Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13.07.2024
Ran by zuzka (administrator) on DESKTOP-5HAGH2M (HP HP ProBook 455 G8 Notebook PC) (15-07-2024 16:55:29)
Running from C:\Users\zuzka\OneDrive\Desktop\FRST64.exe
Loaded Profiles: zuzka
Platform: Microsoft Windows 11 Home Version 23H2 22631.3880 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.10022.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.10022.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.10022.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.10022.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.10022.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.23.10022.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_24151.2105.2943.2101_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.102\msedgewebview2.exe <12>
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\NetworkCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\BridgeCommunication.exe
(DriverStore\FileRepository\u0402449.inf_amd64_e17abfc6b744fd4c\B402316\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0402449.inf_amd64_e17abfc6b744fd4c\B402316\atieclxx.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <30>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0402449.inf_amd64_e17abfc6b744fd4c\B402316\atiesrxx.exe
(services.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ) C:\Windows\System32\ELAN_MOC_IAP_Service.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELAN_MOC_Service.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_273967626e857c15\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HotKeyServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HPAudioAnalytics.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\LanWlanWwanSwitchingServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpsvcsscancomp.inf_amd64_2d93188f2a23173f\x64\hpsvcsscan.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.24.5.6\NortonSecurity.exe <2>
(services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.24.5.6\nsWscSvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_285c9fb6a6c4e645\RtkAudUService64.exe <3>
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(sihost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_34.52424.589.0_x64__v10z8vjag6ke6\win32\DesktopExtension.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2406.5002.0_x64__8wekyb3d8bbwe\MicrosoftSecurityApp\MicrosoftSecurityApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.241.434.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe
(svchost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_34.52424.589.0_x64__v10z8vjag6ke6\HP.myHP.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.30.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(Viber Media S.a r.l. -> Viber Media S.Ã  r.l.) C:\Users\zuzka\AppData\Local\Viber\Viber.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_285c9fb6a6c4e645\RtkAudUService64.exe [1951632 2023-10-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HPNotifications] => C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe [1607816 2021-02-11] (HP Inc. -> HP)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3158575648-3717170814-3019668939-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919200 2024-07-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3158575648-3717170814-3019668939-1001\...\Run: [MicrosoftEdgeAutoLaunch_AFE010A5E03E479DC62B5A54BD2384BC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3883560 2024-07-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3158575648-3717170814-3019668939-1001\...\Run: [Viber] => C:\Users\zuzka\AppData\Local\Viber\Viber.exe [93895000 2024-07-09] (Viber Media S.a r.l. -> Viber Media S.Ã  r.l.)
HKU\S-1-5-21-3158575648-3717170814-3019668939-1001\...\Run: [Quality Manager] => C:\Users\zuzka\AppData\Local\Temp\tmp3B4D1.tmp.exe (No File) <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-28] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {85999449-BDE3-42AA-BB90-E55FA52D304A} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {0D54E9A1-A90F-4058-9275-9E92B84F82F2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{F2A40132-2F45-46B4-A98E-F173BD78D278} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {26DB0C9C-6804-4DBF-A741-EC6D16841E3F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [731152 2024-06-26] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {1FF90B8D-8E18-4E26-A772-3CA76E2027BC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-06-26] (HP Inc. -> HP Inc.)
Task: {ED7A7DE9-FC08-4438-89AD-037DC877F28B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161744 2024-06-26] (HP Inc. -> HP Inc.)
Task: {7E26AB1C-569C-4549-9C0D-BB18EC7D8E56} - System32\Tasks\HP\Consent Manager Launcher => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {BA31124F-542E-4D3F-AE0D-FE5DE1689D23} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24257912 2018-12-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {A84E5A9E-49C7-44F2-82F4-ED438C2933E1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24257912 2018-12-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {D45BBB04-A5FE-469A-A82A-A0314FDD12E1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\sdxhelper.exe [123168 2023-12-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9E6D35B-2D01-47A1-B295-BC4AF7AE8375} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\sdxhelper.exe [123168 2023-12-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A44E7B8-3D79-45F7-894E-C55AE9F96101} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2139424 2023-12-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {5BF4322B-6373-4358-8D37-D0D38900FA00} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2139424 2023-12-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {92BA0108-CB22-4DC3-9E0B-EAD4489E4C3F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3398344 2023-12-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {B4FEDFAC-8A6A-4382-89E7-D9B13E8F1436} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3398344 2023-12-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {A623CAB5-F46B-4681-AD7A-4401CB050739} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\WINDOWS\system32\rundll32.exe [90112 2024-07-09] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe  (No File)
Task: {8B00D05D-10B0-4BCA-BA6A-690CCA5B5FC8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe  LogonUpdateResults (No File)
Task: {C773AF3B-98CC-4426-8AE1-0CFE0E0D5238} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe  /RunOnAC ReadyToReboot (No File)
Task: {66159373-A0A9-48B3-B0AB-D5E97BBB6C7F} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe  /RunOnBattery ReadyToReboot (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
Task: {1D790592-3D8C-4E22-9624-8CC82ADAB834} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709344 2021-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A9AE2C2A-E920-430D-BE5A-3E86547AD380} - System32\Tasks\MXWTPTTTYKDUYVXJ_run => C:\Users\zuzka\AppData\Roaming\HP Inc\MXWTPTTTYKDUYVXJ.exe [69632 2023-12-28] (Microsoft Corporation) [File not signed]
Task: {14A9B4FB-D151-479D-9CE8-3274A0B7760F} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.24.5.6\symerr.exe [379024 2024-06-14] (NortonLifeLock Inc. -> Gen Digital Inc.)
Task: {2DB616D1-78F2-4733-8589-2D9A96AC3C3E} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.24.5.6\symerr.exe [379024 2024-06-14] (NortonLifeLock Inc. -> Gen Digital Inc.)
Task: {ED1C750A-0002-4AD3-BE7E-125FC1087E4C} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.24.5.6\symerr.exe [379024 2024-06-14] (NortonLifeLock Inc. -> Gen Digital Inc.)
Task: {9A899D20-DBFD-470B-B939-31E0012C1EF1} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.24.5.6\WSCStub.exe [646520 2024-06-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {090DAA05-D940-4563-AFDB-989E5694BB87} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209056 2024-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {AFA078B6-F63C-442C-9392-3B0C07B2A963} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3158575648-3717170814-3019668939-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209056 2024-07-07] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\3427F63737341666560205C6A75684137B61E0226271EE616: [DhcpNameServer] 10.128.128.128
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\36972627F637E2C6162637: [DhcpNameServer] 10.77.0.1
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\36972627F637E2C6162637: [DhcpDomain] cybros.labs
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\7594649402C457B61637F66796: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\84F43545: [DhcpNameServer] 192.168.1.4 212.158.128.3 1.1.1.1
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\94E6475627E65647F554532313: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\94E6475627E65647F554532313: [DhcpDomain] home
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\A5978756C6F573643413: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\A5978756C6F573643413: [DhcpDomain] home
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\F423D294E6475627E65647D2034343: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\F423D294E6475627E65647D2034343D2537484A7: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{ade5a091-b934-4205-9631-437b2aa698ba}\F423D294E6475627E65647D2633373: [DhcpNameServer] 10.0.0.138

Edge: 
=======
Edge Profile: C:\Users\zuzka\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-15]
Edge HomePage: Default -> hxxp://search.conduit.com/?ctid=CT3282495&SearchSource=48&CUI=UN40245595153660160&UM=1
Edge StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3282495&SearchSource=48&CUI=UN40245595153660160&UM=1","hxxp://www.google.com/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (Dokumenty Google offline) - C:\Users\zuzka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-15]
Edge Extension: (Edge relevant text changes) - C:\Users\zuzka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-12-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-28] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Default [2024-07-15]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://sk.pinterest.com; hxxps://www.messenger.com; hxxps://www.tiktok.com
CHR HomePage: Default -> hxxp://search.conduit.com/?ctid=CT3282495&SearchSource=48&CUI=UN40245595153660160&UM=1
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3282495&SearchSource=48&CUI=UN40245595153660160&UM=1","hxxp://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Dokumenty Google offline) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-04]
CHR Profile: C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-17]
CHR Profile: C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-07-05]
CHR Notifications: Profile 1 -> hxxps://mail.google.com
CHR Extension: (Dokumenty Google offline) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-08]
CHR Profile: C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-06-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-21]
CHR Profile: C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-07-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-06-23]
CHR Profile: C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-01-10]
CHR Notifications: Profile 4 -> hxxps://www.youtube.com
CHR Extension: (Dokumenty Google offline) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-27]
CHR Profile: C:\Users\zuzka\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-15]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9619824 2018-12-26] (Microsoft Corporation -> Microsoft Corporation)
R2 ELAN_MOC_Service; C:\WINDOWS\System32\ELAN_MOC_Service.exe [237880 2024-05-13] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.126.0623.0001\FileSyncHelper.exe [3519392 2024-07-07] (Microsoft Corporation -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [482200 2022-08-25] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HotKeyServiceUWP.exe [1497672 2024-04-30] (HP Inc. -> HP Inc.)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [891256 2020-07-30] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\AppHelperCap.exe [928192 2024-06-12] (HP Inc. -> HP Inc.)
R2 HPAudioAnalytics; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HPAudioAnalytics.exe [541152 2024-04-30] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\DiagsCap.exe [926760 2024-06-12] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\NetworkCap.exe [922560 2024-06-12] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149448 2020-07-23] (HP Inc. -> HP)
R2 hpsvcsscan; C:\WINDOWS\System32\DriverStore\FileRepository\hpsvcsscancomp.inf_amd64_2d93188f2a23173f\x64\hpsvcsscan.exe [7018048 2024-03-22] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_910b03e63a222912\x64\SysInfoCap.exe [927680 2024-06-12] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_273967626e857c15\x64\TouchpointAnalyticsClientService.exe [568896 2024-05-07] (HP Inc. -> HP Inc.)
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\LanWlanWwanSwitchingServiceUWP.exe [605152 2024-04-30] (HP Inc. -> HP Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpDefenderCoreService.exe [1377416 2024-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.24.5.6\NortonSecurity.exe [344888 2024-06-14] (NortonLifeLock Inc. -> NortonLifelock Inc.)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.24.5.6\nsWscSvc.exe [1059176 2024-06-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.126.0623.0001\OneDriveUpdaterService.exe [3860400 2024-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\NisSrv.exe [3236728 2024-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MsMpEng.exe [133688 2024-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25584 2023-06-13] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0402449.inf_amd64_e17abfc6b744fd4c\B402316\amdkmdag.sys [99613832 2024-05-03] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.24.5.6\Definitions\BASHDefs\20240401.003\BHDrvx64.sys [1706496 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-12-30] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-12-30] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-12-30] (Microsoft Corporation) [File not signed]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\ccSetx64.sys [199256 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527976 2024-03-27] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159848 2024-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.24.5.6\Definitions\IPSDefs\20240401.066\IDSVia64.sys [1554432 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\nsvst.sys [50400 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> NortonLifeLock Inc.)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_a19e472f32bd1e8d\rtucx22x64.sys [1385296 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 rtux64w10; C:\WINDOWS\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation)
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\SRTSP64.SYS [962264 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\SRTSPX64.SYS [53968 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\SYMEFASI64.SYS [2181336 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\SymELAM.sys [37016 2024-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100368 2024-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.24.5.6\SymPlatform\SymEvnt.sys [934912 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\Ironx64.SYS [307912 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\symnets.sys [493672 2024-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21968 2024-07-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602520 2024-07-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-07-08] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
R1 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1618050.006\wpCtrlDrv.sys [1016792 2024-06-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-07-15 16:55 - 2024-07-15 16:55 - 000032365 _____ C:\Users\zuzka\OneDrive\Desktop\FRST.txt
2024-07-15 16:53 - 2024-07-15 16:55 - 000000000 ____D C:\FRST
2024-07-15 16:51 - 2024-07-15 16:51 - 002395648 _____ (Farbar) C:\Users\zuzka\OneDrive\Desktop\FRST64.exe
2024-07-15 16:43 - 2024-07-15 16:43 - 000727012 _____ C:\WINDOWS\system32\perfh005.dat
2024-07-15 16:43 - 2024-07-15 16:43 - 000151244 _____ C:\WINDOWS\system32\perfc005.dat
2024-07-15 16:32 - 2024-07-15 16:32 - 000000000 ____D C:\Users\zuzka\AppData\Local\Norton
2024-07-15 16:29 - 2024-07-15 16:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton 360
2024-07-15 16:27 - 2024-07-15 16:27 - 000003374 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2024-07-15 16:27 - 2024-07-15 16:27 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2024-07-15 16:27 - 2024-07-15 16:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2024-07-15 16:27 - 2024-07-15 16:27 - 000000000 ____D C:\Program Files\Norton Security
2024-07-15 16:27 - 2024-07-15 16:27 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2024-07-15 16:26 - 2024-07-15 16:26 - 000299621 _____ C:\Users\zuzka\Downloads\norton-security-third-party-notice-en.pdf
2024-07-15 16:25 - 2024-07-15 16:25 - 000000000 ____D C:\ProgramData\NortonInstaller
2024-07-15 16:25 - 2024-07-15 16:25 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
2024-07-15 16:24 - 2024-07-15 16:31 - 000000000 ____D C:\ProgramData\Norton
2024-07-15 16:24 - 2024-07-15 16:24 - 000001396 _____ C:\Users\zuzka\OneDrive\Desktop\Norton Installation Files.lnk
2024-07-15 16:24 - 2024-07-15 16:24 - 000000000 ____D C:\Users\Public\Downloads\Norton
2024-07-15 16:23 - 2024-07-15 16:23 - 004379640 _____ (Gen Digital Inc.) C:\Users\zuzka\OneDrive\Desktop\N360Downloader.exe
2024-07-10 18:28 - 2024-07-10 18:28 - 000013615 _____ C:\Users\zuzka\Downloads\2.vlna_kvety_office (4).xlsx
2024-07-10 18:28 - 2024-07-10 18:28 - 000013615 _____ C:\Users\zuzka\Downloads\2.vlna_kvety_office (3).xlsx
2024-07-10 18:18 - 2024-07-10 18:18 - 000013226 _____ C:\Users\zuzka\Downloads\2.vlna_kvety_office (2).xlsx
2024-07-10 18:17 - 2024-07-10 18:17 - 000013226 _____ C:\Users\zuzka\Downloads\2.vlna_kvety_office (1).xlsx
2024-07-10 18:04 - 2024-07-10 18:04 - 000013093 _____ C:\Users\zuzka\Downloads\2.vlna_kvety_office.xlsx
2024-07-09 23:57 - 2024-07-09 23:57 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-09 23:57 - 2024-07-09 23:57 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-09 23:51 - 2024-07-09 23:54 - 000000000 ___HD C:\$WinREAgent
2024-07-05 10:38 - 2024-07-05 10:38 - 000010612 _____ C:\Users\zuzka\OneDrive\Desktop\E8647860
2024-06-28 12:24 - 2024-03-06 01:26 - 000038816 _____ () C:\WINDOWS\system32\ELAN_MOC_IAP_Service.exe
2024-06-28 12:19 - 2024-06-28 12:19 - 000030771 _____ C:\Users\zuzka\Downloads\DDASH_FA_06_2024.pdf
2024-06-17 12:29 - 2024-05-03 05:43 - 000842672 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-06-17 12:29 - 2024-05-03 05:43 - 000842672 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-06-17 12:29 - 2024-05-03 05:43 - 000725024 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-06-17 12:29 - 2024-05-03 05:43 - 000725024 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-06-17 12:29 - 2024-05-03 05:43 - 000678320 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000678320 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000662864 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000662864 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000606240 _____ C:\WINDOWS\system32\GameManager64.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000549000 _____ C:\WINDOWS\system32\libsmi_guest.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000541840 _____ C:\WINDOWS\system32\libsmi_host.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000502416 _____ C:\WINDOWS\system32\EEURestart.exe
2024-06-17 12:29 - 2024-05-03 05:43 - 000459808 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000206768 _____ C:\WINDOWS\system32\mantle64.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000185776 _____ C:\WINDOWS\system32\mantleaxl64.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000163360 _____ C:\WINDOWS\SysWOW64\mantle32.dll
2024-06-17 12:29 - 2024-05-03 05:43 - 000147384 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 001602592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 001602592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000960032 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2024-06-17 12:29 - 2024-05-03 05:42 - 000535472 _____ C:\WINDOWS\system32\atieah64.exe
2024-06-17 12:29 - 2024-05-03 05:42 - 000473016 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000404408 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2024-06-17 12:29 - 2024-05-03 05:42 - 000266272 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000226736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000210256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000196128 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000183728 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000173152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000146976 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000138376 _____ C:\WINDOWS\system32\amdxc64.dll
2024-06-17 12:29 - 2024-05-03 05:42 - 000074784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 011756544 _____ C:\WINDOWS\system32\amdsmi.exe
2024-06-17 12:29 - 2024-05-03 05:41 - 002186168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 001331456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 001054216 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 000943648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 000770992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 000568464 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 000432264 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 000187584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2024-06-17 12:29 - 2024-05-03 05:41 - 000113696 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 105774624 _____ C:\WINDOWS\system32\amd_comgr.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 089154592 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 004385416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 004189832 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 000801416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 000678432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 000542240 _____ C:\WINDOWS\system32\dgtrayicon.exe
2024-06-17 12:29 - 2024-05-03 05:40 - 000524208 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 000471072 _____ C:\WINDOWS\system32\amdlogum.exe
2024-06-17 12:29 - 2024-05-03 05:40 - 000389552 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 000360888 _____ C:\WINDOWS\system32\clinfo.exe
2024-06-17 12:29 - 2024-05-03 05:40 - 000176560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 000051344 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2024-06-17 12:29 - 2024-05-03 05:40 - 000048160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 016643720 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 001725544 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 001400120 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000567744 _____ C:\WINDOWS\system32\amdmiracast.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000176960 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000167256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000167040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000156624 _____ C:\WINDOWS\system32\atidxx64.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000151104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000145440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000136592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000136480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2024-06-17 12:29 - 2024-05-03 05:39 - 000129632 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2024-06-17 12:29 - 2024-05-03 05:05 - 103836664 _____ C:\WINDOWS\system32\amdxc64.so

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-07-15 16:47 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-15 16:44 - 2023-03-20 15:10 - 000000000 ____D C:\Users\zuzka\AppData\Roaming\ViberPC
2024-07-15 16:44 - 2023-03-20 15:10 - 000000000 ____D C:\Users\zuzka\AppData\Local\Viber
2024-07-15 16:44 - 2022-12-30 19:11 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-07-15 16:44 - 2022-12-30 19:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2024-07-15 16:44 - 2022-11-04 18:02 - 000000000 ___RD C:\Users\zuzka\OneDrive
2024-07-15 16:44 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-15 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-15 16:43 - 2022-12-30 19:13 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-15 16:43 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-15 16:41 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-15 16:39 - 2023-12-27 14:24 - 000000000 ____D C:\Program Files\WinRAR
2024-07-15 16:39 - 2022-12-30 19:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-15 16:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-07-15 16:39 - 2021-08-10 17:25 - 000012288 ___SH C:\DumpStack.log.tmp
2024-07-15 16:38 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-07-15 16:37 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-07-15 16:36 - 2023-12-27 14:24 - 000000000 ____D C:\Users\zuzka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-07-15 16:36 - 2023-12-27 14:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-07-15 16:36 - 2022-11-04 18:01 - 000000000 ____D C:\Users\zuzka\AppData\Local\Packages
2024-07-15 16:30 - 2020-05-05 22:05 - 000000000 ____D C:\ProgramData\Packages
2024-07-15 16:28 - 2022-11-04 18:01 - 000000000 ____D C:\Users\zuzka\AppData\Local\D3DSCache
2024-07-15 16:28 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-07-15 16:27 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-07-15 16:08 - 2022-12-30 19:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-13 17:21 - 2021-08-10 17:25 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-11 10:07 - 2023-01-19 10:38 - 000000000 ____D C:\Users\zuzka\AppData\Local\CrashDumps
2024-07-11 10:07 - 2022-12-30 19:11 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-11 10:07 - 2022-12-30 19:11 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-10 18:31 - 2023-11-10 18:29 - 000000000 ____D C:\Users\zuzka\AppData\Roaming\HP Inc
2024-07-10 18:28 - 2023-07-14 14:27 - 000000000 ____D C:\Users\zuzka\OneDrive\Desktop\zelen office
2024-07-10 18:28 - 2022-11-04 18:46 - 000000000 ____D C:\Users\zuzka\AppData\Roaming\Microsoft\Excel
2024-07-10 17:51 - 2022-11-23 20:12 - 000000000 ____D C:\Users\zuzka\AppData\Roaming\Microsoft\Word
2024-07-10 16:14 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-07-10 03:55 - 2023-12-28 10:30 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-07-10 03:55 - 2022-12-30 19:07 - 000598744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-10 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-07-10 03:55 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2024-07-10 03:54 - 2023-12-14 02:30 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-10 03:54 - 2023-10-12 04:20 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-07-10 03:54 - 2022-12-30 18:58 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-07-10 03:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-10 00:01 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-09 23:57 - 2022-12-30 19:11 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-07-09 23:41 - 2022-11-08 12:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-09 23:40 - 2022-11-08 12:13 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-07-08 18:53 - 2020-05-05 22:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-07-07 10:09 - 2023-12-28 10:19 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-07-07 10:09 - 2023-12-28 10:19 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-07 10:09 - 2022-12-30 19:11 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3158575648-3717170814-3019668939-1001
2024-07-05 18:32 - 2022-12-30 19:08 - 000000000 ____D C:\Users\zuzka\AppData\Roaming\Microsoft\Spelling
2024-07-03 21:00 - 2023-03-20 15:10 - 000000000 ____D C:\Users\zuzka\OneDrive\Documents\ViberDownloads
2024-06-28 12:24 - 2022-11-14 13:02 - 000000000 ____D C:\WINDOWS\Firmware
2024-06-28 12:18 - 2022-11-04 19:00 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================