Avira něco našla.
Napsal: 05 srp 2023 19:43
Dobrý den,
Avira mi něco našla, poprosil bych o kontrolu logu.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-08-2023
Ran by Jakub Straka (administrator) on DESKTOP-8R252F9 (Gigabyte Technology Co., Ltd. B550 AORUS PRO V2) (05-08-2023 20:13:18)
Running from C:\Users\Jakub Straka\OneDrive\Plocha\FRST64.exe
Loaded Profiles: Jakub Straka & Administrator
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(C:\Program Files (x86)\Avira\Antivirus\avguard.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\Corsair iCUE5 Software\QmlRenderer.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.audiometer.sdPlugin\com.barraider.audiometer.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.soundpad.sdPlugin\com.barraider.soundpad.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.speedtest.sdPlugin\com.barraider.speedtest.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.streamcounter.sdPlugin\com.barraider.streamcounter.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.wintools.sdPlugin\com.barraider.wintools.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.elgato.cpu.sdPlugin\cpu.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.exension.hwinfo.sdPlugin\hwinfo.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.streamelements.obslive.sdPlugin\obslive-sdplugin.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.victorgrycuk.colorpicker.sdPlugin\StreamDeck.ColorPicker.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (BarRaider) [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.twitchtools.sdPlugin\com.barraider.twitchtools.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (com.barraider.obstools) [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.obstools.sdPlugin\com.barraider.obstools.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\StreamDeck\crashpad_handler.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.elgato.discord.sdPlugin\ESDDiscord.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Daniel Čejchan -> ) C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\cz.danol.discordmixer.sdPlugin\bin\streamdeck-discordmixer.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Elgato\StreamDeck\QtWebEngineProcess.exe <6>
(C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServer.exe
(C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.exension.hwinfo.sdPlugin\hwinfo.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.exension.hwinfo.sdPlugin\hwinfo-plugin.exe
(explorer.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe
(explorer.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe
(explorer.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATINYE.EXE
(explorer.exe ->) (Skutta, Kristjan -> ) L:\hry\steam\steamapps\common\wallpaper_engine\wallpaper64.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> ) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(svchost.exe ->) (Martin Malik - REALiX -> REALiX s.r.o.) C:\Program Files\HWiNFO64\HWiNFO64.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1090784 2020-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2023-06-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [18904136 2023-06-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [326152 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [ZaAntiRansomware] => C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe [4231392 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [CZC G GK1000] => C:\Program Files\CZC G GK1000\CZC G GK1000.exe [2031616 2019-02-14] (TODO: <Company name>) [File not signed]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1067528 2022-07-26] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [Discord] => C:\Users\Jakub Straka\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13786600 2023-01-28] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [WallpaperEngine] => L:\hry\steam\steamapps\common\wallpaper_engine\wallpaper64.exe [3772512 2023-03-12] (Skutta, Kristjan -> )
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [MicrosoftEdgeAutoLaunch_D9DB1379607762148C520576C1BEC44E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4088256 2023-07-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINYE.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [Volume Controller SD plugin] => C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe [108072 2023-04-27] (Corsair Memory, Inc. -> )
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4088256 2023-07-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\EPSON L365 Series 64MonitorBE: C:\Windows\system32\E_YLMBNYE.DLL [180224 2014-03-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [117248 2021-10-19] (pdfforge GmbH) [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2022-11-06]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.111\Installer\chrmstp.exe [2023-08-02] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-03-01]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {B9E0BB23-35F2-4A22-BD41-5E9E2B55F1E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {0868E20E-469D-45FB-A0FF-BD4BF22A31FF} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-8R252F9-Jakub Straka => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {DA38E3AE-9E37-4D0D-8068-55151DCFE589} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AA7DFA92-7DEB-41B2-9745-E2F34942A441} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2648424 2021-10-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {46ED3829-EF4E-4FF4-830E-EA702CEFEA41} - System32\Tasks\Avira_FallbackUpdater => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start AviraFallbackUpdater Delayed=false
Task: {5F7C2855-830B-41D4-B371-B65065F45734} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry
Task: {5F7C2855-830B-41D4-B371-B65065F45734} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog
Task: {5F7C2855-830B-41D4-B371-B65065F45734} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector
Task: {F5444842-2420-4763-9CD5-FB5B957CF863} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [261360 2023-07-13] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {71ADC1E6-1C99-4191-9CD4-54D79D284BF6} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1813000 2023-07-13] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {4FEDEBF3-AFC2-4348-8DCD-BC1D49247167} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {342015A8-A1EF-496A-94D8-42DD63FB40A8} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [35381016 2023-08-05] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {AC2A663C-886B-4247-80F3-3EBC38671E28} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F1AF7641-B616-4685-B386-780B1CF07ECD} - System32\Tasks\CCleanerSkipUAC - Jakub Straka => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7AB67FDF-8345-4EFB-9C91-FE2A035F68CB} - System32\Tasks\GoogleUpdateTaskMachineCore{84752FB8-4E45-4F30-B366-2D76AB33AE25} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-10-19] (Google Inc -> Google Inc.)
Task: {53753F00-23F1-4A1F-B7F6-5E24DF2575BC} - System32\Tasks\GoogleUpdateTaskMachineUA{9ADA4F1A-B8B0-4AAF-AA01-F13EAB533E46} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-10-19] (Google Inc -> Google Inc.)
Task: {E4355327-53CF-4745-A110-22A45FC0F8CF} - System32\Tasks\HWiNFO => C:\Program Files\HWiNFO64\HWiNFO64.EXE [8020448 2023-06-28] (Martin Malik - REALiX -> REALiX s.r.o.)
Task: {A6237A61-59C5-4AC6-862B-D66B30118008} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2023-01-22] () [File not signed]
Task: {946BC61E-9008-4EC1-9CEF-EAA8159C565E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-08-05] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {2E411247-F6B6-4A8E-8131-7AC6545AC2E9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [733088 2023-08-05] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\EPSON L365 Series Update {49155523-5DE0-4CBC-949A-3B59FD3BA697}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE:/EXE:{49155523-5DE0-4CBC-949A-3B59FD3BA697} /F:UpdateWORKGROUP\DESKTOP-8R252F9$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c61e5e04-8ed3-4539-8c4e-b408d564e6a3}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\Jakub Straka\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-05]
Edge Extension: (Edge relevant text changes) - C:\Users\Jakub Straka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-07-25]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: yp5o249b.default
FF ProfilePath: C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\yp5o249b.default [2022-10-20]
FF ProfilePath: C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release [2023-08-05]
FF DownloadDir: F:\rozbaleno
FF Homepage: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> moz-extension://29a56752-ff97-4ee7-9daa-973467439929/dial.html
FF Session Restore: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> is enabled.
FF HomepageOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Disabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: @contain-facebook
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: mapy-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: seznam-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: google@search.mozilla.org
FF Extension: (Facebook Container) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\@contain-facebook.xpi [2023-07-20]
FF Extension: (Activist – Bold) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\activist-bold-colorway@mozilla.org.xpi [2023-03-18]
FF Extension: (Group Speed Dial) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2023-08-03]
FF Extension: (BetterTTV) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\firefox@betterttv.net.xpi [2023-08-02]
FF Extension: (New Tab Page) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\pavel.sherbakov@gmail.com.xpi [2021-02-19]
FF Extension: (RescueTime for Firefox) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\rescuetime_firefox@rescuetime.com.xpi [2020-05-27]
FF Extension: (uBlock Origin) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\uBlock0@raymondhill.net.xpi [2023-07-26]
FF Extension: (Black Rain (Animated)) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{3e866059-1715-4a17-906c-02db9b30930e}.xpi [2022-10-20]
FF Extension: (GF-S Tamayori Blue 08) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{407287f9-41f0-40ac-be08-259a73b8a4a7}.xpi [2022-10-20]
FF Extension: (Matte Black (Red)) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2022-02-25]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2021-12-20] [Legacy] [not signed]
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default [2023-08-05]
CHR Extension: (Avira Password Manager) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-04-06]
CHR Extension: (ChatGPT Sidebar - Support GPT-4 for Plus user) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\difoiogjjojoaoomphldepapgpbgkhkb [2023-04-06]
CHR Extension: (Avira Browser Safety) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2023-01-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-19]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [923656 2022-07-26] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3863256 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3701464 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [538000 2021-06-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574832 2022-01-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [4040776 2023-07-18] (philandro Software GmbH -> AnyDesk Software GmbH)
S2 AviraFallbackUpdater; C:\Program Files (x86)\Avira\Fallback Updater\Avira.Spotlight.FallbackUpdater.exe [6573192 2023-08-05] (Avira Operations GmbH -> Avira Operations GmbH)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3004688 2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [266384 2023-07-13] (Avira Operations GmbH -> Avira Operations GmbH)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [298552 2023-07-13] (Avira Operations GmbH -> Avira Operations GmbH)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [14893832 2023-07-06] (BattlEye Innovations e.K. -> )
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [149544 2023-06-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CPEFR; C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe [3274432 2021-04-10] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 CpSbaCipolla; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
R2 CpSbaUpdater; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2023-08-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-08-05] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-02-12] (Epic Games Inc. -> Epic Games, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2117096 2023-01-28] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-26] (GOG Sp. z o.o. -> GOG.com)
R3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [340520 2023-06-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [30032552 2023-01-26] (My.Com B.V. -> My.com B.V.)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2022-12-18] (Electronic Arts, Inc. -> Electronic Arts)
S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2022-12-18] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2021-10-30] (Even Balance, Inc. -> )
R2 RemediationService; C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18624 2021-03-29] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 TESvc; C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [137920 2021-04-09] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [331648 2021-12-15] (Twitch Interactive, Inc. -> )
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [4575688 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZA NET ICM Service; C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe [42208 2020-03-13] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ZAARUpdateService; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [129216 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\Windows\System32\drivers\avelam.sys [22848 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [209088 2021-10-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [199312 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3348752 2023-08-05] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R2 cpbak; C:\Windows\System32\DRIVERS\cpbak.sys [83248 2020-09-03] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 CPEPMon; C:\Windows\System32\DRIVERS\CPEPMon.sys [153040 2021-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Check Point Software Technologies)
R1 epnetflt; C:\Windows\system32\drivers\epnetflt.sys [135984 2020-12-06] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 epregflt; C:\Windows\system32\drivers\epregflt.sys [133416 2020-12-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R3 HWiNFO_180; C:\Users\Jakub Straka\AppData\Local\Temp\HWiNFO64A_180.SYS [58528 2023-08-05] (WDKTestCert martin,133281419032501408 -> REALiX(tm)) <==== ATTENTION
R2 ISWKL; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [56184 2021-01-28] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 mracdrv; C:\Windows\System32\drivers\mracdrv1.sys [29266592 2023-01-26] (My.Com B.V. -> My.com B.V.)
R3 SteamStreamingMicrophone; C:\Windows\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\Windows\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\mvvad.sys [48144 2022-07-26] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
R1 Vsdatant; C:\Windows\System32\drivers\vsdatant.sys [461240 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2021-10-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
U3 iswSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-05 19:38 - 2023-08-05 19:38 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\AviraWebView2Cache
2023-08-05 19:36 - 2023-08-05 19:36 - 000003888 _____ C:\Windows\system32\Tasks\Avira_Security_Maintenance
2023-08-05 19:36 - 2023-08-05 19:36 - 000003796 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupVerify
2023-08-05 19:36 - 2023-08-05 19:36 - 000003702 _____ C:\Windows\system32\Tasks\Avira_FallbackUpdater
2023-08-05 19:36 - 2023-08-05 19:36 - 000003428 _____ C:\Windows\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2023-08-05 19:36 - 2023-08-05 19:36 - 000002818 _____ C:\Windows\system32\Tasks\Avira_Security_Systray
2023-08-05 19:33 - 2023-08-05 19:34 - 006573192 _____ (Avira Operations GmbH) C:\Users\Jakub Straka\Downloads\avira_en_sptl1_237323ce2b4fc0ef__pavwws-spotlight-release.exe
2023-08-05 08:49 - 2023-08-05 08:49 - 000000000 ___SH C:\Users\Public\Shared Files
2023-08-05 08:41 - 2023-08-05 08:41 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\EasyAntiCheat
2023-08-05 08:41 - 2023-08-05 08:41 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\FortniteGame
2023-08-05 08:41 - 2023-08-05 08:41 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-08-01 23:37 - 2023-08-01 23:37 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Flowerized
2023-08-01 23:35 - 2023-08-01 23:35 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\FAMU
2023-08-01 23:30 - 2023-08-01 23:30 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\OnTriggerEnter()
2023-07-31 22:42 - 2023-07-31 22:42 - 205978567 _____ C:\Users\Jakub Straka\Downloads\upscayl-2.5.5-win.exe
2023-07-25 17:00 - 2023-07-25 17:00 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\GloomyWood
2023-07-25 16:49 - 2023-07-25 16:49 - 035979793 _____ C:\Users\Jakub Straka\Downloads\Party_Hard_CZ_1.00_HRA_1.4.038.r.zip
2023-07-25 16:38 - 2023-07-25 16:38 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\PinoklGames
2023-07-25 13:48 - 2023-07-25 13:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Nonsense Arts
2023-07-25 13:45 - 2023-07-25 13:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\QCF Design
2023-07-18 23:23 - 2023-07-18 23:23 - 000350596 _____ C:\Users\Jakub Straka\Downloads\priloha_1217299561_0_A_informativni_dopis.pdf
2023-07-18 23:23 - 2023-07-18 23:23 - 000074010 _____ C:\Users\Jakub Straka\Downloads\priloha_1183890654_0_00609623_dne_0582_2300966707_qr.pdf
2023-07-15 10:02 - 2023-07-15 10:02 - 000159314 _____ C:\Users\Jakub Straka\Downloads\PEPŮV »ITALSKÝ« KRÉMOVÝ DRESINK.pdf
2023-07-13 16:55 - 2023-07-13 16:55 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\BattlEye
2023-07-13 16:43 - 2023-07-13 16:50 - 000000000 ____D C:\Users\Jakub Straka\OneDrive\Dokumenty\OpenTTD
2023-07-13 02:54 - 2023-07-13 02:54 - 000000000 ___HD C:\$WinREAgent
2023-07-12 21:22 - 2023-08-05 14:27 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-07-07 08:17 - 2023-07-07 08:17 - 011346776 _____ (Martin Malik, REALiX s.r.o. ) C:\Users\Jakub Straka\Downloads\hwi_750.exe
2023-07-06 13:47 - 2023-07-06 13:47 - 001012704 _____ (Spotify Ltd) C:\Users\Jakub Straka\Downloads\SpotifySetup.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-05 20:13 - 2022-10-19 19:31 - 000000000 ____D C:\FRST
2023-08-05 20:08 - 2021-10-19 14:39 - 001694140 _____ C:\Windows\system32\PerfStringBackup.INI
2023-08-05 20:08 - 2019-12-07 16:43 - 000717008 _____ C:\Windows\system32\perfh005.dat
2023-08-05 20:08 - 2019-12-07 16:43 - 000145186 _____ C:\Windows\system32\perfc005.dat
2023-08-05 20:08 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-08-05 20:04 - 2021-12-15 19:05 - 000000000 ____D C:\Windows\SystemTemp
2023-08-05 20:04 - 2021-10-19 21:09 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-05 20:03 - 2023-01-17 21:21 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-08-05 20:01 - 2021-10-19 20:43 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-05 20:01 - 2021-10-19 20:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-08-05 20:01 - 2021-10-19 18:58 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-05 20:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-05 20:01 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-08-05 19:47 - 2021-10-19 22:09 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Mozilla
2023-08-05 19:47 - 2021-10-19 16:25 - 000000000 ____D C:\Program Files (x86)\Steam
2023-08-05 19:41 - 2021-10-19 15:04 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\D3DSCache
2023-08-05 19:37 - 2021-10-19 14:48 - 000918960 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2023-08-05 19:36 - 2021-10-19 22:19 - 000003480 _____ C:\Windows\system32\Tasks\Avira_Security_Update
2023-08-05 19:36 - 2021-10-19 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2023-08-05 19:36 - 2021-10-19 22:18 - 000000000 ____D C:\Program Files (x86)\Avira
2023-08-05 19:35 - 2021-10-19 22:18 - 000000000 ____D C:\ProgramData\Avira
2023-08-05 16:51 - 2021-10-19 20:43 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-08-05 14:22 - 2021-11-13 22:40 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\CrashDumps
2023-08-05 13:56 - 2023-03-19 11:43 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Ubisoft Game Launcher
2023-08-05 13:56 - 2021-10-23 07:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\discord
2023-08-05 13:56 - 2021-10-23 07:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Discord
2023-08-05 13:53 - 2021-10-19 16:44 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\obs-studio
2023-08-05 10:27 - 2021-10-19 15:03 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Adobe
2023-08-05 08:49 - 2019-12-07 11:14 - 000000000 __SHD C:\Users\Public\Libraries
2023-08-05 08:42 - 2021-10-19 16:34 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\UnrealEngine
2023-08-05 08:42 - 2021-10-19 14:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-08-05 07:47 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-08-05 07:46 - 2022-02-12 09:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-08-05 07:45 - 2021-10-19 22:09 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-08-05 07:45 - 2021-10-19 22:09 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-08-04 19:44 - 2022-09-17 07:22 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Videoder
2023-08-04 19:32 - 2022-09-17 11:04 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\audacity
2023-08-04 18:48 - 2021-10-19 19:13 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\vlc
2023-08-04 18:21 - 2023-06-10 13:06 - 015293896 _____ (Audacity Team ) C:\Users\Jakub Straka\Downloads\audacity-win-3.3.3-x64.exe
2023-08-04 14:09 - 2021-10-19 16:57 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-08-04 13:59 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-03 01:13 - 2021-10-19 17:20 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2023-08-02 20:28 - 2021-10-19 21:10 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-02 10:18 - 2023-04-06 22:23 - 000003844 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{9ADA4F1A-B8B0-4AAF-AA01-F13EAB533E46}
2023-08-02 10:18 - 2023-04-06 22:23 - 000003720 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{84752FB8-4E45-4F30-B366-2D76AB33AE25}
2023-08-01 23:24 - 2023-01-21 08:52 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\EBWebView
2023-07-31 23:23 - 2023-04-20 14:31 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Upscayl
2023-07-31 22:43 - 2023-04-20 14:25 - 000001886 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Upscayl.lnk
2023-07-31 22:43 - 2023-04-20 14:25 - 000001874 _____ C:\ProgramData\Plocha\Upscayl.lnk
2023-07-31 22:43 - 2023-04-20 14:25 - 000000000 ____D C:\Program Files\Upscayl
2023-07-31 14:37 - 2023-02-27 17:28 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Corsair
2023-07-29 11:51 - 2021-10-19 14:46 - 000003390 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1889562659-284652626-518695448-1001
2023-07-29 11:51 - 2021-10-19 14:45 - 000002398 _____ C:\Users\Jakub Straka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-29 00:49 - 2021-10-19 21:06 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-27 14:34 - 2021-12-20 23:26 - 000001480 _____ C:\Users\Jakub Straka\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2023-07-25 16:40 - 2023-01-14 07:44 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Humble App
2023-07-25 10:41 - 2021-10-19 14:45 - 000000000 ___SD C:\Users\Jakub Straka\AppData\Roaming\Microsoft\Credentials
2023-07-25 10:40 - 2023-01-14 07:44 - 000000000 ____D C:\Program Files\Humble App
2023-07-25 10:21 - 2021-10-19 16:57 - 000000000 ____D C:\Program Files\CCleaner
2023-07-18 20:05 - 2023-06-21 22:25 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Sad Owl Studios
2023-07-18 18:58 - 2021-10-19 21:12 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2023-07-14 08:48 - 2021-10-19 22:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-13 16:53 - 2023-05-21 11:16 - 000000000 ____D C:\Users\Jakub Straka\OneDrive\Dokumenty\Euro Truck Simulator 2
2023-07-13 09:20 - 2021-10-19 22:13 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-07-13 03:37 - 2021-10-19 20:43 - 005171488 _____ C:\Windows\system32\FNTCACHE.DAT
2023-07-13 03:36 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-07-13 03:00 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-07-13 02:57 - 2021-10-19 14:36 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-07-13 01:51 - 2021-10-19 14:49 - 000000000 ____D C:\Windows\system32\MRT
2023-07-13 01:44 - 2021-10-19 14:49 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-07-07 08:17 - 2022-09-25 10:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2023-07-07 08:17 - 2022-09-25 10:39 - 000000000 ____D C:\Program Files\HWiNFO64
2023-07-07 08:15 - 2021-10-19 14:45 - 000000000 ____D C:\Users\Jakub Straka
2023-07-06 18:43 - 2021-10-19 21:06 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-06 18:43 - 2021-10-19 21:06 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2022-02-13 10:50 - 2022-02-13 10:50 - 000000132 _____ () C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2021-12-23 01:36 - 2022-10-28 21:42 - 000000132 _____ () C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2021-10-19 18:16 - 2022-07-24 23:27 - 000000015 _____ () C:\Users\Jakub Straka\AppData\Roaming\obs-virtualcam.txt
2022-10-31 16:54 - 2022-11-04 16:51 - 000000081 _____ () C:\Users\Jakub Straka\AppData\Local\.bidstack.fault
2021-12-20 23:26 - 2023-07-27 14:34 - 000001480 _____ () C:\Users\Jakub Straka\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2022-09-24 13:59 - 2023-06-27 16:36 - 001065984 _____ () C:\Users\Jakub Straka\AppData\Local\file__0.localstorage
2022-09-28 08:45 - 2022-09-28 08:45 - 000008337 _____ () C:\Users\Jakub Straka\AppData\Local\kdenlive-layoutsrc
2022-09-28 08:45 - 2023-02-28 23:39 - 000006153 _____ () C:\Users\Jakub Straka\AppData\Local\kdenliverc
2022-04-16 08:10 - 2022-10-18 14:46 - 000005104 _____ () C:\Users\Jakub Straka\AppData\Local\krita-sysinfo.log
2022-04-16 08:10 - 2022-10-18 14:46 - 000003718 _____ () C:\Users\Jakub Straka\AppData\Local\krita.log
2022-10-18 14:46 - 2022-10-18 14:46 - 000000039 _____ () C:\Users\Jakub Straka\AppData\Local\kritadisplayrc
2022-04-16 08:10 - 2022-10-18 14:46 - 000016954 _____ () C:\Users\Jakub Straka\AppData\Local\kritarc
2021-12-22 05:48 - 2021-12-22 05:48 - 000000000 _____ () C:\Users\Jakub Straka\AppData\Local\oobelibMkey.log
2023-02-26 09:09 - 2023-02-26 09:09 - 000000783 _____ () C:\Users\Jakub Straka\AppData\Local\recently-used.xbel
2021-10-20 22:14 - 2021-10-20 22:14 - 000007609 _____ () C:\Users\Jakub Straka\AppData\Local\Resmon.ResmonCfg
2022-09-28 08:45 - 2022-09-28 08:45 - 000007889 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel
2022-09-28 08:45 - 2022-09-28 08:45 - 000005808 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel.bak
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel.tbcache
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Avira mi něco našla, poprosil bych o kontrolu logu.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-08-2023
Ran by Jakub Straka (administrator) on DESKTOP-8R252F9 (Gigabyte Technology Co., Ltd. B550 AORUS PRO V2) (05-08-2023 20:13:18)
Running from C:\Users\Jakub Straka\OneDrive\Plocha\FRST64.exe
Loaded Profiles: Jakub Straka & Administrator
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3208 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(C:\Program Files (x86)\Avira\Antivirus\avguard.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Corsair\Corsair iCUE5 Software\QmlRenderer.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.audiometer.sdPlugin\com.barraider.audiometer.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.soundpad.sdPlugin\com.barraider.soundpad.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.speedtest.sdPlugin\com.barraider.speedtest.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.streamcounter.sdPlugin\com.barraider.streamcounter.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.wintools.sdPlugin\com.barraider.wintools.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.elgato.cpu.sdPlugin\cpu.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.exension.hwinfo.sdPlugin\hwinfo.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.streamelements.obslive.sdPlugin\obslive-sdplugin.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.victorgrycuk.colorpicker.sdPlugin\StreamDeck.ColorPicker.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (BarRaider) [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.twitchtools.sdPlugin\com.barraider.twitchtools.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (com.barraider.obstools) [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.obstools.sdPlugin\com.barraider.obstools.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\StreamDeck\crashpad_handler.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.elgato.discord.sdPlugin\ESDDiscord.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (Daniel Čejchan -> ) C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\cz.danol.discordmixer.sdPlugin\bin\streamdeck-discordmixer.exe
(C:\Program Files\Elgato\StreamDeck\StreamDeck.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Elgato\StreamDeck\QtWebEngineProcess.exe <6>
(C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServer.exe
(C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.exension.hwinfo.sdPlugin\hwinfo.exe ->) () [File not signed] C:\Users\Jakub Straka\AppData\Roaming\Elgato\StreamDeck\Plugins\com.exension.hwinfo.sdPlugin\hwinfo-plugin.exe
(explorer.exe ->) (Corsair Memory, Inc. -> ) C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe
(explorer.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE.exe
(explorer.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATINYE.EXE
(explorer.exe ->) (Skutta, Kristjan -> ) L:\hry\steam\steamapps\common\wallpaper_engine\wallpaper64.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> ) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(svchost.exe ->) (Martin Malik - REALiX -> REALiX s.r.o.) C:\Program Files\HWiNFO64\HWiNFO64.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1090784 2020-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [184872 2023-06-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [18904136 2023-06-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [326152 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [ZaAntiRansomware] => C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe [4231392 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [CZC G GK1000] => C:\Program Files\CZC G GK1000\CZC G GK1000.exe [2031616 2019-02-14] (TODO: <Company name>) [File not signed]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1067528 2022-07-26] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [Discord] => C:\Users\Jakub Straka\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13786600 2023-01-28] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [WallpaperEngine] => L:\hry\steam\steamapps\common\wallpaper_engine\wallpaper64.exe [3772512 2023-03-12] (Skutta, Kristjan -> )
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [MicrosoftEdgeAutoLaunch_D9DB1379607762148C520576C1BEC44E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4088256 2023-07-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINYE.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [Volume Controller SD plugin] => C:\Program Files\Elgato\Volume Controller\ElgatoAudioControlServerWatcher.exe [108072 2023-04-27] (Corsair Memory, Inc. -> )
HKU\S-1-5-21-1889562659-284652626-518695448-1001\...\Run: [] => [X]
HKU\S-1-5-21-1889562659-284652626-518695448-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4088256 2023-07-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\EPSON L365 Series 64MonitorBE: C:\Windows\system32\E_YLMBNYE.DLL [180224 2014-03-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [117248 2021-10-19] (pdfforge GmbH) [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2022-11-06]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.111\Installer\chrmstp.exe [2023-08-02] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-03-01]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {B9E0BB23-35F2-4A22-BD41-5E9E2B55F1E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {0868E20E-469D-45FB-A0FF-BD4BF22A31FF} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-8R252F9-Jakub Straka => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {DA38E3AE-9E37-4D0D-8068-55151DCFE589} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {AA7DFA92-7DEB-41B2-9745-E2F34942A441} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2648424 2021-10-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {46ED3829-EF4E-4FF4-830E-EA702CEFEA41} - System32\Tasks\Avira_FallbackUpdater => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start AviraFallbackUpdater Delayed=false
Task: {5F7C2855-830B-41D4-B371-B65065F45734} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry
Task: {5F7C2855-830B-41D4-B371-B65065F45734} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog
Task: {5F7C2855-830B-41D4-B371-B65065F45734} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector
Task: {F5444842-2420-4763-9CD5-FB5B957CF863} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [261360 2023-07-13] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {71ADC1E6-1C99-4191-9CD4-54D79D284BF6} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1813000 2023-07-13] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {4FEDEBF3-AFC2-4348-8DCD-BC1D49247167} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {342015A8-A1EF-496A-94D8-42DD63FB40A8} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [35381016 2023-08-05] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {AC2A663C-886B-4247-80F3-3EBC38671E28} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F1AF7641-B616-4685-B386-780B1CF07ECD} - System32\Tasks\CCleanerSkipUAC - Jakub Straka => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7AB67FDF-8345-4EFB-9C91-FE2A035F68CB} - System32\Tasks\GoogleUpdateTaskMachineCore{84752FB8-4E45-4F30-B366-2D76AB33AE25} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-10-19] (Google Inc -> Google Inc.)
Task: {53753F00-23F1-4A1F-B7F6-5E24DF2575BC} - System32\Tasks\GoogleUpdateTaskMachineUA{9ADA4F1A-B8B0-4AAF-AA01-F13EAB533E46} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2021-10-19] (Google Inc -> Google Inc.)
Task: {E4355327-53CF-4745-A110-22A45FC0F8CF} - System32\Tasks\HWiNFO => C:\Program Files\HWiNFO64\HWiNFO64.EXE [8020448 2023-06-28] (Martin Malik - REALiX -> REALiX s.r.o.)
Task: {A6237A61-59C5-4AC6-862B-D66B30118008} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2023-01-22] () [File not signed]
Task: {946BC61E-9008-4EC1-9CEF-EAA8159C565E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-08-05] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {2E411247-F6B6-4A8E-8131-7AC6545AC2E9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [733088 2023-08-05] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\EPSON L365 Series Update {49155523-5DE0-4CBC-949A-3B59FD3BA697}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNYE.EXE:/EXE:{49155523-5DE0-4CBC-949A-3B59FD3BA697} /F:UpdateWORKGROUP\DESKTOP-8R252F9$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{c61e5e04-8ed3-4539-8c4e-b408d564e6a3}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\Jakub Straka\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-05]
Edge Extension: (Edge relevant text changes) - C:\Users\Jakub Straka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-07-25]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: yp5o249b.default
FF ProfilePath: C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\yp5o249b.default [2022-10-20]
FF ProfilePath: C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release [2023-08-05]
FF DownloadDir: F:\rozbaleno
FF Homepage: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> moz-extension://29a56752-ff97-4ee7-9daa-973467439929/dial.html
FF Session Restore: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> is enabled.
FF HomepageOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Disabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: @contain-facebook
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: mapy-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: seznam-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\tl6lqvuh.default-release -> Enabled: google@search.mozilla.org
FF Extension: (Facebook Container) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\@contain-facebook.xpi [2023-07-20]
FF Extension: (Activist – Bold) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\activist-bold-colorway@mozilla.org.xpi [2023-03-18]
FF Extension: (Group Speed Dial) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2023-08-03]
FF Extension: (BetterTTV) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\firefox@betterttv.net.xpi [2023-08-02]
FF Extension: (New Tab Page) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\pavel.sherbakov@gmail.com.xpi [2021-02-19]
FF Extension: (RescueTime for Firefox) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\rescuetime_firefox@rescuetime.com.xpi [2020-05-27]
FF Extension: (uBlock Origin) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\uBlock0@raymondhill.net.xpi [2023-07-26]
FF Extension: (Black Rain (Animated)) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{3e866059-1715-4a17-906c-02db9b30930e}.xpi [2022-10-20]
FF Extension: (GF-S Tamayori Blue 08) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{407287f9-41f0-40ac-be08-259a73b8a4a7}.xpi [2022-10-20]
FF Extension: (Matte Black (Red)) - C:\Users\Jakub Straka\AppData\Roaming\Mozilla\Firefox\Profiles\tl6lqvuh.default-release\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2022-02-25]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2021-12-20] [Legacy] [not signed]
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2022-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2022-07-26] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default [2023-08-05]
CHR Extension: (Avira Password Manager) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-04-06]
CHR Extension: (ChatGPT Sidebar - Support GPT-4 for Plus user) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\difoiogjjojoaoomphldepapgpbgkhkb [2023-04-06]
CHR Extension: (Avira Browser Safety) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2023-01-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub Straka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-19]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [923656 2022-07-26] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3863256 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3701464 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [538000 2021-06-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574832 2022-01-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [4040776 2023-07-18] (philandro Software GmbH -> AnyDesk Software GmbH)
S2 AviraFallbackUpdater; C:\Program Files (x86)\Avira\Fallback Updater\Avira.Spotlight.FallbackUpdater.exe [6573192 2023-08-05] (Avira Operations GmbH -> Avira Operations GmbH)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3004688 2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [266384 2023-07-13] (Avira Operations GmbH -> Avira Operations GmbH)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [298552 2023-07-13] (Avira Operations GmbH -> Avira Operations GmbH)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [14893832 2023-07-06] (BattlEye Innovations e.K. -> )
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [149544 2023-06-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CPEFR; C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe [3274432 2021-04-10] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 CpSbaCipolla; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
R2 CpSbaUpdater; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2023-08-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-08-05] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-02-12] (Epic Games Inc. -> Epic Games, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2117096 2023-01-28] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-26] (GOG Sp. z o.o. -> GOG.com)
R3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [340520 2023-06-19] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 mracsvc; C:\Windows\System32\mracsvc.exe [30032552 2023-01-26] (My.Com B.V. -> My.com B.V.)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579264 2022-12-18] (Electronic Arts, Inc. -> Electronic Arts)
S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497800 2022-12-18] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2021-10-30] (Even Balance, Inc. -> )
R2 RemediationService; C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18624 2021-03-29] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 TESvc; C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [137920 2021-04-09] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [331648 2021-12-15] (Twitch Interactive, Inc. -> )
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [4575688 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZA NET ICM Service; C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe [42208 2020-03-13] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ZAARUpdateService; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2021-04-19] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [129216 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\Windows\System32\drivers\avelam.sys [22848 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [209088 2021-10-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [199312 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3348752 2023-08-05] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R2 cpbak; C:\Windows\System32\DRIVERS\cpbak.sys [83248 2020-09-03] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 CPEPMon; C:\Windows\System32\DRIVERS\CPEPMon.sys [153040 2021-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Check Point Software Technologies)
R1 epnetflt; C:\Windows\system32\drivers\epnetflt.sys [135984 2020-12-06] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 epregflt; C:\Windows\system32\drivers\epregflt.sys [133416 2020-12-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R3 HWiNFO_180; C:\Users\Jakub Straka\AppData\Local\Temp\HWiNFO64A_180.SYS [58528 2023-08-05] (WDKTestCert martin,133281419032501408 -> REALiX(tm)) <==== ATTENTION
R2 ISWKL; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [56184 2021-01-28] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 mracdrv; C:\Windows\System32\drivers\mracdrv1.sys [29266592 2023-01-26] (My.Com B.V. -> My.com B.V.)
R3 SteamStreamingMicrophone; C:\Windows\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\Windows\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\mvvad.sys [48144 2022-07-26] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
R1 Vsdatant; C:\Windows\System32\drivers\vsdatant.sys [461240 2021-10-02] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2021-10-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
U3 iswSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-05 19:38 - 2023-08-05 19:38 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\AviraWebView2Cache
2023-08-05 19:36 - 2023-08-05 19:36 - 000003888 _____ C:\Windows\system32\Tasks\Avira_Security_Maintenance
2023-08-05 19:36 - 2023-08-05 19:36 - 000003796 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupVerify
2023-08-05 19:36 - 2023-08-05 19:36 - 000003702 _____ C:\Windows\system32\Tasks\Avira_FallbackUpdater
2023-08-05 19:36 - 2023-08-05 19:36 - 000003428 _____ C:\Windows\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2023-08-05 19:36 - 2023-08-05 19:36 - 000002818 _____ C:\Windows\system32\Tasks\Avira_Security_Systray
2023-08-05 19:33 - 2023-08-05 19:34 - 006573192 _____ (Avira Operations GmbH) C:\Users\Jakub Straka\Downloads\avira_en_sptl1_237323ce2b4fc0ef__pavwws-spotlight-release.exe
2023-08-05 08:49 - 2023-08-05 08:49 - 000000000 ___SH C:\Users\Public\Shared Files
2023-08-05 08:41 - 2023-08-05 08:41 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\EasyAntiCheat
2023-08-05 08:41 - 2023-08-05 08:41 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\FortniteGame
2023-08-05 08:41 - 2023-08-05 08:41 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-08-01 23:37 - 2023-08-01 23:37 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Flowerized
2023-08-01 23:35 - 2023-08-01 23:35 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\FAMU
2023-08-01 23:30 - 2023-08-01 23:30 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\OnTriggerEnter()
2023-07-31 22:42 - 2023-07-31 22:42 - 205978567 _____ C:\Users\Jakub Straka\Downloads\upscayl-2.5.5-win.exe
2023-07-25 17:00 - 2023-07-25 17:00 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\GloomyWood
2023-07-25 16:49 - 2023-07-25 16:49 - 035979793 _____ C:\Users\Jakub Straka\Downloads\Party_Hard_CZ_1.00_HRA_1.4.038.r.zip
2023-07-25 16:38 - 2023-07-25 16:38 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\PinoklGames
2023-07-25 13:48 - 2023-07-25 13:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Nonsense Arts
2023-07-25 13:45 - 2023-07-25 13:45 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\QCF Design
2023-07-18 23:23 - 2023-07-18 23:23 - 000350596 _____ C:\Users\Jakub Straka\Downloads\priloha_1217299561_0_A_informativni_dopis.pdf
2023-07-18 23:23 - 2023-07-18 23:23 - 000074010 _____ C:\Users\Jakub Straka\Downloads\priloha_1183890654_0_00609623_dne_0582_2300966707_qr.pdf
2023-07-15 10:02 - 2023-07-15 10:02 - 000159314 _____ C:\Users\Jakub Straka\Downloads\PEPŮV »ITALSKÝ« KRÉMOVÝ DRESINK.pdf
2023-07-13 16:55 - 2023-07-13 16:55 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\BattlEye
2023-07-13 16:43 - 2023-07-13 16:50 - 000000000 ____D C:\Users\Jakub Straka\OneDrive\Dokumenty\OpenTTD
2023-07-13 02:54 - 2023-07-13 02:54 - 000000000 ___HD C:\$WinREAgent
2023-07-12 21:22 - 2023-08-05 14:27 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-07-07 08:17 - 2023-07-07 08:17 - 011346776 _____ (Martin Malik, REALiX s.r.o. ) C:\Users\Jakub Straka\Downloads\hwi_750.exe
2023-07-06 13:47 - 2023-07-06 13:47 - 001012704 _____ (Spotify Ltd) C:\Users\Jakub Straka\Downloads\SpotifySetup.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-05 20:13 - 2022-10-19 19:31 - 000000000 ____D C:\FRST
2023-08-05 20:08 - 2021-10-19 14:39 - 001694140 _____ C:\Windows\system32\PerfStringBackup.INI
2023-08-05 20:08 - 2019-12-07 16:43 - 000717008 _____ C:\Windows\system32\perfh005.dat
2023-08-05 20:08 - 2019-12-07 16:43 - 000145186 _____ C:\Windows\system32\perfc005.dat
2023-08-05 20:08 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-08-05 20:04 - 2021-12-15 19:05 - 000000000 ____D C:\Windows\SystemTemp
2023-08-05 20:04 - 2021-10-19 21:09 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-05 20:03 - 2023-01-17 21:21 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-08-05 20:01 - 2021-10-19 20:43 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-05 20:01 - 2021-10-19 20:43 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-08-05 20:01 - 2021-10-19 18:58 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-05 20:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-05 20:01 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-08-05 19:47 - 2021-10-19 22:09 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Mozilla
2023-08-05 19:47 - 2021-10-19 16:25 - 000000000 ____D C:\Program Files (x86)\Steam
2023-08-05 19:41 - 2021-10-19 15:04 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\D3DSCache
2023-08-05 19:37 - 2021-10-19 14:48 - 000918960 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2023-08-05 19:36 - 2021-10-19 22:19 - 000003480 _____ C:\Windows\system32\Tasks\Avira_Security_Update
2023-08-05 19:36 - 2021-10-19 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2023-08-05 19:36 - 2021-10-19 22:18 - 000000000 ____D C:\Program Files (x86)\Avira
2023-08-05 19:35 - 2021-10-19 22:18 - 000000000 ____D C:\ProgramData\Avira
2023-08-05 16:51 - 2021-10-19 20:43 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-08-05 14:22 - 2021-11-13 22:40 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\CrashDumps
2023-08-05 13:56 - 2023-03-19 11:43 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Ubisoft Game Launcher
2023-08-05 13:56 - 2021-10-23 07:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\discord
2023-08-05 13:56 - 2021-10-23 07:48 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Discord
2023-08-05 13:53 - 2021-10-19 16:44 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\obs-studio
2023-08-05 10:27 - 2021-10-19 15:03 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\Adobe
2023-08-05 08:49 - 2019-12-07 11:14 - 000000000 __SHD C:\Users\Public\Libraries
2023-08-05 08:42 - 2021-10-19 16:34 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\UnrealEngine
2023-08-05 08:42 - 2021-10-19 14:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-08-05 07:47 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-08-05 07:46 - 2022-02-12 09:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-08-05 07:45 - 2021-10-19 22:09 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-08-05 07:45 - 2021-10-19 22:09 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-08-04 19:44 - 2022-09-17 07:22 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Videoder
2023-08-04 19:32 - 2022-09-17 11:04 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\audacity
2023-08-04 18:48 - 2021-10-19 19:13 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\vlc
2023-08-04 18:21 - 2023-06-10 13:06 - 015293896 _____ (Audacity Team ) C:\Users\Jakub Straka\Downloads\audacity-win-3.3.3-x64.exe
2023-08-04 14:09 - 2021-10-19 16:57 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-08-04 13:59 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-03 01:13 - 2021-10-19 17:20 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2023-08-02 20:28 - 2021-10-19 21:10 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-02 10:18 - 2023-04-06 22:23 - 000003844 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{9ADA4F1A-B8B0-4AAF-AA01-F13EAB533E46}
2023-08-02 10:18 - 2023-04-06 22:23 - 000003720 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{84752FB8-4E45-4F30-B366-2D76AB33AE25}
2023-08-01 23:24 - 2023-01-21 08:52 - 000000000 ____D C:\Users\Jakub Straka\AppData\Local\EBWebView
2023-07-31 23:23 - 2023-04-20 14:31 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Upscayl
2023-07-31 22:43 - 2023-04-20 14:25 - 000001886 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Upscayl.lnk
2023-07-31 22:43 - 2023-04-20 14:25 - 000001874 _____ C:\ProgramData\Plocha\Upscayl.lnk
2023-07-31 22:43 - 2023-04-20 14:25 - 000000000 ____D C:\Program Files\Upscayl
2023-07-31 14:37 - 2023-02-27 17:28 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Corsair
2023-07-29 11:51 - 2021-10-19 14:46 - 000003390 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1889562659-284652626-518695448-1001
2023-07-29 11:51 - 2021-10-19 14:45 - 000002398 _____ C:\Users\Jakub Straka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-29 00:49 - 2021-10-19 21:06 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-27 14:34 - 2021-12-20 23:26 - 000001480 _____ C:\Users\Jakub Straka\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2023-07-25 16:40 - 2023-01-14 07:44 - 000000000 ____D C:\Users\Jakub Straka\AppData\Roaming\Humble App
2023-07-25 10:41 - 2021-10-19 14:45 - 000000000 ___SD C:\Users\Jakub Straka\AppData\Roaming\Microsoft\Credentials
2023-07-25 10:40 - 2023-01-14 07:44 - 000000000 ____D C:\Program Files\Humble App
2023-07-25 10:21 - 2021-10-19 16:57 - 000000000 ____D C:\Program Files\CCleaner
2023-07-18 20:05 - 2023-06-21 22:25 - 000000000 ____D C:\Users\Jakub Straka\AppData\LocalLow\Sad Owl Studios
2023-07-18 18:58 - 2021-10-19 21:12 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2023-07-14 08:48 - 2021-10-19 22:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-07-13 16:53 - 2023-05-21 11:16 - 000000000 ____D C:\Users\Jakub Straka\OneDrive\Dokumenty\Euro Truck Simulator 2
2023-07-13 09:20 - 2021-10-19 22:13 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-07-13 03:37 - 2021-10-19 20:43 - 005171488 _____ C:\Windows\system32\FNTCACHE.DAT
2023-07-13 03:36 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2023-07-13 03:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2023-07-13 03:00 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-07-13 02:57 - 2021-10-19 14:36 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-07-13 01:51 - 2021-10-19 14:49 - 000000000 ____D C:\Windows\system32\MRT
2023-07-13 01:44 - 2021-10-19 14:49 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-07-07 08:17 - 2022-09-25 10:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2023-07-07 08:17 - 2022-09-25 10:39 - 000000000 ____D C:\Program Files\HWiNFO64
2023-07-07 08:15 - 2021-10-19 14:45 - 000000000 ____D C:\Users\Jakub Straka
2023-07-06 18:43 - 2021-10-19 21:06 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-06 18:43 - 2021-10-19 21:06 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Files in the root of some directories ========
2022-02-13 10:50 - 2022-02-13 10:50 - 000000132 _____ () C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2021-12-23 01:36 - 2022-10-28 21:42 - 000000132 _____ () C:\Users\Jakub Straka\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2021-10-19 18:16 - 2022-07-24 23:27 - 000000015 _____ () C:\Users\Jakub Straka\AppData\Roaming\obs-virtualcam.txt
2022-10-31 16:54 - 2022-11-04 16:51 - 000000081 _____ () C:\Users\Jakub Straka\AppData\Local\.bidstack.fault
2021-12-20 23:26 - 2023-07-27 14:34 - 000001480 _____ () C:\Users\Jakub Straka\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2022-09-24 13:59 - 2023-06-27 16:36 - 001065984 _____ () C:\Users\Jakub Straka\AppData\Local\file__0.localstorage
2022-09-28 08:45 - 2022-09-28 08:45 - 000008337 _____ () C:\Users\Jakub Straka\AppData\Local\kdenlive-layoutsrc
2022-09-28 08:45 - 2023-02-28 23:39 - 000006153 _____ () C:\Users\Jakub Straka\AppData\Local\kdenliverc
2022-04-16 08:10 - 2022-10-18 14:46 - 000005104 _____ () C:\Users\Jakub Straka\AppData\Local\krita-sysinfo.log
2022-04-16 08:10 - 2022-10-18 14:46 - 000003718 _____ () C:\Users\Jakub Straka\AppData\Local\krita.log
2022-10-18 14:46 - 2022-10-18 14:46 - 000000039 _____ () C:\Users\Jakub Straka\AppData\Local\kritadisplayrc
2022-04-16 08:10 - 2022-10-18 14:46 - 000016954 _____ () C:\Users\Jakub Straka\AppData\Local\kritarc
2021-12-22 05:48 - 2021-12-22 05:48 - 000000000 _____ () C:\Users\Jakub Straka\AppData\Local\oobelibMkey.log
2023-02-26 09:09 - 2023-02-26 09:09 - 000000783 _____ () C:\Users\Jakub Straka\AppData\Local\recently-used.xbel
2021-10-20 22:14 - 2021-10-20 22:14 - 000007609 _____ () C:\Users\Jakub Straka\AppData\Local\Resmon.ResmonCfg
2022-09-28 08:45 - 2022-09-28 08:45 - 000007889 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel
2022-09-28 08:45 - 2022-09-28 08:45 - 000005808 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel.bak
2022-09-28 08:45 - 2022-09-28 08:45 - 000000000 _____ () C:\Users\Jakub Straka\AppData\Local\user-places.xbel.tbcache
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================