Prosím o preventivní kontrolu logu
Napsal: 05 lis 2023 08:22
Prosím o preventivní kontrolu logu. Při pokusu spustit některé aplikace, se aplikace nespustí a zjistil jsem, že přes režim kompatability ano. Děkuji moc za rady.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-10-2023
Ran by hlava (administrator) on ACER-ASPIRE (Acer Nitro AN515-56) (05-11-2023 08:11:43)
Running from C:\Users\hlava\Downloads\FRST64 (1).exe
Loaded Profiles: hlava
Platform: Microsoft Windows 11 Home (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe
(Adguard Software Limited -> Adguard Software Limited) C:\Program Files (x86)\Adguard\Adguard.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Genuine Service\GenuineService.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\NetSetMan\nsmservice.exe ->) (NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\netsetman.exe
(C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\AdskAccessUIHost.exe <4>
(C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdskIdentityManager\1.9.18.0\AdskIdentityManager.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\GrafanaLabs\svc-9.1.5.0\nssm.exe ->) () [File not signed] C:\Program Files\GrafanaLabs\grafana\bin\grafana-server.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <6>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.44\msedgewebview2.exe <6>
(C:\Users\hlava\AppData\Roaming\BitTorrent Web\btweb.exe ->) (Rainberry Inc -> BitTorrent Inc.) C:\Users\hlava\AppData\Roaming\BitTorrent Web\helper\helper.exe
(C:\Users\hlava\AppData\Roaming\uTorrent\uTorrent.exe ->) (BitTorrent Inc.) [File not signed] C:\Users\hlava\AppData\Roaming\uTorrent\updates\3.4.6_42178\utorrentie.exe <2>
(cmd.exe ->) (Adguard Software Limited -> Adguard Software Limited) C:\Program Files (x86)\Adguard\Adguard.BrowserExtensionHost.exe
(drivers\RivetNetworks\Killer\KAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe
(drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEMN.exe
(explorer.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe
(explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\hlava\AppData\Roaming\uTorrent\uTorrent.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\hlava\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <26>
(explorer.exe ->) (LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(explorer.exe ->) (Rainberry Inc -> BitTorrent Inc.) C:\Users\hlava\AppData\Roaming\BitTorrent Web\btweb.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(KYE SYSTEMS CORP. -> ) C:\Users\hlava\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartFore.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [File not signed] C:\Program Files\GrafanaLabs\svc-9.1.5.0\nssm.exe
(services.exe ->) () [File not signed] C:\Users\Public\AppData\Roaming\Flixmate\flixmate.service.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Adguard Software Limited -> Adguard Software Limited) C:\Program Files (x86)\Adguard\AdguardSvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\13.0.0.8122\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\Freedome\fsvpnservice.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_a5ea1b1d8db1527e\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9dbc143909c9c41e\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_0f43cda6a2474b5c\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_e3868713e3d137ef\esif_uf.exe
(services.exe ->) (LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\nsmservice.exe
(services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.23.9.9\NortonSecurity.exe <2>
(services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.23.9.9\nsWscSvc.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_b7653e998d156664\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_63ffa3cb4ae6dbc0\RtkAudUService64.exe <3>
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(services.exe ->) (Zinlab Technologies -> ) C:\Users\Public\AppData\Roaming\Flixmate\update\Flixmate.UpdateService.exe
(sihost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(sihost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2342.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxextN.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe <2>
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\hlava\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_63ffa3cb4ae6dbc0\RtkAudUService64.exe [1222448 2021-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9922800 2022-10-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe [7777240 2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RunSmartHIDFile] => C:\Users\hlava\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHIDStart.exe [524288 2020-09-15] () [File not signed]
HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe [18088224 2023-05-02] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [618328 2023-10-04] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [NetSetMan] => C:\Program Files (x86)\NetSetMan\netsetman.exe [7447424 2019-11-08] (NetSetMan GmbH -> NetSetMan GmbH)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2022-09-02] (Adobe Inc. -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2022-02-07] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\hlava\AppData\Local\Microsoft\Teams\Update.exe [2454240 2022-09-11] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [7072472 2023-10-20] (Adguard Software Limited -> Adguard Software Limited)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe [3638792 2023-09-21] (Autodesk, Inc. -> Autodesk)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-370656792-1244637223-2425275819-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\agnes\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-370656792-1244637223-2425275819-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\agnes\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-370656792-1244637223-2425275819-1001\...\Run: [Bonus.SSR.FR15] => C:\Program Files (x86)\ABBYY FineReader 15\ScreenshotReader.exe [1187488 2020-09-09] (ABBYY Production LLC -> ABBYY Production LLC.)
HKU\S-1-5-21-370656792-1244637223-2425275819-1001\...\MountPoints2: {86c5814d-64d2-11ed-90a9-f47b0969a8e2} - "G:\RTK_NIC_DRIVER_INSTALLER.sfx.exe"
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [f.lux] => C:\Users\hlava\AppData\Local\FluxSoftware\Flux\flux.exe [1527416 2023-09-22] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [GoogleChromeAutoLaunch_BEF88DE6C69ADEC784F7524F894B6CAA] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2680608 2023-10-30] (Google LLC -> Google LLC)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [Bonus.SSR.FR15] => C:\Program Files (x86)\ABBYY FineReader 15\ScreenshotReader.exe [1187488 2020-09-09] (ABBYY Production LLC -> ABBYY Production LLC.)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [MicrosoftEdgeAutoLaunch_76554E69F94DC990BB425147D5D0F2CD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891768 2023-11-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [btweb] => C:\Users\hlava\AppData\Roaming\BitTorrent Web\btweb.exe [6467584 2023-10-03] (Rainberry Inc -> BitTorrent Inc.)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [uTorrent] => C:\Users\hlava\AppData\Roaming\uTorrent\uTorrent.exe [1959424 2016-04-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2023-11-05] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Policies\Explorer: []
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Policies\Explorer\DisallowRun: [9] mrt.exe
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\MountPoints2: {81311b40-b045-11ed-90c4-f47b0969a8e2} - "E:\SISetup.exe"
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\MountPoints2: {824b8ab5-6bb6-11ed-90ad-f47b0969a8e2} - "E:\OnePlus_setup.exe" /s
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\MountPoints2: {86c5814d-64d2-11ed-90a9-f47b0969a8e2} - "H:\RTK_NIC_DRIVER_INSTALLER.sfx.exe"
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [180224 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2010-03-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2022-07-05] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP1100LM: C:\Windows\system32\HP1100LM.DLL [289280 2010-03-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\PDF-XChange5-ABBYY-FR15: C:\WINDOWS\system32\pxc50pmaf15.dll [57328 2018-12-04] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.105\Installer\chrmstp.exe [2023-10-31] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{99F7E96B-DA09-4D46-ACAE-C6D019DD46B2}] -> C:\Program Files (x86)\ABBYY FineReader 15\ScreenshotReader.exe [2020-09-09] (ABBYY Production LLC -> ABBYY Production LLC.)
Startup: C:\Users\agnes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2022-11-16]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {E8825A36-A678-431D-85BF-8B1561DE6913} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> )
Task: {668A4BCE-E12C-4686-BCF6-5564286ADBD7} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41632 2021-12-30] (Acer Incorporated -> )
Task: {6DA114E4-5224-40B7-BD92-75AE0536364C} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836512 2021-12-30] (Acer Incorporated -> )
Task: {D341E3E8-8FE9-49CF-945D-65BF9BD2681E} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {FCB6C16A-64F7-450A-947D-1748927334D6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {3B0DDE6C-590C-4906-AB9C-ADEEE96CDE50} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {A22C234B-E082-4B5E-8D39-A2FE57A96C47} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AED1EFBB-029A-40D2-B4EB-015D12567BF9} - System32\Tasks\App Explorer => C:\Users\hlava\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {78EDBF19-F185-4281-95D5-80ECE27982A4} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3827728 2022-10-21] (Corel Corporation -> Corel Corporation)
Task: {3BE682AF-5B1C-422C-AED6-4DE571DF19F0} - System32\Tasks\CorelUpdateHelperTask-DF2840C7C8727F488155D040C48163A8 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3827728 2022-10-21] (Corel Corporation -> Corel Corporation)
Task: {B88E8C9D-FF1B-4D44-9CC6-8808CCEDCBFD} - System32\Tasks\FreedomeHelper => C:\Program Files (x86)\F-Secure\Freedome\FHelper.exe [649807 2021-10-02] (F-Secure Corporation) [File not signed]
Task: {2A8C35E5-D429-47D6-807E-BE59FDBD7C69} - System32\Tasks\GoogleUpdateTaskMachineCore{6640F5AD-BBA4-436B-804B-FEEC04C0D30A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-25] (Google LLC -> Google LLC)
Task: {255B27D8-7F62-4B82-964F-0DAC064C2EE1} - System32\Tasks\GoogleUpdateTaskMachineUA{C77A1422-55C9-4B27-8B09-4A4663B1362A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-25] (Google LLC -> Google LLC)
Task: {27A21B8C-138A-45CB-AF5D-9729DF6F405F} - System32\Tasks\hlava => C:\Windows\system32\cmd.exe [323584 2023-05-10] (Microsoft Windows -> Microsoft Corporation) -> /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v hlava /t REG_SZ /d "cmd.exe /c start www.dinoraptzor.org" <==== ATTENTION
Task: {68BFFCE6-1DC7-4049-A00B-54155BD16CA5} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60368 2023-09-14] (HP Inc. -> HP Inc.)
Task: {DAFC2A13-F728-4BC5-887D-4BB2402A002F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60368 2023-09-14] (HP Inc. -> HP Inc.)
Task: {3CB05F1B-2059-4664-97D5-3F80A16E7AD3} - System32\Tasks\MaiSoft\QA_D24E7CD0-6AAF-4B8F-BC73-C22872A8286B => C:\Users\hlava\AppData\Local\QA\Helper.vbs [3065 2023-03-15] () [File not signed]
Task: {F036DABD-2B2F-42DD-803A-6728D9581303} - System32\Tasks\MaiSoft\QA-de_D24E7CD0-6AAF-4B8F-BC73-C22872A8286B => C:\Users\hlava\AppData\Local\QA\Helper.vbs [3065 2023-03-15] () [File not signed]
Task: {A97163D4-1D89-4173-B378-97EF8DA6076D} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-370656792-1244637223-2425275819-1002 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1960.4.210.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2277624 2023-09-29] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.)
Task: {F46E881C-A3C0-4E3F-A68A-49B9911C37FA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-10-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {82B18A2B-1EFA-4F5C-AB08-6B83F5293AE8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-10-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {C2126CD9-34FA-4263-B7A4-9AE13D2D52BF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {80315882-2668-4C09-A12A-C2123941DFA9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC9B1F0C-5A0D-4034-9D4E-FD2C26B87C0A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169656 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B4A0D2B-843A-4D1C-89EE-D89E4266C5CA} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {B109ADD9-E404-46E1-A130-FCA39A8CCA5B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {F3D89A51-52F2-43B6-855E-6A12019B4B28} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {8FD1EAA0-39C8-404E-BA59-F19B6C38B3E9} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {BD50C81C-1593-4E77-9F70-801494B92358} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {48AA1E7B-A1A4-4660-8F86-E97B112ADECE} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {4BE2A896-8B0D-4B49-ABEA-205205EFFDB3} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {69BEBE52-1C57-4BFD-8C04-E9600B8F0FE6} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {7136ECEC-A3FF-4AB6-A066-64E0C98B3427} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {603F9570-1400-4BE1-97AB-811F2B8E6632} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {AEBDE666-110D-4194-A8AB-C316FA43DBC9} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [466944 2023-07-11] (Microsoft Windows -> Microsoft Corporation)
Task: {0D905598-B478-4485-B35E-CB424D427676} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [466944 2023-07-11] (Microsoft Windows -> Microsoft Corporation)
Task: {C3D36184-73C4-4C61-B200-A17DB076730E} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {D9EAEF20-E141-477E-81DB-961B0C62EE39} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Wsc Startup event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {72EB4CDC-4E36-434E-A45F-D8F462D37AC5} - System32\Tasks\Microsoft\Windows\Shell\WindowsObjectChecking => C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\3CB3657D123340C4958F490CEF14D911\677A046F442E492C99857DA4C5C4F1E7.vbe [688390 2023-11-05] () [File not signed] <==== ATTENTION
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {67E7A0D8-02FD-441D-9D18-C5700ECC4007} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [714056 2022-10-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {51C98C7F-FC35-4C21-B094-6254C7CB6B5B} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [610832 2021-03-26] (Acer Incorporated -> Acer Incorporated)
Task: {222CBB3F-CB07-43B2-8BB0-E766FE3E3E46} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.23.9.9\SymErr.exe [379024 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {23A90B34-F60E-465E-859B-D2FBCBAF5861} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.23.9.9\SymErr.exe [379024 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {2D72D2CD-DCA8-4F92-B084-BF29E7DEC850} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.23.9.9\SymErr.exe [379024 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {60948138-E2F2-4AFC-B450-5F727A164D0F} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.23.9.9\WSCStub.exe [646520 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {252F6782-5701-40CB-B20D-DA7581CBB3FF} - System32\Tasks\NortonLifeLock Trial Agent V2 => "C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NLOKTrialAgentV2.exe" /scheduled (No File)
Task: {C1ED73E0-FBBF-42A0-BBF6-7661FA448C94} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2021-03-24] () [File not signed]
Task: {3A56AEBC-7BD5-4FBA-AFDF-3B93C95D6CBA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5FE814D4-8334-425D-AA4B-7883EEACB6E7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {55AFFD43-0227-445D-808A-733255643077} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DDD4411F-5950-4AAC-809A-72FCCFC9507B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {286117DB-7099-400E-82E3-AFD328769546} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F31C020A-AC0F-4E41-9AA6-C70D81275102} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {30C474D9-B2BC-4042-9734-524C252A2693} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23C8D420-1E06-4B02-834B-5D5D10AF3AF4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {05B13E17-3E7C-4FAC-A71B-96EED5B50645} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E6D60564-0AE9-4BF9-8137-B366B77C9699} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {7CFA7233-927C-4511-8105-7F493078C9E5} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [18224 2021-03-22] (Acer Incorporated -> )
Task: {1CCC93B2-DFF6-4F21-A6AA-C52E1283F981} - System32\Tasks\Opera scheduled Autoupdate 1661369613 => C:\Users\hlava\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {049CBB2C-BDF9-48A6-8D85-993010C08E6C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {9B289DD3-BA5C-4390-88A7-3BAF4B770207} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2353000 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {4018634A-E14C-448E-A0C9-F5BF5B6C0B97} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2021-12-30] (Acer Incorporated -> Acer Incorporated)
Task: {E0A3FCB8-1107-4197-BCC8-6FC6077B9528} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft)
Task: {87F159A0-3824-458F-BF7C-266E3EDA9A97} - System32\Tasks\TempClean1 => C:\Windows\system32\wevtutil.exe [327680 2023-10-13] (Microsoft Windows -> Microsoft Corporation) -> cl Application
Task: {F5713D3B-CFA4-41B8-9FDD-EE1821FEEA4C} - System32\Tasks\TempClean2 => C:\Windows\system32\wevtutil.exe [327680 2023-10-13] (Microsoft Windows -> Microsoft Corporation) -> cl System
Task: {7D2CF6C1-F427-40E3-A564-770CD6EE6F47} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268520 2021-04-19] (Acer Incorporated -> Acer Incorporated)
Task: {F33F75D4-C217-411D-BFA2-422EF41F779D} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2021-04-19] (Acer Incorporated -> Acer Incorporated)
Task: {ECEC2ABB-E4B4-4C02-AE06-7A01DECAAB03} - System32\Tasks\WindowsTaskCoreUpdate => C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\943EB172A12C4F4BA4C511BA4F7DE31C\10DB894244524EA7A862E0EE6BE4C92B.vbe [23570 2023-11-05] () [File not signed] <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.0 account.zoner.com
Tcpip\Parameters: [DhcpNameServer] 193.179.211.46 193.179.211.28
Tcpip\..\Interfaces\{42c4da83-bf83-4575-8bff-68f4159d8c8c}: [DhcpNameServer] 193.179.211.46 193.179.211.28
Tcpip\..\Interfaces\{c0e3673e-5467-49ec-9dbd-915d5e478b59}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\hlava\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-05]
Edge Extension: (Dokumenty Google offline) - C:\Users\hlava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-28]
Edge Extension: (Edge relevant text changes) - C:\Users\hlava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14]
Edge Profile: C:\Users\hlava\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-07-19]
FireFox:
========
FF DefaultProfile: g1nl5qot.default
FF ProfilePath: C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\g1nl5qot.default [2023-11-05]
FF Homepage: Mozilla\Firefox\Profiles\g1nl5qot.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2023-11-05 05:16:04&bName=
FF NewTab: Mozilla\Firefox\Profiles\g1nl5qot.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2023-11-05 05:16:04&bName=
FF Extension: (Seznam doplněk - Esko) - C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\g1nl5qot.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-12-05]
FF Extension: (Seznam doplněk - Email) - C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\g1nl5qot.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-12-05]
FF ProfilePath: C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\nzn7m1zy.default-release [2023-11-05]
FF Homepage: Mozilla\Firefox\Profiles\nzn7m1zy.default-release -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2023-11-05 05:16:04&bName=
FF NewTab: Mozilla\Firefox\Profiles\nzn7m1zy.default-release -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2023-11-05 05:16:04&bName=
FF Extension: (Amazon Assistant) - C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\nzn7m1zy.default-release\Extensions\abb-acer@amazon.com.xpi [2022-08-25] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\nzn7m1zy.default-release\Extensions\langpack-cs@firefox.mozilla.org.xpi [2022-08-25]
FF SearchPlugin: C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\nzn7m1zy.default-release\searchplugins\My Bing Search.xml [2023-11-05]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: JFGuide -> C:\Program Files (x86)\NetSurveillance\CMS\npGuide.dll [2022-04-22] () [File not signed]
FF Plugin-x32: JFWeb -> C:\Program Files (x86)\NetSurveillance\CMS\npWebPlugin.dll [2022-04-22] () [File not signed]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default [2023-11-05]
CHR DownloadDir: C:\Users\hlava\Downloads
CHR Notifications: Default -> hxxps://www.youtube.com
CHR Extension: (Blokátor reklam AdGuard) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2023-10-31]
CHR Extension: (AdGuard asistent prohlížeče) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbohpolgemkbfphodcfgnpjcmedcjhpn [2023-05-25]
CHR Extension: (Norton Safe Web) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2023-09-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-21]
CHR Extension: (Adblock For Youtube - Adblock pro Youtube) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\giaoehhefkmchjbbdnahgeppblbdejmj [2023-10-26]
CHR Extension: (Video Downloader PLUS) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2023-03-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-25]
CHR Extension: (Speedtest by Ookla) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2023-06-17]
CHR Profile: C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-07-19]
CHR Profile: C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-07-19]
CHR Extension: (Safe Torrent Scanner) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-03-09]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-03-09]
CHR Extension: (Google Docs Offline) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-24]
CHR Profile: C:\Users\hlava\AppData\Local\Google\Chrome\User Data\System Profile [2023-11-05]
CHR HKU\S-1-5-21-370656792-1244637223-2425275819-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-370656792-1244637223-2425275819-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKU\S-1-5-21-370656792-1244637223-2425275819-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR Profile: C:\Users\hlava\AppData\Roaming\Opera Software\Opera Stable [2023-07-19]
OPR Extension: (Rich Hints Agent) - C:\Users\hlava\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-08-24]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\hlava\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-08-24]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated)
R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [800984 2023-10-20] (Adguard Software Limited -> Adguard Software Limited)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [15280648 2022-11-23] (Autodesk, Inc. -> Autodesk)
S2 AdskNLM; C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe [1201488 2021-04-04] (Flexera Software LLC -> Flexera)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2023-10-02] (Apple Inc. -> Apple Inc.)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [10539808 2023-05-21] (Autodesk, Inc. -> Autodesk, Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2022-01-26] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12876472 2023-10-28] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4960120 2022-08-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [420536 2022-10-13] (DTS, Inc. -> DTS Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11029096 2023-04-17] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-08-27] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
R2 Flixmate.UpdateService; C:\Users\public\AppData\Roaming\Flixmate\update\Flixmate.UpdateService.exe [24352 2022-08-31] (Zinlab Technologies -> )
R2 FlixmateService; C:\Users\public\AppData\Roaming\Flixmate\flixmate.service.exe [136704 2022-08-31] () [File not signed]
R3 Freedome Service; C:\Program Files (x86)\F-Secure\Freedome\fsvpnservice.exe [1812360 2023-03-07] (F-Secure Corporation -> F-Secure Corporation)
S3 GameforgeClientService; C:\Program Files (x86)\GameforgeClient\gfservice.exe [635968 2023-08-07] (Gameforge 4D GmbH -> )
R2 Grafana; C:\Program Files\GrafanaLabs\svc-9.1.5.0\nssm.exe [331264 2022-09-13] () [File not signed]
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-14] (HP Inc. -> HP Inc.)
R2 HPSIService; C:\WINDOWS\system32\HPSIsvc.exe [127800 2010-04-07] (Hewlett-Packard Company -> HP)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_0f43cda6a2474b5c\AS\IAS\IntelAudioService.exe [531008 2022-01-26] (Intel Corporation -> Intel)
R3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [82080 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [1783992 2020-11-04] (Rivet Networks LLC -> Rivet Networks)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2671800 2020-11-04] (Rivet Networks LLC -> Rivet Networks)
S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [82088 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [11072008 2022-10-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-09] (Malwarebytes Inc. -> Malwarebytes)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.23.9.9\NortonSecurity.exe [344888 2023-10-14] (NortonLifeLock Inc. -> NortonLifelock Inc.)
R2 nsmService; C:\Program Files (x86)\NetSetMan\nsmservice.exe [1782976 2017-04-24] (NetSetMan GmbH -> NetSetMan GmbH)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.23.9.9\nsWscSvc.exe [1059176 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [618328 2023-10-04] (Geek Software GmbH -> geek software GmbH)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [841744 2021-03-26] (Acer Incorporated -> Acer Incorporated)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [343272 2021-04-19] (Acer Incorporated -> Acer Incorporated)
S3 uSHAREitSvc; C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe [33224 2017-09-11] (SHAREit Technologies Co.Ltd -> SHAREit Technologies Co.Ltd)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2023-11-05] (LAVASOFT SOFTWARE CANADA INC -> ) <==== ATTENTION
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-04-02] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [82096 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [82096 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_b7653e998d156664\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_b7653e998d156664\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
S3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [561152 2023-07-11] (Microsoft Windows -> Microsoft Corporation)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [88136 2023-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Limited)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.22.9.11\Definitions\BASHDefs\20231102.001\BHDrvx64.sys [1706512 2023-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\ccSetx64.sys [198280 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2022-08-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2022-08-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527864 2022-09-10] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2022-10-21] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 fsfreedomewintun; C:\WINDOWS\System32\drivers\fsfreedomewintun.sys [31248 2023-03-07] (Microsoft Windows Hardware Compatibility Publisher -> F-Secure Corporation)
R3 gFilterMouUsb; C:\WINDOWS\System32\drivers\gFilterMouUsb.sys [30568 2020-09-15] (KYE SYSTEMS CORP. -> KYE Systems Corp.)
R3 gKbdfltr; C:\WINDOWS\System32\drivers\gKbdfltr.sys [29576 2020-09-15] (KYE SYSTEMS CORP. -> )
R1 HHDNLWF; C:\WINDOWS\system32\DRIVERS\hhdnet64.sys [52848 2022-01-14] (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
R0 HHDNLWFH; C:\WINDOWS\System32\DRIVERS\hhdnethp64.sys [39024 2022-01-14] (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
R1 HWiNFO_172; C:\WINDOWS\system32\drivers\HWiNFO64A_172.SYS [56888 2023-07-02] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm))
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_d0e63c4e3754f42f\iaLPSS2_GPIO2_TGL.sys [128152 2020-08-12] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_ab87bf17a571e523\iaLPSS2_I2C_TGL.sys [197272 2020-08-12] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1544912 2021-08-26] (Intel Corporation -> Intel Corporation)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.22.9.11\Definitions\IPSDefs\20231103.064\IDSvia64.sys [1554400 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_2cc98897d8dddf62\IntcUSB.sys [882280 2022-01-26] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-06] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation)
S3 ioFakMap; C:\WINDOWS\System32\drivers\ioFakMap.sys [24664 2020-09-15] (KYE Systems Corp -> KYE System Corp.)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [201096 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2010-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [71736 2021-08-30] (Insecure.Com LLC -> Insecure.Com LLC.)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\nsvst.sys [57120 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [237592 2023-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )
S3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_b75e67d8c02481f5\rtucx22x64.sys [1645400 2023-05-10] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 rtux64w10; C:\WINDOWS\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation)
R1 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\SRTSP64.SYS [956048 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\SRTSPX64.SYS [52872 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\SYMEFASI64.SYS [2180248 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\SymELAM.sys [36016 2023-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100328 2022-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.22.9.11\SymPlatform\SymEvnt.sys [722400 2022-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\Ironx64.SYS [306824 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\symnets.sys [492728 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2023-07-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498944 2023-07-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-07-08] (Microsoft Windows -> Microsoft Corporation)
R1 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\wpCtrlDrv.sys [1016792 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S0 aswRvrt; system32\drivers\aswRvrt.sys [X]
U4 npcap_wifi; no ImagePath
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-05 08:15 - 2023-11-05 08:16 - 000000000 ____D C:\Users\hlava\AppData\Roaming\qBittorrent
2023-11-05 08:15 - 2023-11-05 08:16 - 000000000 ____D C:\Users\hlava\AppData\Local\qBittorrent
2023-11-05 08:14 - 2023-11-05 08:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2023-11-05 08:14 - 2023-11-05 08:14 - 000000000 ____D C:\Program Files\qBittorrent
2023-11-05 08:12 - 2023-11-05 08:12 - 035381855 _____ (The qBittorrent project) C:\Users\hlava\Downloads\qbittorrent_4.6.0_x64_setup.exe
2023-11-05 08:11 - 2023-11-05 08:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2023-11-05 08:10 - 2023-11-05 08:10 - 002383872 _____ (Farbar) C:\Users\hlava\Downloads\FRST64 (1).exe
2023-11-05 06:27 - 2023-11-05 06:27 - 000728484 _____ C:\WINDOWS\system32\perfh005.dat
2023-11-05 06:27 - 2023-11-05 06:27 - 000151700 _____ C:\WINDOWS\system32\perfc005.dat
2023-11-05 06:16 - 2023-11-05 06:16 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Lavasoft
2023-11-05 06:16 - 2023-11-05 06:16 - 000000000 ____D C:\Users\hlava\AppData\Local\Lavasoft
2023-11-05 06:16 - 2023-11-05 06:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2023-11-05 06:15 - 2023-11-05 06:15 - 002016841 _____ C:\Users\hlava\Downloads\uTorrent Pro 3.4.6 Build 42178 (x32x64).rar
2023-11-05 06:15 - 2023-11-05 06:15 - 000000000 ____D C:\ProgramData\Lavasoft
2023-11-05 06:15 - 2023-11-05 06:15 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2023-11-04 19:31 - 2023-11-04 19:31 - 000011184 _____ C:\Users\hlava\Downloads\Center_Finder.stl
2023-11-03 17:15 - 2023-11-03 17:15 - 000222698 _____ C:\Users\hlava\Downloads\AAAALLLLUntold.torrent
2023-11-01 19:49 - 2023-11-01 19:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-11-01 19:49 - 2023-11-01 19:49 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-11-01 07:19 - 2023-11-01 07:19 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-10-31 11:22 - 2023-10-31 11:22 - 000000000 ____D C:\Users\Public\Documents\Epic
2023-10-31 11:22 - 2023-10-31 11:22 - 000000000 ____D C:\Users\hlava\AppData\Local\Moria
2023-10-31 11:05 - 2023-10-31 11:05 - 000001166 _____ C:\Users\Public\Desktop\Play The Lord of the Rings Return to Moria.lnk
2023-10-31 11:05 - 2023-10-31 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Lord of the Rings Return to Moria
2023-10-31 09:01 - 2023-10-31 09:01 - 000677281 _____ C:\Users\hlava\Downloads\dodiultimate.torrent
2023-10-31 08:30 - 2023-10-31 08:30 - 000003548 _____ C:\WINDOWS\system32\Tasks\hlava
2023-10-31 08:24 - 2023-11-05 06:19 - 000003384 _____ C:\WINDOWS\system32\Tasks\WindowsTaskCoreUpdate
2023-10-31 06:25 - 2023-10-31 08:16 - 000001806 _____ C:\Users\hlava\Desktop\D2R – zástupce.lnk
2023-10-31 06:14 - 2023-10-31 06:14 - 000000000 ____D C:\Users\hlava\Documents\Diablo II
2023-10-31 06:10 - 2023-10-31 06:10 - 000114116 _____ C:\Users\hlava\Downloads\MMMMMMMRRRRRR1111.torrent
2023-10-31 05:50 - 2023-10-31 05:50 - 000000037 _____ C:\Users\Public\Desktop\Gameforge Client.url
2023-10-30 11:16 - 2023-10-30 11:17 - 001733320 _____ ( ) C:\Users\hlava\Downloads\utorrent_installer.exe
2023-10-30 05:44 - 2023-10-30 05:46 - 000000000 ____D C:\Users\hlava\Documents\WATTROUTER ZÁLOHY
2023-10-29 14:43 - 2023-10-29 14:43 - 001565140 _____ C:\Users\hlava\Desktop\CSAT - výstupy do týmů.pdf
2023-10-28 19:36 - 2023-10-28 19:36 - 000001027 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Launcher.lnk
2023-10-28 19:36 - 2023-10-28 19:36 - 000001020 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Toolbox.lnk
2023-10-28 19:10 - 2023-10-28 19:10 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2023-10-28 19:10 - 2023-10-28 19:10 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-10-26 16:05 - 2023-11-05 06:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton 360
2023-10-26 16:00 - 2023-10-30 01:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2023-10-26 16:00 - 2023-10-26 16:00 - 000003374 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2023-10-25 05:00 - 2023-10-25 05:00 - 005880643 _____ C:\Users\hlava\Downloads\ablagefach_015mm_pet_mk3smmu2s.gcode
2023-10-25 05:00 - 2023-10-25 05:00 - 000189684 _____ C:\Users\hlava\Downloads\ablagefach.stl
2023-10-25 05:00 - 2023-10-25 05:00 - 000040052 _____ C:\Users\hlava\Downloads\ablagefach.3mf
2023-10-22 14:33 - 2023-10-22 14:36 - 000000000 ____D C:\Users\hlava\Documents\Need for Speed Heat
2023-10-22 14:33 - 2023-10-22 14:33 - 000032768 _____ C:\Users\Public\Documents\crash_dump.bin
2023-10-22 13:52 - 2023-10-22 13:52 - 000000593 _____ C:\Users\Public\Desktop\Play Need for Speed Heat.lnk
2023-10-22 13:52 - 2023-10-22 13:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed Heat
2023-10-22 10:42 - 2023-10-22 10:42 - 000056904 _____ C:\Users\hlava\Downloads\F91F800760A3C51970E94238166F0FB3BC6C5DB2.torrent
2023-10-15 10:59 - 2023-10-15 10:58 - 000041510 _____ C:\Users\hlava\Documents\cenova_nabidka_Radotín_vystěhování _akumulační_nádrže.pdf
2023-10-15 06:37 - 2023-10-15 10:58 - 000032256 _____ C:\Users\hlava\Documents\cenova_nabidka_Radotín_vystěhování _akumulační_nádrže.xls
2023-10-15 06:25 - 2023-10-15 06:37 - 000029696 _____ C:\Users\hlava\Downloads\cenova_nabidka10.xls
2023-10-14 00:25 - 2023-10-14 00:25 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-10-13 13:47 - 2023-10-13 13:47 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-10-13 13:46 - 2023-10-13 13:46 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-10-13 13:46 - 2023-10-13 13:46 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-13 13:42 - 2023-10-13 13:43 - 000000000 ___HD C:\$WinREAgent
2023-10-11 10:30 - 2023-10-11 10:30 - 000983076 _____ C:\Users\hlava\Downloads\IMG_0900.jpeg
2023-10-11 10:30 - 2023-10-11 10:30 - 000874112 _____ C:\Users\hlava\Downloads\IMG_0901.jpeg
2023-10-10 17:18 - 2023-10-10 17:18 - 000000165 ____H C:\Users\hlava\Desktop\~$VYÚČTOVÁNÍ PRO NÁJEMNÍKY.xlsx
2023-10-09 13:05 - 2023-10-09 13:05 - 000441998 _____ C:\Users\hlava\Downloads\rea_podlaczenie_baterii_brito.pdf
2023-10-08 04:28 - 2023-10-08 04:28 - 001206133 _____ C:\Users\hlava\Downloads\Kolektivní-smlouva-2022_2023 (1).pdf
2023-10-08 04:27 - 2023-10-08 04:27 - 000951624 _____ C:\Users\hlava\Downloads\Mzdový-řád-2022_2023.pdf
2023-10-08 04:26 - 2023-10-08 04:26 - 001206133 _____ C:\Users\hlava\Downloads\Kolektivní-smlouva-2022_2023.pdf
2023-10-07 18:07 - 2023-10-07 18:07 - 000028884 _____ C:\Users\hlava\Downloads\disk_large.stl
2023-10-07 17:58 - 2023-10-07 17:58 - 001846684 _____ C:\Users\hlava\Downloads\disk-launcher_large.stl
2023-10-07 17:58 - 2023-10-07 17:58 - 001846684 _____ C:\Users\hlava\Downloads\disk-launcher_large (1).stl
2023-10-06 05:01 - 2023-10-06 05:01 - 009525784 _____ C:\Users\hlava\Downloads\treefrog_variable_2h20m_0,10mm_200C_PLA_ENDER3.gcode
2023-10-06 04:31 - 2023-10-06 04:32 - 000000000 ____D C:\Users\hlava\Documents\Marvel's Spider-Man Miles Morales
2023-10-06 04:31 - 2023-10-06 04:31 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Insomniac Games
2023-10-06 04:31 - 2023-10-06 04:31 - 000000000 ____D C:\Users\hlava\.insomniac
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-05 08:15 - 2022-08-26 15:41 - 000000000 ____D C:\Users\hlava\AppData\Local\CrashDumps
2023-11-05 08:15 - 2022-08-24 19:20 - 000000000 ____D C:\Users\hlava\AppData\Roaming\uTorrent
2023-11-05 08:13 - 2023-07-19 13:12 - 000064260 _____ C:\Users\hlava\Downloads\FRST.txt
2023-11-05 08:12 - 2023-07-19 13:12 - 000000000 ____D C:\FRST
2023-11-05 08:11 - 2022-08-25 05:17 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-05 08:11 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-05 08:10 - 2022-08-25 17:52 - 000000000 ____D C:\Users\hlava\AppData\Local\Norton
2023-11-05 08:09 - 2022-09-15 05:03 - 000000000 ____D C:\ProgramData\Adguard
2023-11-05 08:09 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-05 06:31 - 2023-03-01 15:31 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-11-05 06:27 - 2022-10-06 09:20 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-05 06:27 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-11-05 06:20 - 2022-09-28 20:35 - 000000000 ____D C:\Users\hlava\AppData\Local\BitTorrentHelper
2023-11-05 06:20 - 2022-08-25 09:51 - 000000000 ___RD C:\Users\hlava\iCloudDrive
2023-11-05 06:20 - 2022-08-24 19:44 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-11-05 06:20 - 2021-11-07 05:09 - 000000000 ____D C:\ProgramData\NVIDIA
2023-11-05 06:19 - 2023-08-08 00:59 - 000012288 ___SH C:\DumpStack.log.tmp
2023-11-05 06:19 - 2022-10-06 09:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-05 06:19 - 2022-09-15 05:03 - 000000000 ____D C:\Program Files (x86)\Adguard
2023-11-05 06:19 - 2022-08-25 04:50 - 000000000 __SHD C:\Users\hlava\IntelGraphicsProfiles
2023-11-05 06:19 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-11-05 06:19 - 2022-05-07 06:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-11-05 06:19 - 2021-11-07 04:53 - 000000000 ___HD C:\Intel
2023-11-05 06:07 - 2022-08-26 06:23 - 000000000 ____D C:\Program Files (x86)\Steam
2023-11-05 06:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-05 06:06 - 2022-08-25 05:20 - 000000000 ____D C:\Users\hlava\AppData\Roaming\PrusaSlicer
2023-11-05 05:37 - 2022-11-22 12:04 - 000000000 ____D C:\Users\Public\Documents\Steam
2023-11-05 05:37 - 2022-08-25 04:50 - 000000000 ____D C:\Users\hlava\AppData\Local\D3DSCache
2023-11-05 05:30 - 2022-09-09 16:40 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Microsoft\Excel
2023-11-05 05:22 - 2022-08-25 04:50 - 000000000 ____D C:\Users\hlava\AppData\Local\Host App Service
2023-11-05 05:20 - 2022-10-06 09:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-05 05:20 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-05 05:19 - 2022-10-06 09:12 - 000000000 ____D C:\Users\hlava
2023-11-05 02:04 - 2022-09-21 20:26 - 000000000 ____D C:\Users\Public\AppData\Flixmate
2023-11-04 17:26 - 2022-10-07 05:17 - 000000000 ____D C:\WINDOWS\Minidump
2023-11-04 17:25 - 2023-08-08 00:59 - 003668780 ____N C:\WINDOWS\Minidump\110423-9968-01.dmp
2023-11-04 14:06 - 2021-11-07 04:53 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-04 08:31 - 2023-03-14 06:17 - 000003450 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-DF2840C7C8727F488155D040C48163A8
2023-11-03 06:01 - 2022-08-25 04:50 - 000000000 ____D C:\Users\hlava\AppData\Local\Packages
2023-11-03 05:46 - 2022-09-02 16:39 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Microsoft\Word
2023-11-03 05:38 - 2023-03-15 14:38 - 000000000 ____D C:\Program Files (x86)\DODI-Repacks
2023-11-03 05:32 - 2022-08-25 05:21 - 000000000 ____D C:\Users\hlava\AppData\Local\Avast Software
2023-11-03 05:25 - 2023-06-25 19:20 - 000000000 ____D C:\ProgramData\Battle.net
2023-11-03 05:07 - 2023-08-08 00:59 - 003031238 ____N C:\WINDOWS\Minidump\110323-9484-01.dmp
2023-11-02 11:57 - 2023-08-08 00:59 - 003634172 ____N C:\WINDOWS\Minidump\110223-10375-01.dmp
2023-11-02 11:57 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-11-01 20:39 - 2022-08-25 05:07 - 000000000 ____D C:\Users\hlava\AppData\Local\Autodesk
2023-11-01 07:18 - 2022-09-09 16:49 - 000000000 ____D C:\Program Files\Microsoft Office
2023-10-31 22:12 - 2022-08-25 05:17 - 000002251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-31 06:14 - 2023-06-25 19:21 - 000000000 ____D C:\Users\hlava\AppData\Local\Blizzard Entertainment
2023-10-31 05:53 - 2023-07-19 06:16 - 000000000 ____D C:\Users\hlava\AppData\Local\Malwarebytes
2023-10-31 05:52 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-10-31 05:50 - 2023-07-26 20:51 - 000000037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Gameforge Client.url
2023-10-31 05:50 - 2023-07-26 20:51 - 000000000 ____D C:\Program Files (x86)\GameforgeClient
2023-10-31 05:41 - 2022-09-02 16:43 - 000000000 ____D C:\Users\hlava\AppData\Local\Adobe
2023-10-30 15:15 - 2022-09-27 18:28 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Kodi
2023-10-30 14:41 - 2022-08-27 13:40 - 000000000 ____D C:\Users\hlava\AppData\Roaming\vlc
2023-10-30 05:47 - 2022-11-17 18:57 - 000000000 ____D C:\Users\hlava\Desktop\3D TISK CR
2023-10-30 05:41 - 2022-11-17 19:00 - 000000000 ___RD C:\Users\hlava\Desktop\PROGRAMY ZÁSTUPCE
2023-10-30 01:24 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-30 01:19 - 2022-09-15 05:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdGuard
2023-10-30 01:19 - 2021-11-07 05:27 - 000000000 ____D C:\ProgramData\Package Cache
2023-10-30 01:18 - 2022-08-25 17:04 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Loxone
2023-10-29 12:16 - 2022-08-25 05:23 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Python
2023-10-28 19:36 - 2023-09-10 19:29 - 000000000 ____D C:\Program Files\PDF24
2023-10-28 19:11 - 2022-10-06 09:16 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-28 19:11 - 2022-08-25 04:40 - 000000000 ____D C:\ProgramData\Packages
2023-10-28 19:08 - 2023-02-19 20:45 - 000002201 _____ C:\Users\hlava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2023-10-27 04:20 - 2022-08-25 08:49 - 000000000 ____D C:\Program Files\Common Files\AV
2023-10-26 16:00 - 2022-10-19 20:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2023-10-26 15:59 - 2023-08-08 00:59 - 005842246 ____N C:\WINDOWS\Minidump\102623-9171-01.dmp
2023-10-26 04:59 - 2022-10-06 09:16 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-26 04:59 - 2022-10-06 09:16 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-25 05:30 - 2022-08-25 17:10 - 000000000 ____D C:\Program Files (x86)\NetSetMan
2023-10-25 04:48 - 2022-08-25 04:50 - 000000000 ___SD C:\Users\hlava\AppData\Roaming\Microsoft\Credentials
2023-10-25 04:33 - 2022-08-24 19:38 - 000000000 ____D C:\Program Files\Autodesk
2023-10-24 20:13 - 2022-08-24 19:38 - 000000000 ____D C:\Program Files\dotnet
2023-10-14 19:08 - 2022-11-17 19:02 - 000000000 ____D C:\Users\hlava\Desktop\Výkresy
2023-10-14 00:43 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-14 00:26 - 2022-10-06 09:10 - 000697952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-13 13:50 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-13 13:47 - 2022-10-06 09:11 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-13 13:41 - 2022-08-25 08:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-13 13:36 - 2022-08-25 08:58 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-11 13:53 - 2022-08-26 06:26 - 000000000 ____D C:\Users\hlava\AppData\Local\Steam
==================== Files in the root of some directories ========
2022-03-24 06:47 - 2022-03-24 06:47 - 000000274 _____ () C:\ProgramData\fontcacheev1.dat
2023-02-03 08:42 - 2023-02-03 08:42 - 000000068 _____ () C:\Users\hlava\AppData\Roaming\changzhi_leidian.data
2023-07-06 13:20 - 2023-07-14 16:06 - 000012288 _____ () C:\Users\hlava\AppData\Roaming\emp.bin
2023-06-19 20:31 - 2023-06-19 20:31 - 000048342 _____ () C:\Users\hlava\AppData\Local\HDGraph.log
2023-03-01 21:17 - 2023-09-10 19:18 - 000443415 _____ () C:\Users\hlava\AppData\Local\oobelibMkey.log
2023-02-16 05:45 - 2023-02-16 05:45 - 000000017 _____ () C:\Users\hlava\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-10-2023
Ran by hlava (administrator) on ACER-ASPIRE (Acer Nitro AN515-56) (05-11-2023 08:11:43)
Running from C:\Users\hlava\Downloads\FRST64 (1).exe
Loaded Profiles: hlava
Platform: Microsoft Windows 11 Home (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe
(Adguard Software Limited -> Adguard Software Limited) C:\Program Files (x86)\Adguard\Adguard.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Genuine Service\GenuineService.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\NetSetMan\nsmservice.exe ->) (NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\netsetman.exe
(C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\AdskAccessUIHost.exe <4>
(C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdskIdentityManager\1.9.18.0\AdskIdentityManager.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\GrafanaLabs\svc-9.1.5.0\nssm.exe ->) () [File not signed] C:\Program Files\GrafanaLabs\grafana\bin\grafana-server.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <6>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.44\msedgewebview2.exe <6>
(C:\Users\hlava\AppData\Roaming\BitTorrent Web\btweb.exe ->) (Rainberry Inc -> BitTorrent Inc.) C:\Users\hlava\AppData\Roaming\BitTorrent Web\helper\helper.exe
(C:\Users\hlava\AppData\Roaming\uTorrent\uTorrent.exe ->) (BitTorrent Inc.) [File not signed] C:\Users\hlava\AppData\Roaming\uTorrent\updates\3.4.6_42178\utorrentie.exe <2>
(cmd.exe ->) (Adguard Software Limited -> Adguard Software Limited) C:\Program Files (x86)\Adguard\Adguard.BrowserExtensionHost.exe
(drivers\RivetNetworks\Killer\KAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe
(drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEMN.exe
(explorer.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe
(explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\hlava\AppData\Roaming\uTorrent\uTorrent.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\hlava\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <26>
(explorer.exe ->) (LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(explorer.exe ->) (Rainberry Inc -> BitTorrent Inc.) C:\Users\hlava\AppData\Roaming\BitTorrent Web\btweb.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(KYE SYSTEMS CORP. -> ) C:\Users\hlava\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartFore.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [File not signed] C:\Program Files\GrafanaLabs\svc-9.1.5.0\nssm.exe
(services.exe ->) () [File not signed] C:\Users\Public\AppData\Roaming\Flixmate\flixmate.service.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(services.exe ->) (Adguard Software Limited -> Adguard Software Limited) C:\Program Files (x86)\Adguard\AdguardSvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\13.0.0.8122\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\Freedome\fsvpnservice.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_a5ea1b1d8db1527e\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_9dbc143909c9c41e\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_0f43cda6a2474b5c\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_e3868713e3d137ef\esif_uf.exe
(services.exe ->) (LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\nsmservice.exe
(services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.23.9.9\NortonSecurity.exe <2>
(services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.23.9.9\nsWscSvc.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_b7653e998d156664\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_63ffa3cb4ae6dbc0\RtkAudUService64.exe <3>
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(services.exe ->) (Zinlab Technologies -> ) C:\Users\Public\AppData\Roaming\Flixmate\update\Flixmate.UpdateService.exe
(sihost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(sihost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2342.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxextN.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe <2>
(svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\hlava\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_63ffa3cb4ae6dbc0\RtkAudUService64.exe [1222448 2021-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9922800 2022-10-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe [7777240 2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RunSmartHIDFile] => C:\Users\hlava\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHIDStart.exe [524288 2020-09-15] () [File not signed]
HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessCore.exe [18088224 2023-05-02] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [618328 2023-10-04] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [NetSetMan] => C:\Program Files (x86)\NetSetMan\netsetman.exe [7447424 2019-11-08] (NetSetMan GmbH -> NetSetMan GmbH)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2022-09-02] (Adobe Inc. -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2022-02-07] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\hlava\AppData\Local\Microsoft\Teams\Update.exe [2454240 2022-09-11] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [7072472 2023-10-20] (Adguard Software Limited -> Adguard Software Limited)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe [3638792 2023-09-21] (Autodesk, Inc. -> Autodesk)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-370656792-1244637223-2425275819-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\agnes\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-370656792-1244637223-2425275819-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\agnes\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-370656792-1244637223-2425275819-1001\...\Run: [Bonus.SSR.FR15] => C:\Program Files (x86)\ABBYY FineReader 15\ScreenshotReader.exe [1187488 2020-09-09] (ABBYY Production LLC -> ABBYY Production LLC.)
HKU\S-1-5-21-370656792-1244637223-2425275819-1001\...\MountPoints2: {86c5814d-64d2-11ed-90a9-f47b0969a8e2} - "G:\RTK_NIC_DRIVER_INSTALLER.sfx.exe"
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [f.lux] => C:\Users\hlava\AppData\Local\FluxSoftware\Flux\flux.exe [1527416 2023-09-22] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [GoogleChromeAutoLaunch_BEF88DE6C69ADEC784F7524F894B6CAA] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2680608 2023-10-30] (Google LLC -> Google LLC)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [Bonus.SSR.FR15] => C:\Program Files (x86)\ABBYY FineReader 15\ScreenshotReader.exe [1187488 2020-09-09] (ABBYY Production LLC -> ABBYY Production LLC.)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [MicrosoftEdgeAutoLaunch_76554E69F94DC990BB425147D5D0F2CD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891768 2023-11-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [btweb] => C:\Users\hlava\AppData\Roaming\BitTorrent Web\btweb.exe [6467584 2023-10-03] (Rainberry Inc -> BitTorrent Inc.)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [uTorrent] => C:\Users\hlava\AppData\Roaming\uTorrent\uTorrent.exe [1959424 2016-04-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2023-11-05] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Policies\Explorer: []
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\Policies\Explorer\DisallowRun: [9] mrt.exe
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\MountPoints2: {81311b40-b045-11ed-90c4-f47b0969a8e2} - "E:\SISetup.exe"
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\MountPoints2: {824b8ab5-6bb6-11ed-90ad-f47b0969a8e2} - "E:\OnePlus_setup.exe" /s
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\...\MountPoints2: {86c5814d-64d2-11ed-90a9-f47b0969a8e2} - "H:\RTK_NIC_DRIVER_INSTALLER.sfx.exe"
HKU\S-1-5-21-370656792-1244637223-2425275819-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [180224 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2010-03-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2022-07-05] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP1100LM: C:\Windows\system32\HP1100LM.DLL [289280 2010-03-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\PDF-XChange5-ABBYY-FR15: C:\WINDOWS\system32\pxc50pmaf15.dll [57328 2018-12-04] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.105\Installer\chrmstp.exe [2023-10-31] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{99F7E96B-DA09-4D46-ACAE-C6D019DD46B2}] -> C:\Program Files (x86)\ABBYY FineReader 15\ScreenshotReader.exe [2020-09-09] (ABBYY Production LLC -> ABBYY Production LLC.)
Startup: C:\Users\agnes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2022-11-16]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {E8825A36-A678-431D-85BF-8B1561DE6913} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971808 2021-12-30] (Acer Incorporated -> )
Task: {668A4BCE-E12C-4686-BCF6-5564286ADBD7} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41632 2021-12-30] (Acer Incorporated -> )
Task: {6DA114E4-5224-40B7-BD92-75AE0536364C} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836512 2021-12-30] (Acer Incorporated -> )
Task: {D341E3E8-8FE9-49CF-945D-65BF9BD2681E} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> )
Task: {FCB6C16A-64F7-450A-947D-1748927334D6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {3B0DDE6C-590C-4906-AB9C-ADEEE96CDE50} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {A22C234B-E082-4B5E-8D39-A2FE57A96C47} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AED1EFBB-029A-40D2-B4EB-015D12567BF9} - System32\Tasks\App Explorer => C:\Users\hlava\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7574560 2023-03-29] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {78EDBF19-F185-4281-95D5-80ECE27982A4} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3827728 2022-10-21] (Corel Corporation -> Corel Corporation)
Task: {3BE682AF-5B1C-422C-AED6-4DE571DF19F0} - System32\Tasks\CorelUpdateHelperTask-DF2840C7C8727F488155D040C48163A8 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3827728 2022-10-21] (Corel Corporation -> Corel Corporation)
Task: {B88E8C9D-FF1B-4D44-9CC6-8808CCEDCBFD} - System32\Tasks\FreedomeHelper => C:\Program Files (x86)\F-Secure\Freedome\FHelper.exe [649807 2021-10-02] (F-Secure Corporation) [File not signed]
Task: {2A8C35E5-D429-47D6-807E-BE59FDBD7C69} - System32\Tasks\GoogleUpdateTaskMachineCore{6640F5AD-BBA4-436B-804B-FEEC04C0D30A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-25] (Google LLC -> Google LLC)
Task: {255B27D8-7F62-4B82-964F-0DAC064C2EE1} - System32\Tasks\GoogleUpdateTaskMachineUA{C77A1422-55C9-4B27-8B09-4A4663B1362A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-25] (Google LLC -> Google LLC)
Task: {27A21B8C-138A-45CB-AF5D-9729DF6F405F} - System32\Tasks\hlava => C:\Windows\system32\cmd.exe [323584 2023-05-10] (Microsoft Windows -> Microsoft Corporation) -> /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v hlava /t REG_SZ /d "cmd.exe /c start www.dinoraptzor.org" <==== ATTENTION
Task: {68BFFCE6-1DC7-4049-A00B-54155BD16CA5} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60368 2023-09-14] (HP Inc. -> HP Inc.)
Task: {DAFC2A13-F728-4BC5-887D-4BB2402A002F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60368 2023-09-14] (HP Inc. -> HP Inc.)
Task: {3CB05F1B-2059-4664-97D5-3F80A16E7AD3} - System32\Tasks\MaiSoft\QA_D24E7CD0-6AAF-4B8F-BC73-C22872A8286B => C:\Users\hlava\AppData\Local\QA\Helper.vbs [3065 2023-03-15] () [File not signed]
Task: {F036DABD-2B2F-42DD-803A-6728D9581303} - System32\Tasks\MaiSoft\QA-de_D24E7CD0-6AAF-4B8F-BC73-C22872A8286B => C:\Users\hlava\AppData\Local\QA\Helper.vbs [3065 2023-03-15] () [File not signed]
Task: {A97163D4-1D89-4173-B378-97EF8DA6076D} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-370656792-1244637223-2425275819-1002 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1960.4.210.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2277624 2023-09-29] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.)
Task: {F46E881C-A3C0-4E3F-A68A-49B9911C37FA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-10-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {82B18A2B-1EFA-4F5C-AB08-6B83F5293AE8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-10-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {C2126CD9-34FA-4263-B7A4-9AE13D2D52BF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {80315882-2668-4C09-A12A-C2123941DFA9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC9B1F0C-5A0D-4034-9D4E-FD2C26B87C0A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169656 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B4A0D2B-843A-4D1C-89EE-D89E4266C5CA} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {B109ADD9-E404-46E1-A130-FCA39A8CCA5B} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {F3D89A51-52F2-43B6-855E-6A12019B4B28} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {8FD1EAA0-39C8-404E-BA59-F19B6C38B3E9} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {BD50C81C-1593-4E77-9F70-801494B92358} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {48AA1E7B-A1A4-4660-8F86-E97B112ADECE} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {4BE2A896-8B0D-4B49-ABEA-205205EFFDB3} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {69BEBE52-1C57-4BFD-8C04-E9600B8F0FE6} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {7136ECEC-A3FF-4AB6-A066-64E0C98B3427} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {603F9570-1400-4BE1-97AB-811F2B8E6632} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {AEBDE666-110D-4194-A8AB-C316FA43DBC9} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [466944 2023-07-11] (Microsoft Windows -> Microsoft Corporation)
Task: {0D905598-B478-4485-B35E-CB424D427676} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [466944 2023-07-11] (Microsoft Windows -> Microsoft Corporation)
Task: {C3D36184-73C4-4C61-B200-A17DB076730E} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {D9EAEF20-E141-477E-81DB-961B0C62EE39} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\46149054-5FFE-4773-A7E0-C28F6CFB20E5\Wsc Startup event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [516096 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {72EB4CDC-4E36-434E-A45F-D8F462D37AC5} - System32\Tasks\Microsoft\Windows\Shell\WindowsObjectChecking => C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\3CB3657D123340C4958F490CEF14D911\677A046F442E492C99857DA4C5C4F1E7.vbe [688390 2023-11-05] () [File not signed] <==== ATTENTION
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {67E7A0D8-02FD-441D-9D18-C5700ECC4007} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [714056 2022-10-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {51C98C7F-FC35-4C21-B094-6254C7CB6B5B} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [610832 2021-03-26] (Acer Incorporated -> Acer Incorporated)
Task: {222CBB3F-CB07-43B2-8BB0-E766FE3E3E46} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.23.9.9\SymErr.exe [379024 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {23A90B34-F60E-465E-859B-D2FBCBAF5861} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.23.9.9\SymErr.exe [379024 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {2D72D2CD-DCA8-4F92-B084-BF29E7DEC850} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.23.9.9\SymErr.exe [379024 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {60948138-E2F2-4AFC-B450-5F727A164D0F} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.23.9.9\WSCStub.exe [646520 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {252F6782-5701-40CB-B20D-DA7581CBB3FF} - System32\Tasks\NortonLifeLock Trial Agent V2 => "C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NLOKTrialAgentV2.exe" /scheduled (No File)
Task: {C1ED73E0-FBBF-42A0-BBF6-7661FA448C94} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2021-03-24] () [File not signed]
Task: {3A56AEBC-7BD5-4FBA-AFDF-3B93C95D6CBA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5FE814D4-8334-425D-AA4B-7883EEACB6E7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {55AFFD43-0227-445D-808A-733255643077} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DDD4411F-5950-4AAC-809A-72FCCFC9507B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {286117DB-7099-400E-82E3-AFD328769546} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F31C020A-AC0F-4E41-9AA6-C70D81275102} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {30C474D9-B2BC-4042-9734-524C252A2693} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23C8D420-1E06-4B02-834B-5D5D10AF3AF4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {05B13E17-3E7C-4FAC-A71B-96EED5B50645} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E6D60564-0AE9-4BF9-8137-B366B77C9699} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {7CFA7233-927C-4511-8105-7F493078C9E5} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [18224 2021-03-22] (Acer Incorporated -> )
Task: {1CCC93B2-DFF6-4F21-A6AA-C52E1283F981} - System32\Tasks\Opera scheduled Autoupdate 1661369613 => C:\Users\hlava\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {049CBB2C-BDF9-48A6-8D85-993010C08E6C} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated)
Task: {9B289DD3-BA5C-4390-88A7-3BAF4B770207} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2353000 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {4018634A-E14C-448E-A0C9-F5BF5B6C0B97} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2021-12-30] (Acer Incorporated -> Acer Incorporated)
Task: {E0A3FCB8-1107-4197-BCC8-6FC6077B9528} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2021-03-29] (Acer Incorporated -> Microsoft)
Task: {87F159A0-3824-458F-BF7C-266E3EDA9A97} - System32\Tasks\TempClean1 => C:\Windows\system32\wevtutil.exe [327680 2023-10-13] (Microsoft Windows -> Microsoft Corporation) -> cl Application
Task: {F5713D3B-CFA4-41B8-9FDD-EE1821FEEA4C} - System32\Tasks\TempClean2 => C:\Windows\system32\wevtutil.exe [327680 2023-10-13] (Microsoft Windows -> Microsoft Corporation) -> cl System
Task: {7D2CF6C1-F427-40E3-A564-770CD6EE6F47} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268520 2021-04-19] (Acer Incorporated -> Acer Incorporated)
Task: {F33F75D4-C217-411D-BFA2-422EF41F779D} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211560 2021-04-19] (Acer Incorporated -> Acer Incorporated)
Task: {ECEC2ABB-E4B4-4C02-AE06-7A01DECAAB03} - System32\Tasks\WindowsTaskCoreUpdate => C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\943EB172A12C4F4BA4C511BA4F7DE31C\10DB894244524EA7A862E0EE6BE4C92B.vbe [23570 2023-11-05] () [File not signed] <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.0 account.zoner.com
Tcpip\Parameters: [DhcpNameServer] 193.179.211.46 193.179.211.28
Tcpip\..\Interfaces\{42c4da83-bf83-4575-8bff-68f4159d8c8c}: [DhcpNameServer] 193.179.211.46 193.179.211.28
Tcpip\..\Interfaces\{c0e3673e-5467-49ec-9dbd-915d5e478b59}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\hlava\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-05]
Edge Extension: (Dokumenty Google offline) - C:\Users\hlava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-28]
Edge Extension: (Edge relevant text changes) - C:\Users\hlava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14]
Edge Profile: C:\Users\hlava\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-07-19]
FireFox:
========
FF DefaultProfile: g1nl5qot.default
FF ProfilePath: C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\g1nl5qot.default [2023-11-05]
FF Homepage: Mozilla\Firefox\Profiles\g1nl5qot.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2023-11-05 05:16:04&bName=
FF NewTab: Mozilla\Firefox\Profiles\g1nl5qot.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2023-11-05 05:16:04&bName=
FF Extension: (Seznam doplněk - Esko) - C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\g1nl5qot.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-12-05]
FF Extension: (Seznam doplněk - Email) - C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\g1nl5qot.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-12-05]
FF ProfilePath: C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\nzn7m1zy.default-release [2023-11-05]
FF Homepage: Mozilla\Firefox\Profiles\nzn7m1zy.default-release -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2023-11-05 05:16:04&bName=
FF NewTab: Mozilla\Firefox\Profiles\nzn7m1zy.default-release -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170902&iDate=2023-11-05 05:16:04&bName=
FF Extension: (Amazon Assistant) - C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\nzn7m1zy.default-release\Extensions\abb-acer@amazon.com.xpi [2022-08-25] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\nzn7m1zy.default-release\Extensions\langpack-cs@firefox.mozilla.org.xpi [2022-08-25]
FF SearchPlugin: C:\Users\hlava\AppData\Roaming\Mozilla\Firefox\Profiles\nzn7m1zy.default-release\searchplugins\My Bing Search.xml [2023-11-05]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: JFGuide -> C:\Program Files (x86)\NetSurveillance\CMS\npGuide.dll [2022-04-22] () [File not signed]
FF Plugin-x32: JFWeb -> C:\Program Files (x86)\NetSurveillance\CMS\npWebPlugin.dll [2022-04-22] () [File not signed]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default [2023-11-05]
CHR DownloadDir: C:\Users\hlava\Downloads
CHR Notifications: Default -> hxxps://www.youtube.com
CHR Extension: (Blokátor reklam AdGuard) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2023-10-31]
CHR Extension: (AdGuard asistent prohlížeče) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbohpolgemkbfphodcfgnpjcmedcjhpn [2023-05-25]
CHR Extension: (Norton Safe Web) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2023-09-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-21]
CHR Extension: (Adblock For Youtube - Adblock pro Youtube) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\giaoehhefkmchjbbdnahgeppblbdejmj [2023-10-26]
CHR Extension: (Video Downloader PLUS) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2023-03-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-25]
CHR Extension: (Speedtest by Ookla) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2023-06-17]
CHR Profile: C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-07-19]
CHR Profile: C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-07-19]
CHR Extension: (Safe Torrent Scanner) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-03-09]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-03-09]
CHR Extension: (Google Docs Offline) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\hlava\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-24]
CHR Profile: C:\Users\hlava\AppData\Local\Google\Chrome\User Data\System Profile [2023-11-05]
CHR HKU\S-1-5-21-370656792-1244637223-2425275819-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-370656792-1244637223-2425275819-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKU\S-1-5-21-370656792-1244637223-2425275819-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
Opera:
=======
OPR Profile: C:\Users\hlava\AppData\Roaming\Opera Software\Opera Stable [2023-07-19]
OPR Extension: (Rich Hints Agent) - C:\Users\hlava\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-08-24]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\hlava\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-08-24]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259232 2021-12-30] (Acer Incorporated -> Acer Incorporated)
R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [800984 2023-10-20] (Adguard Software Limited -> Adguard Software Limited)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [15280648 2022-11-23] (Autodesk, Inc. -> Autodesk)
S2 AdskNLM; C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe [1201488 2021-04-04] (Flexera Software LLC -> Flexera)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2023-10-02] (Apple Inc. -> Apple Inc.)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [10539808 2023-05-21] (Autodesk, Inc. -> Autodesk, Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2022-01-26] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12876472 2023-10-28] (Microsoft Corporation -> Microsoft Corporation)
S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4960120 2022-08-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [420536 2022-10-13] (DTS, Inc. -> DTS Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11029096 2023-04-17] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-08-27] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
R2 Flixmate.UpdateService; C:\Users\public\AppData\Roaming\Flixmate\update\Flixmate.UpdateService.exe [24352 2022-08-31] (Zinlab Technologies -> )
R2 FlixmateService; C:\Users\public\AppData\Roaming\Flixmate\flixmate.service.exe [136704 2022-08-31] () [File not signed]
R3 Freedome Service; C:\Program Files (x86)\F-Secure\Freedome\fsvpnservice.exe [1812360 2023-03-07] (F-Secure Corporation -> F-Secure Corporation)
S3 GameforgeClientService; C:\Program Files (x86)\GameforgeClient\gfservice.exe [635968 2023-08-07] (Gameforge 4D GmbH -> )
R2 Grafana; C:\Program Files\GrafanaLabs\svc-9.1.5.0\nssm.exe [331264 2022-09-13] () [File not signed]
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-14] (HP Inc. -> HP Inc.)
R2 HPSIService; C:\WINDOWS\system32\HPSIsvc.exe [127800 2010-04-07] (Hewlett-Packard Company -> HP)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_0f43cda6a2474b5c\AS\IAS\IntelAudioService.exe [531008 2022-01-26] (Intel Corporation -> Intel)
R3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [82080 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [1783992 2020-11-04] (Rivet Networks LLC -> Rivet Networks)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2671800 2020-11-04] (Rivet Networks LLC -> Rivet Networks)
S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [82088 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [11072008 2022-10-30] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-09] (Malwarebytes Inc. -> Malwarebytes)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.23.9.9\NortonSecurity.exe [344888 2023-10-14] (NortonLifeLock Inc. -> NortonLifelock Inc.)
R2 nsmService; C:\Program Files (x86)\NetSetMan\nsmservice.exe [1782976 2017-04-24] (NetSetMan GmbH -> NetSetMan GmbH)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.23.9.9\nsWscSvc.exe [1059176 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [618328 2023-10-04] (Geek Software GmbH -> geek software GmbH)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [841744 2021-03-26] (Acer Incorporated -> Acer Incorporated)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [343272 2021-04-19] (Acer Incorporated -> Acer Incorporated)
S3 uSHAREitSvc; C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe [33224 2017-09-11] (SHAREit Technologies Co.Ltd -> SHAREit Technologies Co.Ltd)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2023-11-05] (LAVASOFT SOFTWARE CANADA INC -> ) <==== ATTENTION
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-04-02] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [82096 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [82096 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_b7653e998d156664\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_b7653e998d156664\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated)
S3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [561152 2023-07-11] (Microsoft Windows -> Microsoft Corporation)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [88136 2023-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Limited)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.22.9.11\Definitions\BASHDefs\20231102.001\BHDrvx64.sys [1706512 2023-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\ccSetx64.sys [198280 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2022-08-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2022-08-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527864 2022-09-10] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2022-10-21] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 fsfreedomewintun; C:\WINDOWS\System32\drivers\fsfreedomewintun.sys [31248 2023-03-07] (Microsoft Windows Hardware Compatibility Publisher -> F-Secure Corporation)
R3 gFilterMouUsb; C:\WINDOWS\System32\drivers\gFilterMouUsb.sys [30568 2020-09-15] (KYE SYSTEMS CORP. -> KYE Systems Corp.)
R3 gKbdfltr; C:\WINDOWS\System32\drivers\gKbdfltr.sys [29576 2020-09-15] (KYE SYSTEMS CORP. -> )
R1 HHDNLWF; C:\WINDOWS\system32\DRIVERS\hhdnet64.sys [52848 2022-01-14] (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
R0 HHDNLWFH; C:\WINDOWS\System32\DRIVERS\hhdnethp64.sys [39024 2022-01-14] (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
R1 HWiNFO_172; C:\WINDOWS\system32\drivers\HWiNFO64A_172.SYS [56888 2023-07-02] (Microsoft Windows Hardware Compatibility Publisher -> REALiX(tm))
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_d0e63c4e3754f42f\iaLPSS2_GPIO2_TGL.sys [128152 2020-08-12] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_ab87bf17a571e523\iaLPSS2_I2C_TGL.sys [197272 2020-08-12] (Intel Corporation -> Intel Corporation)
R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1544912 2021-08-26] (Intel Corporation -> Intel Corporation)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.22.9.11\Definitions\IPSDefs\20231103.064\IDSvia64.sys [1554400 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_2cc98897d8dddf62\IntcUSB.sys [882280 2022-01-26] (Intel Corporation -> Intel(R) Corporation)
R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-06] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation)
S3 ioFakMap; C:\WINDOWS\System32\drivers\ioFakMap.sys [24664 2020-09-15] (KYE Systems Corp -> KYE System Corp.)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [201096 2020-11-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2010-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [71736 2021-08-30] (Insecure.Com LLC -> Insecure.Com LLC.)
S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\nsvst.sys [57120 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [237592 2023-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )
S3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_b75e67d8c02481f5\rtucx22x64.sys [1645400 2023-05-10] (Realtek Semiconductor Corp. -> Realtek Corporation)
S3 rtux64w10; C:\WINDOWS\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation)
R1 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\SRTSP64.SYS [956048 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\SRTSPX64.SYS [52872 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\SYMEFASI64.SYS [2180248 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\SymELAM.sys [36016 2023-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100328 2022-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.22.9.11\SymPlatform\SymEvnt.sys [722400 2022-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\Ironx64.SYS [306824 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\symnets.sys [492728 2023-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2023-07-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498944 2023-07-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-07-08] (Microsoft Windows -> Microsoft Corporation)
R1 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617090.009\wpCtrlDrv.sys [1016792 2023-10-14] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S0 aswRvrt; system32\drivers\aswRvrt.sys [X]
U4 npcap_wifi; no ImagePath
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-05 08:15 - 2023-11-05 08:16 - 000000000 ____D C:\Users\hlava\AppData\Roaming\qBittorrent
2023-11-05 08:15 - 2023-11-05 08:16 - 000000000 ____D C:\Users\hlava\AppData\Local\qBittorrent
2023-11-05 08:14 - 2023-11-05 08:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2023-11-05 08:14 - 2023-11-05 08:14 - 000000000 ____D C:\Program Files\qBittorrent
2023-11-05 08:12 - 2023-11-05 08:12 - 035381855 _____ (The qBittorrent project) C:\Users\hlava\Downloads\qbittorrent_4.6.0_x64_setup.exe
2023-11-05 08:11 - 2023-11-05 08:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2023-11-05 08:10 - 2023-11-05 08:10 - 002383872 _____ (Farbar) C:\Users\hlava\Downloads\FRST64 (1).exe
2023-11-05 06:27 - 2023-11-05 06:27 - 000728484 _____ C:\WINDOWS\system32\perfh005.dat
2023-11-05 06:27 - 2023-11-05 06:27 - 000151700 _____ C:\WINDOWS\system32\perfc005.dat
2023-11-05 06:16 - 2023-11-05 06:16 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Lavasoft
2023-11-05 06:16 - 2023-11-05 06:16 - 000000000 ____D C:\Users\hlava\AppData\Local\Lavasoft
2023-11-05 06:16 - 2023-11-05 06:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2023-11-05 06:15 - 2023-11-05 06:15 - 002016841 _____ C:\Users\hlava\Downloads\uTorrent Pro 3.4.6 Build 42178 (x32x64).rar
2023-11-05 06:15 - 2023-11-05 06:15 - 000000000 ____D C:\ProgramData\Lavasoft
2023-11-05 06:15 - 2023-11-05 06:15 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2023-11-04 19:31 - 2023-11-04 19:31 - 000011184 _____ C:\Users\hlava\Downloads\Center_Finder.stl
2023-11-03 17:15 - 2023-11-03 17:15 - 000222698 _____ C:\Users\hlava\Downloads\AAAALLLLUntold.torrent
2023-11-01 19:49 - 2023-11-01 19:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-11-01 19:49 - 2023-11-01 19:49 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-11-01 07:19 - 2023-11-01 07:19 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-10-31 11:22 - 2023-10-31 11:22 - 000000000 ____D C:\Users\Public\Documents\Epic
2023-10-31 11:22 - 2023-10-31 11:22 - 000000000 ____D C:\Users\hlava\AppData\Local\Moria
2023-10-31 11:05 - 2023-10-31 11:05 - 000001166 _____ C:\Users\Public\Desktop\Play The Lord of the Rings Return to Moria.lnk
2023-10-31 11:05 - 2023-10-31 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Lord of the Rings Return to Moria
2023-10-31 09:01 - 2023-10-31 09:01 - 000677281 _____ C:\Users\hlava\Downloads\dodiultimate.torrent
2023-10-31 08:30 - 2023-10-31 08:30 - 000003548 _____ C:\WINDOWS\system32\Tasks\hlava
2023-10-31 08:24 - 2023-11-05 06:19 - 000003384 _____ C:\WINDOWS\system32\Tasks\WindowsTaskCoreUpdate
2023-10-31 06:25 - 2023-10-31 08:16 - 000001806 _____ C:\Users\hlava\Desktop\D2R – zástupce.lnk
2023-10-31 06:14 - 2023-10-31 06:14 - 000000000 ____D C:\Users\hlava\Documents\Diablo II
2023-10-31 06:10 - 2023-10-31 06:10 - 000114116 _____ C:\Users\hlava\Downloads\MMMMMMMRRRRRR1111.torrent
2023-10-31 05:50 - 2023-10-31 05:50 - 000000037 _____ C:\Users\Public\Desktop\Gameforge Client.url
2023-10-30 11:16 - 2023-10-30 11:17 - 001733320 _____ ( ) C:\Users\hlava\Downloads\utorrent_installer.exe
2023-10-30 05:44 - 2023-10-30 05:46 - 000000000 ____D C:\Users\hlava\Documents\WATTROUTER ZÁLOHY
2023-10-29 14:43 - 2023-10-29 14:43 - 001565140 _____ C:\Users\hlava\Desktop\CSAT - výstupy do týmů.pdf
2023-10-28 19:36 - 2023-10-28 19:36 - 000001027 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Launcher.lnk
2023-10-28 19:36 - 2023-10-28 19:36 - 000001020 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Toolbox.lnk
2023-10-28 19:10 - 2023-10-28 19:10 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2023-10-28 19:10 - 2023-10-28 19:10 - 000002077 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-10-26 16:05 - 2023-11-05 06:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton 360
2023-10-26 16:00 - 2023-10-30 01:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2023-10-26 16:00 - 2023-10-26 16:00 - 000003374 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2023-10-25 05:00 - 2023-10-25 05:00 - 005880643 _____ C:\Users\hlava\Downloads\ablagefach_015mm_pet_mk3smmu2s.gcode
2023-10-25 05:00 - 2023-10-25 05:00 - 000189684 _____ C:\Users\hlava\Downloads\ablagefach.stl
2023-10-25 05:00 - 2023-10-25 05:00 - 000040052 _____ C:\Users\hlava\Downloads\ablagefach.3mf
2023-10-22 14:33 - 2023-10-22 14:36 - 000000000 ____D C:\Users\hlava\Documents\Need for Speed Heat
2023-10-22 14:33 - 2023-10-22 14:33 - 000032768 _____ C:\Users\Public\Documents\crash_dump.bin
2023-10-22 13:52 - 2023-10-22 13:52 - 000000593 _____ C:\Users\Public\Desktop\Play Need for Speed Heat.lnk
2023-10-22 13:52 - 2023-10-22 13:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed Heat
2023-10-22 10:42 - 2023-10-22 10:42 - 000056904 _____ C:\Users\hlava\Downloads\F91F800760A3C51970E94238166F0FB3BC6C5DB2.torrent
2023-10-15 10:59 - 2023-10-15 10:58 - 000041510 _____ C:\Users\hlava\Documents\cenova_nabidka_Radotín_vystěhování _akumulační_nádrže.pdf
2023-10-15 06:37 - 2023-10-15 10:58 - 000032256 _____ C:\Users\hlava\Documents\cenova_nabidka_Radotín_vystěhování _akumulační_nádrže.xls
2023-10-15 06:25 - 2023-10-15 06:37 - 000029696 _____ C:\Users\hlava\Downloads\cenova_nabidka10.xls
2023-10-14 00:25 - 2023-10-14 00:25 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-10-13 13:47 - 2023-10-13 13:47 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json
2023-10-13 13:46 - 2023-10-13 13:46 - 000060462 _____ C:\WINDOWS\system32\ctac.json
2023-10-13 13:46 - 2023-10-13 13:46 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-13 13:42 - 2023-10-13 13:43 - 000000000 ___HD C:\$WinREAgent
2023-10-11 10:30 - 2023-10-11 10:30 - 000983076 _____ C:\Users\hlava\Downloads\IMG_0900.jpeg
2023-10-11 10:30 - 2023-10-11 10:30 - 000874112 _____ C:\Users\hlava\Downloads\IMG_0901.jpeg
2023-10-10 17:18 - 2023-10-10 17:18 - 000000165 ____H C:\Users\hlava\Desktop\~$VYÚČTOVÁNÍ PRO NÁJEMNÍKY.xlsx
2023-10-09 13:05 - 2023-10-09 13:05 - 000441998 _____ C:\Users\hlava\Downloads\rea_podlaczenie_baterii_brito.pdf
2023-10-08 04:28 - 2023-10-08 04:28 - 001206133 _____ C:\Users\hlava\Downloads\Kolektivní-smlouva-2022_2023 (1).pdf
2023-10-08 04:27 - 2023-10-08 04:27 - 000951624 _____ C:\Users\hlava\Downloads\Mzdový-řád-2022_2023.pdf
2023-10-08 04:26 - 2023-10-08 04:26 - 001206133 _____ C:\Users\hlava\Downloads\Kolektivní-smlouva-2022_2023.pdf
2023-10-07 18:07 - 2023-10-07 18:07 - 000028884 _____ C:\Users\hlava\Downloads\disk_large.stl
2023-10-07 17:58 - 2023-10-07 17:58 - 001846684 _____ C:\Users\hlava\Downloads\disk-launcher_large.stl
2023-10-07 17:58 - 2023-10-07 17:58 - 001846684 _____ C:\Users\hlava\Downloads\disk-launcher_large (1).stl
2023-10-06 05:01 - 2023-10-06 05:01 - 009525784 _____ C:\Users\hlava\Downloads\treefrog_variable_2h20m_0,10mm_200C_PLA_ENDER3.gcode
2023-10-06 04:31 - 2023-10-06 04:32 - 000000000 ____D C:\Users\hlava\Documents\Marvel's Spider-Man Miles Morales
2023-10-06 04:31 - 2023-10-06 04:31 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Insomniac Games
2023-10-06 04:31 - 2023-10-06 04:31 - 000000000 ____D C:\Users\hlava\.insomniac
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-05 08:15 - 2022-08-26 15:41 - 000000000 ____D C:\Users\hlava\AppData\Local\CrashDumps
2023-11-05 08:15 - 2022-08-24 19:20 - 000000000 ____D C:\Users\hlava\AppData\Roaming\uTorrent
2023-11-05 08:13 - 2023-07-19 13:12 - 000064260 _____ C:\Users\hlava\Downloads\FRST.txt
2023-11-05 08:12 - 2023-07-19 13:12 - 000000000 ____D C:\FRST
2023-11-05 08:11 - 2022-08-25 05:17 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-05 08:11 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-05 08:10 - 2022-08-25 17:52 - 000000000 ____D C:\Users\hlava\AppData\Local\Norton
2023-11-05 08:09 - 2022-09-15 05:03 - 000000000 ____D C:\ProgramData\Adguard
2023-11-05 08:09 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-05 06:31 - 2023-03-01 15:31 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-11-05 06:27 - 2022-10-06 09:20 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-05 06:27 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2023-11-05 06:20 - 2022-09-28 20:35 - 000000000 ____D C:\Users\hlava\AppData\Local\BitTorrentHelper
2023-11-05 06:20 - 2022-08-25 09:51 - 000000000 ___RD C:\Users\hlava\iCloudDrive
2023-11-05 06:20 - 2022-08-24 19:44 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-11-05 06:20 - 2021-11-07 05:09 - 000000000 ____D C:\ProgramData\NVIDIA
2023-11-05 06:19 - 2023-08-08 00:59 - 000012288 ___SH C:\DumpStack.log.tmp
2023-11-05 06:19 - 2022-10-06 09:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-05 06:19 - 2022-09-15 05:03 - 000000000 ____D C:\Program Files (x86)\Adguard
2023-11-05 06:19 - 2022-08-25 04:50 - 000000000 __SHD C:\Users\hlava\IntelGraphicsProfiles
2023-11-05 06:19 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-11-05 06:19 - 2022-05-07 06:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2023-11-05 06:19 - 2021-11-07 04:53 - 000000000 ___HD C:\Intel
2023-11-05 06:07 - 2022-08-26 06:23 - 000000000 ____D C:\Program Files (x86)\Steam
2023-11-05 06:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-05 06:06 - 2022-08-25 05:20 - 000000000 ____D C:\Users\hlava\AppData\Roaming\PrusaSlicer
2023-11-05 05:37 - 2022-11-22 12:04 - 000000000 ____D C:\Users\Public\Documents\Steam
2023-11-05 05:37 - 2022-08-25 04:50 - 000000000 ____D C:\Users\hlava\AppData\Local\D3DSCache
2023-11-05 05:30 - 2022-09-09 16:40 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Microsoft\Excel
2023-11-05 05:22 - 2022-08-25 04:50 - 000000000 ____D C:\Users\hlava\AppData\Local\Host App Service
2023-11-05 05:20 - 2022-10-06 09:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-05 05:20 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-05 05:19 - 2022-10-06 09:12 - 000000000 ____D C:\Users\hlava
2023-11-05 02:04 - 2022-09-21 20:26 - 000000000 ____D C:\Users\Public\AppData\Flixmate
2023-11-04 17:26 - 2022-10-07 05:17 - 000000000 ____D C:\WINDOWS\Minidump
2023-11-04 17:25 - 2023-08-08 00:59 - 003668780 ____N C:\WINDOWS\Minidump\110423-9968-01.dmp
2023-11-04 14:06 - 2021-11-07 04:53 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-04 08:31 - 2023-03-14 06:17 - 000003450 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-DF2840C7C8727F488155D040C48163A8
2023-11-03 06:01 - 2022-08-25 04:50 - 000000000 ____D C:\Users\hlava\AppData\Local\Packages
2023-11-03 05:46 - 2022-09-02 16:39 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Microsoft\Word
2023-11-03 05:38 - 2023-03-15 14:38 - 000000000 ____D C:\Program Files (x86)\DODI-Repacks
2023-11-03 05:32 - 2022-08-25 05:21 - 000000000 ____D C:\Users\hlava\AppData\Local\Avast Software
2023-11-03 05:25 - 2023-06-25 19:20 - 000000000 ____D C:\ProgramData\Battle.net
2023-11-03 05:07 - 2023-08-08 00:59 - 003031238 ____N C:\WINDOWS\Minidump\110323-9484-01.dmp
2023-11-02 11:57 - 2023-08-08 00:59 - 003634172 ____N C:\WINDOWS\Minidump\110223-10375-01.dmp
2023-11-02 11:57 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-11-01 20:39 - 2022-08-25 05:07 - 000000000 ____D C:\Users\hlava\AppData\Local\Autodesk
2023-11-01 07:18 - 2022-09-09 16:49 - 000000000 ____D C:\Program Files\Microsoft Office
2023-10-31 22:12 - 2022-08-25 05:17 - 000002251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-31 06:14 - 2023-06-25 19:21 - 000000000 ____D C:\Users\hlava\AppData\Local\Blizzard Entertainment
2023-10-31 05:53 - 2023-07-19 06:16 - 000000000 ____D C:\Users\hlava\AppData\Local\Malwarebytes
2023-10-31 05:52 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-10-31 05:50 - 2023-07-26 20:51 - 000000037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Gameforge Client.url
2023-10-31 05:50 - 2023-07-26 20:51 - 000000000 ____D C:\Program Files (x86)\GameforgeClient
2023-10-31 05:41 - 2022-09-02 16:43 - 000000000 ____D C:\Users\hlava\AppData\Local\Adobe
2023-10-30 15:15 - 2022-09-27 18:28 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Kodi
2023-10-30 14:41 - 2022-08-27 13:40 - 000000000 ____D C:\Users\hlava\AppData\Roaming\vlc
2023-10-30 05:47 - 2022-11-17 18:57 - 000000000 ____D C:\Users\hlava\Desktop\3D TISK CR
2023-10-30 05:41 - 2022-11-17 19:00 - 000000000 ___RD C:\Users\hlava\Desktop\PROGRAMY ZÁSTUPCE
2023-10-30 01:24 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-30 01:19 - 2022-09-15 05:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdGuard
2023-10-30 01:19 - 2021-11-07 05:27 - 000000000 ____D C:\ProgramData\Package Cache
2023-10-30 01:18 - 2022-08-25 17:04 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Loxone
2023-10-29 12:16 - 2022-08-25 05:23 - 000000000 ____D C:\Users\hlava\AppData\Roaming\Python
2023-10-28 19:36 - 2023-09-10 19:29 - 000000000 ____D C:\Program Files\PDF24
2023-10-28 19:11 - 2022-10-06 09:16 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-28 19:11 - 2022-08-25 04:40 - 000000000 ____D C:\ProgramData\Packages
2023-10-28 19:08 - 2023-02-19 20:45 - 000002201 _____ C:\Users\hlava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2023-10-27 04:20 - 2022-08-25 08:49 - 000000000 ____D C:\Program Files\Common Files\AV
2023-10-26 16:00 - 2022-10-19 20:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2023-10-26 15:59 - 2023-08-08 00:59 - 005842246 ____N C:\WINDOWS\Minidump\102623-9171-01.dmp
2023-10-26 04:59 - 2022-10-06 09:16 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-26 04:59 - 2022-10-06 09:16 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-25 05:30 - 2022-08-25 17:10 - 000000000 ____D C:\Program Files (x86)\NetSetMan
2023-10-25 04:48 - 2022-08-25 04:50 - 000000000 ___SD C:\Users\hlava\AppData\Roaming\Microsoft\Credentials
2023-10-25 04:33 - 2022-08-24 19:38 - 000000000 ____D C:\Program Files\Autodesk
2023-10-24 20:13 - 2022-08-24 19:38 - 000000000 ____D C:\Program Files\dotnet
2023-10-14 19:08 - 2022-11-17 19:02 - 000000000 ____D C:\Users\hlava\Desktop\Výkresy
2023-10-14 00:43 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-10-14 00:26 - 2022-10-06 09:10 - 000697952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-14 00:25 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-13 13:50 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-13 13:47 - 2022-10-06 09:11 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-13 13:41 - 2022-08-25 08:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-13 13:36 - 2022-08-25 08:58 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-11 13:53 - 2022-08-26 06:26 - 000000000 ____D C:\Users\hlava\AppData\Local\Steam
==================== Files in the root of some directories ========
2022-03-24 06:47 - 2022-03-24 06:47 - 000000274 _____ () C:\ProgramData\fontcacheev1.dat
2023-02-03 08:42 - 2023-02-03 08:42 - 000000068 _____ () C:\Users\hlava\AppData\Roaming\changzhi_leidian.data
2023-07-06 13:20 - 2023-07-14 16:06 - 000012288 _____ () C:\Users\hlava\AppData\Roaming\emp.bin
2023-06-19 20:31 - 2023-06-19 20:31 - 000048342 _____ () C:\Users\hlava\AppData\Local\HDGraph.log
2023-03-01 21:17 - 2023-09-10 19:18 - 000443415 _____ () C:\Users\hlava\AppData\Local\oobelibMkey.log
2023-02-16 05:45 - 2023-02-16 05:45 - 000000017 _____ () C:\Users\hlava\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================