Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Ran by Intel (administrator) on DESKTOP-5TV1K3B (26-09-2024 08:37:18)
Running from C:\Users\Intel\Downloads\FRST64.exe
Loaded Profiles: Intel
Platform: Microsoft Windows 11 Home Version 23H2 22631.4169 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(explorer.exe ->) (Open-Shell) [File not signed] C:\Program Files\Open-Shell\StartMenu.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <16>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Greatis Software LLC -> Greatis Software, LLC) C:\Program Files (x86)\StopUpdates10\SU10Guard.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Locktime Software s.r.o. -> Locktime Software) C:\Program Files\Locktime Software\NetLimiter\NLSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_dcf94619172aceb0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (QUALCOMM, Inc.) [File not signed] C:\Program Files (x86)\QUALCOMM Incorporated\Qualcomm USB Drivers For Windows\DriverPackage\Qualcomm\Tools\qcmtusvc.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [265216 2023-08-16] (Open-Shell) [File not signed]
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [196016 2024-08-28] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2888363967-3467510471-3697138828-1000\...\Run: [MicrosoftEdgeAutoLaunch_70D4A23EDE24901E7292024BD5B21CF6] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3798464 2024-09-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2888363967-3467510471-3697138828-1000\...\Run: [NetLimiter] => C:\Program Files\Locktime Software\NetLimiter\nlclientapp.exe [608608 2024-08-23] (Locktime Software s.r.o. -> Locktime Software)
HKU\S-1-5-21-2888363967-3467510471-3697138828-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2888363967-3467510471-3697138828-1000\...\Policies\Explorer: [HideSCAMeetNow] 1
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\WINDOWS\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\129.0.6668.71\Installer\chrmstp.exe [2024-09-24] (Google LLC -> Google LLC)
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2024-09-19]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1B2DE1BA-930F-4613-A122-AF4B7D973FF1} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{5ABC55A7-81CB-446A-9CFD-1082662EEA92} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {215BEBB0-E1D0-4B94-992C-9C2C619B64EE} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\IntelPTTEKRecertification.exe [855664 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
Task: {98A475E1-8C5C-471E-805D-A483A7193A54} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917936 2024-08-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {21335E53-86B4-469C-B9A9-73FDADC71384} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917936 2024-08-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {B2A84029-131B-4DE3-9D2E-7DE8377173E3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141384 2024-09-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E153E9C9-1238-4772-B3C5-3DD10158F4B4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141384 2024-09-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {086C6551-DEFD-4B38-8E7E-62212AAEDBFD} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2888363967-3467510471-3697138828-1000 E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [672328 2024-09-16] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {6C0FA79B-C736-428A-BCC9-66AF54BA776B} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3824168 2024-08-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D1E4C36E-E38B-4CDE-836B-4AB06B74C46C} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [11088792 2024-08-23] (Lespeed Technology Co., Ltd -> WiseCleaner.com) -> C:\Program Files (x86)\Wise\Wise Disk Cleaner\\$UAC
Task: {A06D11C2-88E8-40CD-8A4E-839BA11F7BC4} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [10674072 2024-09-24] (Lespeed Technology Co., Ltd -> WiseCleaner.com) -> C:\Program Files (x86)\Wise\Wise Registry Cleaner\\$UAC

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{887626e0-960a-4109-9f6b-7a266b7980b2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{887626e0-960a-4109-9f6b-7a266b7980b2}: [DhcpDomain] home

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-26]
Edge DownloadDir: Default -> D:\
Edge Notifications: Default -> hxxps://mail.proton.me
Edge HomePage: Default -> hxxp://www.google.sk/
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-12]
Edge Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-09-19]
Edge Extension: (Tampermonkey) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iikmkjmpaadaobahmlepeloendndfphd [2024-05-10]
Edge Extension: (Edge relevant text changes) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (Video DownloadHelper) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmkaglaafmhbcpleggkmaliipiilhldn [2024-08-13]
Edge Extension: (IDM Integration Module) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2024-09-18]
Edge Extension: (Urban VPN Proxy) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nimlmejbmnecnaghgmbahmbaddhjbecg [2024-08-29]
Edge Extension: (Free VPN for Edge - VPN Proxy VeePN) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\panammoooggmlehahpcjckcncfeffcoi [2024-05-13]
Edge Extension: (Urban YouTube™ Ad Blocker) - C:\Users\Intel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pgkoofcljmnboiagfabbfooohgbjanhm [2023-08-30]
Edge HKU\S-1-5-21-2888363967-3467510471-3697138828-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2024-09-16]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]

FireFox:
========
FF DefaultProfile: 720v1xdu.default
FF ProfilePath: C:\Users\Intel\AppData\Roaming\Mozilla\Firefox\Profiles\720v1xdu.default [2023-12-13]
FF user.js: detected! => C:\Users\Intel\AppData\Roaming\Mozilla\Firefox\Profiles\720v1xdu.default\user.js [2023-12-13]
FF ProfilePath: C:\Users\Intel\AppData\Roaming\Mozilla\Firefox\Profiles\fe4xvq4p.default-release [2024-09-26]
FF Extension: (IDM Integration Module) - C:\Users\Intel\AppData\Roaming\Mozilla\Firefox\Profiles\fe4xvq4p.default-release\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2024-09-24]
FF Extension: (uBlock Origin) - C:\Users\Intel\AppData\Roaming\Mozilla\Firefox\Profiles\fe4xvq4p.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-08-21]
FF Extension: (Video DownloadHelper) - C:\Users\Intel\AppData\Roaming\Mozilla\Firefox\Profiles\fe4xvq4p.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2024-09-11]
FF Extension: (Urban VPN proxy) - C:\Users\Intel\AppData\Roaming\Mozilla\Firefox\Profiles\fe4xvq4p.default-release\Extensions\{fca67f41-776b-438a-9382-662171858615}.xpi [2024-01-05]
FF HKU\S-1-5-21-2888363967-3467510471-3697138828-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Intel\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Intel\AppData\Roaming\IDM\idmmzcc5 [2023-09-01] [Legacy] [not signed]
FF HKU\S-1-5-21-2888363967-3467510471-3697138828-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-19] [Legacy]
FF Plugin: @java.com/DTPlugin,version=11.421.2 -> C:\Program Files\Java\jre1.8.0_421\bin\dtplugin\npDeployJava1.dll [2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.421.2 -> C:\Program Files\Java\jre1.8.0_421\bin\plugin2\npjp2.dll [2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2024-09-26]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default [2024-09-26]
CHR DownloadDir: C:\Users\Intel\Downloads
CHR HomePage: Default -> hxxp://www.google.sk/
CHR StartupUrls: Default -> "hxxp://www.google.sk/"
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2023-08-30]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-26]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-09-20]
CHR Extension: (Microsoft Power Automate) - C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljglajjnnkapghbckkcmodicjhacbfhk [2024-07-24]
CHR Extension: (IDM Integration Module) - C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2024-09-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-08-30]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2024-09-16]
CHR HKU\S-1-5-21-2888363967-3467510471-3697138828-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2024-09-16]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2024-09-16]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [4993864 2024-09-19] (AnyDesk Software GmbH -> AnyDesk Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9203440 2024-08-26] (Microsoft Corporation -> Microsoft Corporation)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [87169232 2024-09-05] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-11-30] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5527928 2024-08-28] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4207104 2024-08-28] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4207104 2024-08-28] (ESET, spol. s r.o. -> ESET)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2494448 2024-09-12] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MpDefenderCoreService.exe [1377416 2024-07-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 nlsvc; C:\Program Files\Locktime Software\NetLimiter\NLSvc.exe [26464 2024-08-23] (Locktime Software s.r.o. -> Locktime Software)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_dcf94619172aceb0\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2572096 2024-09-21] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3491144 2024-09-21] (Electronic Arts, Inc. -> Electronic Arts)
R2 qcmtusvc; C:\Program Files (x86)\QUALCOMM Incorporated\Qualcomm USB Drivers For Windows\DriverPackage\Qualcomm\Tools\qcmtusvc.exe [129024 2019-01-02] (QUALCOMM, Inc.) [File not signed]
R2 SU10Guard; C:\Program Files (x86)\StopUpdates10\SU10Guard.exe [88472 2024-04-03] (Greatis Software LLC -> Greatis Software, LLC)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22548280 2024-09-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\NisSrv.exe [3236728 2024-07-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MsMpEng.exe [133688 2024-07-28] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [544768 2023-05-24] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-05-24] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2023-04-30] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [219984 2024-06-25] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [119424 2024-06-25] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2024-06-19] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [265944 2024-06-25] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57848 2024-06-25] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [84136 2024-06-25] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [126480 2024-06-25] (ESET, spol. s r.o. -> ESET)
R0 fse; C:\WINDOWS\System32\drivers\fse.sys [218488 2024-08-28] (Microsoft Windows -> Microsoft Corporation)
S3 gdrv3; C:\WINDOWS\System32\drivers\gdrv3.sys [52432 2024-08-25] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 IDMWFP; C:\WINDOWS\System32\drivers\idmwfp.sys [173736 2023-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Tonec Inc.)
R3 keyboard; C:\Windows\System32\Drivers\keyboard.sys [18536 2024-01-21] (Francisco Lopes da Silva -> Oblita)
R3 mouse; C:\Windows\System32\Drivers\mouse.sys [18536 2024-01-21] (Francisco Lopes da Silva -> Oblita)
R0 nldrv; C:\WINDOWS\System32\drivers\nldrv.sys [206512 2024-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Locktime Software)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [50248 2022-03-30] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 R0FanControl; C:\Users\Intel\a\FanControl_199_net_4_8\FanControl.sys [14544 2024-09-18] (Noriyuki MIYAZAKI -> OpenLibSys.org)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_8075652acf50fbcd\rt68cx21x64.sys [831456 2024-09-05] (Realtek Semiconductor Corp. -> Realtek)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [44080 2024-01-21] (Shaul Eizikovich -> Nefarius Software Solutions)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 trufos; C:\WINDOWS\System32\drivers\trufos.sys [641736 2023-12-11] (Bitdefender SRL -> Bitdefender)
S3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-10-27] (Microsoft Windows -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [21968 2024-07-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602520 2024-07-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-07-28] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-09-26 08:37 - 2024-09-26 08:38 - 000025986 _____ C:\Users\Intel\Downloads\FRST.txt
2024-09-26 08:37 - 2024-09-26 08:37 - 000000000 ____D C:\FRST
2024-09-26 08:34 - 2024-09-26 08:35 - 002397696 _____ (Farbar) C:\Users\Intel\Downloads\FRST64.exe
2024-09-25 09:12 - 2024-09-25 09:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2024-09-25 08:15 - 2024-09-25 08:15 - 000000000 ____D C:\Users\Intel\AppData\Local\CrashRpt
2024-09-25 06:38 - 2024-09-25 06:38 - 000000000 ____D C:\Users\Intel\AppData\Local\OneDrive
2024-09-24 05:31 - 2024-09-24 05:31 - 000342776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-23 12:28 - 2024-09-23 12:28 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-09-23 12:26 - 2024-09-23 12:26 - 000002521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2024-09-23 12:26 - 2024-09-23 12:26 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2024-09-23 12:26 - 2024-09-23 12:26 - 000002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2024-09-23 12:26 - 2024-09-23 12:26 - 000002399 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2024-09-23 12:26 - 2024-09-23 12:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje balíka Microsoft Office
2024-09-23 12:24 - 2024-09-23 12:27 - 000000000 ____D C:\Program Files\Microsoft Office
2024-09-23 12:24 - 2024-09-23 12:24 - 000000000 ____D C:\Program Files\Microsoft Office 15
2024-09-23 09:34 - 2024-09-26 06:17 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2024-09-23 09:34 - 2024-09-23 09:34 - 000000000 ___RD C:\Users\Intel\OneDrive
2024-09-22 16:06 - 2024-09-22 16:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetLimiter
2024-09-22 16:06 - 2024-09-22 16:06 - 000000000 ____D C:\Program Files\Locktime Software
2024-09-22 07:27 - 2024-09-22 07:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2024-09-21 16:32 - 2024-09-21 16:32 - 005250936 _____ C:\Users\Intel\Downloads\FC25 Squad Update #1 - MOMO.rar
2024-09-21 16:32 - 2024-09-20 09:15 - 010276179 _____ C:\Users\Intel\Downloads\Squads20240920124517623
2024-09-21 14:45 - 2024-09-21 17:50 - 000000000 ____D C:\Users\Intel\AppData\Local\EA SPORTS FC 25
2024-09-21 14:43 - 2024-09-21 14:43 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2024-09-21 14:43 - 2024-09-21 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA SPORTS FC 25
2024-09-21 14:43 - 2024-09-21 14:43 - 000000000 ____D C:\ProgramData\eaanticheat
2024-09-21 14:43 - 2024-09-21 14:43 - 000000000 ____D C:\Program Files\EA
2024-09-21 14:41 - 2024-09-26 06:19 - 000000000 ____D C:\Program Files (x86)\StopUpdates10
2024-09-21 14:41 - 2024-09-21 18:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StopUpdates10
2024-09-21 14:41 - 2024-09-21 14:41 - 000000000 ____D C:\Users\Intel\AppData\Roaming\Locktime
2024-09-21 14:41 - 2024-09-21 14:41 - 000000000 ____D C:\ProgramData\Locktime
2024-09-21 14:39 - 2024-09-26 07:19 - 000000000 ____D C:\Program Files (x86)\Origin Games
2024-09-21 14:37 - 2024-09-21 14:43 - 000000000 ____D C:\ProgramData\Electronic Arts
2024-09-21 14:36 - 2024-09-26 07:19 - 000000000 ____D C:\Users\Intel\AppData\Roaming\Origin
2024-09-21 14:36 - 2024-09-21 16:36 - 000000000 ____D C:\Program Files (x86)\Origin
2024-09-21 14:36 - 2024-09-21 14:36 - 000000000 ____D C:\Users\Intel\.QtWebEngineProcess
2024-09-21 14:36 - 2024-09-21 14:36 - 000000000 ____D C:\Users\Intel\.Origin
2024-09-21 14:12 - 2024-09-21 14:12 - 000716538 _____ C:\WINDOWS\system32\perfh01B.dat
2024-09-21 14:12 - 2024-09-21 14:12 - 000135284 _____ C:\WINDOWS\system32\perfc01B.dat
2024-09-20 15:44 - 2024-09-20 15:44 - 000000000 ____D C:\Users\Intel\AppData\Roaming\WycT1ndu
2024-09-20 11:19 - 2024-09-20 11:19 - 031261004 _____ C:\Users\Intel\AppData\Roaming\yURiiySE.zip
2024-09-20 10:27 - 2024-09-20 10:27 - 000000000 ____D C:\ProgramData\Sony Interactive Entertainment Inc
2024-09-19 08:55 - 2024-09-19 08:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyDesk
2024-09-19 04:33 - 2024-09-19 04:33 - 000000290 __RSH C:\ProgramData\ntuser.pol
2024-09-18 18:53 - 2024-09-18 18:53 - 000000000 ____D C:\Users\Intel\AppData\Roaming\GSE Saves
2024-09-18 16:32 - 2024-09-18 16:32 - 000000000 ____D C:\Users\Intel\AppData\Roaming\SquareEnix
2024-09-18 16:32 - 2024-09-18 16:32 - 000000000 ____D C:\Users\Intel\AppData\Local\SquareEnix
2024-09-18 16:13 - 2024-09-25 08:15 - 000000000 ____D C:\Users\Intel\Documents\My Games
2024-09-17 08:40 - 2024-09-17 08:40 - 000000000 ____D C:\Users\Intel\AppData\Roaming\Eidos Montreal
2024-09-17 08:24 - 2024-09-17 08:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2024-09-17 08:24 - 2024-09-17 08:24 - 000000000 ____D C:\Program Files\qBittorrent
2024-09-13 20:38 - 2024-09-13 20:38 - 000000000 ____D C:\Users\Intel\AppData\Local\b1
2024-09-12 06:29 - 2024-09-12 06:31 - 000000000 ____D C:\Users\Intel\.mysterium-bin
2024-09-12 06:29 - 2024-09-12 06:29 - 000000000 ____D C:\Users\Intel\.mysterium
2024-09-12 06:04 - 2024-09-12 06:04 - 000000000 ____D C:\Users\Intel\AppData\Local\kryptex-app-updater
2024-09-11 19:09 - 2024-09-06 14:59 - 025312776 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2024-09-11 19:09 - 2024-09-06 14:59 - 002040680 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-09-11 19:09 - 2024-09-06 14:59 - 002040680 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-09-11 19:09 - 2024-09-06 14:59 - 001584008 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-09-11 19:09 - 2024-09-06 14:59 - 001584008 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-09-11 19:09 - 2024-09-06 14:59 - 001446760 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-09-11 19:09 - 2024-09-06 14:59 - 001446760 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-09-11 19:09 - 2024-09-06 14:59 - 001296744 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-09-11 19:09 - 2024-09-06 14:59 - 001296744 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-09-11 19:09 - 2024-09-06 14:59 - 000477840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-09-11 19:09 - 2024-09-06 14:59 - 000374280 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-09-11 19:08 - 2024-09-06 14:56 - 001079432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-09-11 19:08 - 2024-09-06 14:56 - 000669816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-09-11 19:08 - 2024-09-06 14:56 - 000505992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-09-11 19:08 - 2024-09-06 14:55 - 002178728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-09-11 19:08 - 2024-09-06 14:55 - 001629304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-09-11 19:08 - 2024-09-06 14:55 - 001546896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-09-11 19:08 - 2024-09-06 14:55 - 001202800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-09-11 19:08 - 2024-09-06 14:55 - 001034888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-09-11 19:08 - 2024-09-06 14:55 - 000856696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-09-11 19:08 - 2024-09-06 14:55 - 000797216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-09-11 19:08 - 2024-09-06 14:54 - 016199824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-09-11 19:08 - 2024-09-06 14:54 - 014270496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-09-11 19:08 - 2024-09-06 14:54 - 006914056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-09-11 19:08 - 2024-09-06 14:54 - 005349512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-09-11 19:08 - 2024-09-06 14:54 - 003788960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-09-11 19:08 - 2024-09-06 14:54 - 000461456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-09-11 19:08 - 2024-09-06 14:53 - 005910136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-09-11 19:08 - 2024-09-06 14:53 - 000853536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-09-11 19:08 - 2024-09-06 14:52 - 007133648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-09-11 19:08 - 2024-09-06 14:52 - 006212848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-09-11 19:08 - 2024-09-06 05:43 - 000127247 _____ C:\WINDOWS\system32\nvinfo.pb
2024-09-11 09:08 - 2024-09-11 15:21 - 000000000 ____D C:\Program Files\Oracle
2024-09-10 15:38 - 2024-09-10 15:38 - 000000000 ____D C:\Users\Intel\AppData\Local\VisionsofMana
2024-09-08 21:51 - 2024-09-08 21:51 - 000000000 ____D C:\Users\Intel\AppData\Local\Remnant2
2024-09-06 09:32 - 2024-09-06 09:32 - 000000000 ____D C:\Users\Intel\AppData\Local\Saber
2024-09-05 06:51 - 2024-09-05 06:51 - 006198632 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2024-09-05 06:50 - 2024-09-05 06:50 - 001075672 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorE.sys
2024-09-05 06:50 - 2024-09-05 06:50 - 000053632 _____ (ELAN Microelectronic Corp.) C:\WINDOWS\system32\Drivers\ETDSMBus.sys
2024-09-05 06:48 - 2024-09-10 05:06 - 000000000 ____D C:\ProgramData\ProductData
2024-09-05 06:48 - 2024-09-10 05:06 - 000000000 ____D C:\Program Files (x86)\IObit
2024-09-05 06:48 - 2024-09-05 06:48 - 000000000 ____D C:\Users\Intel\AppData\LocalLow\IObit
2024-09-05 06:47 - 2024-09-10 05:06 - 000000000 ____D C:\Users\Intel\AppData\Roaming\IObit
2024-09-05 06:47 - 2024-09-05 06:49 - 000000000 ____D C:\ProgramData\IObit
2024-09-05 06:46 - 2024-09-05 06:46 - 000000000 ____D C:\Users\Intel\AppData\Local\PC HelpSoft Driver Updater
2024-09-05 06:41 - 2024-09-05 06:41 - 000000000 ____D C:\ProgramData\PC HelpSoft Driver Updater Pro
2024-09-04 17:30 - 2024-09-04 20:19 - 000000000 ____D C:\Users\Intel\AppData\Roaming\VMware
2024-09-04 17:30 - 2024-09-04 20:18 - 000000000 ____D C:\Users\Intel\AppData\Local\VMware
2024-09-04 17:29 - 2024-09-04 20:19 - 000000000 ____D C:\ProgramData\VMware
2024-09-04 05:55 - 2024-09-04 05:55 - 000000000 ____D C:\Users\Intel\AppData\Local\Saltpeter
2024-08-31 07:08 - 2024-08-31 14:39 - 000000000 ____D C:\Users\Intel\AppData\Local\WeMod
2024-08-29 05:39 - 2024-08-29 05:39 - 001047040 _____ C:\Users\Intel\Documents\TU116.rom
2024-08-28 08:06 - 2024-09-03 18:39 - 000000000 ____D C:\Users\Intel\AppData\Local\Ubisoft Game Launcher

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-09-26 08:29 - 2023-08-30 11:25 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-26 08:29 - 2023-08-30 11:16 - 000000000 ____D C:\Users\Intel\AppData\Local\OpenShell
2024-09-26 08:26 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-26 08:04 - 2023-08-30 11:25 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-26 08:04 - 2023-08-30 10:43 - 000000000 ____D C:\Users\Intel\AppData\Local\Packages
2024-09-26 08:04 - 2023-08-30 10:43 - 000000000 ____D C:\ProgramData\Packages
2024-09-26 07:35 - 2023-10-12 18:38 - 000000000 ____D C:\ProgramData\Origin
2024-09-26 07:18 - 2023-08-30 10:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-26 06:28 - 2023-08-30 10:45 - 000000000 ____D C:\Users\Intel\AppData\Local\D3DSCache
2024-09-26 06:17 - 2023-08-30 12:30 - 000000000 ____D C:\Program Files\TeamViewer
2024-09-26 06:17 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-26 06:17 - 2023-08-30 10:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-26 06:17 - 2023-08-30 10:33 - 000000000 ____D C:\ProgramData\NVIDIA
2024-09-26 06:17 - 2023-04-30 16:34 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-25 19:15 - 2023-08-30 11:20 - 000065536 _____ C:\WINDOWS\system32\config\BBI
2024-09-25 09:17 - 2023-09-23 17:41 - 000000000 ____D C:\Users\Intel\AppData\Local\CrashDumps
2024-09-25 09:15 - 2024-03-28 08:03 - 000000000 ____D C:\Users\Intel\AppData\Local\Steam
2024-09-25 08:24 - 2023-08-30 12:22 - 000000000 ____D C:\Users\Intel\AppData\Roaming\vlc
2024-09-25 08:20 - 2023-08-30 17:25 - 000000000 ____D C:\Users\Intel\AppData\Roaming\qBittorrent
2024-09-25 08:11 - 2023-06-23 06:40 - 000000000 ____D C:\Users\Public\Documents\OnlineFix
2024-09-25 05:19 - 2023-08-30 12:24 - 000000000 ____D C:\Users\Intel\AppData\Local\JDownloader 2.0
2024-09-24 19:45 - 2023-08-30 11:03 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-24 19:45 - 2023-08-30 11:03 - 000002218 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-09-24 17:57 - 2024-08-23 09:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
2024-09-24 17:57 - 2023-09-04 09:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\WiseCleaner
2024-09-24 17:57 - 2023-08-30 11:24 - 000000000 ____D C:\WINDOWS\INF
2024-09-24 17:56 - 2024-06-07 18:43 - 000006313 _____ C:\Users\Intel\AppData\Roaming\Types.lst
2024-09-24 17:56 - 2023-09-04 09:49 - 000000000 ____D C:\Users\Intel\AppData\Roaming\Wise Disk Cleaner
2024-09-23 19:01 - 2023-09-01 07:51 - 000000000 ____D C:\Users\Intel\AppData\Roaming\IDM
2024-09-23 19:01 - 2023-08-30 11:47 - 000000000 ____D C:\Users\Intel\AppData\Roaming\AnyDesk
2024-09-23 19:01 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-09-23 12:29 - 2024-02-15 12:56 - 000000000 ____D C:\Users\Intel\Desktop\office
2024-09-23 12:28 - 2023-08-30 11:25 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-09-23 10:01 - 2023-10-19 15:24 - 000000000 ____D C:\Users\Intel\AppData\Roaming\Microsoft\Outlook
2024-09-23 09:34 - 2023-08-30 10:36 - 000000000 ____D C:\Users\Intel
2024-09-23 09:10 - 2023-08-30 12:18 - 000000000 ____D C:\ProgramData\Package Cache
2024-09-22 19:00 - 2023-08-30 11:58 - 000000000 ____D C:\Users\Intel\AppData\Roaming\Microsoft\UProof
2024-09-22 16:07 - 2024-08-21 11:56 - 000000000 ____D C:\Users\Intel\Desktop\Lossless Scaling
2024-09-22 07:27 - 2023-09-12 05:15 - 000000000 ____D C:\Program Files (x86)\Foxit Software
2024-09-21 15:16 - 2023-08-30 11:47 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2024-09-21 14:53 - 2024-01-19 10:40 - 000000000 ____D C:\ProgramData\Packer
2024-09-21 14:45 - 2024-06-08 15:24 - 000000000 ____D C:\ProgramData\Frostbite
2024-09-21 14:45 - 2023-10-16 19:22 - 000000000 ____D C:\Users\Intel\AppData\Roaming\Electronic Arts
2024-09-21 14:37 - 2024-01-19 10:40 - 000000000 ____D C:\Users\Intel\AppData\Local\Origin
2024-09-21 14:12 - 2023-08-30 10:42 - 001691274 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-20 08:31 - 2024-01-14 09:41 - 000000080 _____ C:\Users\Intel\Nová položka Textový dokument.txt
2024-09-20 04:39 - 2023-08-30 10:33 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-19 08:55 - 2023-08-30 11:47 - 000001961 _____ C:\Users\Public\Desktop\AnyDesk.lnk
2024-09-18 05:03 - 2023-09-01 07:51 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2024-09-17 08:40 - 2023-09-12 16:17 - 000000000 ____D C:\Users\Intel\AppData\Local\NVIDIA Corporation
2024-09-17 06:34 - 2023-09-05 16:36 - 000000000 ____D C:\Users\Intel\AppData\Roaming\Microsoft\Skype for Desktop
2024-09-17 06:34 - 2023-09-01 07:51 - 000000000 ____D C:\Users\Intel\AppData\Roaming\DMCache
2024-09-17 06:33 - 2023-11-03 09:40 - 000001383 _____ C:\Users\Public\Desktop\Skype.lnk
2024-09-17 06:33 - 2023-09-05 16:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2024-09-17 06:11 - 2023-08-30 12:27 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-09-17 06:11 - 2023-08-30 12:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2024-09-12 06:06 - 2023-08-30 11:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-09-11 19:13 - 2023-08-30 10:43 - 000000000 ____D C:\Users\Intel\AppData\Local\NVIDIA
2024-09-10 19:59 - 2023-09-26 19:33 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-09-10 19:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-10 19:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-10 19:58 - 2023-08-30 10:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-10 19:55 - 2023-08-30 11:22 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-10 19:55 - 2023-08-30 10:54 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-10 19:37 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2024-09-09 18:02 - 2023-08-30 12:18 - 000000000 ____D C:\Program Files\Intel
2024-09-09 15:34 - 2023-08-30 10:33 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-09-08 21:50 - 2024-05-23 07:44 - 000000000 ____D C:\Program Files (x86)\TI
2024-09-08 16:38 - 2023-08-30 10:38 - 000003708 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{D9BF5624-3DAB-44CC-B9DA-084AD90C16F9}
2024-09-08 16:38 - 2023-08-30 10:38 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{69FBD04F-284A-43D4-A50A-722CD30E7B30}
2024-09-07 05:31 - 2023-08-30 10:37 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2024-09-04 17:29 - 2023-10-20 05:37 - 001718162 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2024-09-02 18:47 - 2023-08-30 11:18 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-09-02 18:10 - 2024-03-22 17:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-08-31 14:39 - 2024-03-09 08:03 - 000000000 ____D C:\Users\Intel\AppData\Roaming\WeMod
2024-08-31 07:34 - 2024-02-16 06:42 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-08-31 07:34 - 2023-09-20 18:13 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-08-31 07:34 - 2023-09-20 18:13 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-08-31 07:34 - 2023-09-20 18:13 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-08-31 07:34 - 2023-09-20 18:13 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-31 07:34 - 2023-09-20 18:13 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-08-31 07:34 - 2023-09-20 18:13 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-08-31 07:34 - 2023-09-20 18:13 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-08-31 07:08 - 2023-08-30 14:27 - 000000000 ____D C:\Users\Intel\AppData\Local\SquirrelTemp
2024-08-30 07:09 - 2024-08-26 08:16 - 000003834 _____ C:\WINDOWS\system32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-29 05:53 - 2023-09-19 07:37 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2024-08-29 05:37 - 2024-08-26 06:27 - 000000000 ____D C:\Users\Intel\a
2024-08-28 08:39 - 2023-08-30 11:25 - 000000000 ____D C:\ProgramData\USOPrivate
2024-08-28 08:07 - 2024-04-24 08:32 - 000000000 ____D C:\ProgramData\Ubisoft
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\WUModels
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-08-28 07:59 - 2023-08-30 11:25 - 000000000 ____D C:\WINDOWS\Provisioning
2024-08-28 07:43 - 2023-08-30 10:35 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

==================== Files in the root of some directories ========

2024-03-24 21:12 - 2023-12-18 20:16 - 000000402 _____ () C:\Users\Intel\RestoreNvidiaSignatureChecks.reg
2023-12-25 08:19 - 2023-12-25 08:19 - 000028672 _____ () C:\Users\Intel\AppData\Roaming\crash.bin
2023-09-12 07:54 - 2023-12-17 17:42 - 000208896 _____ () C:\Users\Intel\AppData\Roaming\emp.bin
2024-05-04 06:13 - 2024-05-05 11:17 - 042886902 _____ () C:\Users\Intel\AppData\Roaming\gta5_patch.bin
2024-05-04 06:13 - 2024-05-04 06:13 - 000332800 _____ () C:\Users\Intel\AppData\Roaming\patcher.dll
2024-01-24 11:50 - 2024-01-24 11:50 - 000000005 _____ () C:\Users\Intel\AppData\Roaming\SM2_Selected_Language.txt
2023-10-05 17:52 - 2023-10-05 17:52 - 000000848 _____ () C:\Users\Intel\AppData\Roaming\Startup.Profile_ImageEngine
2024-06-07 18:43 - 2024-09-24 17:56 - 000006313 _____ () C:\Users\Intel\AppData\Roaming\Types.lst
2024-09-20 11:19 - 2024-09-20 11:19 - 031261004 _____ () C:\Users\Intel\AppData\Roaming\yURiiySE.zip
2024-01-18 20:27 - 2024-01-18 20:27 - 000000218 _____ () C:\Users\Intel\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================