Prosím o kontrolu logu

[Jackal99]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by Admin (administrator) on THINKPAD-E480 (LENOVO 20KN0067XS) (16-10-2023 16:14:14)
Running from C:\Users\Admin\Downloads\FRST64.exe
Loaded Profiles: Admin
Platform: Microsoft Windows 11 Pro Version 22H2 22621.2428 (X64) Language: Slovenčina (Slovensko)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler64.exe
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngineProcess.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_bddd75c806b28a5c\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_bddd75c806b28a5c\igfxEM.exe
(DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN32EE~1.INF\driver\shtctky.exe
(DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN32EE~1.INF\driver\tposd.exe
(DriverStore\FileRepository\u0376364.inf_amd64_5400fa1846a41a4e\B376294\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0376364.inf_amd64_5400fa1846a41a4e\B376294\atieclxx.exe
(explorer.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <16>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Admin\AppData\Local\Microsoft\OneDrive\23.199.0924.0001\Microsoft.SharePoint.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0376364.inf_amd64_5400fa1846a41a4e\B376294\atiesrxx.exe
(services.exe ->) (Alcohol Soft -> Alcohol Soft Development Team) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_bddd75c806b28a5c\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_677610f31eedc829\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4c62167d8982367b\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4c62167d8982367b\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\EasyResume.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmsvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (StarWind Software) [File not signed] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated.) C:\Windows\System32\SynaHelperService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [292792 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.117\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [11338776 2023-10-11] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\Run: [CloantoSoftwareDirector] => C:\Program Files (x86)\Common Files\Cloanto\Software Director\softdir.exe [351040 2020-05-15] (Cloanto Corporation -> Cloanto Corporation)
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe [2533880 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4131264 2023-10-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\MountPoints2: {c6d4855c-f817-11e9-a996-a0a4c54b29f4} - "H:\SETUP.EXE"
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON L3060 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBR5E.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\117.0.5938.152\Installer\chrmstp.exe [2023-10-15] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.117\Installer\chrmstp.exe [2023-10-15] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Linux Mint - odkaz.lnk [2023-04-30]
ShortcutTarget: Linux Mint - odkaz.lnk -> D:\Mint\Linux Mint.vmx () [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {4118405B-5039-4783-9FEF-9ED07DE87B0F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {EA4285A2-D705-4767-B8F9-F37124958390} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {0287D81A-D589-45E9-B81A-338D286DD809} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {43536232-6B05-41E8-A52A-BCA955C9FD57} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {06572B02-12E2-455F-9851-B658018BF075} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {2D3F535F-F7C6-44E0-B6CC-A5635D8F5A58} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5172160 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {02DD45B9-C5DD-470F-B8C7-9F4400AFA1CB} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-08-02] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {E70435A0-A05A-47CC-AE76-E836AFDA4CFD} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{D3D4014B-51F5-430D-BB02-FB42CDFD10BA} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {57D8F3CC-F63E-4898-94EC-9CE94BFE2F6A} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{6C341597-39CD-4BFB-88D9-FACDADD42DF1} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {F67EA4BA-EA44-4AEA-8480-3C805DF49A24} - System32\Tasks\CreateExplorerShellUnelevatedTask => c:\windows\explorer.exe [5261576 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
Task: {20E96594-6A28-43FF-9BCB-0B8152CE4D68} - System32\Tasks\EPSON L3060 Series Update {B5BD1615-84EC-451B-AF52-3EB40D8A8846} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR5E.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {49A231EF-32FD-4AEE-9AD5-298C108AC4B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-26] (Google Inc -> Google LLC)
Task: {93E7C8DE-512C-4E35-806A-F8B43B5E2A5A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-26] (Google Inc -> Google LLC)
Task: {1DE4C278-8001-49E1-A963-2625E2EE2C14} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe -PnPTask (No File)
Task: {B79B201A-C5DB-41F8-8D79-C33875CC06E3} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2963285561-2800348544-3401091191-1001 => C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {8536A16D-7866-4B3E-934C-133482FA26E2} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [129016 2022-12-05] (Lenovo -> Lenovo)
Task: {15ECB19A-3A10-43FE-89EE-9C9F92DCEC83} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62136 2021-04-20] (Lenovo -> )
Task: {DFD55CDA-6ED2-42CC-BBAA-42EBCB3A16D9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {165B7F73-C4F1-44BF-9F45-5E6CE2BE1A31} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {58A78C26-D19B-4F59-BB7C-3408E60645E5} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {A5CB401B-FA76-418F-B3FE-6906E4383C02} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
Task: {2ACE66A4-CD8A-4F42-8FFA-ACEBB45C3454} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [File not signed]
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {99CEE1DF-DBA5-42B6-9817-FCD03B518DAA} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (No File)
Task: {6F5CE62F-9CD2-4EDA-99F1-CC37305443AF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {5A55A275-5808-472D-949D-54542622A688} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {285A0803-B5B8-43DE-AA04-D2CA48090C4A} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\SystemInfo => %appdata%\\systemdiag\\sysinfo.exe -st -tu 4 (No File)
Task: {08F85811-4589-45A9-AC77-851E4DE70093} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {0DEE45F2-1D84-4D82-91F5-A09DEE1D6F28} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-10-11] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {10E2A30B-41C4-4B65-A61A-89E81BE09939} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-10-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {5B6902DE-15CE-4559-B431-0F927AA254BD} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe tray (No File)
Task: {54785898-FDAD-4AA5-92F0-2F177493C4B0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {82578C06-52B9-49D9-914A-03DF35F1DA19} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {E5456DD6-6349-4976-825C-47488262EBEC} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {C93BFE70-E987-4403-8227-87C48DFCE00F} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {8FC2E6E5-4D13-4413-94D4-1007F0C66CD4} - System32\Tasks\VM => vmrun -> -T ws start "D:\Mint\Linux Mint.vmx"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON L3060 Series Update {B5BD1615-84EC-451B-AF52-3EB40D8A8846}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR5E.EXE:/EXE:{B5BD1615-84EC-451B-AF52-3EB40D8A8846} /F:UpdateWORKGROUP\THINKPAD-E480$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a1b2c4aa-87d1-43b4-83c9-f39619913c4c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{dd63ba0b-8b16-4c4d-83ce-8f0fe85ae711}: [DhcpNameServer] 10.1.100.1 8.8.8.8

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-16]
Edge HomePage: Default -> hxxp://www.google.sk/
Edge StartupUrls: Default -> "hxxp://www.google.sk/"
Edge Extension: (Double-click Image Downloader) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkijmpolkanhdehnlnabfooghjdokakc [2021-11-15]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-04]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-15]
Edge Extension: (Edge relevant text changes) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: pbuulunq.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\pbuulunq.default [2023-05-14]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hljqp2jm.default-release [2023-10-11]
FF Homepage: Mozilla\Firefox\Profiles\hljqp2jm.default-release -> www.google.sk
FF Notifications: Mozilla\Firefox\Profiles\hljqp2jm.default-release -> hxxps://www.heureka.sk
FF Extension: (anonymoX) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hljqp2jm.default-release\Extensions\client@anonymox.net.xpi [2022-02-18]
FF Extension: (YouTube Downloader) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hljqp2jm.default-release\Extensions\{307f416a-39c0-49e0-8e96-cf802290e33c}.xpi [2022-07-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.3.4.3\Profiles\b0ysyy6j.default [2020-03-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.3.30.0\Profiles\8yrdrsqh.default [2020-03-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.15.2.0\Profiles\iubwyaix.default [2020-03-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.14.5.0\Profiles\83mh7v7b.default [2020-03-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.12.3.0\Profiles\yqhysc80.default [2020-03-02]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-09-11]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2023-10-16]
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/ui/v1/icons/mail/images/favicon5.ico
CHR Extension: (Adobe Acrobat: nástroje na upravovanie, prevádzanie a podpisovanie súborov PDF) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-10-16]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-05]
CHR Extension: (Hola VPN - The Website Unblocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2023-10-16]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Brave:
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-10-16]
BRA HomePage: Default -> hxxp://www.duckduckgo.com/
BRA DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}&t=brave
BRA DefaultSearchKeyword: Default -> :d
BRA DefaultSuggestURL: Default -> hxxps://ac.duckduckgo.com/ac/?q={searchTerms}&type=list
BRA Extension: (DuckDuckGo) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2023-10-15]
BRA Extension: (Adobe Acrobat: nástroje na upravovanie, prevádzanie a podpisovanie súborov PDF) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-10-11]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-15]
BRA Profile: C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1 [2023-05-14]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-05-14]
BRA Profile: C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 2 [2023-05-14]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-05-14]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-10-16]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-10-16]
BRA Extension: (Brave NTP background images) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-09-21]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-10-16]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-10-16]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-10-16]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-09-21]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-10-16]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-10-16]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\mjgplcflbkgklplplbakkopkafojhbmk [2023-10-16]
BRA Extension: (Brave Ads Resources) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\obponfmfefkaeehakbehbnnlcbebebhd [2023-10-11]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-10-16]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [812992 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [833464 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9115584 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2023-06-14] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
R2 AxVirtualAHCISrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe [105888 2019-06-12] (Alcohol Soft -> Alcohol Soft Development Team)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.117\brave_vpn_helper.exe [3073048 2023-10-11] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.117\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [11338776 2023-10-11] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9183624 2021-09-29] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 IBMPMSVC; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmsvc.exe [850936 2022-11-24] (Lenovo -> Lenovo)
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\EasyResume.exe [2351296 2021-04-20] (Lenovo -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\LPlatSvc.exe [906232 2022-11-24] (Lenovo -> Lenovo)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
R2 SynaHlp; C:\WINDOWS\System32\SynaHelperService.exe [255984 2021-12-29] (Synaptics Incorporated -> Synaptics Incorporated.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\TPHKLOAD.exe [465192 2021-03-30] (Lenovo -> Lenovo Group Limited)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746728 2021-11-22] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.117\elevation_service.exe" [X]
S3 NMIndexingService; "C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe" [X]
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [33216 2021-12-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_50fee1227e96ec14\amdsafd.sys [100792 2021-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0376364.inf_amd64_5400fa1846a41a4e\B376294\amdkmdag.sys [82958752 2022-02-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [34416 2017-06-20] (Anvsoft Inc. -> AnvSoft Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [31472 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [240120 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [392928 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [297928 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [96520 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2023-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [39808 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [275224 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [559856 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [105408 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [80576 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [950856 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [708096 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [213352 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [319720 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [176032 2019-06-12] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-11-04] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-11-04] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_hwusbdev; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [109568 2021-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648 2021-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [226176 2021-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 IBMPMDRV; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmdrv.sys [53240 2022-11-24] (Lenovo -> Lenovo)
R1 PMDRVS; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\pmdrvs.sys [38904 2022-11-24] (Lenovo -> Lenovo)
S3 Rockusb; C:\WINDOWS\System32\drivers\rockusb.sys [69920 2017-06-07] (Fuzhou Rockchip Electronics Co., Ltd. -> Fuzhou Rockchip Electronics Co,Ltd.)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [203296 2019-10-26] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 USB28xxBGA; C:\WINDOWS\system32\DRIVERS\emBDA64.sys [576640 2007-08-08] (Microsoft Windows Hardware Compatibility Publisher -> eMPIA Technology, Inc.)
S3 USB28xxOEM; C:\WINDOWS\system32\DRIVERS\emOEM64.sys [54528 2007-08-08] (Microsoft Windows Hardware Compatibility Publisher -> eMPIA Technology, Inc.)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [239672 2021-11-22] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249584 2021-11-22] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [174776 2021-11-22] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2023-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498944 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
S2 CLFCL5.20; \SystemRoot\System32\drivers\CLFCL5.20\000.fcl [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-10-16 16:14 - 2023-10-16 16:14 - 000045639 _____ C:\Users\Admin\Downloads\FRST.txt
2023-10-16 16:14 - 2023-10-16 16:14 - 000000000 ____D C:\FRST
2023-10-16 16:13 - 2023-10-16 16:13 - 002383360 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2023-10-16 15:53 - 2023-10-16 15:53 - 000732238 _____ C:\WINDOWS\system32\perfh01B.dat
2023-10-16 15:53 - 2023-10-16 15:53 - 000139998 _____ C:\WINDOWS\system32\perfc01B.dat
2023-10-15 18:46 - 2023-10-15 18:46 - 000351374 _____ C:\Users\Admin\Downloads\World-Karate-Championship_ZX-Spectrum_EN.zip
2023-10-15 18:46 - 2023-10-15 18:46 - 000000000 ____D C:\Users\Admin\Downloads\World-Karate-Championship_ZX-Spectrum_EN
2023-10-15 11:36 - 2023-10-15 11:36 - 000000000 ____D C:\Users\Admin\Downloads\CCS64 V3.9.3
2023-10-15 11:20 - 2023-10-15 11:20 - 000076348 _____ C:\Users\Admin\Downloads\TARGETRE_07771_02.zip
2023-10-15 09:52 - 2023-10-15 19:00 - 000002508 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2023-10-15 09:51 - 2023-10-16 15:56 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-10-15 09:51 - 2023-10-15 19:00 - 000002596 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2023-10-11 19:41 - 2023-10-15 19:00 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-11 19:26 - 2023-10-16 15:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-11 19:13 - 2023-10-11 19:42 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2023-10-11 19:13 - 2023-10-11 19:42 - 000002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2023-10-11 19:13 - 2023-10-11 19:42 - 000002133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2023-10-11 19:13 - 2023-10-11 19:13 - 000002110 _____ C:\Users\Public\Desktop\Adobe Acrobat XI Pro.lnk
2023-10-11 18:57 - 2023-10-11 18:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\com.adobe.dunamis
2023-10-11 18:57 - 2023-10-11 18:57 - 000000000 ____D C:\Users\Admin\AppData\Local\SolidDocuments
2023-10-11 18:57 - 2023-10-11 18:57 - 000000000 ____D C:\Users\Admin\.ms-ad
2023-10-11 18:55 - 2023-10-11 18:55 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo
2023-10-11 18:54 - 2023-10-11 19:01 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-10-11 18:54 - 2023-10-11 18:54 - 000000000 ____D C:\Program Files\Adobe
2023-10-11 08:22 - 2023-10-11 08:22 - 000313272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2023-09-28 12:01 - 2023-10-11 08:54 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-09-28 11:52 - 2023-09-28 11:52 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-09-28 11:51 - 2023-09-28 11:51 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-09-28 11:51 - 2023-09-28 11:51 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-09-24 12:07 - 2023-09-24 12:07 - 000023151 _____ C:\Users\Admin\Downloads\ziadost-o-skoncenie-pracovneho-pomeru-dohodou.pdf
2023-09-21 16:55 - 2023-09-21 16:55 - 000187144 _____ C:\Users\Admin\Downloads\bitlockerkey.pdf
2023-09-21 16:00 - 2023-09-21 16:00 - 000187144 _____ C:\Users\Admin\Downloads\bitlocker.pdf
2023-09-21 13:48 - 2023-09-21 13:48 - 000000000 ____D C:\WINDOWS\PCHEALTH
2023-09-21 13:41 - 2023-09-21 13:41 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-09-21 13:23 - 2023-09-21 13:23 - 000002145 _____ C:\Users\Public\Desktop\Classic Menu 2010 Manager.lnk
2023-09-21 13:23 - 2023-09-21 13:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Menu for Office 2010 x64
2023-09-21 13:21 - 2023-09-21 13:21 - 000000000 ____D C:\Users\Admin\Desktop\Classic.Menu.for.Office.Enterprise.2010.4.0.86.64
2023-09-21 13:11 - 2023-09-21 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2023-09-21 13:11 - 2023-09-21 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2023-09-21 13:11 - 2023-09-21 13:11 - 000000000 ____D C:\Program Files\Microsoft Sync Framework
2023-09-21 13:10 - 2023-09-21 13:11 - 000000000 ____D C:\WINDOWS\SHELLNEW
2023-09-21 13:10 - 2023-09-21 13:10 - 000000000 __RHD C:\MSOCache
2023-09-21 13:10 - 2023-09-21 13:10 - 000000000 ____D C:\Program Files\Microsoft Analysis Services
2023-09-21 13:10 - 2023-09-21 13:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2023-09-21 13:10 - 2023-09-21 13:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-09-21 13:10 - 2023-09-21 13:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2023-09-21 13:02 - 2023-09-21 13:08 - 1426472960 _____ C:\Users\Admin\Downloads\MSO2010PP_x64_sk.iso
2023-09-21 13:02 - 2023-09-21 13:02 - 000155460 _____ C:\Users\Admin\Downloads\pm_1NskcHBGG1khn5NMAITrixNX.pdf
2023-09-16 13:59 - 2023-09-16 13:59 - 000000432 __RSH C:\ProgramData\ntuser.pol

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-10-16 15:57 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-16 15:56 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-16 15:56 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-16 15:56 - 2019-10-26 20:28 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-16 15:53 - 2022-11-04 17:09 - 001712392 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-16 15:53 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-10-16 15:48 - 2023-06-14 18:37 - 000000000 ____D C:\ProgramData\AVG
2023-10-16 15:48 - 2022-11-04 17:05 - 000003114 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-10-16 15:48 - 2022-11-04 17:05 - 000003078 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2023-10-16 15:48 - 2022-11-04 17:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-16 15:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-16 15:48 - 2022-04-19 19:03 - 000000947 _____ C:\WINDOWS\Tasks\EPSON L3060 Series Update {B5BD1615-84EC-451B-AF52-3EB40D8A8846}.job
2023-10-16 15:48 - 2021-02-09 15:55 - 000000000 ____D C:\Intel
2023-10-16 15:48 - 2019-11-15 22:23 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-10-16 15:48 - 2019-10-26 14:31 - 000000000 __SHD C:\Users\Admin\IntelGraphicsProfiles
2023-10-16 15:47 - 2020-05-28 23:31 - 000012288 ___SH C:\DumpStack.log.tmp
2023-10-16 15:47 - 2019-10-26 14:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-15 19:33 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-10-15 19:33 - 2019-10-26 14:30 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-10-15 19:00 - 2023-07-25 15:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-10-15 19:00 - 2023-06-14 18:38 - 000003044 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2023-10-15 19:00 - 2023-05-14 20:31 - 000003484 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{6C341597-39CD-4BFB-88D9-FACDADD42DF1}
2023-10-15 19:00 - 2023-05-14 20:31 - 000003260 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{D3D4014B-51F5-430D-BB02-FB42CDFD10BA}
2023-10-15 19:00 - 2023-04-30 11:54 - 000002248 _____ C:\WINDOWS\system32\Tasks\VM
2023-10-15 19:00 - 2022-11-04 17:05 - 000003560 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-15 19:00 - 2022-11-04 17:05 - 000003496 _____ C:\WINDOWS\system32\Tasks\EPSON L3060 Series Update {B5BD1615-84EC-451B-AF52-3EB40D8A8846}
2023-10-15 19:00 - 2022-11-04 17:05 - 000003394 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-10-15 19:00 - 2022-11-04 17:05 - 000003336 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-15 19:00 - 2022-11-04 17:05 - 000003170 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-10-15 19:00 - 2022-11-04 17:05 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2963285561-2800348544-3401091191-1001
2023-10-15 19:00 - 2022-11-04 17:05 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2963285561-2800348544-3401091191-1001
2023-10-15 19:00 - 2022-11-04 17:05 - 000002766 _____ C:\WINDOWS\system32\Tasks\Lenovo Power Management Driver PnP Task
2023-10-15 19:00 - 2022-11-04 17:05 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2023-10-15 19:00 - 2022-11-04 17:05 - 000002590 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-10-15 19:00 - 2022-11-04 17:05 - 000002562 _____ C:\WINDOWS\system32\Tasks\SmartShare
2023-10-15 19:00 - 2022-11-04 17:05 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2023-10-15 19:00 - 2022-11-04 17:05 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2023-10-15 18:55 - 2019-10-26 19:48 - 000000000 ____D C:\ProgramData\TEMP
2023-10-15 16:18 - 2022-11-04 16:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-15 13:22 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-15 12:45 - 2019-10-26 14:31 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-15 10:18 - 2023-06-14 18:41 - 000000000 ____D C:\Users\Admin\AppData\Local\AVG
2023-10-15 10:04 - 2021-01-01 19:14 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2023-10-15 09:58 - 2023-05-14 20:32 - 000002383 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-10-15 09:58 - 2023-05-14 20:32 - 000002342 _____ C:\Users\Public\Desktop\Brave.lnk
2023-10-15 09:58 - 2019-10-26 20:28 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-15 09:57 - 2020-08-17 15:24 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-15 09:57 - 2020-08-17 15:24 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-10-15 09:56 - 2020-05-28 23:12 - 000002378 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-11 19:37 - 2022-11-04 16:59 - 000582432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-11 19:26 - 2022-02-11 11:45 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-11 19:12 - 2019-10-27 07:47 - 000000000 ____D C:\ProgramData\Adobe
2023-10-11 19:12 - 2019-10-27 07:47 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-10-11 19:01 - 2019-10-26 13:55 - 000000000 ____D C:\ProgramData\Packages
2023-10-11 19:01 - 2019-10-26 13:38 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2023-10-11 18:57 - 2022-11-04 14:13 - 000000000 ____D C:\Users\Admin
2023-10-11 18:57 - 2019-10-26 13:38 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
2023-10-11 17:46 - 2019-10-26 14:30 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2023-10-11 17:20 - 2021-02-21 14:37 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-10-11 17:12 - 2019-10-26 13:38 - 000000000 ____D C:\Users\Admin\AppData\Local\ConnectedDevicesPlatform
2023-10-11 17:09 - 2019-10-26 13:49 - 000000000 ____D C:\Users\Admin\AppData\Local\PlaceholderTileLogoFolder
2023-10-11 08:54 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-11 08:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-11 08:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-11 08:53 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 08:50 - 2022-11-04 17:00 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 08:46 - 2019-10-26 14:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 08:25 - 2020-11-30 21:13 - 000000000 ____D C:\Users\Admin\AppData\Local\AMD_Common
2023-10-11 08:22 - 2023-06-14 18:38 - 000950856 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000708096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000559856 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000392928 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000319720 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000297928 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000275224 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000240120 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000105408 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000096520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000080576 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000039808 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000031472 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2023-10-11 08:22 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-11 08:21 - 2019-10-26 14:25 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-28 19:18 - 2020-03-01 23:40 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2023-09-28 12:20 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-09-28 12:18 - 2019-10-26 20:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-09-28 12:16 - 2021-12-01 18:50 - 000000000 ____D C:\Users\Admin\AppData\Local\Bluestacks
2023-09-28 12:01 - 2022-05-07 12:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-28 12:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-09-28 09:11 - 2019-10-26 19:50 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Word
2023-09-28 09:10 - 2019-11-16 14:56 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Excel
2023-09-21 14:14 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\System
2023-09-21 14:14 - 2019-03-19 06:49 - 000000292 _____ C:\WINDOWS\win.ini
2023-09-21 14:13 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-09-21 13:23 - 2019-10-26 19:48 - 000000000 ____D C:\Program Files\Classic Menu for Office 2010 x64
2023-09-21 13:11 - 2022-11-04 14:02 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-09-21 13:11 - 2019-10-26 19:44 - 000000000 ____D C:\Program Files\Microsoft Office
2023-09-21 10:46 - 2023-08-05 19:47 - 000000000 ____D C:\Users\Admin\Knižnica Calibre
2023-09-21 10:46 - 2023-08-05 19:46 - 000000000 ____D C:\Users\Admin\AppData\Roaming\calibre
2023-09-16 13:48 - 2022-07-02 10:47 - 000000130 _____ C:\Users\Admin\Downloads\rufus.ini

==================== Files in the root of some directories ========

2017-01-14 13:37 - 2017-01-14 13:37 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2019-07-04 13:48 - 2019-07-04 13:48 - 008517080 _____ (Alcohol Soft Development Team) C:\Users\Admin\AppData\Roaming\Alcohol120_retail_2.1.0.20601.exe
2020-02-17 22:25 - 2023-06-14 17:49 - 000099384 _____ () C:\Users\Admin\AppData\Roaming\inst.exe
2019-07-04 21:11 - 2019-07-04 21:11 - 060881324 _____ (MiniTool Solution Ltd.) C:\Users\Admin\AppData\Roaming\MiniTool.Partition.Wizard.v11.5.0.exe
2019-05-30 07:14 - 2019-05-30 07:14 - 038639862 _____ (Movavi Software Limited) C:\Users\Admin\AppData\Roaming\Movavi.Video.Converter.v19.3.0.Premium.exe
2020-02-17 22:25 - 2023-06-14 17:49 - 000007859 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.cat
2020-02-17 22:25 - 2023-06-14 17:49 - 000001167 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.inf
2020-02-17 22:25 - 2023-06-14 17:49 - 000000055 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.log
2020-02-17 22:25 - 2023-06-14 17:49 - 000082816 _____ (VSO Software) C:\Users\Admin\AppData\Roaming\pcouffin.sys
2023-03-26 12:57 - 2023-03-26 12:57 - 000000128 _____ () C:\Users\Admin\AppData\Roaming\winscp.rnd
2020-01-01 20:51 - 2020-01-01 20:51 - 000000060 _____ () C:\Users\Admin\AppData\Roaming\~SiMPLEX.ini
2022-02-18 17:59 - 2022-02-18 17:59 - 000004096 ____H () C:\Users\Admin\AppData\Local\keyfile3.drm
2023-10-15 10:02 - 2023-10-15 10:02 - 000000000 _____ () C:\Users\Admin\AppData\Local\oobelibMkey.log
2022-11-29 19:31 - 2022-11-29 19:31 - 000005012 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel
2020-02-16 15:47 - 2020-02-16 15:47 - 000007666 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
2022-06-24 20:43 - 2022-06-24 20:43 - 000000000 _____ () C:\Users\Admin\AppData\Local\{5E934EAB-DC3D-461C-9208-E94FFFE80EC1}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by Admin (16-10-2023 16:15:31)
Running from C:\Users\Admin\Downloads
Microsoft Windows 11 Pro Version 22H2 22621.2428 (X64) (2022-11-04 15:05:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Admin (S-1-5-21-2963285561-2800348544-3401091191-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2963285561-2800348544-3401091191-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2963285561-2800348544-3401091191-503 - Limited - Disabled)
Guest (S-1-5-21-2963285561-2800348544-3401091191-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2963285561-2800348544-3401091191-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.23 - Adobe Systems)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.3.0.61 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601052}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.10.2 - Advanced Micro Devices, Inc.)
Atari800Win PLus 4.1 (HKLM-x32\...\Atari800Win PLus) (Version: 4.1 - Marcin Lewandowski)
AVG AntiVirus Free (HKLM\...\AVG Antivirus) (Version: 23.9.3302 - AVG Technologies)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1634.4 - AVG Technologies) Hidden
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 118.1.59.117 - Autori prehliadača Brave)
C64 Forever (HKLM-x32\...\{197F0A2B-B05B-4E1B-A833-9E769F8B70AE}) (Version: 8.3.7 - Cloanto IT srl)
Classic Menu for Office Enterprise 2010 x64 v4.0.0.41 (HKLM\...\{9A7CEBDF-37E2-4B63-A384-2A9FD5CE0A80}_is1) (Version: 4.0.0.41 - Addintools)
Classic Paint (HKLM\...\Classic Paint_is1) (Version: 1.0 - Winaero)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.) Hidden
DOSBox SVN-Daum version 20150124 (HKLM-x32\...\{AA388FA6-2142-4E89-B75E-C3315BA37171}_is1) (Version: 20150124 - )
DOSBox-X 2023.09.01 (32/64bit for Windows) (HKLM\...\{63E5D76D-0092-415C-B97C-E0D2F4F6D2EC}_is1) (Version: 2023.09.01 (32/64bit for Windows) - joncampbell123 [DOSBox-X Team])
EPSON L3060 Series Printer Uninstall (HKLM\...\EPSON L3060 Series) (Version: - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM-x32\...\{AA6AE72A-371E-4454-9066-3D02BB4BC4E9}) (Version: 3.3.1.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{14898485-6509-496B-8C30-D5DB8C1C8639}) (Version: 4.6.3 - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
Fotogaléria (HKLM-x32\...\{5B87607E-E781-49C5-9891-80990E45BCA1}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Gmail (HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\8093e4548046305ce6dedd23b686e1fe) (Version: 1.0 - Google\Chrome)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 117.0.5938.152 - Google LLC)
HL-2130 (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.1.6.0 - Brother Industries, Ltd.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7810 - Intel Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{7D4998B3-AC68-4815-AC47-5A1969D91E30}) (Version: 17.5.0.1017 - Intel Corporation)
Java 8 Update 271 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180271F0}) (Version: 8.0.2710.9 - Oracle Corporation)
K-Lite Codec Pack 15.9.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.9.5 - KLCP)
Lenovo Service Bridge (HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.2.14 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.08.01.0009 - Lenovo)
LS-USBMX1/2/3 Steering... (HKLM-x32\...\{CC7F0FAA-9768-4CE2-B133-72C66492EC06}) (Version: 1.00.0000 - GASIA)
LS-USBMX1/2/3 Steeringˇ­ (HKLM-x32\...\{AEC7CD2E-2BB5-40C3-9592-078F64677E6C}) (Version: 1.00.0000 - GASIA)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft Office Access MUI (Slovak) 2010 (HKLM\...\{90140000-0015-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Slovak) 2010 (HKLM\...\{90140000-0016-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Slovak) 2010 (HKLM\...\{90140000-00BA-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Slovak) 2010 (HKLM\...\{90140000-0044-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Slovak) 2010 (HKLM\...\{90140000-00A1-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Slovak) 2010 (HKLM\...\{90140000-001A-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Slovak) 2010 (HKLM\...\{90140000-0018-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (Czech) 2010 (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Hungarian) 2010 (HKLM\...\{90140000-001F-040E-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (HKLM\...\{90140000-001F-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Slovak) 2010 (HKLM\...\{90140000-002C-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Slovak) 2010 (HKLM\...\{90140000-0019-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Slovak) 2010 (HKLM\...\{90140000-0043-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Slovak) 2010 (HKLM\...\{90140000-006E-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Slovak) 2010 (HKLM\...\{90140000-001B-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31326 (HKLM-x32\...\{2d507699-404c-4c8b-a54a-38e352f32cdd}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 (HKLM-x32\...\{817e21c1-6b3a-4bc1-8c49-67e4e1887b3a}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31326 (HKLM\...\{38624EB5-356D-4B08-8357-C33D89A5C0C5}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31326 (HKLM\...\{C96241EA-9900-4FE8-85B3-1E238D509DF6}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\...\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31326 (HKLM-x32\...\{46E11E7F-01E1-44D0-BB86-C67342D253DD}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{0CD05078-D4F3-4006-8726-B01E10A89B28}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 118.0.2 (x64 sk)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla)
MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (HKLM\...\{E9FA781F-3E80-4399-825A-AD3E11C28C77}) (Version: 16.4.1109.0912 - Microsoft) Hidden
neroxml (HKLM-x32\...\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}) (Version: 1.0.0 - Nero AG) Hidden
OEM Application Profile (HKLM-x32\...\{3DEE814D-F1DB-315D-E627-63B6B600643A}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Oracle VM VirtualBox 6.1.30 (HKLM\...\{9F1FFDC2-9B49-41F3-B6F1-18DC368D6CA2}) (Version: 6.1.30 - Oracle Corporation)
Photo Common (HKLM-x32\...\{D18F29F4-3609-4FBD-8A76-57B6AC3404F3}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Príručky EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.23.0 - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUS_{235F521F-C627-4957-A641-C4C161F78531}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040E-1000-0000000FF1CE}_Office14.PROPLUS_{8BAB29CB-1981-4361-B95D-094B49696E38}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-041B-1000-0000000FF1CE}_Office14.PROPLUS_{2E7C03CB-FE0A-4B95-BA37-742CD596760C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-041B-1000-0000000FF1CE}_Office14.PROPLUS_{3BB91E92-6A83-40BC-96AA-19EBAF45EAFD}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-041B-1000-0000000FF1CE}_Office14.PROPLUS_{AB13A482-50B6-48B4-A741-C49AAB6001FE}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-041B-1000-0000000FF1CE}_Office14.PROPLUS_{CDA7DE03-9607-444C-9CEB-EF677753373A}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-041B-1000-0000000FF1CE}_Office14.PROPLUS_{0E309301-DBF3-4469-9A89-914AFEF80A69}) (Version: - Microsoft) Hidden
Silent Hunter 1.31 Commander's Edition (HKLM-x32\...\Silent Hunter 1.31 Commander's Edition) (Version: - )
Silent Hunter version 1.31 (HKLM-x32\...\{6811F362-78ED-4513-980F-7817B4AD5626}_is1) (Version: 1.31 - Strategic Simulations, Inc.)
Software Director (HKLM-x32\...\Cloanto Software Director) (Version: 7.0.1.0 - Cloanto Corporation)
Spectaculator 8.0 (HKLM-x32\...\{B21AE9DA-E837-4F82-B061-7848B4F3096B}) (Version: 8.0.0.3092 - spectaculator.com)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.14.5 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.01 - Ghisler Software GmbH)
TouchScan (HKLM-x32\...\{946E0667-D92D-4A59-B22D-A9B51412CAC1}) (Version: 2.7.1 - OCTech, LLC)
Windows Driver Package - ACTIA Automotive ACTIA USB Devices Driver Installation Media (06/16/2010 1.00.00) (HKLM\...\06330AEC489EF74CA815EB51EB0BFB271730A066) (Version: 06/16/2010 1.00.00 - ACTIA Automotive)
Windows Driver Package - Lenovo Monitor (12/26/2018 6.11.0.0) (HKLM\...\11B85A6099ABC2C6FA88A3930163B4D7F76529B2) (Version: 12/26/2018 6.11.0.0 - Lenovo)
Windows Driver Package - libusb-win32 WorldCup Device (02/23/2013 1.2.6.0) (HKLM\...\607E81836F3E58EDC7289F7B7047149AE2C7F301) (Version: 02/23/2013 1.2.6.0 - libusb-win32)
Windows Driver Package - libwdi (WinUSB) USBDevice (04/03/2019 6.1.7600.16385) (HKLM\...\513EF6948500F4B0FEC81BD25E607A6B5354CE8D) (Version: 04/03/2019 6.1.7600.16385 - libwdi)
Windows Driver Package - STMicroelectronics (usbser) Ports (04/25/2010 1.3.1) (HKLM\...\1628ECA16EA833D7F30DD35215E306FAD333DF83) (Version: 04/25/2010 1.3.1 - STMicroelectronics)
Windows Live Communications Platform (HKLM-x32\...\{41C61308-6CFD-4D54-AB6A-7136ED08A18E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\{47AC83D4-C2CE-4F1F-8494-FB08066B38E3}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (HKLM-x32\...\{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (HKLM-x32\...\{D1893000-EA77-493C-8DDD-E262436E959B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (HKLM-x32\...\{2F3E0052-438D-4D42-873C-94223F25FF7A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Packages:
=========
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.40031.0_x64__0a9344xs7nr4m [2022-08-31] (Advanced Micro Devices Inc.) [Startup Task]
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt [2023-09-14] (INTEL CORP) [Startup Task]
DuckDuckGo -> C:\Program Files\WindowsApps\DuckDuckGo.DesktopBrowser_0.53.1.0_x64__ya2fgkz3nks94 [2023-09-28] (DuckDuckGo)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-19] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-10-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-10-07] (Microsoft Corporation) [MS Ad]
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-10-11] (Microsoft Corporation)
Montezuma's Revenge -> C:\Program Files\WindowsApps\NormalDistributionLLC.MontezumasRevenge_1.21.2.0_x86__6ek9g4kx6q6tp [2023-07-18] (Normal Distribution LLC)
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.16.165.0_x64__43tkc6nmykmb6 [2023-09-21] (Ookla)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-10-11] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2963285561-2800348544-3401091191-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => No File
CustomCLSID: HKU\S-1-5-21-2963285561-2800348544-3401091191-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> "C:\Users\Admin\AppData\Local\Microsoft\Teams\current\Teams.exe" --toast => No File
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-05-09] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers2-x32: [AlcoholShellEx] -> {32020A01-506E-484D-A2A8-BE3CF17601C3} => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxShlex.dll [2014-09-06] (Alcohol Soft -> Alcohol Soft Development Team)
ContextMenuHandlers2: [AlcoholShellEx64] -> {AF67B665-D752-424E-9A03-C7C218F2844F} => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxShlEx64.dll [2014-09-06] (Alcohol Soft -> Alcohol Soft Development Team)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-05-09] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2022-02-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Admin\Desktop\Gmail.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\Admin\Desktop\Profil 1 - Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Gmail.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm

==================== Loaded Modules (Whitelisted) =============

2021-04-21 04:21 - 2021-04-21 04:21 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-09-05 01:15 - 2017-09-05 01:15 - 004396032 _____ (Microsoft Corporation) [File not signed] C:\Program Files\AMD\CNext\CNext\D3DCOMPILER_47.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000031232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000415232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001455104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001227776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 006947328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000740352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000123392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001110528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000326656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 003798528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000440832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000054784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 004255744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000171520 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 001128448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000206336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000334336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000396800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 102854656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000133120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 005611008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000210432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 002877440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000056832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000290816 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000336896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000134144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000106496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000045568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-04-21 04:21 - 2021-04-21 04:21 - 000093184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:66AA0486 [101]
AlternateDataStreams: C:\ProgramData\TEMP:728B799F [372]
AlternateDataStreams: C:\ProgramData\TEMP:A5C00DEE [193]
AlternateDataStreams: C:\ProgramData\TEMP:CD30FA91 [362]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll => No File
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\ssv.dll [2020-10-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\jp2ssv.dll [2020-10-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll No File
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\sharepoint.com -> hxxps://zszlatarv-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2020-12-08 23:12 - 000000989 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 i2am.nero.com
127.0.0.1 ocsp.globalsign.com
127.0.0.1 ocsp2.globalsign.com
127.0.0.1 iam.nero.com
127.0.0.1 2.19.38.243

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\Pictures\Saved Pictures\DSC100679324.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "TVR Scheduler.lnk"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "PowerDVD20Agent"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Nero BackItUp"
HKLM\...\StartupApproved\Run32: => "PowerDVD20Agent"
HKLM\...\StartupApproved\Run32: => "DriveSpan"
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\StartupApproved\StartupFolder: => "Linux Mint - odkaz.lnk"
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\StartupApproved\Run: => "AlcoholAutomount"
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\StartupApproved\Run: => "CyberlinkPowerPlayerMediaServer"
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\StartupApproved\Run: => "CloantoSoftwareDirector"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{A038D7F7-0E99-4DDF-AE4A-31E9F8F13DF2}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{E80540B0-F56C-4FD1-BF08-C4015C669ADB}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AA28314E-A6A3-4AAA-A447-39736F21507B}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21323.200.1078.109_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{25B5673A-23CB-40AC-9C0D-4357D9508B30}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21323.200.1078.109_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{00548888-167F-4A38-A177-7E18AF2E4A5C}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{E02C0672-65F5-48F1-8332-C9FBE79175C7}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{C9A61B8D-BCE2-4392-8F2A-26278713C0D1}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\Common\dynamic_transcode.exe => No File
FirewallRules: [{E432653E-7546-41DA-AB61-30C080557E70}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\Common\CLMediaServer\clmediaserver.exe => No File
FirewallRules: [{F0B07117-B6F6-4B6C-AC9A-256EE11E594F}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\CastingStation.exe => No File
FirewallRules: [{C34773FA-A48A-43B0-BB0C-A2C7F8AE23C5}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\Movie\PowerDVDMovie.exe => No File
FirewallRules: [{1F0D85E5-F0B0-4AEA-ADBD-7A05ABB47CD8}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\PowerDVD20Agent.exe => No File
FirewallRules: [{9B198C91-C423-4A23-B184-BA343873A788}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\ShareModule32\Kernel\DMS\CLMSServerPDVD20.exe => No File
FirewallRules: [{8129CFA8-089D-4B00-9E72-1705E00A6AEF}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\PowerDVD.exe => No File
FirewallRules: [{A40C1807-8ED8-4955-A994-D2F57F2F3A2E}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe => No File
FirewallRules: [{4284A4C9-355B-456A-8D3C-D727D8A2C041}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe => No File
FirewallRules: [{67E5A9D9-A096-4A1D-AEB2-DA94A2E1826E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{692903FC-8286-447B-A273-BAE3B804D8A5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{98D51E4B-799E-4C6A-B302-EF979DD9ED7D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DE58B9EF-3DBE-4067-B93F-782766948477}] => (Allow) LPort=2869
FirewallRules: [{40033569-838B-49F4-ABFC-264B24B7F79B}] => (Allow) LPort=1900
FirewallRules: [{BF3DE490-2C1A-4522-87C0-CA7E0D38589D}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe => No File
FirewallRules: [{3D6918A1-95FE-4C81-8750-764D4E579E7A}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe => No File
FirewallRules: [{883B611E-4F10-414D-A358-6BD246FB60D9}] => (Allow) C:\Users\Admin\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => No File
FirewallRules: [{B3D04240-5D8F-4FA5-A650-BBDB8561A3CF}] => (Allow) C:\Users\Admin\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => No File
FirewallRules: [{E1587FBF-8742-4D12-B7CD-58EEC2C99DF1}] => (Allow) F:\install\Data\Disk1\setup.exe => No File
FirewallRules: [{56157B54-B257-4EB0-8843-00F7892C9E84}] => (Allow) F:\install\Data\Disk1\setup.exe => No File
FirewallRules: [{7CFF22B0-9D0E-4EBA-B320-21FC877E0553}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.)
FirewallRules: [{D9B770CD-D8CA-4ECE-93A3-D911B316EFD1}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.)
FirewallRules: [{442E0CB7-2A92-4F0E-BE3B-76FF74456B39}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{0EC20E87-6E0B-4716-AB60-712A89F22433}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe => No File
FirewallRules: [{7B38E780-9F37-446B-9857-B38061677167}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [{09C71DAD-6893-4BA3-AB23-A78DEC7985C0}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe => No File
FirewallRules: [{B5330301-BC9A-44FE-AD09-EE7538F92E2D}] => (Allow) C:\Users\Admin\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{827F1503-80F9-4D52-BBCA-5727FAF08A83}] => (Allow) C:\Users\Admin\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{EDC3FE2E-CDFD-4548-8D99-5B5F3459E765}] => (Allow) C:\Users\Admin\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{9EFC6004-E5A3-433B-9B22-A38282CD59C1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6CD92A2F-5040-45B1-8580-CC341B21CB30}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{96B9DF49-119E-4B37-8F8A-9FFD266B3DD5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E526878B-77FE-4F35-B6BA-20F68A4806A0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{61B3F5AD-B5A3-4D03-A20C-55AAF8734464}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe => No File
FirewallRules: [{C06F3AF2-E693-4150-93D3-DB22066EA427}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe => No File
FirewallRules: [{6747F28D-11B1-4E0B-AE7A-220D8234B766}] => (Allow) LPort=1688
FirewallRules: [{119B4E52-9416-4F16-A9FF-9ED88AA787C4}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{20466E01-C915-477B-8A5F-BAA1325958B4}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{D072D6D1-7167-4FE3-8DD0-EC85A610491C}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{3996E05E-EB33-4B86-BEC7-3DC631008683}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{4DB6604E-D8F2-4EEA-BC98-E438C2EC3C3D}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{24AF0537-5722-435F-8149-CB38C81703FD}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => No File
FirewallRules: [{2587CB86-C94B-4B58-8575-19F636616817}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{1502E4B6-6112-40F4-B300-337E943158CF}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{38BDF1FF-41E2-40BB-8536-98183A0BA3D3}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{12785398-4ABD-4B45-9AFE-14AE8ED7E80E}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [TCP Query User{E47E9F13-32FB-4261-8AA9-90A5022B95A0}C:\program files (x86)\far cry\bin32\farcry.exe] => (Block) C:\program files (x86)\far cry\bin32\farcry.exe => No File
FirewallRules: [UDP Query User{1766C9A6-64DA-4D31-88A1-CBE0433D4801}C:\program files (x86)\far cry\bin32\farcry.exe] => (Block) C:\program files (x86)\far cry\bin32\farcry.exe => No File
FirewallRules: [{C8344760-3CD9-437F-8256-3F1C083DD9B0}] => (Allow) C:\Program Files\WindowsApps\DuckDuckGo.DesktopBrowser_0.53.1.0_x64__ya2fgkz3nks94\WindowsBrowser\WebView2\msedgewebview2.exe (Duck Duck Go, Inc. -> Microsoft Corporation)
FirewallRules: [{A92AE2DF-D69F-4B17-87F2-52889565A2C2}] => (Allow) C:\Program Files\WindowsApps\DuckDuckGo.DesktopBrowser_0.53.1.0_x64__ya2fgkz3nks94\WindowsBrowser\WebView2\msedgewebview2.exe (Duck Duck Go, Inc. -> Microsoft Corporation)
FirewallRules: [{8A75C008-2759-4BB2-957A-C498D8D039E5}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{856012B1-E9D7-4DCB-B996-CAC76811B2A5}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{8BDFC59A-EA5D-4313-9E41-28A8AD92B361}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

11-10-2023 19:12:32 Installed Adobe Acrobat XI Pro.
15-10-2023 13:22:17 Windows Update

==================== Faulty Device Manager Devices ============

Name: Microphone Array (Conexant SmartAudio HD)
Description: Zvukový koncový bod
Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e}
Manufacturer: Microsoft
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Integrated Camera
Description: Integrated Camera
Class Guid: {ca3e7ab9-b4c3-4ae6-8251-579ef933890f}
Manufacturer: SunplusIT
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: ========================

Application errors:
==================
Error: (10/16/2023 03:50:54 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/16/2023 03:50:41 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (10/16/2023 03:49:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent

Error: (10/15/2023 06:34:09 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/15/2023 06:33:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent

Error: (10/15/2023 02:45:31 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent

Error: (10/15/2023 12:46:17 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/15/2023 11:50:32 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent


System errors:
=============
Error: (10/16/2023 03:50:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Intel® SGX AESM zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (10/16/2023 03:50:04 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Intel® SGX AESM bol dosiahnutý časový limit (30000 ms).

Error: (10/16/2023 03:48:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby CLFCL5.20 zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.

Error: (10/15/2023 07:32:50 PM) (Source: DCOM) (EventID: 10010) (User: THINKPAD-E480)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.

Error: (10/15/2023 07:32:50 PM) (Source: DCOM) (EventID: 10010) (User: THINKPAD-E480)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.

Error: (10/15/2023 09:50:03 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Intel® SGX AESM zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (10/15/2023 09:50:03 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Intel® SGX AESM bol dosiahnutý časový limit (30000 ms).

Error: (10/15/2023 09:48:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby CLFCL5.20 zlyhalo kvôli nasledujúcej chybe:
The system cannot find the file specified.


Windows Defender:
================
Date: 2023-06-12 17:12:21
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-06-08 08:19:45
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-05-30 20:51:47
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-05-17 21:28:27
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-05-14 20:53:44
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]

Date: 2023-03-23 16:34:03
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2023-02-17 14:31:27
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.381.3589.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19900.2
Error code: 0x80240016
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.

CodeIntegrity:
===============
Date: 2023-10-16 15:58:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2023-10-16 15:56:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVG\Antivirus\x86\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO R0PET68W (1.45 ) 04/29/2021
Motherboard: LENOVO 20KN0067XS
Processor: Intel(R) Core(TM) i5-8250U CPU @ 1.60GHz
Percentage of memory in use: 62%
Total physical RAM: 8046.11 MB
Available physical RAM: 3039.68 MB
Total Virtual: 16238.11 MB
Available Virtual: 9292.66 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:236.51 GB) (Free:61.69 GB) (Model: SAMSUNG MZVLB256HAHQ-000L7) (Protected) NTFS
Drive d: (Data) (Fixed) (Total:931.39 GB) (Free:556.1 GB) (Model: WDC WD10SPZX-08Z10) NTFS
Drive e: () (Removable) (Total:58.87 GB) (Free:18.28 GB) FAT32

\\?\Volume{ce71c45c-f435-44a1-ac88-bed49fe72fff}\ () (Fixed) (Total:0.72 GB) (Free:0.08 GB) NTFS
\\?\Volume{0222e313-8bbb-4057-802e-02fb443761e1}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.48 GB) NTFS
\\?\Volume{8c4f1fd0-7fb6-4615-887e-479d990a2e90}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 240C9B53)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 240C84B7)

Partition: GPT.

==========================================================
Disk: 2 (Size: 58.9 GB) (Disk ID: 033BB677)
Partition 1: (Not Active) - (Size=58.9 GB) - (Type=FAT32)

==================== End of Addition.txt =======================

[JaRon]

ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\MountPoints2: {c6d4855c-f817-11e9-a996-a0a4c54b29f4} - "H:\SETUP.EXE" 
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {49A231EF-32FD-4AEE-9AD5-298C108AC4B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-26] (Google Inc -> Google LLC)
Task: {93E7C8DE-512C-4E35-806A-F8B43B5E2A5A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-26] (Google Inc -> Google LLC)
Task: {1DE4C278-8001-49E1-A963-2625E2EE2C14} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\Windows\System32\ibmpmsvc.exe -PnPTask (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {99CEE1DF-DBA5-42B6-9817-FCD03B518DAA} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (No File)
Task: {6F5CE62F-9CD2-4EDA-99F1-CC37305443AF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {5A55A275-5808-472D-949D-54542622A688} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {285A0803-B5B8-43DE-AA04-D2CA48090C4A} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\SystemInfo => %appdata%\\systemdiag\\sysinfo.exe -st -tu 4 (No File)
Task: {5B6902DE-15CE-4559-B431-0F927AA254BD} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe tray (No File)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.117\elevation_service.exe" [X]
S3 NMIndexingService; "C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe" [X]
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
S2 CLFCL5.20; \SystemRoot\System32\drivers\CLFCL5.20\000.fcl [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
AlternateDataStreams: C:\ProgramData\TEMP:66AA0486 [101]
AlternateDataStreams: C:\ProgramData\TEMP:728B799F [372]
AlternateDataStreams: C:\ProgramData\TEMP:A5C00DEE [193]
AlternateDataStreams: C:\ProgramData\TEMP:CD30FA91 [362]
FirewallRules: [{00548888-167F-4A38-A177-7E18AF2E4A5C}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{E02C0672-65F5-48F1-8332-C9FBE79175C7}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{C9A61B8D-BCE2-4392-8F2A-26278713C0D1}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\Common\dynamic_transcode.exe => No File
FirewallRules: [{E432653E-7546-41DA-AB61-30C080557E70}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\Common\CLMediaServer\clmediaserver.exe => No File
FirewallRules: [{F0B07117-B6F6-4B6C-AC9A-256EE11E594F}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\CastingStation.exe => No File
FirewallRules: [{C34773FA-A48A-43B0-BB0C-A2C7F8AE23C5}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\Movie\PowerDVDMovie.exe => No File
FirewallRules: [{1F0D85E5-F0B0-4AEA-ADBD-7A05ABB47CD8}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\PowerDVD20Agent.exe => No File
FirewallRules: [{9B198C91-C423-4A23-B184-BA343873A788}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\ShareModule32\Kernel\DMS\CLMSServerPDVD20.exe => No File
FirewallRules: [{8129CFA8-089D-4B00-9E72-1705E00A6AEF}] => (Allow) C:\Program Files\CyberLink\PowerDVD20\PowerDVD.exe => No File
FirewallRules: [{A40C1807-8ED8-4955-A994-D2F57F2F3A2E}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe => No File
FirewallRules: [{4284A4C9-355B-456A-8D3C-D727D8A2C041}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe => No File
FirewallRules: [{BF3DE490-2C1A-4522-87C0-CA7E0D38589D}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe => No File
FirewallRules: [{3D6918A1-95FE-4C81-8750-764D4E579E7A}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe => No File
FirewallRules: [{883B611E-4F10-414D-A358-6BD246FB60D9}] => (Allow) C:\Users\Admin\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => No File
FirewallRules: [{B3D04240-5D8F-4FA5-A650-BBDB8561A3CF}] => (Allow) C:\Users\Admin\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => No File
FirewallRules: [{E1587FBF-8742-4D12-B7CD-58EEC2C99DF1}] => (Allow) F:\install\Data\Disk1\setup.exe => No File
FirewallRules: [{56157B54-B257-4EB0-8843-00F7892C9E84}] => (Allow) F:\install\Data\Disk1\setup.exe => No File
FirewallRules: [{119B4E52-9416-4F16-A9FF-9ED88AA787C4}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{20466E01-C915-477B-8A5F-BAA1325958B4}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{D072D6D1-7167-4FE3-8DD0-EC85A610491C}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{3996E05E-EB33-4B86-BEC7-3DC631008683}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{4DB6604E-D8F2-4EEA-BC98-E438C2EC3C3D}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{24AF0537-5722-435F-8149-CB38C81703FD}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => No File


EmptyTemp:
Reboot:
End

•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

+ mas tam AVG a ESET - jeden prec !

[Jackal99]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by Admin (administrator) on THINKPAD-E480 (LENOVO 20KN0067XS) (24-10-2023 14:36:30)
Running from C:\Users\Admin\Downloads\FRST64.exe
Loaded Profiles: Admin
Platform: Microsoft Windows 11 Pro Version 22H2 22621.2428 (X64) Language: Slovenčina (Slovensko)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler64.exe
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_bddd75c806b28a5c\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_bddd75c806b28a5c\igfxEM.exe
(DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN32EE~1.INF\driver\shtctky.exe
(DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN32EE~1.INF\driver\tposd.exe
(DriverStore\FileRepository\u0376364.inf_amd64_5400fa1846a41a4e\B376294\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0376364.inf_amd64_5400fa1846a41a4e\B376294\atieclxx.exe
(explorer.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0376364.inf_amd64_5400fa1846a41a4e\B376294\atiesrxx.exe
(services.exe ->) (Alcohol Soft -> Alcohol Soft Development Team) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_bddd75c806b28a5c\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_677610f31eedc829\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4c62167d8982367b\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4c62167d8982367b\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\tphkload.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\EasyResume.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmsvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (StarWind Software) [File not signed] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated.) C:\Windows\System32\SynaHelperService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [292792 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.120\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [11338776 2023-10-18] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\Run: [CloantoSoftwareDirector] => C:\Program Files (x86)\Common Files\Cloanto\Software Director\softdir.exe [351040 2020-05-15] (Cloanto Corporation -> Cloanto Corporation)
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe [2533880 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON L3060 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBR5E.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-23] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.120\Installer\chrmstp.exe [2023-10-23] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Linux Mint - odkaz.lnk [2023-04-30]
ShortcutTarget: Linux Mint - odkaz.lnk -> D:\Mint\Linux Mint.vmx () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {4118405B-5039-4783-9FEF-9ED07DE87B0F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {EA4285A2-D705-4767-B8F9-F37124958390} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {0287D81A-D589-45E9-B81A-338D286DD809} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {C13177BA-55BE-43D8-9E39-1C2C94CB3463} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {006A415E-0CE5-4FA5-869B-F65E7FDD4D55} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {2D3F535F-F7C6-44E0-B6CC-A5635D8F5A58} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5172160 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {02DD45B9-C5DD-470F-B8C7-9F4400AFA1CB} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-08-02] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {E70435A0-A05A-47CC-AE76-E836AFDA4CFD} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{D3D4014B-51F5-430D-BB02-FB42CDFD10BA} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {57D8F3CC-F63E-4898-94EC-9CE94BFE2F6A} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{6C341597-39CD-4BFB-88D9-FACDADD42DF1} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {F67EA4BA-EA44-4AEA-8480-3C805DF49A24} - System32\Tasks\CreateExplorerShellUnelevatedTask => c:\windows\explorer.exe [5261576 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
Task: {20E96594-6A28-43FF-9BCB-0B8152CE4D68} - System32\Tasks\EPSON L3060 Series Update {B5BD1615-84EC-451B-AF52-3EB40D8A8846} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR5E.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {B79B201A-C5DB-41F8-8D79-C33875CC06E3} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2963285561-2800348544-3401091191-1001 => C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {8536A16D-7866-4B3E-934C-133482FA26E2} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [129016 2022-12-05] (Lenovo -> Lenovo)
Task: {15ECB19A-3A10-43FE-89EE-9C9F92DCEC83} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62136 2021-04-20] (Lenovo -> )
Task: {DFD55CDA-6ED2-42CC-BBAA-42EBCB3A16D9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {165B7F73-C4F1-44BF-9F45-5E6CE2BE1A31} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21862256 2021-09-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {58A78C26-D19B-4F59-BB7C-3408E60645E5} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {A5CB401B-FA76-418F-B3FE-6906E4383C02} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
Task: {2ACE66A4-CD8A-4F42-8FFA-ACEBB45C3454} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [File not signed]
Task: {08F85811-4589-45A9-AC77-851E4DE70093} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {0DEE45F2-1D84-4D82-91F5-A09DEE1D6F28} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-10-11] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {10E2A30B-41C4-4B65-A61A-89E81BE09939} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-10-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {54785898-FDAD-4AA5-92F0-2F177493C4B0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {82578C06-52B9-49D9-914A-03DF35F1DA19} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2021-10-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {E5456DD6-6349-4976-825C-47488262EBEC} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {C93BFE70-E987-4403-8227-87C48DFCE00F} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {8FC2E6E5-4D13-4413-94D4-1007F0C66CD4} - System32\Tasks\VM => vmrun -> -T ws start "D:\Mint\Linux Mint.vmx"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON L3060 Series Update {B5BD1615-84EC-451B-AF52-3EB40D8A8846}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR5E.EXE:/EXE:{B5BD1615-84EC-451B-AF52-3EB40D8A8846} /F:UpdateWORKGROUP\THINKPAD-E480$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a1b2c4aa-87d1-43b4-83c9-f39619913c4c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{dd63ba0b-8b16-4c4d-83ce-8f0fe85ae711}: [DhcpNameServer] 10.1.100.1 8.8.8.8

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-24]
Edge HomePage: Default -> hxxp://www.google.sk/
Edge StartupUrls: Default -> "hxxp://www.google.sk/"
Edge Extension: (Double-click Image Downloader) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkijmpolkanhdehnlnabfooghjdokakc [2021-11-15]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-04]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-15]
Edge Extension: (Edge relevant text changes) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: pbuulunq.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\pbuulunq.default [2023-10-24]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hljqp2jm.default-release [2023-10-24]
FF Homepage: Mozilla\Firefox\Profiles\hljqp2jm.default-release -> www.google.sk
FF Extension: (anonymoX) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hljqp2jm.default-release\Extensions\client@anonymox.net.xpi [2022-02-18]
FF Extension: (YouTube Downloader) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\hljqp2jm.default-release\Extensions\{307f416a-39c0-49e0-8e96-cf802290e33c}.xpi [2022-07-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.3.4.3\Profiles\b0ysyy6j.default [2020-03-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.3.30.0\Profiles\8yrdrsqh.default [2020-03-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.15.2.0\Profiles\iubwyaix.default [2020-03-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.14.5.0\Profiles\83mh7v7b.default [2020-03-02]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Actia\diagnostic2.12.3.0\Profiles\yqhysc80.default [2020-03-02]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-09-11]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2023-10-24]
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/ui/v1/icons/mail/images/favicon5.ico
CHR Extension: (Adobe Acrobat: nástroje na upravovanie, prevádzanie a podpisovanie súborov PDF) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-10-16]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-05]
CHR Extension: (Hola VPN - The Website Unblocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2023-10-16]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKU\S-1-5-21-2963285561-2800348544-3401091191-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

Brave:
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-10-24]
BRA HomePage: Default -> hxxp://www.duckduckgo.com/
BRA DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}&t=brave
BRA DefaultSearchKeyword: Default -> :d
BRA DefaultSuggestURL: Default -> hxxps://ac.duckduckgo.com/ac/?q={searchTerms}&type=list
BRA Extension: (DuckDuckGo) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2023-10-15]
BRA Extension: (Adobe Acrobat: nástroje na upravovanie, prevádzanie a podpisovanie súborov PDF) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-10-11]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-15]
BRA Profile: C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1 [2023-10-24]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-05-14]
BRA Profile: C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 2 [2023-10-24]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Profile 2\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-05-14]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-10-24]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-10-24]
BRA Extension: (Brave NTP background images) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-09-21]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-10-24]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-10-24]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-10-24]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-09-21]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-10-24]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-10-24]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\mjgplcflbkgklplplbakkopkafojhbmk [2023-10-24]
BRA Extension: (Brave Ads Resources) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\obponfmfefkaeehakbehbnnlcbebebhd [2023-10-11]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-10-24]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Admin\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-23]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [812992 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [833464 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9115584 2023-10-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2023-06-14] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
R2 AxVirtualAHCISrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAHCIServiceEx.exe [105888 2019-06-12] (Alcohol Soft -> Alcohol Soft Development Team)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174968 2023-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.120\brave_vpn_helper.exe [3073048 2023-10-18] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\118.1.59.120\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [11338776 2023-10-18] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9183624 2021-09-29] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 IBMPMSVC; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmsvc.exe [850936 2022-11-24] (Lenovo -> Lenovo)
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\EasyResume.exe [2351296 2021-04-20] (Lenovo -> Lenovo Group Limited)
S2 LPlatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\LPlatSvc.exe [906232 2022-11-24] (Lenovo -> Lenovo)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
R2 SynaHlp; C:\WINDOWS\System32\SynaHelperService.exe [255984 2021-12-29] (Synaptics Incorporated -> Synaptics Incorporated.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_6df953d54d3099b9\driver\TPHKLOAD.exe [465192 2021-03-30] (Lenovo -> Lenovo Group Limited)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746728 2021-11-22] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [33216 2021-12-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_50fee1227e96ec14\amdsafd.sys [100792 2021-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0376364.inf_amd64_5400fa1846a41a4e\B376294\amdkmdag.sys [82958752 2022-02-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [34416 2017-06-20] (Anvsoft Inc. -> AnvSoft Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [31472 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [240120 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [392928 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [297928 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [96520 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2023-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [39808 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [275224 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [559856 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [105408 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [80576 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [950856 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [708096 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [213352 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [319720 2023-10-11] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [176032 2019-06-12] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-11-04] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-11-04] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ew_hwusbdev; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [109568 2021-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648 2021-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [226176 2021-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 IBMPMDRV; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\ibmpmdrv.sys [53240 2022-11-24] (Lenovo -> Lenovo)
R1 PMDRVS; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_02d728b29c6492d3\x64\pmdrvs.sys [38904 2022-11-24] (Lenovo -> Lenovo)
S3 Rockusb; C:\WINDOWS\System32\drivers\rockusb.sys [69920 2017-06-07] (Fuzhou Rockchip Electronics Co., Ltd. -> Fuzhou Rockchip Electronics Co,Ltd.)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [203296 2019-10-26] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 USB28xxBGA; C:\WINDOWS\system32\DRIVERS\emBDA64.sys [576640 2007-08-08] (Microsoft Windows Hardware Compatibility Publisher -> eMPIA Technology, Inc.)
S3 USB28xxOEM; C:\WINDOWS\system32\DRIVERS\emOEM64.sys [54528 2007-08-08] (Microsoft Windows Hardware Compatibility Publisher -> eMPIA Technology, Inc.)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [239672 2021-11-22] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249584 2021-11-22] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [174776 2021-11-22] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2023-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498944 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-13] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-10-24 14:35 - 2023-10-24 14:35 - 002383360 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2023-10-24 14:35 - 2023-10-24 14:35 - 000732238 _____ C:\WINDOWS\system32\perfh01B.dat
2023-10-24 14:35 - 2023-10-24 14:35 - 000139998 _____ C:\WINDOWS\system32\perfc01B.dat
2023-10-24 14:33 - 2023-10-24 14:34 - 000054368 _____ C:\Users\Admin\Desktop\Addition.txt
2023-10-24 14:32 - 2023-10-24 14:34 - 000059611 _____ C:\Users\Admin\Desktop\FRST.txt
2023-10-24 14:30 - 2023-10-24 14:30 - 000000008 _____ C:\ProgramData\ntuser.pol
2023-10-24 14:23 - 2023-10-24 14:29 - 000018041 _____ C:\Users\Admin\Desktop\Fixlog.txt
2023-10-23 20:14 - 2023-10-23 20:14 - 001311737 _____ C:\Users\Admin\Downloads\Oct 23, Doc 1 Page 0.jpeg
2023-10-18 18:26 - 2023-10-18 18:26 - 010616524 _____ C:\Users\Admin\Downloads\eaglesNest.zip
2023-10-18 18:26 - 2023-10-18 18:26 - 000000000 ____D C:\Users\Admin\Downloads\eaglesNest
2023-10-17 20:37 - 2023-10-17 20:37 - 000000000 ____D C:\Users\Admin\Downloads\prehistoric_-basic
2023-10-17 11:35 - 2023-10-17 11:35 - 000000000 ____D C:\Users\Admin\Downloads\emuROMs
2023-10-17 11:28 - 2023-10-17 11:28 - 000018581 _____ C:\Users\Admin\Downloads\Into the Eagle's Nest (1988)(Atari)(US)[h GSL][k-file].zip
2023-10-17 11:28 - 2023-10-17 11:28 - 000000000 ____D C:\Users\Admin\Downloads\Into the Eagle's Nest (1988)(Atari)(US)[h GSL][k-file]
2023-10-16 17:18 - 2023-10-16 17:18 - 000052532 _____ C:\Users\Admin\Downloads\Raid-Over-Moscow_C64_EN.zip
2023-10-16 17:18 - 2023-10-16 17:18 - 000000000 ____D C:\Users\Admin\Downloads\Raid-Over-Moscow_C64_EN
2023-10-16 17:07 - 2023-10-16 17:07 - 000000000 ____D C:\Users\Admin\Downloads\InternationalKarate(EnduranceGames).tzx
2023-10-16 16:15 - 2023-10-16 16:16 - 000062547 _____ C:\Users\Admin\Downloads\Addition.txt
2023-10-16 16:14 - 2023-10-24 14:37 - 000042657 _____ C:\Users\Admin\Downloads\FRST.txt
2023-10-16 16:14 - 2023-10-24 14:36 - 000000000 ____D C:\FRST
2023-10-15 18:46 - 2023-10-15 18:46 - 000351374 _____ C:\Users\Admin\Downloads\World-Karate-Championship_ZX-Spectrum_EN.zip
2023-10-15 18:46 - 2023-10-15 18:46 - 000000000 ____D C:\Users\Admin\Downloads\World-Karate-Championship_ZX-Spectrum_EN
2023-10-15 11:36 - 2023-10-15 11:36 - 000000000 ____D C:\Users\Admin\Downloads\CCS64 V3.9.3
2023-10-15 11:20 - 2023-10-15 11:20 - 000076348 _____ C:\Users\Admin\Downloads\TARGETRE_07771_02.zip
2023-10-15 09:52 - 2023-10-17 20:38 - 000002508 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2023-10-15 09:51 - 2023-10-24 14:10 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-10-15 09:51 - 2023-10-17 20:38 - 000002596 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2023-10-11 19:41 - 2023-10-17 20:38 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-11 19:26 - 2023-10-16 15:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-11 19:13 - 2023-10-11 19:42 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2023-10-11 19:13 - 2023-10-11 19:42 - 000002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2023-10-11 19:13 - 2023-10-11 19:42 - 000002133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2023-10-11 19:13 - 2023-10-11 19:13 - 000002110 _____ C:\Users\Public\Desktop\Adobe Acrobat XI Pro.lnk
2023-10-11 18:57 - 2023-10-11 18:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\com.adobe.dunamis
2023-10-11 18:57 - 2023-10-11 18:57 - 000000000 ____D C:\Users\Admin\AppData\Local\SolidDocuments
2023-10-11 18:57 - 2023-10-11 18:57 - 000000000 ____D C:\Users\Admin\.ms-ad
2023-10-11 18:55 - 2023-10-11 18:55 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo
2023-10-11 18:54 - 2023-10-11 19:01 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-10-11 18:54 - 2023-10-11 18:54 - 000000000 ____D C:\Program Files\Adobe
2023-10-11 08:22 - 2023-10-11 08:22 - 000313272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2023-09-28 12:01 - 2023-10-11 08:54 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-09-28 11:52 - 2023-09-28 11:52 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-09-28 11:51 - 2023-09-28 11:51 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-09-28 11:51 - 2023-09-28 11:51 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-09-24 12:07 - 2023-09-24 12:07 - 000023151 _____ C:\Users\Admin\Downloads\ziadost-o-skoncenie-pracovneho-pomeru-dohodou.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-10-24 14:35 - 2022-11-04 17:09 - 001712392 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-24 14:35 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-10-24 14:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-24 14:32 - 2019-10-26 20:28 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-24 14:31 - 2022-11-04 17:05 - 000003114 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-10-24 14:31 - 2022-11-04 17:05 - 000003078 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2023-10-24 14:31 - 2019-10-26 14:31 - 000000000 __SHD C:\Users\Admin\IntelGraphicsProfiles
2023-10-24 14:30 - 2023-06-14 18:37 - 000000000 ____D C:\ProgramData\AVG
2023-10-24 14:30 - 2022-11-04 17:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-24 14:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-24 14:30 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-24 14:30 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-10-24 14:30 - 2021-02-09 15:55 - 000000000 ____D C:\Intel
2023-10-24 14:30 - 2020-05-28 23:31 - 000012288 ___SH C:\DumpStack.log.tmp
2023-10-24 14:30 - 2019-11-15 22:23 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-10-24 14:30 - 2019-10-26 14:30 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-10-24 14:29 - 2020-05-28 18:14 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Temp
2023-10-24 14:23 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2023-10-24 14:23 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2023-10-24 14:10 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-24 14:05 - 2022-11-04 16:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-23 13:08 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-23 12:38 - 2023-06-14 18:41 - 000000000 ____D C:\Users\Admin\AppData\Local\AVG
2023-10-23 12:12 - 2022-11-04 17:05 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2963285561-2800348544-3401091191-1001
2023-10-23 12:12 - 2022-11-04 17:05 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2963285561-2800348544-3401091191-1001
2023-10-23 12:12 - 2020-08-17 15:24 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-23 12:12 - 2020-08-17 15:24 - 000002289 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-10-23 12:12 - 2020-05-28 23:12 - 000002378 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-23 12:12 - 2019-10-26 20:28 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-23 12:08 - 2023-05-14 20:32 - 000002383 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-10-23 12:08 - 2023-05-14 20:32 - 000002342 _____ C:\Users\Public\Desktop\Brave.lnk
2023-10-18 14:14 - 2022-04-19 19:03 - 000000947 _____ C:\WINDOWS\Tasks\EPSON L3060 Series Update {B5BD1615-84EC-451B-AF52-3EB40D8A8846}.job
2023-10-17 20:46 - 2019-10-26 19:48 - 000000000 ____D C:\ProgramData\TEMP
2023-10-17 20:38 - 2023-07-25 15:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-10-17 20:38 - 2023-06-14 18:38 - 000003044 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2023-10-17 20:38 - 2023-05-14 20:31 - 000003484 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{6C341597-39CD-4BFB-88D9-FACDADD42DF1}
2023-10-17 20:38 - 2023-05-14 20:31 - 000003260 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{D3D4014B-51F5-430D-BB02-FB42CDFD10BA}
2023-10-17 20:38 - 2023-04-30 11:54 - 000002248 _____ C:\WINDOWS\system32\Tasks\VM
2023-10-17 20:38 - 2022-11-04 17:05 - 000003560 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-17 20:38 - 2022-11-04 17:05 - 000003496 _____ C:\WINDOWS\system32\Tasks\EPSON L3060 Series Update {B5BD1615-84EC-451B-AF52-3EB40D8A8846}
2023-10-17 20:38 - 2022-11-04 17:05 - 000003336 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-17 20:38 - 2022-11-04 17:05 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2023-10-17 20:38 - 2022-11-04 17:05 - 000002590 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-10-17 20:38 - 2022-11-04 17:05 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2023-10-17 20:38 - 2022-11-04 17:05 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2023-10-17 20:38 - 2021-01-01 19:14 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2023-10-16 15:47 - 2019-10-26 14:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-15 12:45 - 2019-10-26 14:31 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-11 19:37 - 2022-11-04 16:59 - 000582432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-11 19:26 - 2022-02-11 11:45 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-11 19:12 - 2019-10-27 07:47 - 000000000 ____D C:\ProgramData\Adobe
2023-10-11 19:12 - 2019-10-27 07:47 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-10-11 19:01 - 2019-10-26 13:55 - 000000000 ____D C:\ProgramData\Packages
2023-10-11 19:01 - 2019-10-26 13:38 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2023-10-11 18:57 - 2022-11-04 14:13 - 000000000 ____D C:\Users\Admin
2023-10-11 18:57 - 2019-10-26 13:38 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
2023-10-11 17:46 - 2019-10-26 14:30 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2023-10-11 17:20 - 2021-02-21 14:37 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-10-11 17:12 - 2019-10-26 13:38 - 000000000 ____D C:\Users\Admin\AppData\Local\ConnectedDevicesPlatform
2023-10-11 17:09 - 2019-10-26 13:49 - 000000000 ____D C:\Users\Admin\AppData\Local\PlaceholderTileLogoFolder
2023-10-11 08:54 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-11 08:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-11 08:54 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-11 08:53 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 08:50 - 2022-11-04 17:00 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 08:46 - 2019-10-26 14:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 08:25 - 2020-11-30 21:13 - 000000000 ____D C:\Users\Admin\AppData\Local\AMD_Common
2023-10-11 08:22 - 2023-06-14 18:38 - 000950856 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000708096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000559856 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000392928 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000319720 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000297928 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000275224 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000240120 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000105408 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000096520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000080576 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000039808 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2023-10-11 08:22 - 2023-06-14 18:38 - 000031472 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2023-10-11 08:22 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-11 08:21 - 2019-10-26 14:25 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-28 19:18 - 2020-03-01 23:40 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2023-09-28 12:20 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-09-28 12:18 - 2019-10-26 20:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-09-28 12:16 - 2021-12-01 18:50 - 000000000 ____D C:\Users\Admin\AppData\Local\Bluestacks
2023-09-28 12:01 - 2022-05-07 12:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-09-28 12:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-28 12:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-09-28 09:11 - 2019-10-26 19:50 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Word
2023-09-28 09:10 - 2019-11-16 14:56 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Excel

==================== Files in the root of some directories ========

2017-01-14 13:37 - 2017-01-14 13:37 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2019-07-04 13:48 - 2019-07-04 13:48 - 008517080 _____ (Alcohol Soft Development Team) C:\Users\Admin\AppData\Roaming\Alcohol120_retail_2.1.0.20601.exe
2020-02-17 22:25 - 2023-06-14 17:49 - 000099384 _____ () C:\Users\Admin\AppData\Roaming\inst.exe
2019-07-04 21:11 - 2019-07-04 21:11 - 060881324 _____ (MiniTool Solution Ltd.) C:\Users\Admin\AppData\Roaming\MiniTool.Partition.Wizard.v11.5.0.exe
2019-05-30 07:14 - 2019-05-30 07:14 - 038639862 _____ (Movavi Software Limited) C:\Users\Admin\AppData\Roaming\Movavi.Video.Converter.v19.3.0.Premium.exe
2020-02-17 22:25 - 2023-06-14 17:49 - 000007859 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.cat
2020-02-17 22:25 - 2023-06-14 17:49 - 000001167 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.inf
2020-02-17 22:25 - 2023-06-14 17:49 - 000000055 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.log
2020-02-17 22:25 - 2023-06-14 17:49 - 000082816 _____ (VSO Software) C:\Users\Admin\AppData\Roaming\pcouffin.sys
2023-03-26 12:57 - 2023-03-26 12:57 - 000000128 _____ () C:\Users\Admin\AppData\Roaming\winscp.rnd
2020-01-01 20:51 - 2020-01-01 20:51 - 000000060 _____ () C:\Users\Admin\AppData\Roaming\~SiMPLEX.ini
2022-02-18 17:59 - 2022-02-18 17:59 - 000004096 ____H () C:\Users\Admin\AppData\Local\keyfile3.drm
2023-10-15 10:02 - 2023-10-15 10:02 - 000000000 _____ () C:\Users\Admin\AppData\Local\oobelibMkey.log
2022-11-29 19:31 - 2022-11-29 19:31 - 000005012 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel
2020-02-16 15:47 - 2020-02-16 15:47 - 000007666 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
2022-06-24 20:43 - 2022-06-24 20:43 - 000000000 _____ () C:\Users\Admin\AppData\Local\{5E934EAB-DC3D-461C-9208-E94FFFE80EC1}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[JaRon]

Ak si vykonal Fix, tak vloz fixlog