Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25.07.2024
Ran by jakub (administrator) on BOSAK (LENOVO 82RB) (25-07-2024 21:51:12)
Running from C:\Users\jakub\Downloads\FRST64.exe
Loaded Profiles: jakub
Platform: Microsoft Windows 11 Home Version 23H2 22631.3880 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(A-Volute SAS -> A-Volute) C:\Users\jakub\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Steam\steam.exe ->) () [File not signed] C:\Program Files (x86)\Steam\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(C:\Users\jakub\OneDrive\Desktop\Meshroom-2023.3.0\Meshroom.exe ->) (AliceVision Organization) [File not signed] C:\Users\jakub\OneDrive\Desktop\Meshroom-2023.3.0\aliceVision\bin\aliceVision_texturing.exe
(DriverStore\FileRepository\ipf_cpu.inf_amd64_6b07cb792a2205ad\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_6b07cb792a2205ad\ipf_helper.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyUtility.exe
(Elaborate Bytes AG -> Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(explorer.exe ->) () [File not signed] C:\Users\jakub\OneDrive\Desktop\Meshroom-2023.3.0\Meshroom.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <16>
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_e364a2125d7a2e49\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a687edda40db3316\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a582115f5de863e1\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_6b07cb792a2205ad\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_670360bdb5a40a0d\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Elevoc Technology Co.,Ltd.) C:\Windows\System32\ElevocInstallDriver\ElevocControlService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvBroadcast.NvContainer\NvBroadcast.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_70bff6400ff3c791\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (21E1B422-257A-44A2-9C8F-379165856473 -> ) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.10.1.0_x64__w2gh52qy24etm\Nahimic3.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_1.20.11781.0_x64__8wekyb3d8bbwe\OpenConsole.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_1.20.11781.0_x64__8wekyb3d8bbwe\WindowsTerminal.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2407.1001.1.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\jakub\AppData\Local\Microsoft\OneDrive\24.132.0701.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.16300.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe [1961360 2023-11-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Run: [LenovoVantage] => C:\ProgramData\Lenovo\Vantage\Addins\LenovoCompanionAppAddin\1.0.0.39\LenovoVantage.exe [25496 2024-03-08] (Lenovo -> Lenovo)
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Run: [ut] => C:\Users\jakub\AppData\Roaming\utorrent\uTorrent.exe [2259976 2024-07-09] (BitTorrent Inc -> BitTorrent Limited)
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Run: [MicrosoftEdgeAutoLaunch_4F2B1FC128F21355E1EB1FD267A7E60E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36717544 2024-07-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Run: [EADM] => "C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe" -silent (No File)
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Run: [Discord] => C:\Users\jakub\AppData\Local\Discord\Update.exe [1525024 2024-02-20] (Discord Inc. -> GitHub)
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [1] Autoruns.exe
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [2] Autoruns64.exe
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [3] Autoruns64a.exe
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [4] autorunsc.exe
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [5] autorunsc64.exe
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [6] autorunsc64a.exe
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [7] RogueKiller_setup.exe
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [8] taskschd.msc
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\Policies\Explorer\DisallowRun: [9] mrt.exe
HKU\S-1-5-21-870040665-2121503514-229588856-1004\...\MountPoints2: {b526c806-99e2-11ee-9f1f-c403a83941a7} - "E:\HiSuiteDownLoader.exe" 

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0159821f-c2d0-47f9-8795-f315b6a2c003} - no filepath. <==== ATTENTION
Task: {14f0f6cb-3743-47f7-841e-bbdf7c711b3d} - no filepath. <==== ATTENTION
Task: {2386eb0e-c86b-4481-a35f-36cd3d6e4899} - no filepath. <==== ATTENTION
Task: {2b863369-7e15-4429-84df-674b6d18abb1} - no filepath. <==== ATTENTION
Task: {3492bd5c-7136-4e2d-8dfe-9fd49fac3277} - no filepath. <==== ATTENTION
Task: {374bdd37-f3aa-46f3-84bc-9f6a1978557d} - no filepath. <==== ATTENTION
Task: {3865b412-4cb4-4274-a6a0-a5e10cb39dea} - no filepath. <==== ATTENTION
Task: {43b95647-0b3d-4cd6-8b24-27c0aad9e4f2} - no filepath. <==== ATTENTION
Task: {55e9c8a1-f9c2-463a-8f4c-c533ca577256} - no filepath. <==== ATTENTION
Task: {87468ce8-3aac-416d-8280-af8c0ce1826b} - no filepath. <==== ATTENTION
Task: {8814dd52-d697-45b4-bc54-ee2125338a68} - no filepath. <==== ATTENTION
Task: {88f0741c-acd1-437f-aea9-c433b0fba216} - no filepath. <==== ATTENTION
Task: {a0c238c9-8607-4ca3-b89a-74ecfca12b84} - no filepath. <==== ATTENTION
Task: {a2c65809-7e17-4aa4-a25d-3d822c23b414} - no filepath. <==== ATTENTION
Task: {aea62564-19aa-44de-9a58-0913d6bb4f8f} - no filepath. <==== ATTENTION
Task: {bca29640-b73d-4d8b-9d01-1ae99a432017} - no filepath. <==== ATTENTION
Task: {d52f305b-7ef6-46c8-a420-8e09184472b2} - no filepath. <==== ATTENTION
Task: {df9d07bf-15ae-4833-9e90-49d80b1cd2d2} - no filepath. <==== ATTENTION
Task: {e15f0147-9f90-4b48-b363-9aa2b264f0ec} - no filepath. <==== ATTENTION
Task: {e1f9fdfe-a278-48c1-9154-73b6ef66717b} - no filepath. <==== ATTENTION
Task: {ed94c3bd-3433-4627-b276-9ee6108dcac8} - no filepath. <==== ATTENTION
Task: {f2efb11c-8c62-4849-9156-6c4f1be6ed8d} - no filepath. <==== ATTENTION
Task: {53C76A61-7E6C-42CB-813A-A8E5F51B9ED0} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {0949E02E-9E83-434B-8325-1036292FF7BC} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {D9D35410-846B-4B82-BF10-789F679171A4} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {1B37F255-A296-4274-B6CB-FC44D6F5F331} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\27c6e775-bb45-47bd-b547-ab99d491d796 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {5662A5BD-C36A-4340-8CCD-BCADE0310A3D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8cd18061-60ad-45bc-9a85-ad6c664c8890 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {83D11917-B58A-46BD-8CDA-365F53E9A418} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bbe9322f-d54c-43b2-8b9c-c6bdfeaf429d => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {7D2B1C68-62A6-48B4-B0D0-7926999DBE02} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d9f368d4-340e-4105-b1cb-3b770efe47c1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {4D4B1BF6-3C8F-4642-B50E-9DBE0E7FD4E3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e5335429-1c4e-449f-952a-afd85484cbcf => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {F66B8219-B825-4A5B-81A3-4B03B4E24709} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {41EAA502-E752-4F01-A5E4-46B9061CBDE9} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90976 2024-04-07] (Lenovo -> Lenovo Group Ltd.) -> C:\windows\system32\drivers\Lenovo\udc\Service\/onidle
Task: {09EB3698-706D-49D1-9A4A-CCE96A1BEFE4} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [188656 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
Task: {51EDA301-6B94-49CE-8975-BCAAF7375403} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {FD83B015-9F56-4332-A2B1-A6DC7F3E9521} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {2B826C70-9D9C-4A7F-A2B6-07751950C76C} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {75022166-1039-453B-AF17-812890B07AD0} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {F8DF4F59-6C04-404C-A4DD-E2EDA17DBB63} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {1C50B824-490B-4AAF-BD69-C3FB484074CB} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {B2EC8BF1-BE73-4D37-9B72-34C2A2DEAB91} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {232B61C0-4BED-4786-BC1C-181D0F622D2F} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {A325311E-E469-4B35-80AD-A2D940CB39F3} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {2303D84B-0431-492C-9394-F355D0A3FAFF} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe  NotificationCenter (No File)
Task: {330F50A8-BBAD-49AE-8C7B-37403B4CE9A1} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {C7B0D65C-ACC8-4E2C-8E6C-8D7CE2E3E138} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {2F6F43AA-9339-4C48-963E-F4007289BAE1} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\ScheduleEventAction.exe [30056 2024-05-30] (Lenovo -> Lenovo)
Task: {B686EEC3-27C8-4976-96BB-BED93DCB1113} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\uninstall.exe [345552 2024-05-30] (Lenovo -> Lenovo)
Task: {2641F916-57B2-4FE6-A795-F0AF704F6ECD} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {9A211985-7D00-48BB-927B-1AF393FA8D8E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {464696CB-334F-40A0-976C-715C508B6A26} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309936 2024-07-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5F50433-41A7-4574-85D3-E82495CC420C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309936 2024-07-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD87B78E-8FE5-4DDD-B1C5-DC46A17B141F} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [169408 2024-06-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {DEF5DF8C-0C55-4494-A36B-C82D0A0F8230} - System32\Tasks\Microsoft\Windows\Setup\EM => %windir%\system32\EM.exe  (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
Task: {22FE91DF-0050-4D89-9D1B-38A2C8F65333} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpCmdRun.exe [1678960 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4F5C8CD-52E4-4592-B886-3BCB82855EA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpCmdRun.exe [1678960 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6A23A885-D9AD-43F0-980D-F45DF37B454B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpCmdRun.exe [1678960 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F39FA456-B851-4771-9263-1EAD3BD17C90} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpCmdRun.exe [1678960 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {57CB97C0-E0FE-4C5A-90FB-FB6557442A1F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [677448 2024-07-23] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {CF09E975-5DF2-4A0F-B921-4CB034787B40} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-870040665-2121503514-229588856-1004 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [677448 2024-07-23] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {738022C4-3A33-4FF2-B08B-0C9EA13D9789} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-07-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {CAB57739-63C9-4039-B659-D7442F8BAE42} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [837288 ] (A-Volute SAS -> Nahimic)
Task: {72F0759A-0B1D-410E-9D95-2E2FFBA3AA52} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe [1098424 ] (A-Volute SAS -> Nahimic)
Task: {6D9CBBBE-E0E6-431E-AC0B-E3CEE186A7C1} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-870040665-2121503514-229588856-1004 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2024-05-16] (Microsoft Windows -> Microsoft Corporation)
Task: {3A556085-17EC-495B-B135-95FEBCA9142D} - System32\Tasks\TempClean1 => C:\Windows\system32\wevtutil.exe [282624 2024-02-14] (Microsoft Windows -> Microsoft Corporation) -> cl Application
Task: {4E5120CE-D06F-4564-89B0-44F24BEB89D1} - System32\Tasks\TempClean2 => C:\Windows\system32\wevtutil.exe [282624 2024-02-14] (Microsoft Windows -> Microsoft Corporation) -> cl System
Task: {A396CC67-C802-408D-B5FC-6ABEFFA82F71} - System32\Tasks\TempClean3 => C:\Windows\system32\vssadmin.exe [163840 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> delete shadows /all /quiet

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5849ea12-de2e-4b59-87a5-521dc817c6aa}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5849ea12-de2e-4b59-87a5-521dc817c6aa}\05F44414F5431373935374: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{5849ea12-de2e-4b59-87a5-521dc817c6aa}\255646D69602E4F64756021323020527F6025374: [DhcpNameServer] 192.168.123.198
Tcpip\..\Interfaces\{5849ea12-de2e-4b59-87a5-521dc817c6aa}\D416472796870223E2437486A7: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5849ea12-de2e-4b59-87a5-521dc817c6aa}\D416472796870223E2437486A7: [DhcpDomain] home
Tcpip\..\Interfaces\{5849ea12-de2e-4b59-87a5-521dc817c6aa}\D4164727968702537486A7: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{5849ea12-de2e-4b59-87a5-521dc817c6aa}\D4164727968702537486A7: [DhcpDomain] home
Tcpip\..\Interfaces\{80b2f740-da27-416b-ba35-68e7977ce099}: [DhcpDomain] local
Tcpip\..\Interfaces\{dd68047c-a265-4804-8757-872d255365f7}: [DhcpNameServer] 192.168.225.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-25]
Edge Extension: (Dokumenty Google offline) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-15]
Edge Extension: (Edge relevant text changes) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF DefaultProfile: udztn0md.default
FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\udztn0md.default [2023-08-26]
FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\jwghzwy6.default-release [2024-07-25]
FF Extension: (AdBlocker Ultimate) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\jwghzwy6.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2024-07-19]
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\jwghzwy6.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2024-07-20]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2568840 2024-06-01] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_e364a2125d7a2e49\ipfsvc.exe [544896 2022-08-04] (Intel Corporation -> Intel Corporation)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [63080656 2024-03-13] (Electronic Arts, Inc. -> Electronic Arts)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [16746088 2024-07-10] (Electronic Arts, Inc. -> Electronic Arts)
R2 ElevocService; C:\WINDOWS\system32\ElevocInstallDriver\ElevocControlService.exe [416536 2023-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Elevoc Technology Co.,Ltd.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_45efd8a6478e15ce\lib\PlatformLicenseManagerService.exe [746984 2022-07-29] (Intel Corporation -> Intel(R) Corporation)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe [530520 2023-12-28] (Intel Corporation -> Intel)
R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_6b07cb792a2205ad\ipf_uf.exe [2774128 2022-08-15] (Intel Corporation -> Intel Corporation)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe [178536 2024-05-24] (Lenovo -> Lenovo)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.1.12.0\LenovoVantageService.exe [34256 2024-05-30] (Lenovo -> Lenovo)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpDefenderCoreService.exe [1377416 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1926824 2022-09-05] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_70bff6400ff3c791\Display.NvContainer\NVDisplay.Container.exe [1275424 2024-07-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [4505072 2023-12-26] (Rockstar Games, Inc. -> Rockstar Games)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [21242680 2024-02-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72432 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\NisSrv.exe [3236728 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MsMpEng.exe [133688 2024-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 atvi-randgrid_msstore; C:\XboxGames\Call of Duty\Content\Randgrid.sys [2981352 2024-07-24] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [188416 2024-03-14] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [60784 2023-12-06] (Lenovo -> Lenovo)
R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-18] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation)
S3 iaLPSS2_SPI_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_adl.inf_amd64_2d1a1b06fd89c8d4\iaLPSS2_SPI_ADL.sys [160912 2021-10-24] (Intel Corporation -> Intel Corporation)
S3 iaLPSS2_UART2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_adl.inf_amd64_9f84cae4176aa5ed\iaLPSS2_UART2_ADL.sys [318624 2021-10-24] (Intel Corporation -> Intel Corporation)
S0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1587376 2021-10-20] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_da83b5c4fe3f9e84\ipf_acpi.sys [87152 2022-08-15] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_6b07cb792a2205ad\ipf_cpu.sys [80504 2022-08-15] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_6b07cb792a2205ad\ipf_lf.sys [441968 2022-08-15] (Intel Corporation -> Intel Corporation)
S3 JabraDFU; C:\WINDOWS\System32\Drivers\JabraBcDfuX64.sys [54408 2021-04-28] (GN Netcom A/S -> QTI Ltd)
S3 libusb0_device; C:\WINDOWS\system32\DRIVERS\libusb0_device.sys [55008 2023-09-22] (Microsoft Windows Hardware Compatibility Publisher -> hxxp://libusb-win32.sourceforge.net)
R3 MpKsl80e3ee38; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{957E76B8-1B5B-4C12-87ED-2463BCF0BCB8}\MpKslDrv.sys [271640 2024-07-25] (Microsoft Windows -> Microsoft Corporation)
R3 NahimicBTLink; C:\WINDOWS\System32\drivers\NahimicBTLink.sys [86200 2022-08-18] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [86224 2022-08-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [236696 2024-07-11] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_b6a77632d1d54a2a\rt68cx21x64.sys [656288 2022-08-18] (Realtek Semiconductor Corp. -> Realtek)
S3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_a19e472f32bd1e8d\rtucx22x64.sys [1385296 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [76832 2022-09-30] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
R3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [21968 2024-07-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602520 2024-07-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-07-16] (Microsoft Windows -> Microsoft Corporation)
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-07-25 21:49 - 2024-07-25 21:49 - 000000000 ____D C:\Users\jakub\Downloads\FRST-OlderVersion
2024-07-25 14:32 - 2024-07-25 14:32 - 087305805 _____ C:\Users\jakub\Downloads\NR2101_1C000_2C000.zip
2024-07-25 14:32 - 2024-07-25 14:32 - 000000000 ____D C:\Users\jakub\Downloads\NR2101_1C000_2C000
2024-07-25 10:59 - 2024-07-25 10:59 - 000003108 _____ C:\WINDOWS\system32\Tasks\NahimicTask32
2024-07-25 10:59 - 2024-07-25 10:59 - 000003088 _____ C:\WINDOWS\system32\Tasks\NahimicTask64
2024-07-25 10:07 - 2024-07-25 10:07 - 000728484 _____ C:\WINDOWS\system32\perfh005.dat
2024-07-25 10:07 - 2024-07-25 10:07 - 000151700 _____ C:\WINDOWS\system32\perfc005.dat
2024-07-25 01:43 - 2024-07-25 20:03 - 000000000 ____D C:\Users\jakub\Downloads\Crash Team Racing Nitro-Fueled + Update [NSP]
2024-07-25 00:38 - 2024-07-25 00:38 - 000000000 ____D C:\Users\jakub\OneDrive\Dokumenty\Call of Duty
2024-07-25 00:38 - 2024-07-25 00:38 - 000000000 ____D C:\Users\jakub\AppData\Local\Activision
2024-07-23 23:06 - 2024-07-23 23:06 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-07-22 17:14 - 2024-07-22 17:19 - 000000000 ____D C:\Users\jakub\Downloads\DJI_01
2024-07-21 05:30 - 2024-07-21 05:30 - 000109780 _____ C:\Users\jakub\Downloads\Fixlog.txt
2024-07-20 02:58 - 2024-07-11 00:29 - 000236696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpcf.sys
2024-07-20 02:58 - 2024-07-11 00:29 - 000121872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2024-07-20 02:55 - 2024-07-11 21:32 - 002040576 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-07-20 02:55 - 2024-07-11 21:32 - 002040576 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-07-20 02:55 - 2024-07-11 21:32 - 001583872 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-07-20 02:55 - 2024-07-11 21:32 - 001583872 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-07-20 02:55 - 2024-07-11 21:32 - 001446656 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-07-20 02:55 - 2024-07-11 21:32 - 001446656 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-07-20 02:55 - 2024-07-11 21:32 - 001296640 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-07-20 02:55 - 2024-07-11 21:32 - 001296640 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-07-20 02:55 - 2024-07-11 21:32 - 000477704 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-07-20 02:55 - 2024-07-11 21:32 - 000374288 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-07-20 02:55 - 2024-07-11 21:29 - 000669816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-07-20 02:55 - 2024-07-11 21:29 - 000505992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-07-20 02:55 - 2024-07-11 21:28 - 001546760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-07-20 02:55 - 2024-07-11 21:28 - 001202704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-07-20 02:55 - 2024-07-11 21:28 - 001079432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-07-20 02:55 - 2024-07-11 21:28 - 000856584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-07-20 02:54 - 2024-07-11 21:28 - 002178160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-07-20 02:54 - 2024-07-11 21:28 - 001629832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-07-20 02:54 - 2024-07-11 21:28 - 001034360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-07-20 02:54 - 2024-07-11 21:28 - 000797320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-07-20 02:54 - 2024-07-11 21:27 - 016199688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-07-20 02:54 - 2024-07-11 21:27 - 014270072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-07-20 02:54 - 2024-07-11 21:27 - 006914056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-07-20 02:54 - 2024-07-11 21:27 - 005910664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-07-20 02:54 - 2024-07-11 21:27 - 005349408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-07-20 02:54 - 2024-07-11 21:27 - 003788400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-07-20 02:54 - 2024-07-11 21:27 - 000461432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-07-20 02:54 - 2024-07-11 21:26 - 007133048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-07-20 02:54 - 2024-07-11 21:26 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-07-20 02:54 - 2024-07-11 21:25 - 006211816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-07-20 02:54 - 2024-07-11 00:29 - 000128301 _____ C:\WINDOWS\system32\nvinfo.pb
2024-07-19 23:40 - 2024-07-19 23:41 - 000000000 ____D C:\Program Files\trend micro
2024-07-19 23:40 - 2024-07-19 23:40 - 000000000 ____D C:\rsit
2024-07-19 23:38 - 2024-07-19 23:38 - 000061957 _____ C:\Users\jakub\Downloads\Addition.txt
2024-07-19 23:37 - 2024-07-25 21:51 - 000037054 _____ C:\Users\jakub\Downloads\FRST.txt
2024-07-19 23:36 - 2024-07-25 21:51 - 000000000 ____D C:\FRST
2024-07-19 23:36 - 2024-07-25 21:49 - 002396672 _____ (Farbar) C:\Users\jakub\Downloads\FRST64.exe
2024-07-19 19:07 - 2024-07-19 22:33 - 000000000 ____D C:\WINDOWS\Minidump
2024-07-18 13:57 - 2024-07-18 13:57 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Word
2024-07-18 13:57 - 2024-07-18 13:57 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\UProof
2024-07-18 13:57 - 2024-07-18 13:57 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Proof
2024-07-18 13:57 - 2024-07-18 13:57 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Office
2024-07-18 13:57 - 2024-07-18 13:57 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\AddIns
2024-07-17 14:14 - 2024-07-17 14:14 - 000000000 ____D C:\Users\jakub\AppData\Local\AliceVision
2024-07-17 13:33 - 2024-07-22 17:21 - 000000000 ____D C:\Users\jakub\OneDrive\Desktop\Meshroom-2023.3.0
2024-07-16 03:10 - 2024-07-21 08:35 - 000000000 ____D C:\Users\jakub\AppData\Local\Fallout4 MS
2024-07-12 11:54 - 2024-07-12 11:54 - 000000000 ____D C:\Users\jakub\AppData\Local\id Software
2024-07-12 11:30 - 2024-07-12 11:30 - 000000735 _____ C:\Users\jakub\OneDrive\Desktop\RAGE 2.lnk
2024-07-12 11:30 - 2024-07-12 11:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAGE 2
2024-07-10 19:14 - 2024-07-10 19:14 - 000000000 ___HD C:\OneDriveTemp
2024-07-10 19:12 - 2024-07-24 23:50 - 000000000 ____D C:\XboxGames
2024-07-10 19:12 - 2024-07-10 19:12 - 000000028 ____H C:\.GamingRoot
2024-07-10 19:12 - 2024-07-10 19:12 - 000000000 ____D C:\Users\jakub\AppData\Local\INetHistory
2024-07-10 19:12 - 2024-07-10 19:12 - 000000000 ____D C:\Users\jakub\AppData\Local\EAConnect_microsoft
2024-07-10 18:37 - 2024-07-10 18:37 - 000025684 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-07-10 18:36 - 2024-07-10 18:36 - 000025684 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-07-05 00:43 - 2024-07-05 00:43 - 000003230 _____ C:\WINDOWS\system32\Tasks\TempClean3
2024-07-05 00:43 - 2024-07-05 00:43 - 000003206 _____ C:\WINDOWS\system32\Tasks\TempClean1
2024-07-05 00:43 - 2024-07-05 00:43 - 000003196 _____ C:\WINDOWS\system32\Tasks\TempClean2
2024-07-05 00:42 - 2024-07-05 00:42 - 000000629 _____ C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\TEKKEN 8.lnk
2024-06-25 01:49 - 2024-06-25 16:45 - 000000000 ____D C:\Program Files (x86)\Diablo IV Public Test

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-07-25 21:05 - 2023-08-26 12:06 - 000000000 ____D C:\Users\jakub\AppData\Roaming\utorrent
2024-07-25 21:04 - 2023-08-26 12:06 - 000000000 ____D C:\Users\jakub\AppData\Local\BitTorrentHelper
2024-07-25 20:00 - 2023-08-26 11:48 - 000000000 ____D C:\Users\jakub\AppData\Local\D3DSCache
2024-07-25 20:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-25 16:52 - 2023-08-26 11:51 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-07-25 16:51 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-25 16:22 - 2023-08-26 11:57 - 000000000 ____D C:\Program Files (x86)\Steam
2024-07-25 12:02 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-25 12:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-25 10:07 - 2023-08-23 07:24 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-07-25 10:07 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-25 10:01 - 2024-02-24 17:00 - 000000000 ____D C:\Users\jakub\AppData\Roaming\discord
2024-07-25 09:59 - 2024-03-01 11:16 - 000000000 ____D C:\Program Files\TeamViewer
2024-07-25 09:59 - 2024-02-24 17:00 - 000002260 _____ C:\Users\jakub\OneDrive\Desktop\Discord.lnk
2024-07-25 09:59 - 2024-02-24 17:00 - 000000000 ____D C:\Users\jakub\AppData\Local\Discord
2024-07-25 09:59 - 2023-08-26 11:49 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-870040665-2121503514-229588856-1004
2024-07-25 09:59 - 2023-08-26 11:49 - 000003356 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-870040665-2121503514-229588856-1004
2024-07-25 09:59 - 2023-08-26 11:49 - 000002388 _____ C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-25 09:59 - 2023-08-26 11:48 - 000002401 _____ C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk
2024-07-25 09:59 - 2023-08-15 07:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-07-25 09:59 - 2023-08-15 07:28 - 000012288 ___SH C:\DumpStack.log.tmp
2024-07-25 09:59 - 2023-08-15 07:28 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-25 09:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-07-25 09:58 - 2022-05-07 07:17 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-07-25 09:53 - 2023-08-27 01:41 - 000000000 ____D C:\Users\jakub\AppData\Local\CrashDumps
2024-07-24 23:50 - 2023-08-26 11:48 - 000000000 ____D C:\Users\jakub\AppData\Local\Packages
2024-07-24 23:18 - 2023-08-15 07:34 - 000000000 ____D C:\ProgramData\Packages
2024-07-24 22:53 - 2023-08-26 12:00 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-07-24 22:51 - 2023-10-14 11:49 - 000000000 ____D C:\Users\jakub\AppData\Roaming\EasyAntiCheat
2024-07-24 22:48 - 2023-08-28 12:15 - 000000000 ____D C:\Games
2024-07-24 11:46 - 2023-08-15 07:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-24 10:13 - 2023-08-26 11:51 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-07-24 10:13 - 2023-08-26 11:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-07-20 06:21 - 2023-08-15 07:28 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-20 03:17 - 2023-08-26 11:48 - 000000000 ____D C:\Users\jakub\AppData\Local\NVIDIA
2024-07-20 03:17 - 2023-08-26 11:45 - 000000000 ____D C:\Users\jakub
2024-07-20 03:15 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-20 03:04 - 2023-08-15 07:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2024-07-20 02:59 - 2023-08-26 11:49 - 000000000 ____D C:\Users\jakub\AppData\Local\NVIDIA Corporation
2024-07-20 02:59 - 2023-08-15 07:28 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-07-20 02:59 - 2022-05-19 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-07-20 02:59 - 2022-05-19 13:26 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-07-20 02:59 - 2022-05-19 13:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-07-17 19:56 - 2023-12-27 01:26 - 000000000 ____D C:\Users\jakub\AppData\Local\cache
2024-07-16 03:10 - 2023-09-01 04:38 - 000000000 ____D C:\Users\jakub\OneDrive\Dokumenty\My Games
2024-07-16 00:02 - 2021-09-29 23:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-07-15 16:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-07-14 01:14 - 2023-08-15 07:29 - 000000000 ____D C:\ProgramData\A-Volute
2024-07-13 11:24 - 2022-05-19 13:18 - 000000000 ____D C:\Program Files\Microsoft Office
2024-07-12 11:15 - 2023-08-15 07:34 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-12 11:15 - 2023-08-15 07:34 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-11 10:41 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-07-11 10:31 - 2023-08-26 11:49 - 000000000 ___RD C:\Users\jakub\OneDrive
2024-07-11 10:25 - 2023-08-15 07:28 - 000472024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-07-11 10:24 - 2023-12-13 04:13 - 000000000 ____D C:\WINDOWS\InboxApps
2024-07-11 10:24 - 2023-10-11 18:03 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-07-11 10:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-07-10 20:42 - 2023-08-26 11:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-07-10 19:15 - 2023-08-26 11:45 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Spelling
2024-07-10 19:12 - 2023-08-26 11:49 - 000000000 ____D C:\Users\jakub\AppData\Local\PlaceholderTileLogoFolder
2024-07-10 18:39 - 2023-08-27 02:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-10 18:38 - 2023-08-27 02:42 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-07-10 18:37 - 2023-08-15 07:30 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-07-10 18:20 - 2024-03-16 13:30 - 000000000 ____D C:\ProgramData\EA Desktop
2024-06-25 22:04 - 2023-09-06 19:57 - 000000000 ____D C:\Program Files (x86)\Diablo IV
2024-06-25 22:04 - 2023-09-06 18:48 - 000000000 ____D C:\Users\jakub\AppData\Local\Battle.net
2024-06-25 02:09 - 2023-10-30 01:02 - 000000000 ____D C:\Users\jakub\OneDrive\Dokumenty\Diablo IV

==================== Files in the root of some directories ========

2023-12-31 12:52 - 2023-12-31 12:52 - 000000000 ___SH () C:\Users\jakub\AppData\Local\LumaEmu

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================