Prosím o preventivní kontrolu logu
Napsal: 20 říj 2022 17:40
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2022
Ran by Jakub Straka (administrator) on DESKTOP-8R252F9 (Gigabyte Technology Co., Ltd. B550 AORUS PRO V2) (20-10-2022 15:19:33)
Running from C:\Users\Jakub Straka\OneDrive\Plocha
Loaded Profiles: Jakub Straka
Platform: Microsoft Windows 10 Pro Version 21H1 19043.2130 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(C:\Program Files (x86)\Avira\Antivirus\avguard.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(C:\Program Files\Tablet\Pen\WacomHost.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATINYE.EXE
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> ) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_6.69.19001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1b5e80ff87b1f5c8\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.9161.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.9161.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.117.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
Failed to access process -> Avira.Spotlight.Service.Worker.exe
Failed to access process -> Avira.Spotlight.Service.Worker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1090784 2020-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [11144232 2022-09-29] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [326152 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [ZaAntiRansomware] => C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe [4231392 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [CZC G GK1000] => C:\Program Files\CZC G GK1000\CZC G GK1000.exe [2031616 2019-02-14] (TODO: <Company name>) [File not signed]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1067528 2022-07-26] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234088 2022-10-08] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32688080 2022-09-29] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [Discord] => C:\Users\Jakub Straka\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13663208 2022-10-02] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [MicrosoftEdgeAutoLaunch_D9DB1379607762148C520576C1BEC44E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852200 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINYE.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852200 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\RunOnce: [Uninstall 19.043.0304.0013] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\19.043.0304.0013" (No File)
HKLM\...\Print\Monitors\EPSON L365 Series 64MonitorBE: C:\Windows\system32\E_YLMBNYE.DLL [180224 2014-03-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [117248 2021-10-19] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-08-03]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {009BED59-A443-4B7B-85EC-6D61D2A5520A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {0868E20E-469D-45FB-A0FF-BD4BF22A31FF} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-8R252F9-Jakub Straka => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {363F1D7E-3ABD-4196-A411-EA6AAFF6E593} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-10-19] (Google Inc -> Google Inc.)
Task: {396D3FA2-D9F5-40C1-9C06-E5E2269F8F1E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {4910DD0E-EE05-4442-97B4-6B06DF7D7F9A} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.47\Installer\setup.exe [3350952 2022-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {4FEDEBF3-AFC2-4348-8DCD-BC1D49247167} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {5A1CA31F-7D9F-402F-A41D-C920FC5850A8} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1675120 2021-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {69C004BD-EC1E-4660-97D3-C7A63C53DE26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1555696 2022-08-03] (Adobe Inc. -> Adobe Inc.)
Task: {89D9616E-67F1-4414-95F8-F0E2A1BAC0F3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {946BC61E-9008-4EC1-9CEF-EAA8159C565E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {A281F755-BAA7-4E67-96AA-D8271717EF0C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {A6237A61-59C5-4AC6-862B-D66B30118008} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2021-07-20] () [File not signed]
Task: {AA7DFA92-7DEB-41B2-9745-E2F34942A441} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2648424 2021-10-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {AE96FB0A-33D8-4F78-89F0-789DA500807B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B9118295-6D66-4D2D-B50D-55DC12F3300C} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [236704 2021-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {BFDDD633-1200-43C5-A551-9FF4CABDF5D2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {CC399123-A39E-4D6A-AE22-48DA3CB1048A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D8E50073-60A8-4A71-9020-4F04C477885E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-10-19] (Google Inc -> Google Inc.)
Task: {D976783B-9E5A-44AB-9E5B-DDF19E95683C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DA38E3AE-9E37-4D0D-8068-55151DCFE589} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {DD6F3766-D280-42D6-9D27-F86853597815} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E0ACB370-EA36-42FB-88E0-7C6006E16A65} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E4355327-53CF-4745-A110-22A45FC0F8CF} - System32\Tasks\HWiNFO => C:\Program Files\HWiNFO64\HWiNFO64.EXE [7164384 2022-09-20] (Martin Malik - REALiX -> REALiX)
Task: {EA8E9845-4885-4A6C-B8BF-6A6DCC597CAE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F1AF7641-B616-4685-B386-780B1CF07ECD} - System32\Tasks\CCleanerSkipUAC - Jakub Straka => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F202340F-8CE2-4FAD-91EF-4FDBD06B8E32} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [31903104 2022-08-31] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\EPSON L365 Series Update {C2B9ABC2-CAC7-48CE-B77C-8BB06EF4C5BA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE:/EXE:{C2B9ABC2-CAC7-48CE-B77C-8BB06EF4C5BA} /F:UpdateWORKGROUP\DESKTOP-8R252F9$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c61e5e04-8ed3-4539-8c4e-b408d564e6a3}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\Jakub Straka\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-20]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: yp5o249b.default
FF ProfilePath: C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\yp5o249b.default [2021-10-19]
FF ProfilePath: C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release [2022-10-20]
FF DownloadDir: F:\rozbaleno
FF Homepage: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> moz-extension://29a56752-ff97-4ee7-9daa-973467439929/dial.html
FF Session Restore: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> is enabled.
FF HomepageOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Disabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: @contain-facebook
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: mapy-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: seznam-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: google@search.mozilla.org
FF Extension: (Facebook Container) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\@contain-facebook.xpi [2022-10-12]
FF Extension: (Group Speed Dial) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2022-10-20]
FF Extension: (BetterTTV) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\firefox@betterttv.net.xpi [2022-10-03]
FF Extension: (New Tab Page) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\pavel.sherbakov@gmail.com.xpi [2021-02-19]
FF Extension: (RescueTime for Firefox) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\rescuetime_firefox@rescuetime.com.xpi [2020-05-27]
FF Extension: (uBlock Origin) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-09-19]
FF Extension: (Black Rain (Animated)) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{3e866059-1715-4a17-906c-02db9b30930e}.xpi [2022-10-20]
FF Extension: (GF-S Tamayori Blue 08) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{407287f9-41f0-40ac-be08-259a73b8a4a7}.xpi [2022-10-20]
FF Extension: (Matte Black (Red)) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2022-02-25]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2021-12-20] [Legacy] [not signed]
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default [2022-10-06]
CHR Extension: (Avira Password Manager) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-09-17]
CHR Extension: (Avira Browser Safety) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-09-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-19]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
"HWiNFO_172" => service could not be unlocked. <==== ATTENTION
HKLM\SYSTEM\ControlSet001\Services\HWiNFO_172 => \??\C:\Users\JAKUBS~1\AppData\Local\Temp\HWiNFO64A_172.SYS <==== ATTENTION (Rootkit!/Locked Service)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172264 2022-08-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [923656 2022-07-26] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3863256 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3701464 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [538000 2021-06-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574832 2022-01-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S4 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-21] (philandro Software GmbH -> AnyDesk Software GmbH)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3004688 2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [272672 2021-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [275088 2021-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 CPEFR; C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe [3274432 2021-04-10] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 CpSbaCipolla; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
R2 CpSbaUpdater; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812008 2021-08-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-03-04] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-19] (Epic Games Inc. -> Epic Games, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2128360 2022-10-02] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-26] (GOG Sp. z o.o. -> GOG.com)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [26030880 2022-07-30] (My.Com B.V. -> My.com B.V.)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2021-10-30] (Even Balance, Inc. -> )
R2 RemediationService; C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18624 2021-03-29] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224192 2022-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 TESvc; C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [137920 2021-04-09] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [331648 2021-12-15] (Twitch Interactive, Inc. -> )
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [4575688 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZA NET ICM Service; C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe [42208 2020-03-13] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ZAARUpdateService; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [129216 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1b5e80ff87b1f5c8\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1b5e80ff87b1f5c8\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\Windows\System32\drivers\avelam.sys [22848 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [209088 2021-10-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [199312 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 cpbak; C:\Windows\System32\DRIVERS\cpbak.sys [83248 2020-09-03] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 CPEPMon; C:\Windows\System32\DRIVERS\CPEPMon.sys [153040 2021-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Check Point Software Technologies)
S3 cpuz149; C:\Users\Jakub Straka\AppData\Local\Temp\cpuz149\cpuz149_x64.sys [44320 2022-10-15] (CPUID S.A.R.L.U. -> CPUID) <==== ATTENTION
R1 epnetflt; C:\Windows\system32\drivers\epnetflt.sys [135984 2020-12-06] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 epregflt; C:\Windows\system32\drivers\epregflt.sys [133416 2020-12-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R2 ISWKL; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [56184 2021-01-28] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 mracdrv; C:\Windows\System32\drivers\mracdrv1.sys [25266488 2022-07-30] (My.Com B.V. -> My.com B.V.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\mvvad.sys [48144 2022-07-26] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
R1 Vsdatant; C:\Windows\System32\drivers\vsdatant.sys [461240 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48520 2021-10-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [434424 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
U3 iswSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-10-20 14:20 - 2022-10-20 14:20 - 000002220 _____ C:\Users\Jakub Straka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2022-10-19 19:31 - 2022-10-20 15:19 - 000000000 ____D C:\FRST
2022-10-19 19:29 - 2022-10-19 19:29 - 000003794 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupVerify
2022-10-18 14:46 - 2022-10-18 14:46 - 000000039 _____ C:\Users\Jakub Straka\AppData\Local\kritadisplayrc
2022-10-15 16:15 - 2022-10-15 16:15 - 000003090 _____ C:\Windows\system32\Tasks\HWiNFO
2022-10-15 12:08 - 2022-10-15 12:08 - 000000000 ____D C:\Users\Jakub Straka\OneDrive\Dokumenty\KoeiTecmo
2022-10-15 11:38 - 2022-10-15 11:38 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2022-10-15 11:38 - 2022-10-07 05:01 - 002884648 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 002220072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 001296936 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000169512 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000148520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000086568 _____ C:\Windows\system32\FvSDK_x64.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000075304 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2022-10-15 11:36 - 2022-10-11 04:00 - 001967880 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-10-15 11:36 - 2022-10-11 04:00 - 001967880 _____ C:\Windows\system32\vulkaninfo.exe
2022-10-15 11:36 - 2022-10-11 04:00 - 001524512 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-10-15 11:36 - 2022-10-11 04:00 - 001524512 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-10-15 11:36 - 2022-10-11 04:00 - 001432352 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-10-15 11:36 - 2022-10-11 04:00 - 001432352 _____ C:\Windows\system32\vulkan-1.dll
2022-10-15 11:36 - 2022-10-11 04:00 - 001213968 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-10-15 11:36 - 2022-10-11 04:00 - 001145608 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-10-15 11:36 - 2022-10-11 04:00 - 001145608 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-10-15 11:36 - 2022-10-11 03:56 - 001523216 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-10-15 11:36 - 2022-10-11 03:56 - 001185272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-10-15 11:36 - 2022-10-11 03:56 - 000870960 _____ C:\Windows\system32\nvofapi64.dll
2022-10-15 11:36 - 2022-10-11 03:56 - 000693808 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 012540952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 002246704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 001653288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 001261104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 000987672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 000709680 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-10-15 11:36 - 2022-10-11 03:55 - 000457264 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-10-15 11:36 - 2022-10-11 03:54 - 015218672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-10-15 11:36 - 2022-10-11 03:54 - 005906416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2022-10-15 11:36 - 2022-10-11 03:54 - 005429248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-10-15 11:36 - 2022-10-11 03:54 - 003101208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-10-15 11:36 - 2022-10-11 03:53 - 000853520 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-10-15 11:36 - 2022-10-11 03:52 - 006457792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-10-15 11:36 - 2022-10-07 05:01 - 000095170 _____ C:\Windows\system32\nvinfo.pb
2022-10-15 11:36 - 2022-10-07 05:01 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2022-10-15 11:36 - 2022-10-07 05:01 - 000059368 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2022-10-15 11:36 - 2022-10-07 05:01 - 000041984 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2022-10-15 11:33 - 2022-10-15 11:34 - 840728584 _____ (NVIDIA Corporation) C:\Users\Jakub Straka\Downloads\522.25-desktop-win10-win11-64bit-international-dch-whql.exe
2022-10-13 11:11 - 2022-10-13 11:11 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-10-13 11:11 - 2022-10-13 11:11 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-10-13 11:11 - 2022-10-13 11:11 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-10-13 11:11 - 2022-10-13 11:11 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-10-13 11:11 - 2022-10-13 11:11 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-10-13 11:11 - 2022-10-13 11:11 - 000012253 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-10-13 11:10 - 2022-10-13 11:10 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-10-13 11:07 - 2022-10-13 11:07 - 000000000 ___HD C:\$WinREAgent
2022-10-12 21:24 - 2022-10-13 11:41 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2022-10-11 21:08 - 2022-10-16 10:02 - 014281408 _____ (Audacity Team ) C:\Users\Jakub Straka\Downloads\audacity-win-3.2.1-64bit.exe
2022-10-10 11:10 - 2022-10-10 11:10 - 000883254 _____ C:\Users\Jakub Straka\Downloads\321139__jsbarrett__breaking-glass.wav
2022-10-10 10:11 - 2022-10-10 11:26 - 000000000 ____D C:\Users\Jakub Straka\input-overlay
2022-10-10 10:10 - 2022-10-10 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advanced-scene-switcher
2022-10-10 10:09 - 2022-10-10 10:09 - 060658012 _____ (WarmUpTill ) C:\Users\Jakub Straka\Downloads\advanced-scene-switcher-windows-x64-Installer.exe
2022-10-10 10:02 - 2022-10-10 10:02 - 003183453 _____ (univrsal ) C:\Users\Jakub Straka\Downloads\input-overlay-5.0.0-windows-x64-Installer.exe
2022-10-10 10:02 - 2022-10-10 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\input-overlay
2022-10-10 10:00 - 2022-10-10 10:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transition Table
2022-10-10 09:59 - 2022-10-10 09:59 - 002114135 _____ C:\Users\Jakub Straka\Downloads\transition-table-0.2.5-windows-installer.zip
2022-10-07 22:07 - 2022-10-07 22:07 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\SuperMegaTeam
2022-10-07 20:49 - 2022-10-07 20:49 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Strelka Games
2022-10-07 20:10 - 2022-10-07 20:10 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Engineer
2022-10-07 17:21 - 2022-10-07 17:21 - 000000000 ____D C:\ProgramData\GameCenterVPN2
2022-10-06 00:10 - 2022-10-11 04:00 - 001472024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-10-06 00:10 - 2022-10-11 03:56 - 000823344 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-10-06 00:10 - 2022-10-11 03:54 - 005753352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-10-06 00:09 - 2022-10-06 00:10 - 825894408 _____ (NVIDIA Corporation) C:\Users\Jakub Straka\Downloads\517.48-desktop-win10-win11-64bit-international-dch-whql.exe
2022-10-05 22:53 - 2022-10-05 22:53 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Autoexec Games
2022-10-05 21:42 - 2022-10-05 21:42 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Souldead
2022-10-05 21:38 - 2022-10-05 21:38 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\PlaytraGames Ltd
2022-10-05 20:17 - 2022-10-05 20:17 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Pastagames
2022-10-04 22:58 - 2022-10-04 22:58 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Micah Boursier
2022-10-04 22:26 - 2022-10-04 22:26 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\heinn
2022-10-04 22:20 - 2022-10-04 22:20 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Yaza Games
2022-10-04 21:30 - 2022-10-04 21:30 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\PartyTowers
2022-10-02 10:27 - 2022-10-02 10:27 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\StoneLantern
2022-09-29 23:43 - 2022-09-29 23:43 - 000000000 ____D C:\ProgramData\obs-studio
2022-09-28 09:07 - 2022-09-28 09:07 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\stalefiles
2022-09-28 08:45 - 2022-10-11 22:10 - 000005204 _____ C:\Users\Jakub Straka\AppData\Local\kdenliverc
2022-09-28 08:45 - 2022-09-28 08:45 - 000008337 _____ C:\Users\Jakub Straka\AppData\Local\kdenlive-layoutsrc
2022-09-28 08:45 - 2022-09-28 08:45 - 000007889 _____ C:\Users\Jakub Straka\AppData\Local\user-places.xbel
2022-09-28 08:45 - 2022-09-28 08:45 - 000005808 _____ C:\Users\Jakub Straka\AppData\Local\user-places.xbel.bak
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\kdenlive
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\mime
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\kdenlive
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 _____ C:\Users\Jakub Straka\AppData\Local\user-places.xbel.tbcache
2022-09-27 20:03 - 2022-09-27 20:03 - 002711389 _____ C:\Users\Jakub Straka\Downloads\Veil - 66423.mp4
2022-09-25 18:35 - 2022-09-25 18:35 - 000501936 _____ C:\Users\Jakub Straka\Downloads\com.elgato.obsstudio.streamDeckPlugin
2022-09-25 18:34 - 2022-09-25 18:34 - 008372224 _____ C:\Users\Jakub Straka\Downloads\Stream_Deck_OBS_Plugin_5.3.2.35.msi
2022-09-25 18:03 - 2022-09-25 18:03 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\ToastNotificationManagerCompat
2022-09-25 18:02 - 2022-09-25 18:20 - 000000000 ____D C:\ProgramData\Voicemod
2022-09-25 18:02 - 2022-09-25 18:19 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Voicemod
2022-09-25 18:02 - 2022-09-25 18:02 - 000001854 _____ C:\ProgramData\Plocha\Voicemod.lnk
2022-09-25 18:02 - 2022-09-25 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2022-09-25 18:02 - 2022-09-25 18:02 - 000000000 ____D C:\Program Files\Voicemod Desktop
2022-09-25 18:02 - 2022-07-26 12:49 - 000048144 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\mvvad.sys
2022-09-25 18:01 - 2022-09-25 18:01 - 080842536 _____ (Voicemod S.L. ) C:\Users\Jakub Straka\Downloads\VoicemodSetup_2.35.0.0.exe
2022-09-25 17:44 - 2022-09-25 17:44 - 003213085 _____ C:\Users\Jakub Straka\Downloads\Photoshop Shortcut Icons Sampler 1.3.zip
2022-09-25 17:37 - 2022-09-25 17:37 - 001836945 _____ C:\Users\Jakub Straka\Downloads\PacMan Stream Deck Wallpaper.zip
2022-09-25 10:39 - 2022-09-25 10:43 - 000000000 ____D C:\Program Files\HWiNFO64
2022-09-25 10:39 - 2022-09-25 10:39 - 010377928 _____ (Martin Malik - REALiX ) C:\Users\Jakub Straka\Downloads\hwi_730.exe
2022-09-25 10:39 - 2022-09-25 10:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2022-09-25 10:06 - 2022-09-25 10:06 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Ookla
2022-09-25 09:20 - 2022-09-28 08:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\cache
2022-09-25 09:15 - 2022-09-29 23:43 - 000001145 _____ C:\ProgramData\Plocha\Stream Deck.lnk
2022-09-25 09:15 - 2022-09-25 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato
2022-09-25 09:15 - 2022-09-25 18:34 - 000000000 ____D C:\Program Files\Elgato
2022-09-25 09:15 - 2022-09-25 09:15 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Elgato
2022-09-25 09:15 - 2022-09-25 09:15 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Elgato
2022-09-25 09:15 - 2022-09-25 09:15 - 000000000 ____D C:\ProgramData\Elgato
2022-09-25 09:14 - 2022-09-25 09:14 - 105885696 _____ C:\Users\Jakub Straka\Downloads\Stream_Deck_5.3.1.15197.msi
2022-09-24 14:00 - 2022-09-24 14:51 - 000000000 ____D C:\Users\Jakub Straka\Heaven
2022-09-24 13:59 - 2022-10-15 12:42 - 001065984 _____ C:\Users\Jakub Straka\AppData\Local\file__0.localstorage
2022-09-24 13:59 - 2022-09-24 13:59 - 000001396 _____ C:\ProgramData\Plocha\Heaven Benchmark 4.0.lnk
2022-09-24 13:59 - 2022-09-24 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2022-09-24 13:59 - 2022-09-24 13:59 - 000000000 ____D C:\Program Files (x86)\Unigine
2022-09-24 13:58 - 2022-09-24 13:58 - 259708359 _____ (Unigine Corp. ) C:\Users\Jakub Straka\Downloads\Unigine_Heaven-4.0.exe
2022-09-24 10:31 - 2022-09-24 10:31 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\LightBringer
2022-09-22 14:58 - 2022-09-22 14:58 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\KhayalanArts
2022-09-22 14:55 - 2022-09-22 14:55 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\gloom
2022-09-21 18:52 - 2022-09-21 18:52 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Squad51
2022-09-21 17:37 - 2022-09-21 17:37 - 000000000 ____D C:\Users\Jakub Straka\OneDrive\Dokumenty\SpiritusGames
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-10-20 15:19 - 2021-10-23 07:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\discord
2022-10-20 15:19 - 2021-10-19 22:09 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Mozilla
2022-10-20 14:50 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-20 14:42 - 2021-10-19 21:09 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-20 14:37 - 2021-10-23 07:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Discord
2022-10-20 14:26 - 2021-10-19 14:39 - 001694140 _____ C:\Windows\system32\PerfStringBackup.INI
2022-10-20 14:26 - 2019-12-07 16:43 - 000717008 _____ C:\Windows\system32\perfh005.dat
2022-10-20 14:26 - 2019-12-07 16:43 - 000145186 _____ C:\Windows\system32\perfc005.dat
2022-10-20 14:26 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-10-20 14:23 - 2021-10-19 18:58 - 000000000 ____D C:\ProgramData\NVIDIA
2022-10-20 14:23 - 2021-10-19 16:57 - 000000000 ____D C:\Program Files\CCleaner
2022-10-20 14:21 - 2022-02-12 09:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-20 14:20 - 2021-10-19 22:09 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-20 14:20 - 2021-10-19 22:09 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-10-20 14:20 - 2021-10-19 22:09 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-10-20 14:20 - 2021-10-19 20:43 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-20 14:20 - 2021-10-19 20:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-10-20 01:42 - 2021-10-19 20:43 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-10-20 01:42 - 2021-10-19 16:25 - 000000000 ____D C:\Program Files (x86)\Steam
2022-10-20 01:42 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-10-20 00:07 - 2021-10-19 16:44 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\obs-studio
2022-10-19 19:51 - 2021-10-19 15:04 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\D3DSCache
2022-10-19 00:27 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-19 00:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-10-18 14:46 - 2022-04-16 08:10 - 000016954 _____ C:\Users\Jakub Straka\AppData\Local\kritarc
2022-10-18 14:46 - 2022-04-16 08:10 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\krita
2022-10-18 01:37 - 2021-10-19 17:20 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2022-10-18 00:23 - 2021-11-21 10:56 - 000004784 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask
2022-10-18 00:23 - 2021-10-19 21:06 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-16 13:56 - 2022-09-17 11:04 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\audacity
2022-10-16 13:56 - 2022-09-17 07:22 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Videoder
2022-10-16 11:24 - 2021-12-20 23:26 - 000001480 _____ C:\Users\Jakub Straka\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2022-10-16 11:04 - 2021-10-19 15:03 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Adobe
2022-10-16 10:37 - 2021-12-23 01:36 - 000000132 _____ C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2022-10-15 16:14 - 2021-10-19 16:35 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\NVIDIA Corporation
2022-10-15 13:59 - 2021-10-19 17:50 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Origin
2022-10-15 13:59 - 2021-10-19 17:50 - 000000000 ____D C:\ProgramData\Origin
2022-10-15 13:54 - 2021-10-19 17:50 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Origin
2022-10-15 13:06 - 2021-10-23 08:38 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-10-15 13:05 - 2021-10-19 17:51 - 000000000 ____D C:\Program Files (x86)\Origin
2022-10-15 11:39 - 2021-10-19 15:06 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\NVIDIA
2022-10-15 11:38 - 2021-11-13 22:39 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-10-15 11:38 - 2021-10-19 14:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-10-15 11:38 - 2021-10-19 14:47 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-10-15 11:32 - 2021-10-19 16:57 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-10-13 22:40 - 2021-11-13 22:40 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\CrashDumps
2022-10-13 20:47 - 2021-10-19 21:10 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-13 11:41 - 2021-10-19 22:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-10-13 11:41 - 2021-10-19 20:43 - 005169816 _____ C:\Windows\system32\FNTCACHE.DAT
2022-10-13 11:40 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-10-13 11:12 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-10-13 11:12 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2022-10-13 11:12 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-10-13 11:10 - 2021-10-19 14:36 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-10-13 01:38 - 2021-10-19 14:49 - 000000000 ____D C:\Windows\system32\MRT
2022-10-13 01:32 - 2021-10-19 14:49 - 147398024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-10-12 09:42 - 2021-10-21 20:23 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-10-12 08:42 - 2021-10-19 21:06 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-12 08:42 - 2021-10-19 21:06 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-11 21:35 - 2021-10-19 14:45 - 000000000 ____D C:\Users\Jakub Straka
2022-10-11 03:52 - 2021-10-19 14:47 - 007587776 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2022-10-10 10:52 - 2021-10-19 19:13 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\vlc
2022-10-10 10:10 - 2021-10-19 16:33 - 000000000 ____D C:\Program Files (x86)\obs-studio
2022-10-10 10:00 - 2021-12-25 21:01 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\EBWebView
2022-10-07 05:01 - 2021-10-19 14:47 - 000129000 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2022-10-04 22:20 - 2022-08-15 19:57 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Daedalic Entertainment GmbH
2022-10-02 15:26 - 2021-11-23 22:56 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2022-10-02 10:26 - 2022-08-15 20:11 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\noio
2022-09-30 14:18 - 2021-10-19 15:04 - 000003542 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-09-28 08:43 - 2022-01-06 00:07 - 000000000 ____D C:\Users\Jakub Straka\.openshot_qt
2022-09-22 15:02 - 2022-08-27 11:44 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\BEESWAX GAMES
2022-09-20 02:00 - 2021-11-10 02:16 - 000000000 ____D C:\Users\Administrator
==================== Files in the root of some directories ========
2022-02-13 10:50 - 2022-02-13 10:50 - 000000132 _____ () C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2021-12-23 01:36 - 2022-10-16 10:37 - 000000132 _____ () C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2021-10-19 18:16 - 2022-07-24 23:27 - 000000015 _____ () C:\Users\Jakub Straka\AppData\Roaming\obs-virtualcam.txt
2021-12-20 23:26 - 2022-10-16 11:24 - 000001480 _____ () C:\Users\Jakub Straka\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2022-09-24 13:59 - 2022-10-15 12:42 - 001065984 _____ () C:\Users\Jakub Straka\AppData\Local\file__0.localstorage
2022-09-28 08:45 - 2022-09-28 08:45 - 000008337 _____ () C:\Users\Jakub Straka\AppData\Local\kdenlive-layoutsrc
2022-09-28 08:45 - 2022-10-11 22:10 - 000005204 _____ () C:\Users\Jakub Straka\AppData\Local\kdenliverc
2022-04-16 08:10 - 2022-10-18 14:46 - 000005104 _____ () C:\Users\Jakub Straka\AppData\Local\krita-sysinfo.log
2022-04-16 08:10 - 2022-10-18 14:46 - 000003718 _____ () C:\Users\Jakub Straka\AppData\Local\krita.log
2022-10-18 14:46 - 2022-10-18 14:46 - 000000039 _____ () C:\Users\Jakub Straka\AppData\Local\kritadisplayrc
2022-04-16 08:10 - 2022-10-18 14:46 - 000016954 _____ () C:\Users\Jakub Straka\AppData\Local\kritarc
2021-12-22 05:48 - 2021-12-22 05:48 - 000000000 _____ () C:\Users\Jakub Straka\AppData\Local\oobelibMkey.log
2021-10-20 22:14 - 2021-10-20 22:14 - 000007609 _____ () C:\Users\Jakub Straka\AppData\Local\Resmon.ResmonCfg
2022-09-28 08:45 - 2022-09-28 08:45 - 000007889 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel
2022-09-28 08:45 - 2022-09-28 08:45 - 000005808 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel.bak
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel.tbcache
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by Jakub Straka (administrator) on DESKTOP-8R252F9 (Gigabyte Technology Co., Ltd. B550 AORUS PRO V2) (20-10-2022 15:19:33)
Running from C:\Users\Jakub Straka\OneDrive\Plocha
Loaded Profiles: Jakub Straka
Platform: Microsoft Windows 10 Pro Version 21H1 19043.2130 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(C:\Program Files (x86)\Avira\Antivirus\avguard.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(C:\Program Files\Tablet\Pen\WacomHost.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(C:\Program Files\Tablet\Pen\WTabletServiceCon.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATINYE.EXE
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> ) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_6.69.19001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1b5e80ff87b1f5c8\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.9161.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.9161.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.117.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
Failed to access process -> Avira.Spotlight.Service.Worker.exe
Failed to access process -> Avira.Spotlight.Service.Worker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1090784 2020-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [11144232 2022-09-29] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [326152 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [ZaAntiRansomware] => C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe [4231392 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [CZC G GK1000] => C:\Program Files\CZC G GK1000\CZC G GK1000.exe [2031616 2019-02-14] (TODO: <Company name>) [File not signed]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1067528 2022-07-26] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234088 2022-10-08] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32688080 2022-09-29] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [Discord] => C:\Users\Jakub Straka\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13663208 2022-10-02] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [MicrosoftEdgeAutoLaunch_D9DB1379607762148C520576C1BEC44E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852200 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINYE.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852200 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\RunOnce: [Uninstall 19.043.0304.0013] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\19.043.0304.0013" (No File)
HKLM\...\Print\Monitors\EPSON L365 Series 64MonitorBE: C:\Windows\system32\E_YLMBNYE.DLL [180224 2014-03-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [117248 2021-10-19] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-08-03]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {009BED59-A443-4B7B-85EC-6D61D2A5520A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {0868E20E-469D-45FB-A0FF-BD4BF22A31FF} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-8R252F9-Jakub Straka => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {363F1D7E-3ABD-4196-A411-EA6AAFF6E593} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-10-19] (Google Inc -> Google Inc.)
Task: {396D3FA2-D9F5-40C1-9C06-E5E2269F8F1E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {4910DD0E-EE05-4442-97B4-6B06DF7D7F9A} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.47\Installer\setup.exe [3350952 2022-10-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {4FEDEBF3-AFC2-4348-8DCD-BC1D49247167} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {5A1CA31F-7D9F-402F-A41D-C920FC5850A8} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1675120 2021-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {69C004BD-EC1E-4660-97D3-C7A63C53DE26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1555696 2022-08-03] (Adobe Inc. -> Adobe Inc.)
Task: {89D9616E-67F1-4414-95F8-F0E2A1BAC0F3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {946BC61E-9008-4EC1-9CEF-EAA8159C565E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {A281F755-BAA7-4E67-96AA-D8271717EF0C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {A6237A61-59C5-4AC6-862B-D66B30118008} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2021-07-20] () [File not signed]
Task: {AA7DFA92-7DEB-41B2-9745-E2F34942A441} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2648424 2021-10-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {AE96FB0A-33D8-4F78-89F0-789DA500807B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B9118295-6D66-4D2D-B50D-55DC12F3300C} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [236704 2021-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {BFDDD633-1200-43C5-A551-9FF4CABDF5D2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {CC399123-A39E-4D6A-AE22-48DA3CB1048A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D8E50073-60A8-4A71-9020-4F04C477885E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-10-19] (Google Inc -> Google Inc.)
Task: {D976783B-9E5A-44AB-9E5B-DDF19E95683C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DA38E3AE-9E37-4D0D-8068-55151DCFE589} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {DD6F3766-D280-42D6-9D27-F86853597815} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E0ACB370-EA36-42FB-88E0-7C6006E16A65} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E4355327-53CF-4745-A110-22A45FC0F8CF} - System32\Tasks\HWiNFO => C:\Program Files\HWiNFO64\HWiNFO64.EXE [7164384 2022-09-20] (Martin Malik - REALiX -> REALiX)
Task: {EA8E9845-4885-4A6C-B8BF-6A6DCC597CAE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F1AF7641-B616-4685-B386-780B1CF07ECD} - System32\Tasks\CCleanerSkipUAC - Jakub Straka => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F202340F-8CE2-4FAD-91EF-4FDBD06B8E32} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [31903104 2022-08-31] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\EPSON L365 Series Update {C2B9ABC2-CAC7-48CE-B77C-8BB06EF4C5BA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE:/EXE:{C2B9ABC2-CAC7-48CE-B77C-8BB06EF4C5BA} /F:UpdateWORKGROUP\DESKTOP-8R252F9$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c61e5e04-8ed3-4539-8c4e-b408d564e6a3}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\Jakub Straka\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-20]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: yp5o249b.default
FF ProfilePath: C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\yp5o249b.default [2021-10-19]
FF ProfilePath: C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release [2022-10-20]
FF DownloadDir: F:\rozbaleno
FF Homepage: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> moz-extension://29a56752-ff97-4ee7-9daa-973467439929/dial.html
FF Session Restore: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> is enabled.
FF HomepageOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Disabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: @contain-facebook
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: mapy-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: seznam-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: google@search.mozilla.org
FF Extension: (Facebook Container) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\@contain-facebook.xpi [2022-10-12]
FF Extension: (Group Speed Dial) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2022-10-20]
FF Extension: (BetterTTV) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\firefox@betterttv.net.xpi [2022-10-03]
FF Extension: (New Tab Page) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\pavel.sherbakov@gmail.com.xpi [2021-02-19]
FF Extension: (RescueTime for Firefox) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\rescuetime_firefox@rescuetime.com.xpi [2020-05-27]
FF Extension: (uBlock Origin) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-09-19]
FF Extension: (Black Rain (Animated)) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{3e866059-1715-4a17-906c-02db9b30930e}.xpi [2022-10-20]
FF Extension: (GF-S Tamayori Blue 08) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{407287f9-41f0-40ac-be08-259a73b8a4a7}.xpi [2022-10-20]
FF Extension: (Matte Black (Red)) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2022-02-25]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2021-12-20] [Legacy] [not signed]
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default [2022-10-06]
CHR Extension: (Avira Password Manager) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-09-17]
CHR Extension: (Avira Browser Safety) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-09-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-19]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
"HWiNFO_172" => service could not be unlocked. <==== ATTENTION
HKLM\SYSTEM\ControlSet001\Services\HWiNFO_172 => \??\C:\Users\JAKUBS~1\AppData\Local\Temp\HWiNFO64A_172.SYS <==== ATTENTION (Rootkit!/Locked Service)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172264 2022-08-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [923656 2022-07-26] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3863256 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3701464 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [538000 2021-06-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574832 2022-01-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S4 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-21] (philandro Software GmbH -> AnyDesk Software GmbH)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3004688 2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [272672 2021-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [275088 2021-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 CPEFR; C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe [3274432 2021-04-10] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 CpSbaCipolla; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
R2 CpSbaUpdater; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812008 2021-08-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-03-04] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-19] (Epic Games Inc. -> Epic Games, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2128360 2022-10-02] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-26] (GOG Sp. z o.o. -> GOG.com)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [26030880 2022-07-30] (My.Com B.V. -> My.com B.V.)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2021-10-30] (Even Balance, Inc. -> )
R2 RemediationService; C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18624 2021-03-29] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224192 2022-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 TESvc; C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [137920 2021-04-09] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [331648 2021-12-15] (Twitch Interactive, Inc. -> )
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [4575688 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZA NET ICM Service; C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe [42208 2020-03-13] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ZAARUpdateService; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [129216 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1b5e80ff87b1f5c8\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1b5e80ff87b1f5c8\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\Windows\System32\drivers\avelam.sys [22848 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [209088 2021-10-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [199312 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 cpbak; C:\Windows\System32\DRIVERS\cpbak.sys [83248 2020-09-03] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 CPEPMon; C:\Windows\System32\DRIVERS\CPEPMon.sys [153040 2021-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Check Point Software Technologies)
S3 cpuz149; C:\Users\Jakub Straka\AppData\Local\Temp\cpuz149\cpuz149_x64.sys [44320 2022-10-15] (CPUID S.A.R.L.U. -> CPUID) <==== ATTENTION
R1 epnetflt; C:\Windows\system32\drivers\epnetflt.sys [135984 2020-12-06] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 epregflt; C:\Windows\system32\drivers\epregflt.sys [133416 2020-12-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R2 ISWKL; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [56184 2021-01-28] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 mracdrv; C:\Windows\System32\drivers\mracdrv1.sys [25266488 2022-07-30] (My.Com B.V. -> My.com B.V.)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-10-07] (Nvidia Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\mvvad.sys [48144 2022-07-26] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
R1 Vsdatant; C:\Windows\System32\drivers\vsdatant.sys [461240 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48520 2021-10-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [434424 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
U3 iswSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-10-20 14:20 - 2022-10-20 14:20 - 000002220 _____ C:\Users\Jakub Straka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2022-10-19 19:31 - 2022-10-20 15:19 - 000000000 ____D C:\FRST
2022-10-19 19:29 - 2022-10-19 19:29 - 000003794 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupVerify
2022-10-18 14:46 - 2022-10-18 14:46 - 000000039 _____ C:\Users\Jakub Straka\AppData\Local\kritadisplayrc
2022-10-15 16:15 - 2022-10-15 16:15 - 000003090 _____ C:\Windows\system32\Tasks\HWiNFO
2022-10-15 12:08 - 2022-10-15 12:08 - 000000000 ____D C:\Users\Jakub Straka\OneDrive\Dokumenty\KoeiTecmo
2022-10-15 11:38 - 2022-10-15 11:38 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-15 11:38 - 2022-10-15 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2022-10-15 11:38 - 2022-10-07 05:01 - 002884648 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 002220072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 001296936 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000169512 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000148520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000086568 _____ C:\Windows\system32\FvSDK_x64.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000075304 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2022-10-15 11:38 - 2022-10-07 05:01 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2022-10-15 11:36 - 2022-10-11 04:00 - 001967880 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-10-15 11:36 - 2022-10-11 04:00 - 001967880 _____ C:\Windows\system32\vulkaninfo.exe
2022-10-15 11:36 - 2022-10-11 04:00 - 001524512 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-10-15 11:36 - 2022-10-11 04:00 - 001524512 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-10-15 11:36 - 2022-10-11 04:00 - 001432352 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-10-15 11:36 - 2022-10-11 04:00 - 001432352 _____ C:\Windows\system32\vulkan-1.dll
2022-10-15 11:36 - 2022-10-11 04:00 - 001213968 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-10-15 11:36 - 2022-10-11 04:00 - 001145608 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-10-15 11:36 - 2022-10-11 04:00 - 001145608 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-10-15 11:36 - 2022-10-11 03:56 - 001523216 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-10-15 11:36 - 2022-10-11 03:56 - 001185272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-10-15 11:36 - 2022-10-11 03:56 - 000870960 _____ C:\Windows\system32\nvofapi64.dll
2022-10-15 11:36 - 2022-10-11 03:56 - 000693808 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 012540952 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 002246704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 001653288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 001261104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 000987672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-10-15 11:36 - 2022-10-11 03:55 - 000709680 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-10-15 11:36 - 2022-10-11 03:55 - 000457264 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-10-15 11:36 - 2022-10-11 03:54 - 015218672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-10-15 11:36 - 2022-10-11 03:54 - 005906416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2022-10-15 11:36 - 2022-10-11 03:54 - 005429248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-10-15 11:36 - 2022-10-11 03:54 - 003101208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-10-15 11:36 - 2022-10-11 03:53 - 000853520 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-10-15 11:36 - 2022-10-11 03:52 - 006457792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-10-15 11:36 - 2022-10-07 05:01 - 000095170 _____ C:\Windows\system32\nvinfo.pb
2022-10-15 11:36 - 2022-10-07 05:01 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2022-10-15 11:36 - 2022-10-07 05:01 - 000059368 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2022-10-15 11:36 - 2022-10-07 05:01 - 000041984 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2022-10-15 11:33 - 2022-10-15 11:34 - 840728584 _____ (NVIDIA Corporation) C:\Users\Jakub Straka\Downloads\522.25-desktop-win10-win11-64bit-international-dch-whql.exe
2022-10-13 11:11 - 2022-10-13 11:11 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-10-13 11:11 - 2022-10-13 11:11 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-10-13 11:11 - 2022-10-13 11:11 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-10-13 11:11 - 2022-10-13 11:11 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-10-13 11:11 - 2022-10-13 11:11 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-10-13 11:11 - 2022-10-13 11:11 - 000012253 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-10-13 11:10 - 2022-10-13 11:10 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-10-13 11:07 - 2022-10-13 11:07 - 000000000 ___HD C:\$WinREAgent
2022-10-12 21:24 - 2022-10-13 11:41 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2022-10-11 21:08 - 2022-10-16 10:02 - 014281408 _____ (Audacity Team ) C:\Users\Jakub Straka\Downloads\audacity-win-3.2.1-64bit.exe
2022-10-10 11:10 - 2022-10-10 11:10 - 000883254 _____ C:\Users\Jakub Straka\Downloads\321139__jsbarrett__breaking-glass.wav
2022-10-10 10:11 - 2022-10-10 11:26 - 000000000 ____D C:\Users\Jakub Straka\input-overlay
2022-10-10 10:10 - 2022-10-10 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advanced-scene-switcher
2022-10-10 10:09 - 2022-10-10 10:09 - 060658012 _____ (WarmUpTill ) C:\Users\Jakub Straka\Downloads\advanced-scene-switcher-windows-x64-Installer.exe
2022-10-10 10:02 - 2022-10-10 10:02 - 003183453 _____ (univrsal ) C:\Users\Jakub Straka\Downloads\input-overlay-5.0.0-windows-x64-Installer.exe
2022-10-10 10:02 - 2022-10-10 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\input-overlay
2022-10-10 10:00 - 2022-10-10 10:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transition Table
2022-10-10 09:59 - 2022-10-10 09:59 - 002114135 _____ C:\Users\Jakub Straka\Downloads\transition-table-0.2.5-windows-installer.zip
2022-10-07 22:07 - 2022-10-07 22:07 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\SuperMegaTeam
2022-10-07 20:49 - 2022-10-07 20:49 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Strelka Games
2022-10-07 20:10 - 2022-10-07 20:10 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Engineer
2022-10-07 17:21 - 2022-10-07 17:21 - 000000000 ____D C:\ProgramData\GameCenterVPN2
2022-10-06 00:10 - 2022-10-11 04:00 - 001472024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-10-06 00:10 - 2022-10-11 03:56 - 000823344 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-10-06 00:10 - 2022-10-11 03:54 - 005753352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-10-06 00:09 - 2022-10-06 00:10 - 825894408 _____ (NVIDIA Corporation) C:\Users\Jakub Straka\Downloads\517.48-desktop-win10-win11-64bit-international-dch-whql.exe
2022-10-05 22:53 - 2022-10-05 22:53 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Autoexec Games
2022-10-05 21:42 - 2022-10-05 21:42 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Souldead
2022-10-05 21:38 - 2022-10-05 21:38 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\PlaytraGames Ltd
2022-10-05 20:17 - 2022-10-05 20:17 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Pastagames
2022-10-04 22:58 - 2022-10-04 22:58 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Micah Boursier
2022-10-04 22:26 - 2022-10-04 22:26 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\heinn
2022-10-04 22:20 - 2022-10-04 22:20 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Yaza Games
2022-10-04 21:30 - 2022-10-04 21:30 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\PartyTowers
2022-10-02 10:27 - 2022-10-02 10:27 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\StoneLantern
2022-09-29 23:43 - 2022-09-29 23:43 - 000000000 ____D C:\ProgramData\obs-studio
2022-09-28 09:07 - 2022-09-28 09:07 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\stalefiles
2022-09-28 08:45 - 2022-10-11 22:10 - 000005204 _____ C:\Users\Jakub Straka\AppData\Local\kdenliverc
2022-09-28 08:45 - 2022-09-28 08:45 - 000008337 _____ C:\Users\Jakub Straka\AppData\Local\kdenlive-layoutsrc
2022-09-28 08:45 - 2022-09-28 08:45 - 000007889 _____ C:\Users\Jakub Straka\AppData\Local\user-places.xbel
2022-09-28 08:45 - 2022-09-28 08:45 - 000005808 _____ C:\Users\Jakub Straka\AppData\Local\user-places.xbel.bak
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\kdenlive
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\mime
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\kdenlive
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 _____ C:\Users\Jakub Straka\AppData\Local\user-places.xbel.tbcache
2022-09-27 20:03 - 2022-09-27 20:03 - 002711389 _____ C:\Users\Jakub Straka\Downloads\Veil - 66423.mp4
2022-09-25 18:35 - 2022-09-25 18:35 - 000501936 _____ C:\Users\Jakub Straka\Downloads\com.elgato.obsstudio.streamDeckPlugin
2022-09-25 18:34 - 2022-09-25 18:34 - 008372224 _____ C:\Users\Jakub Straka\Downloads\Stream_Deck_OBS_Plugin_5.3.2.35.msi
2022-09-25 18:03 - 2022-09-25 18:03 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\ToastNotificationManagerCompat
2022-09-25 18:02 - 2022-09-25 18:20 - 000000000 ____D C:\ProgramData\Voicemod
2022-09-25 18:02 - 2022-09-25 18:19 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Voicemod
2022-09-25 18:02 - 2022-09-25 18:02 - 000001854 _____ C:\ProgramData\Plocha\Voicemod.lnk
2022-09-25 18:02 - 2022-09-25 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2022-09-25 18:02 - 2022-09-25 18:02 - 000000000 ____D C:\Program Files\Voicemod Desktop
2022-09-25 18:02 - 2022-07-26 12:49 - 000048144 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\mvvad.sys
2022-09-25 18:01 - 2022-09-25 18:01 - 080842536 _____ (Voicemod S.L. ) C:\Users\Jakub Straka\Downloads\VoicemodSetup_2.35.0.0.exe
2022-09-25 17:44 - 2022-09-25 17:44 - 003213085 _____ C:\Users\Jakub Straka\Downloads\Photoshop Shortcut Icons Sampler 1.3.zip
2022-09-25 17:37 - 2022-09-25 17:37 - 001836945 _____ C:\Users\Jakub Straka\Downloads\PacMan Stream Deck Wallpaper.zip
2022-09-25 10:39 - 2022-09-25 10:43 - 000000000 ____D C:\Program Files\HWiNFO64
2022-09-25 10:39 - 2022-09-25 10:39 - 010377928 _____ (Martin Malik - REALiX ) C:\Users\Jakub Straka\Downloads\hwi_730.exe
2022-09-25 10:39 - 2022-09-25 10:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2022-09-25 10:06 - 2022-09-25 10:06 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Ookla
2022-09-25 09:20 - 2022-09-28 08:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\cache
2022-09-25 09:15 - 2022-09-29 23:43 - 000001145 _____ C:\ProgramData\Plocha\Stream Deck.lnk
2022-09-25 09:15 - 2022-09-25 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato
2022-09-25 09:15 - 2022-09-25 18:34 - 000000000 ____D C:\Program Files\Elgato
2022-09-25 09:15 - 2022-09-25 09:15 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Elgato
2022-09-25 09:15 - 2022-09-25 09:15 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Elgato
2022-09-25 09:15 - 2022-09-25 09:15 - 000000000 ____D C:\ProgramData\Elgato
2022-09-25 09:14 - 2022-09-25 09:14 - 105885696 _____ C:\Users\Jakub Straka\Downloads\Stream_Deck_5.3.1.15197.msi
2022-09-24 14:00 - 2022-09-24 14:51 - 000000000 ____D C:\Users\Jakub Straka\Heaven
2022-09-24 13:59 - 2022-10-15 12:42 - 001065984 _____ C:\Users\Jakub Straka\AppData\Local\file__0.localstorage
2022-09-24 13:59 - 2022-09-24 13:59 - 000001396 _____ C:\ProgramData\Plocha\Heaven Benchmark 4.0.lnk
2022-09-24 13:59 - 2022-09-24 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2022-09-24 13:59 - 2022-09-24 13:59 - 000000000 ____D C:\Program Files (x86)\Unigine
2022-09-24 13:58 - 2022-09-24 13:58 - 259708359 _____ (Unigine Corp. ) C:\Users\Jakub Straka\Downloads\Unigine_Heaven-4.0.exe
2022-09-24 10:31 - 2022-09-24 10:31 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\LightBringer
2022-09-22 14:58 - 2022-09-22 14:58 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\KhayalanArts
2022-09-22 14:55 - 2022-09-22 14:55 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\gloom
2022-09-21 18:52 - 2022-09-21 18:52 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Squad51
2022-09-21 17:37 - 2022-09-21 17:37 - 000000000 ____D C:\Users\Jakub Straka\OneDrive\Dokumenty\SpiritusGames
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-10-20 15:19 - 2021-10-23 07:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\discord
2022-10-20 15:19 - 2021-10-19 22:09 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Mozilla
2022-10-20 14:50 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-20 14:42 - 2021-10-19 21:09 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-20 14:37 - 2021-10-23 07:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Discord
2022-10-20 14:26 - 2021-10-19 14:39 - 001694140 _____ C:\Windows\system32\PerfStringBackup.INI
2022-10-20 14:26 - 2019-12-07 16:43 - 000717008 _____ C:\Windows\system32\perfh005.dat
2022-10-20 14:26 - 2019-12-07 16:43 - 000145186 _____ C:\Windows\system32\perfc005.dat
2022-10-20 14:26 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-10-20 14:23 - 2021-10-19 18:58 - 000000000 ____D C:\ProgramData\NVIDIA
2022-10-20 14:23 - 2021-10-19 16:57 - 000000000 ____D C:\Program Files\CCleaner
2022-10-20 14:21 - 2022-02-12 09:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-20 14:20 - 2021-10-19 22:09 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-20 14:20 - 2021-10-19 22:09 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-10-20 14:20 - 2021-10-19 22:09 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-10-20 14:20 - 2021-10-19 20:43 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-20 14:20 - 2021-10-19 20:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-10-20 01:42 - 2021-10-19 20:43 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-10-20 01:42 - 2021-10-19 16:25 - 000000000 ____D C:\Program Files (x86)\Steam
2022-10-20 01:42 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-10-20 00:07 - 2021-10-19 16:44 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\obs-studio
2022-10-19 19:51 - 2021-10-19 15:04 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\D3DSCache
2022-10-19 00:27 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-19 00:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-10-18 14:46 - 2022-04-16 08:10 - 000016954 _____ C:\Users\Jakub Straka\AppData\Local\kritarc
2022-10-18 14:46 - 2022-04-16 08:10 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\krita
2022-10-18 01:37 - 2021-10-19 17:20 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2022-10-18 00:23 - 2021-11-21 10:56 - 000004784 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask
2022-10-18 00:23 - 2021-10-19 21:06 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-16 13:56 - 2022-09-17 11:04 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\audacity
2022-10-16 13:56 - 2022-09-17 07:22 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Videoder
2022-10-16 11:24 - 2021-12-20 23:26 - 000001480 _____ C:\Users\Jakub Straka\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2022-10-16 11:04 - 2021-10-19 15:03 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Adobe
2022-10-16 10:37 - 2021-12-23 01:36 - 000000132 _____ C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2022-10-15 16:14 - 2021-10-19 16:35 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\NVIDIA Corporation
2022-10-15 13:59 - 2021-10-19 17:50 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Origin
2022-10-15 13:59 - 2021-10-19 17:50 - 000000000 ____D C:\ProgramData\Origin
2022-10-15 13:54 - 2021-10-19 17:50 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Origin
2022-10-15 13:06 - 2021-10-23 08:38 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-10-15 13:05 - 2021-10-19 17:51 - 000000000 ____D C:\Program Files (x86)\Origin
2022-10-15 11:39 - 2021-10-19 15:06 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\NVIDIA
2022-10-15 11:38 - 2021-11-13 22:39 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-10-15 11:38 - 2021-10-19 14:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-10-15 11:38 - 2021-10-19 14:47 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-10-15 11:32 - 2021-10-19 16:57 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-10-13 22:40 - 2021-11-13 22:40 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\CrashDumps
2022-10-13 20:47 - 2021-10-19 21:10 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-13 11:41 - 2021-10-19 22:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-10-13 11:41 - 2021-10-19 20:43 - 005169816 _____ C:\Windows\system32\FNTCACHE.DAT
2022-10-13 11:40 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-10-13 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-10-13 11:12 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-10-13 11:12 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2022-10-13 11:12 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-10-13 11:10 - 2021-10-19 14:36 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-10-13 01:38 - 2021-10-19 14:49 - 000000000 ____D C:\Windows\system32\MRT
2022-10-13 01:32 - 2021-10-19 14:49 - 147398024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-10-12 09:42 - 2021-10-21 20:23 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-10-12 08:42 - 2021-10-19 21:06 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-12 08:42 - 2021-10-19 21:06 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-11 21:35 - 2021-10-19 14:45 - 000000000 ____D C:\Users\Jakub Straka
2022-10-11 03:52 - 2021-10-19 14:47 - 007587776 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2022-10-10 10:52 - 2021-10-19 19:13 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\vlc
2022-10-10 10:10 - 2021-10-19 16:33 - 000000000 ____D C:\Program Files (x86)\obs-studio
2022-10-10 10:00 - 2021-12-25 21:01 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\EBWebView
2022-10-07 05:01 - 2021-10-19 14:47 - 000129000 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2022-10-04 22:20 - 2022-08-15 19:57 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Daedalic Entertainment GmbH
2022-10-02 15:26 - 2021-11-23 22:56 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2022-10-02 10:26 - 2022-08-15 20:11 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\noio
2022-09-30 14:18 - 2021-10-19 15:04 - 000003542 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-09-28 08:43 - 2022-01-06 00:07 - 000000000 ____D C:\Users\Jakub Straka\.openshot_qt
2022-09-22 15:02 - 2022-08-27 11:44 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\BEESWAX GAMES
2022-09-20 02:00 - 2021-11-10 02:16 - 000000000 ____D C:\Users\Administrator
==================== Files in the root of some directories ========
2022-02-13 10:50 - 2022-02-13 10:50 - 000000132 _____ () C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2021-12-23 01:36 - 2022-10-16 10:37 - 000000132 _____ () C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2021-10-19 18:16 - 2022-07-24 23:27 - 000000015 _____ () C:\Users\Jakub Straka\AppData\Roaming\obs-virtualcam.txt
2021-12-20 23:26 - 2022-10-16 11:24 - 000001480 _____ () C:\Users\Jakub Straka\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2022-09-24 13:59 - 2022-10-15 12:42 - 001065984 _____ () C:\Users\Jakub Straka\AppData\Local\file__0.localstorage
2022-09-28 08:45 - 2022-09-28 08:45 - 000008337 _____ () C:\Users\Jakub Straka\AppData\Local\kdenlive-layoutsrc
2022-09-28 08:45 - 2022-10-11 22:10 - 000005204 _____ () C:\Users\Jakub Straka\AppData\Local\kdenliverc
2022-04-16 08:10 - 2022-10-18 14:46 - 000005104 _____ () C:\Users\Jakub Straka\AppData\Local\krita-sysinfo.log
2022-04-16 08:10 - 2022-10-18 14:46 - 000003718 _____ () C:\Users\Jakub Straka\AppData\Local\krita.log
2022-10-18 14:46 - 2022-10-18 14:46 - 000000039 _____ () C:\Users\Jakub Straka\AppData\Local\kritadisplayrc
2022-04-16 08:10 - 2022-10-18 14:46 - 000016954 _____ () C:\Users\Jakub Straka\AppData\Local\kritarc
2021-12-22 05:48 - 2021-12-22 05:48 - 000000000 _____ () C:\Users\Jakub Straka\AppData\Local\oobelibMkey.log
2021-10-20 22:14 - 2021-10-20 22:14 - 000007609 _____ () C:\Users\Jakub Straka\AppData\Local\Resmon.ResmonCfg
2022-09-28 08:45 - 2022-09-28 08:45 - 000007889 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel
2022-09-28 08:45 - 2022-09-28 08:45 - 000005808 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel.bak
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel.tbcache
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================