\Nemesis

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-03-12 08:48 - 2023-09-14 15:15 - 000000000 ____D C:\Users\Tomík\AppData\Local\ClassicShell
2024-03-12 08:47 - 2023-09-15 17:14 - 000000000 ____D C:\Users\Tomík\AppData\Local\Norton
2024-03-12 08:46 - 2023-12-29 21:17 - 000000000 ____D C:\Program Files (x86)\Steam
2024-03-12 08:17 - 2023-09-14 16:21 - 000000000 ____D C:\Program Files (x86)\Google
2024-03-12 08:17 - 2023-05-05 13:27 - 000000000 ____D C:\Windows\SystemTemp
2024-03-12 07:18 - 2023-09-14 15:05 - 000422427 _____ C:\Users\Tomík\OneDrive\Plocha\dok.txt
2024-03-12 07:04 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-12 06:54 - 2023-09-14 14:57 - 001693136 _____ C:\Windows\system32\PerfStringBackup.INI
2024-03-12 06:54 - 2019-12-07 15:41 - 000716764 _____ C:\Windows\system32\perfh005.dat
2024-03-12 06:54 - 2019-12-07 15:41 - 000144942 _____ C:\Windows\system32\perfc005.dat
2024-03-12 06:54 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-03-12 06:49 - 2023-11-10 09:42 - 000000000 ____D C:\ProgramData\BoomLogs
2024-03-12 06:49 - 2023-09-15 09:50 - 000000000 ____D C:\Users\Tomík\Prismatik
2024-03-12 06:49 - 2023-09-14 14:59 - 000000000 ___RD C:\Users\Tomík\OneDrive
2024-03-11 21:13 - 2023-09-14 20:00 - 000000000 ____D C:\ProgramData\NVIDIA
2024-03-11 21:13 - 2023-09-14 19:26 - 000003142 _____ C:\Windows\system32\Tasks\MSIAfterburner
2024-03-11 21:13 - 2023-09-14 15:57 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2024-03-11 21:12 - 2023-09-14 14:53 - 000008192 ___SH C:\DumpStack.log.tmp
2024-03-11 21:12 - 2023-09-14 14:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-03-11 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2024-03-11 21:11 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-03-11 19:55 - 2023-09-14 15:24 - 000000000 ____D C:\ProgramData\Package Cache
2024-03-11 19:28 - 2023-09-14 14:53 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-03-11 18:09 - 2023-09-14 19:22 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-03-11 18:02 - 2023-11-01 07:41 - 000000000 ____D C:\ProgramData\Dell
2024-03-11 16:44 - 2023-09-14 19:09 - 000000000 ____D C:\Users\Tomík\AppData\Local\Ubisoft Game Launcher
2024-03-11 16:12 - 2023-09-14 19:12 - 000003518 _____ C:\Users\Tomík\OneDrive\Documents\ACP.ini
2024-03-11 09:08 - 2023-09-14 18:48 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\Microsoft\Word
2024-03-10 06:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-03-09 21:06 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-09 19:25 - 2023-09-14 14:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-09 14:52 - 2023-09-14 15:05 - 000056432 _____ C:\Users\Tomík\OneDrive\Plocha\PRÁCE.txt
2024-03-09 10:10 - 2023-11-23 09:30 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2024-03-09 09:00 - 2023-09-14 16:20 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-03-08 21:09 - 2023-09-17 07:05 - 000000000 ____D C:\Users\Tomík\AppData\Local\Webshare
2024-03-08 21:07 - 2023-12-17 07:32 - 000000000 ____D C:\Users\Tomík\AppData\LocalLow\Norton
2024-03-08 19:31 - 2023-09-14 18:45 - 000000000 ____D C:\Program Files\Microsoft Office
2024-03-08 09:45 - 2023-09-14 19:59 - 000000000 ____D C:\Users\Tomík\AppData\Local\D3DSCache
2024-03-08 06:51 - 2023-09-14 16:21 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-03-07 20:50 - 2023-11-25 10:48 - 000000000 ____D C:\Users\Tomík\AppData\Local\Blizzard Entertainment
2024-03-07 17:32 - 2023-09-15 09:44 - 000000000 ____D C:\Users\Tomík\AppData\Local\Starfield
2024-03-07 17:20 - 2023-09-14 15:52 - 000000000 ____D C:\Users\Tomík\AppData\Local\CrashDumps
2024-03-07 10:57 - 2023-09-14 18:48 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-03-07 10:57 - 2023-09-14 18:48 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-03-07 10:57 - 2023-09-14 14:59 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-164412472-2611241565-492249232-1001
2024-03-07 10:41 - 2023-09-15 14:05 - 000000000 ____D C:\Users\Tomík\AppData\Local\UnrealEngine
2024-03-07 07:00 - 2024-01-07 10:26 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-03-06 10:00 - 2023-10-05 13:24 - 000001837 _____ C:\Users\Tomík\OneDrive\Plocha\Webshare klient.lnk
2024-03-06 07:10 - 2023-09-14 20:00 - 000000000 ____D C:\Users\Tomík\AppData\Local\NVIDIA
2024-03-06 07:08 - 2023-09-14 20:00 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-03-06 07:07 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-03-06 07:03 - 2023-09-14 20:00 - 000000000 ____D C:\Users\Tomík\AppData\Local\NVIDIA Corporation
2024-03-06 07:03 - 2023-09-14 15:47 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-03-06 07:03 - 2023-09-14 14:59 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-03-06 06:56 - 2023-09-14 14:53 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-03-06 06:56 - 2023-09-14 14:53 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-05 07:24 - 2023-09-14 15:51 - 000000000 ____D C:\Users\Tomík\AppData\Local\Package Cache
2024-03-04 15:14 - 2023-09-20 05:50 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\Microsoft\Excel
2024-02-29 14:50 - 2023-11-11 10:28 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\Kodi
2024-02-28 19:35 - 2023-09-14 14:57 - 000000000 ____D C:\Users\Tomík\AppData\Local\Packages
2024-02-28 17:00 - 2023-10-31 11:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2024-02-28 16:48 - 2023-09-15 18:56 - 000000000 ____D C:\Users\Tomík\AppData\Local\Boom 3D
2024-02-28 16:09 - 2024-01-30 08:56 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\Vortex
2024-02-28 16:08 - 2023-09-15 06:54 - 000000000 ____D C:\Users\Tomík\OneDrive\Documents\My Games
2024-02-28 14:50 - 2023-09-14 15:57 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2024-02-28 14:49 - 2023-09-14 14:56 - 000000000 ____D C:\Users\Tomík
2024-02-28 14:47 - 2023-12-19 17:14 - 000000000 ____D C:\Users\Tomík\AppData\Local\Skyrim Special Edition
2024-02-28 12:23 - 2023-09-30 13:34 - 000000000 ____D C:\ProgramData\EA Desktop
2024-02-28 12:10 - 2023-09-15 08:03 - 000000000 ____D C:\Users\Tomík\OneDrive\Documents\The Witcher 3
2024-02-27 09:57 - 2023-09-14 18:48 - 000000000 ____D C:\Users\Tomík\AppData\Roaming\Microsoft\Office
2024-02-26 19:31 - 2023-09-16 13:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2024-02-22 07:13 - 2023-12-30 14:41 - 000000000 ____D C:\Users\Tomík\AppData\Local\Fallout4
2024-02-20 20:03 - 2023-11-25 09:02 - 000000000 ____D C:\KMPlayer
2024-02-19 21:13 - 2023-12-19 17:36 - 000000000 ____D C:\ProgramData\USVFS
2024-02-19 10:22 - 2023-09-14 20:00 - 000171048 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2024-02-19 10:22 - 2023-09-14 20:00 - 000150056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2024-02-19 10:22 - 2023-09-14 19:59 - 000050216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2024-02-19 10:22 - 2023-09-14 15:47 - 000306728 _____ C:\Windows\system32\FvSDK_x64.dll
2024-02-19 10:22 - 2023-09-14 15:47 - 000268840 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2024-02-19 10:05 - 2023-09-14 20:00 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2024-02-18 16:21 - 2023-09-15 17:17 - 000000000 ____D C:\Program Files\Common Files\AV
2024-02-18 15:52 - 2023-09-15 16:54 - 000000000 ____D C:\Windows\system32\Drivers\NGCx64
2024-02-14 07:42 - 2023-09-14 14:53 - 000446184 _____ C:\Windows\system32\FNTCACHE.DAT
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-02-14 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-02-14 07:39 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-02-14 07:38 - 2023-09-14 14:55 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-02-13 20:26 - 2023-09-14 15:02 - 000000000 ____D C:\Windows\system32\MRT
2024-02-13 20:24 - 2023-09-14 15:02 - 191155960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Files in the root of some directories ========

2022-10-28 05:20 - 2022-10-28 05:20 - 000000287 _____ () C:\ProgramData\fontcacheev1.dat
2023-11-21 18:19 - 2023-11-24 09:18 - 000012288 _____ () C:\Users\Tomík\AppData\Roaming\emp.bin
2023-12-31 11:51 - 2023-12-31 11:51 - 000332800 _____ () C:\Users\Tomík\AppData\Roaming\patcher.dll
2023-11-13 12:20 - 2023-11-13 12:20 - 000000044 _____ () C:\Users\Tomík\AppData\Roaming\Screen+.data

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================