Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-06-2021
Ran by papepa (administrator) on N-PED-W-21 (Dell Inc. Vostro 3580) (30-06-2021 09:26:17)
Running from C:\Users\papepa\Desktop
Loaded Profiles: papepa
Platform: Windows 10 Pro Version 21H1 19043.1081 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <6>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_efb119a73d6b56f6\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_efb119a73d6b56f6\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_577b4722c749a41f\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ad52f5636e489f55\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ad52f5636e489f55\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSysSvc64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1081136 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe [1645664 2020-04-14] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [313064 2018-10-05] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [185648 2020-07-07] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [SMARTNotification] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe [201152 2018-11-27] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Board Service] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2675136 2018-11-27] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Tray Tools] => C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe [654784 2018-10-18] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [sbsdk-server] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe [68544 2018-10-16] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Ink] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe [289728 2018-11-27] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [4079824 2021-06-29] (Opera Software AS -> Opera Software)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\48.0.13.0\GoogleDriveFS.exe [58172896 2021-05-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\48.0.13.0\GoogleDriveFS.exe [58172896 2021-05-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2774596813-2351541506-2060952939-1285\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3689442572-2978457407-337935947-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3689442572-2978457407-337935947-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\48.0.13.0\GoogleDriveFS.exe [58172896 2021-05-24] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp101: C:\Windows\System32\spool\prtprocs\x64\hpcpp101.dll [323584 2010-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Epson_Print_Admin: C:\WINDOWS\system32\epscpmon.dll [831488 2019-05-31] (Seiko Epson Corporation) [File not signed]
HKLM\...\Print\Monitors\SMART Local Port: C:\Windows\system32\smrtlocalmon.dll [38336 2018-12-19] (SMART Technologies ULC -> SMART Technologies ULC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-23] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00A0CED5-A4EE-4B04-AAC8-A4468C02AECD} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\papemi@zs-vsechovice.local\Start Workspace Runtime at logon => {4F1DFCA6-3AAD-48E1-8406-4BC21A501D7C} C:\WINDOWS\system32\wksprt.exe [450048 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
Task: {035D3B8F-5630-4AF0-9709-2A5CDB18599A} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\papemi@zs-vsechovice.local\Report update status => %SYSTEMROOT%\System32\RUNDLL32 tsworkspace,WorkspaceStatusNotify2
Task: {3ADBE33E-4A9C-418F-A68A-E51F4D9150FC} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\papemi@zs-vsechovice.local\Process policy => {E444E1B9-502C-44F9-B714-30DA330D0E8E} C:\Windows\System32\tsworkspace.dll [1249792 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
Task: {3DBF084C-9223-4D02-8590-E86EFF5ECC9F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {409F7BAD-8870-4166-8C51-FE8FFF52042A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {4449ADE3-7071-4DDD-8D19-8390A569C1FA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-11] (Adobe Inc. -> Adobe Systems)
Task: {6F2F17E9-E575-4B01-963A-37DEDC962995} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208208 2021-06-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {9687AF3D-4AE4-4CE6-B5F7-E5C5C3F332B8} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\WINDOWS\system32\gpupdate.exe [30720 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
Task: {A0C486A8-A83D-4626-93B5-FB0DB44E130E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512752 2021-06-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4110778-B52C-4D30-8F1A-78AAB648CDEE} - System32\Tasks\Opera scheduled Autoupdate 1616484438 => C:\Program Files (x86)\Opera\launcher.exe [1727184 2021-06-17] (Opera Software AS -> Opera Software)
Task: {B3C99454-61C4-4D4D-A5EB-A6BE7A891D98} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2019-06-19] (Google Inc -> Google Inc.)
Task: {B8BD2361-FF04-4DD7-B864-1E7D223A37C8} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208208 2021-06-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {BB57EE4C-C4A2-4300-9E02-9017F4E68E82} - System32\Tasks\Microsoft\Windows\RemoteApp and Desktop Connections Update\papemi@zs-vsechovice.local\Update connections => %SYSTEMROOT%\System32\RUNDLL32 tsworkspace,TaskUpdateWorkspaces2
Task: {C6C57A0B-6A5E-4051-92E2-D6A6252FADC6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563184 2021-05-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {CED0C4E2-7FF3-41A5-B221-1B7831E084D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2019-06-19] (Google Inc -> Google Inc.)
Task: {D71F5329-C885-4D25-8818-E228F8F6280A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563184 2021-05-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {DCF2421A-7F95-4C46-BEB0-422103056DD2} - System32\Tasks\Opera scheduled assistant Autoupdate 1616484454 => C:\Program Files (x86)\Opera\launcher.exe [1727184 2021-06-17] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files (x86)\Opera\assistant" $(Arg0)
Task: {DEC1260A-5892-4662-A724-7F89FCD9D526} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512752 2021-06-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9BB26AF-AEF3-4F5B-B5E5-50B20CE91CE8} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\WINDOWS\system32\gpupdate.exe [30720 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
Task: {FD4F4CD7-DD51-45AD-A88D-6AAEC68E9BA3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{26c9edc4-4789-4eeb-a686-613b7c333d4b}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{95143c99-5a36-466c-b7fb-3fbeaca64398}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{e23c2fff-c98b-4c21-a0eb-26be5f5f045b}: [DhcpNameServer] 192.168.10.1

Edge: 
=======
Edge Profile: C:\Users\papepa\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-23]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-11-20] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-06-30]

Chrome: 
=======
CHR Profile: C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default [2021-06-30]
CHR Extension: (Prezentace) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-03-29]
CHR Extension: (Dokumenty) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-03-29]
CHR Extension: (Disk Google) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-03-29]
CHR Extension: (YouTube) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-03-29]
CHR Extension: (Tabulky) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-03-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-29]
CHR Extension: (Gmail) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\papepa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-29]
CHR HKU\S-1-5-21-3689442572-2978457407-337935947-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-11] (Adobe Inc. -> Adobe Systems)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9482696 2021-05-27] (Microsoft Corporation -> Microsoft Corporation)
S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [315008 2021-05-13] (Dell Inc -> Dell Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2021-04-01] (Dell Inc -> Dell INC.)
S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{90D8B094-8425-43E6-BCA7-F40F115788AB} [21312 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
S2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-05-10] (Dell Inc -> )
S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [57952 2020-07-07] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2364472 2020-07-07] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2364472 2020-07-07] (ESET, spol. s r.o. -> ESET)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5395360 2021-06-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe [625600 2018-11-27] (SMART Technologies ULC -> SMART Technologies)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [36400 2018-10-21] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [155888 2020-07-07] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106848 2020-07-07] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195176 2020-07-07] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [79744 2020-07-07] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116184 2020-07-07] (ESET, spol. s r.o. -> ESET)
R1 googledrivefs3301; C:\WINDOWS\System32\DRIVERS\googledrivefs3301.sys [132456 2020-11-19] (Google LLC -> Google, Inc.)
R1 googledrivefs3460; C:\WINDOWS\System32\DRIVERS\googledrivefs3460.sys [389600 2021-05-24] (Google LLC -> Google, Inc.)
R3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2018-11-27] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVHidMiniVistaAmd64; C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2018-11-27] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S4 DBUtilDrv2; \SystemRoot\System32\drivers\DBUtilDrv2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-30 09:29 - 2021-06-28 22:32 - 000002717 _____ C:\Users\papepa\Desktop\AdwCleaner[S04].txt
2021-06-30 09:16 - 2021-06-30 09:20 - 000048815 _____ C:\Users\papepa\Desktop\Addition.txt
2021-06-30 09:05 - 2021-06-30 09:29 - 000022196 _____ C:\Users\papepa\Desktop\FRST.txt
2021-06-30 09:03 - 2021-06-30 09:28 - 000000000 ____D C:\FRST
2021-06-30 09:01 - 2021-06-30 09:01 - 002300416 _____ (Farbar) C:\Users\papepa\Desktop\FRST64.exe
2021-06-29 22:31 - 2021-06-29 22:31 - 000000000 _____ C:\WINDOWS\invcol.tmp
2021-06-29 14:50 - 2021-06-29 14:50 - 000000000 ____D C:\Users\papepa\AppData\Local\PeerDistRepub
2021-06-28 22:28 - 2021-03-29 20:59 - 008534696 _____ (Malwarebytes) C:\Users\papepa\Desktop\adwcleaner_8.2.exe
2021-06-28 22:27 - 2021-06-28 22:27 - 008534696 _____ (Malwarebytes) C:\Users\papepa\Downloads\adwcleaner_8.2 (1).exe
2021-06-25 18:45 - 2021-06-25 18:45 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-06-25 18:45 - 2021-06-25 18:45 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-25 18:45 - 2021-06-25 18:45 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-25 18:45 - 2021-06-25 18:45 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-25 18:45 - 2021-06-25 18:45 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-06-25 18:45 - 2021-06-25 18:45 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-06-25 18:45 - 2021-06-25 18:45 - 000011333 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-25 18:43 - 2021-06-25 18:43 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-25 18:43 - 2021-06-25 18:43 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-25 18:43 - 2021-06-25 18:43 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-25 18:43 - 2021-06-25 18:43 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-25 18:42 - 2021-06-25 18:42 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-06-25 06:46 - 2021-06-25 06:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-25 05:20 - 2021-06-29 22:23 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-06-23 20:54 - 2021-06-23 20:54 - 008534696 _____ (Malwarebytes) C:\Users\papemi.ZS-VSECHOVICE\Desktop\adwcleaner_8.2.exe
2021-06-19 11:26 - 2021-06-19 11:32 - 000002428 _____ C:\Users\papemi.ZS-VSECHOVICE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-19 11:05 - 2021-06-19 11:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-19 11:05 - 2021-06-19 11:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-19 09:24 - 2021-06-29 14:47 - 000004192 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1616484454
2021-06-19 09:17 - 2021-06-19 09:17 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2021-06-14 17:58 - 2021-06-14 17:58 - 000000000 ____D C:\WINDOWS\{1BC0F99A-3593-4A78-9397-A55D35037A2A}
2021-06-05 16:46 - 2021-06-05 16:46 - 000000000 ____D C:\WINDOWS\{A71C9B69-D780-4A7B-9531-624F10E8CBBE}
2021-06-04 18:11 - 2021-06-04 18:11 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-04 18:11 - 2021-06-04 18:11 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-04 18:10 - 2021-06-04 18:10 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-04 18:10 - 2021-06-04 18:10 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-04 18:08 - 2021-06-04 18:08 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-04 18:08 - 2021-06-04 18:08 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-04 18:07 - 2021-06-04 18:07 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-04 18:07 - 2021-06-04 18:07 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-04 18:07 - 2021-06-04 18:07 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-03 19:51 - 2021-06-03 19:51 - 000109430 _____ C:\Users\papemi.ZS-VSECHOVICE\Desktop\Čeledi dvouděložných rostlin.xlsx
2021-06-03 19:41 - 2021-06-03 19:41 - 000000000 ____D C:\WINDOWS\{CF8A543D-D96A-4576-B508-DC85C73C29AB}
2021-05-31 13:59 - 2021-05-24 12:39 - 000389600 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3460.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-30 09:26 - 2020-06-22 07:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-30 09:23 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-30 09:20 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-30 09:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-30 09:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-30 08:48 - 2019-06-25 12:39 - 000000000 ____D C:\Program Files\CCleaner
2021-06-30 08:41 - 2021-03-29 20:52 - 000000000 __SHD C:\Users\papepa\IntelGraphicsProfiles
2021-06-29 22:37 - 2020-06-22 09:07 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-29 22:30 - 2020-06-22 08:24 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-29 22:30 - 2019-12-07 16:43 - 000685012 _____ C:\WINDOWS\system32\perfh005.dat
2021-06-29 22:30 - 2019-12-07 16:43 - 000137776 _____ C:\WINDOWS\system32\perfc005.dat
2021-06-29 22:24 - 2020-06-22 07:57 - 000643688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-29 22:23 - 2021-03-23 09:26 - 000000000 ____D C:\Program Files (x86)\Opera
2021-06-29 22:23 - 2020-06-22 09:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-29 22:23 - 2020-06-22 07:57 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-29 22:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-29 22:23 - 2019-06-25 12:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-29 22:23 - 2019-03-09 02:02 - 000000000 ____D C:\Intel
2021-06-29 22:21 - 2020-06-22 08:05 - 000000000 ____D C:\Users\papemi.ZS-VSECHOVICE
2021-06-29 22:21 - 2019-12-07 11:03 - 001572864 _____ C:\WINDOWS\system32\config\BBI
2021-06-29 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-29 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-29 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-29 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-29 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-29 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-29 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-29 22:16 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-06-29 22:16 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-29 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-29 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-06-29 22:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-29 21:39 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-28 22:35 - 2020-09-01 21:18 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-28 22:35 - 2020-09-01 21:18 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-28 22:04 - 2021-03-29 20:53 - 000000000 ____D C:\Users\papepa\AppData\Local\Packages
2021-06-28 21:28 - 2020-09-01 21:17 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-28 21:26 - 2020-09-01 21:17 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-28 20:59 - 2020-01-17 14:24 - 000000000 ____D C:\Users\papemi.ZS-VSECHOVICE\AppData\LocalLow\Mozilla
2021-06-28 19:52 - 2019-07-03 09:24 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-28 19:46 - 2019-07-01 11:00 - 000000000 __SHD C:\Users\papemi\IntelGraphicsProfiles
2021-06-25 06:46 - 2019-06-25 12:41 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-23 20:59 - 2020-06-22 09:07 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-23 20:53 - 2021-03-29 21:12 - 000007634 _____ C:\Users\papepa\AppData\Local\Resmon.ResmonCfg
2021-06-23 17:03 - 2019-06-25 12:39 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-21 18:29 - 2021-03-23 09:27 - 000003968 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1616484438
2021-06-21 18:29 - 2021-03-23 09:27 - 000001157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-06-19 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-19 11:32 - 2020-06-22 09:07 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2774596813-2351541506-2060952939-1301
2021-06-19 11:32 - 2020-01-17 13:04 - 000000000 ___RD C:\Users\papemi.ZS-VSECHOVICE\OneDrive
2021-06-19 11:30 - 2021-02-24 08:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-19 09:17 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-06-19 09:13 - 2019-04-11 20:41 - 000000000 ____D C:\Program Files\Microsoft Office
2021-06-19 08:51 - 2019-04-11 20:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-19 08:36 - 2019-04-11 20:53 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-10 18:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2021-06-04 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-04 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-04 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-04 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-04 18:49 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-04 16:07 - 2020-01-17 12:57 - 000000000 ____D C:\Users\papemi.ZS-VSECHOVICE\AppData\Local\Packages
2021-05-31 13:59 - 2021-02-03 19:45 - 000002066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk

==================== Files in the root of some directories ========

2021-03-29 21:12 - 2021-06-23 20:53 - 000007634 _____ () C:\Users\papepa\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================