Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.03.2024
Ran by manas (administrator) on MAJKY (Dell Inc. G7 7500) (17-03-2024 14:01:12)
Running from C:\Users\manas\Desktop\FRST64.exe
Loaded Profiles: manas
Platform: Microsoft Windows 11 Home Version 23H2 22631.3296 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(A-Volute SAS -> A-Volute) C:\Windows\System32\NhNotifSys.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(drivers\RivetNetworks\Killer\KAPSService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe
(drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_99f6bd58bfe82726\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_454f22d7cdb5b4cd\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_454f22d7cdb5b4cd\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_ab7d4ea1d12c01d4\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\TbtP2pShortcutService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\ThunderboltService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\drivers\SessionService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvdm.inf_amd64_bbda7de71680dcde\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_44e42040d5543576\RtkAudUService64.exe <3>
(services.exe ->) (Urban Cyber Security Inc. -> ) C:\Program Files\UrbanVPN\bin\urbanvpnserv.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2403.237.0_x64__8wekyb3d8bbwe\PAD.Console.Host.exe
(sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21844.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.270.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.3294_none_e96368b442c95c86\TiWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_44e42040d5543576\RtkAudUService64.exe [1591680 2022-09-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [196264 2023-12-12] (ESET, spol. s r.o. -> ESET)
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [OneDrive] => "C:\Program Files\Microsoft OneDrive\OneDrive.exe" /background (No File)
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1194814-3309633345-4174763381-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\24.040.0225.0003\Microsoft.SharePoint.exe [547856 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.129\Installer\chrmstp.exe [2024-03-15] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {D4983A84-2AF8-4A50-90CA-D46CCA61D2FD} - System32\Tasks\Opera scheduled Autoupdate 1675866155
Task: {D0E582F6-B664-4E2C-8867-1AE1945CA963} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe  /checkin (No File)
Task: {96287E90-A9B5-4DE6-87D5-D9D24654754F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-03-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {FF006E01-CE00-40A8-911C-863F4A39EF7C} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205984 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3EE2641-23E2-4056-A929-2C2D43676395} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1194814-3309633345-4174763381-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205984 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.38.0.4 10.38.0.1 192.168.1.1
Tcpip\..\Interfaces\{7501ac79-c737-461a-a2fa-bdb2c610655a}: [DhcpNameServer] 10.38.0.4 10.38.0.1 192.168.1.1
Tcpip\..\Interfaces\{7501ac79-c737-461a-a2fa-bdb2c610655a}\7416C6168797023523130255C64727160253740293465343: [DhcpNameServer] 192.168.73.62
Tcpip\..\Interfaces\{c286c3fc-597a-4f03-bcab-60c8c005c2fa}: [DhcpNameServer] 10.38.0.4 10.38.0.1 192.168.1.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-17]
Edge Notifications: Default -> hxxps://mkhvuv.facroses.co.in; hxxps://www.facebook.com
Edge Extension: (Dokumenty Google offline) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-29]
Edge Extension: (Edge relevant text changes) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-30]
Edge Extension: (ESET Browser Privacy & Security) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nkapkmklnmidbbgjaipbgpcnbomnaakc [2024-03-16]
Edge Profile: C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-03-17]
Edge Extension: (Dokumenty Google offline) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-13]
Edge Extension: (Edge relevant text changes) - C:\Users\manas\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-13]
Edge HKU\S-1-5-21-1194814-3309633345-4174763381-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [kagpabjoboikccfdghpdlaaopmgpgfdc]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]

FireFox:
========
FF DefaultProfile: ici0rtaq.default
FF ProfilePath: C:\Users\manas\AppData\Roaming\Mozilla\Firefox\Profiles\ici0rtaq.default [2024-03-17]
FF ProfilePath: C:\Users\manas\AppData\Roaming\Mozilla\Firefox\Profiles\1xgpyufk.default-release [2024-03-17]
FF Extension: (Language: Čeština (Czech)) - C:\Users\manas\AppData\Roaming\Mozilla\Firefox\Profiles\1xgpyufk.default-release\Extensions\langpack-cs@firefox.mozilla.org.xpi [2024-03-10]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2024-03-17]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default [2024-03-17]
CHR DownloadDir: C:\Downloads
CHR Extension: (Urban VPN Proxy) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppiocemhmnlbhjplcgkofciiegomcon [2024-03-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-18]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\manas\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2024-03-16]
CHR Profile: C:\Users\manas\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-03-17]
CHR Profile: C:\Users\manas\AppData\Local\Google\Chrome\User Data\System Profile [2024-03-17]
CHR HKU\S-1-5-21-1194814-3309633345-4174763381-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1194814-3309633345-4174763381-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ljglajjnnkapghbckkcmodicjhacbfhk]
CHR HKU\S-1-5-21-1194814-3309633345-4174763381-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]

Opera: 
=======
OPR Profile: C:\Users\manas\AppData\Roaming\Opera Software\Opera Stable [2024-03-17]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\manas\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-02-08]
OPR Extension: (Opera Wallet) - C:\Users\manas\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-02-11]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\manas\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2023-02-08]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15689512 2024-03-06] (BattlEye Innovations e.K. -> )
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [51393352 2024-01-26] (Electronic Arts, Inc. -> Electronic Arts)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2539384 2023-12-12] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3890064 2023-12-12] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3890064 2023-12-12] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.040.0225.0003\FileSyncHelper.exe [3516832 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_5a9d4e2af428d38d\AS\IAS\IntelAudioService.exe [412168 2022-09-02] (Intel Corporation -> Intel)
R3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [78088 2023-07-13] (Intel Corporation -> Intel® Corporation)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2480944 2023-07-13] (Intel Corporation -> Intel)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2981168 2023-07-13] (Intel Corporation -> Intel)
R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [78128 2023-07-13] (Intel Corporation -> Intel® Corporation)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1926840 2022-07-15] (A-Volute SAS -> Nahimic)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.040.0225.0003\OneDriveUpdaterService.exe [3856400 2024-03-14] (Microsoft Corporation -> Microsoft Corporation)
R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256368 2022-12-15] (Intel Corporation -> Intel Corporation)
R2 UrbanVPNServiceInteractive; C:\Program Files\UrbanVPN\bin\urbanvpnserv.exe [450768 2024-01-15] (Urban Cyber Security Inc. -> )
S3 UrbanVPNUpdater; C:\Program Files\UrbanVPN\UrbanVPNUpdater.exe [1022312 2024-01-16] (Urban Cyber Security Inc. -> Urban Security)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_bbda7de71680dcde\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_bbda7de71680dcde\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 e2k68cx21x64; C:\WINDOWS\System32\DriverStore\FileRepository\e2k68cx21x64.inf_amd64_5966b201aaa328ab\e2k68cx21x64.sys [717208 2023-05-09] (Realtek Semiconductor Corp. -> Realtek)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [215616 2023-12-12] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [120032 2023-12-12] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2023-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [254344 2023-12-12] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55528 2023-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81824 2023-12-12] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [124168 2023-12-12] (ESET, spol. s r.o. -> ESET)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [209200 2023-07-13] (Intel Corporation -> Rivet Networks, LLC.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20928 2024-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [603416 2024-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-03-17 14:01 - 2024-03-17 14:01 - 000020082 _____ C:\Users\manas\Desktop\FRST.txt
2024-03-17 13:58 - 2024-03-17 13:58 - 000019752 _____ C:\Users\manas\Desktop\Fixlog.txt
2024-03-17 13:12 - 2024-03-17 13:12 - 000693846 _____ C:\WINDOWS\system32\perfh005.dat
2024-03-17 13:12 - 2024-03-17 13:12 - 000143700 _____ C:\WINDOWS\system32\perfc005.dat
2024-03-17 11:59 - 2024-03-17 11:59 - 000427603 _____ C:\Users\manas\Documents\sysInspector_17-03-2024_11-59-35.esil
2024-03-17 11:59 - 2024-03-17 11:59 - 000004147 _____ C:\Users\manas\Desktop\Přihlásit se k Microsoft Rewards.lnk
2024-03-17 10:25 - 2024-03-17 10:25 - 000000325 _____ C:\Users\manas\Desktop\queries.txt
2024-03-17 09:58 - 2024-03-17 09:58 - 000002644 _____ C:\Users\manas\Desktop\Manage Contacts - Export.csv
2024-03-17 09:42 - 2024-03-17 09:42 - 000000000 ____D C:\Majky
2024-03-17 04:52 - 2024-03-17 04:52 - 000000000 ___HD C:\OneDriveTemp
2024-03-17 03:27 - 2024-03-17 03:27 - 000000000 ____D C:\Users\manas\Desktop\17.03.2024
2024-03-17 03:19 - 2024-03-17 03:19 - 002390528 _____ (Farbar) C:\Users\manas\Desktop\FRST64.exe
2024-03-16 20:50 - 2024-03-16 20:50 - 000001720 _____ C:\Users\manas\Documents\Zástupce Dokumenty (OneDrive - Osobní).lnk
2024-03-16 20:49 - 2024-03-12 01:41 - 006841976 _____ C:\Users\manas\Desktop\b3249d0cc76739e88191ea660fc42823296e39d43cffa4d72a2542be3018dbc2.mp4
2024-03-16 20:49 - 2024-02-16 18:18 - 000000223 _____ C:\Users\manas\Desktop\Assassin's Creed Valhalla.url
2024-03-16 00:44 - 2024-03-16 00:44 - 000002016 _____ C:\Users\Public\Desktop\ESET Ochrana pri platbách a prehliadaní.lnk
2024-03-16 00:44 - 2024-03-16 00:44 - 000000000 ____D C:\Users\manas\AppData\Local\ESET
2024-03-16 00:44 - 2024-03-16 00:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2024-03-16 00:44 - 2024-03-16 00:44 - 000000000 ____D C:\ProgramData\ESET
2024-03-16 00:44 - 2024-03-16 00:44 - 000000000 ____D C:\Program Files\ESET
2024-03-15 23:12 - 2024-03-15 23:12 - 000000000 ____D C:\Users\manas\Documents\TotalAV
2024-03-15 23:11 - 2024-03-15 23:11 - 000000000 ____D C:\Users\manas\AppData\Local\GUI
2024-03-15 23:11 - 2024-03-15 23:11 - 000000000 ____D C:\ProgramData\SecuritySuite
2024-03-15 23:08 - 2024-03-17 14:01 - 000000000 ____D C:\FRST
2024-03-15 22:55 - 2024-03-15 22:55 - 000388608 _____ (Trend Micro Inc.) C:\Users\manas\Desktop\HijackThis.exe
2024-03-13 00:29 - 2024-03-13 00:29 - 000020023 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-13 00:29 - 2024-03-13 00:29 - 000020023 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-13 00:25 - 2024-03-13 00:27 - 000000000 ___HD C:\$WinREAgent
2024-03-10 08:16 - 2024-03-17 06:23 - 000000000 ____D C:\ProgramData\UrbanVPN
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\Users\manas\UrbanVPN
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UrbanVPN
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\Program Files\UrbanVPN
2024-03-10 08:16 - 2024-03-10 08:16 - 000000000 ____D C:\Program Files\TAP-Windows
2024-03-10 08:15 - 2024-03-10 08:15 - 000000000 ____D C:\Users\manas\AppData\Local\AdvinstAnalytics
2024-03-10 08:14 - 2024-03-17 13:39 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-03-10 08:14 - 2024-03-10 08:14 - 000002038 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2024-03-10 08:14 - 2024-03-10 08:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\Users\manas\AppData\Roaming\Mozilla
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\Users\manas\AppData\Local\Mozilla
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-03-10 08:14 - 2024-03-10 08:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-03-08 22:35 - 2024-03-16 21:35 - 000000000 ____D C:\Users\manas\AppData\Roaming\vlc
2024-03-08 22:34 - 2024-03-08 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-03-08 22:34 - 2024-03-08 22:34 - 000000000 ____D C:\Program Files\VideoLAN
2024-03-01 19:40 - 2024-03-01 19:40 - 000313784 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2024-02-17 20:56 - 2024-02-17 20:56 - 000000000 ____D C:\Users\manas\Tracing
2024-02-16 22:45 - 2024-02-23 22:09 - 000000000 ____D C:\Users\manas\Documents\Assassin's Creed Valhalla
2024-02-16 22:35 - 2024-03-07 16:57 - 000000000 ____D C:\Users\manas\AppData\Local\Ubisoft Game Launcher
2024-02-16 22:35 - 2024-02-16 22:35 - 000000000 ____D C:\Users\manas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2024-02-16 22:35 - 2024-02-16 22:35 - 000000000 ____D C:\ProgramData\Ubisoft
2024-02-16 22:35 - 2024-02-16 22:35 - 000000000 ____D C:\Program Files (x86)\Ubisoft

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-03-17 14:01 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-03-17 14:01 - 2023-01-18 22:32 - 000000000 ____D C:\Program Files (x86)\Google
2024-03-17 13:59 - 2023-01-19 02:43 - 000000000 ____D C:\ProgramData\Packages
2024-03-17 13:59 - 2023-01-19 02:40 - 000012288 ___SH C:\DumpStack.log.tmp
2024-03-17 13:59 - 2023-01-19 02:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-03-17 13:59 - 2023-01-19 02:40 - 000000000 ____D C:\ProgramData\NVIDIA
2024-03-17 13:59 - 2023-01-19 02:40 - 000000000 ____D C:\ProgramData\Goodix
2024-03-17 13:59 - 2023-01-19 02:40 - 000000000 ____D C:\Intel
2024-03-17 13:59 - 2023-01-19 02:28 - 000000000 ___HD C:\Program Files\WindowsApps
2024-03-17 13:59 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\ServiceState
2024-03-17 13:59 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-03-17 13:59 - 2023-01-19 02:28 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-03-17 13:59 - 2023-01-18 23:04 - 000000000 ____D C:\Program Files (x86)\Steam
2024-03-17 13:59 - 2023-01-18 22:26 - 000000000 __SHD C:\Users\manas\IntelGraphicsProfiles
2024-03-17 13:59 - 2023-01-18 22:26 - 000000000 ____D C:\Users\manas\AppData\Local\Packages
2024-03-17 13:58 - 2023-01-19 02:25 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2024-03-17 13:58 - 2023-01-18 22:15 - 000000000 ____D C:\Users\manas
2024-03-17 13:12 - 2023-01-19 02:47 - 001629582 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-03-17 13:12 - 2023-01-19 02:27 - 000000000 ____D C:\WINDOWS\INF
2024-03-17 13:07 - 2023-01-18 22:26 - 000000000 ____D C:\Users\manas\AppData\Local\D3DSCache
2024-03-17 12:49 - 2023-01-19 02:28 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-03-17 12:47 - 2023-02-08 19:17 - 000000000 ____D C:\Users\manas\AppData\Roaming\Disc-Soft
2024-03-17 12:47 - 2023-02-08 19:17 - 000000000 ____D C:\ProgramData\Disc-Soft
2024-03-17 12:42 - 2023-01-18 22:15 - 000000000 ___SD C:\Users\manas\AppData\Roaming\Microsoft\Credentials
2024-03-17 12:39 - 2023-01-18 22:26 - 000000000 ____D C:\Users\manas\AppData\Local\ConnectedDevicesPlatform
2024-03-17 12:25 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2024-03-17 11:45 - 2024-02-03 10:13 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-03-17 10:48 - 2023-01-19 02:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-03-17 06:44 - 2023-02-24 18:03 - 000000000 ____D C:\Users\manas\AppData\Local\CrashDumps
2024-03-17 06:23 - 2023-01-19 02:28 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-03-17 06:11 - 2023-01-18 22:27 - 000000000 ____D C:\Users\manas\AppData\Local\PlaceholderTileLogoFolder
2024-03-17 05:07 - 2023-01-18 22:27 - 000000000 ___RD C:\Users\manas\OneDrive
2024-03-16 02:53 - 2023-01-19 02:40 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-03-16 00:44 - 2023-01-19 02:28 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-03-16 00:20 - 2024-02-10 18:12 - 000000000 ____D C:\Program Files\Electronic Arts
2024-03-16 00:20 - 2023-02-08 15:55 - 000000000 ____D C:\Users\manas\AppData\Local\AVG
2024-03-16 00:20 - 2023-02-08 15:19 - 000000000 ____D C:\ProgramData\AVG
2024-03-16 00:20 - 2023-02-05 13:57 - 000000000 ____D C:\ProgramData\Package Cache
2024-03-15 23:38 - 2024-02-02 10:28 - 000000000 ____D C:\Users\manas\AppData\Roaming\Microsoft\Excel
2024-03-15 23:31 - 2023-02-08 15:19 - 000000000 ____D C:\Users\manas\AppData\Roaming\uTorrent Web
2024-03-15 22:55 - 2023-01-18 22:28 - 000000000 ____D C:\Users\manas\AppData\Local\VirtualStore
2024-03-15 22:51 - 2024-02-02 10:10 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-03-15 22:51 - 2023-02-08 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-03-15 22:51 - 2023-01-19 02:40 - 000003644 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{D2AD0AB9-4C1F-409E-9241-505626292217}
2024-03-15 22:51 - 2023-01-19 02:40 - 000003420 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{A59DAD87-DF5B-4571-93A4-1E9F12783DC3}
2024-03-15 22:51 - 2023-01-18 22:27 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1194814-3309633345-4174763381-1001
2024-03-15 19:32 - 2023-02-08 15:19 - 000000000 ____D C:\Users\manas\AppData\Local\BitTorrentHelper
2024-03-15 17:43 - 2024-01-05 21:23 - 002709096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-03-15 17:43 - 2024-01-05 21:23 - 000108136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-03-15 17:43 - 2024-01-05 21:23 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-03-15 17:42 - 2024-01-05 21:23 - 000706152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-03-15 17:42 - 2024-01-05 21:23 - 000218728 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-03-15 17:42 - 2024-01-05 21:23 - 000206440 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-03-15 17:42 - 2024-01-05 21:23 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-03-15 17:24 - 2023-06-10 02:01 - 000000000 ____D C:\Users\manas\AppData\Roaming\Seznam.cz
2024-03-15 03:00 - 2023-01-18 22:33 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-03-14 03:59 - 2024-02-02 10:10 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-03-13 23:59 - 2023-01-19 02:28 - 000000000 ____D C:\ProgramData\USOPrivate
2024-03-13 23:44 - 2023-01-19 02:40 - 000474816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-03-13 23:43 - 2023-10-11 20:49 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SystemResources
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-03-13 23:43 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-03-13 23:43 - 2023-01-19 02:25 - 000000000 ____D C:\WINDOWS\servicing
2024-03-13 00:33 - 2023-01-19 04:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-03-13 00:32 - 2023-01-19 04:09 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-03-13 00:32 - 2023-01-19 02:25 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-03-13 00:29 - 2023-01-19 02:42 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-03-13 00:05 - 2023-01-19 02:40 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-03-12 21:13 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-03-10 09:26 - 2023-07-25 17:52 - 000000000 ____D C:\WINDOWS\Minidump
2024-03-08 03:03 - 2023-01-18 22:33 - 000002206 _____ C:\Users\manas\Desktop\Google Chrome.lnk
2024-03-06 17:11 - 2023-07-14 19:07 - 000000000 ____D C:\Users\manas\AppData\Local\DayZ Launcher
2024-03-06 16:57 - 2023-07-14 19:08 - 000000000 ____D C:\Users\manas\AppData\Local\DayZ
2024-02-16 18:18 - 2023-02-05 13:02 - 000000000 ____D C:\Users\manas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\UUS
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\setup
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\Provisioning
2024-02-16 17:10 - 2023-01-19 02:28 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-02-16 17:08 - 2024-02-10 18:45 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2024-02-16 17:07 - 2023-01-18 22:26 - 000000000 __RHD C:\Users\Public\AccountPictures

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================