Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-10-2021
Ran by janku (administrator) on HONZASTOLNIPC (Gigabyte Technology Co., Ltd. B450 AORUS ELITE) (24-10-2021 21:48:16)
Running from C:\Users\janku\Desktop
Loaded Profiles: janku
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1288 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\iPSNotifier.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Dassault Systèmes) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\133.4.4089\QtWebEngineProcess.exe <2>
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eOppFrame.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\51.0.16.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\janku\AppData\Local\Microsoft\OneDrive\21.196.0921.0007\FileCoAuth.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxCalendarAppImm.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21084.79.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy\YourPhoneAppProxy.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbengine.exe
(Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenVPN Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9274312 2018-05-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [167496 2021-10-20] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8807200 2021-10-09] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [M17A] => C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [77312 2017-10-19] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2017-04-05] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2892800 2017-03-30] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581440 2017-04-26] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3331264 2020-01-20] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [669112 2019-10-31] (OpenVPN Inc. -> )
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [C47F0E8F2BE5B2A179FCC2228BCE25599B8D8881._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\RunOnce: [Application Restart #3] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581440 2017-04-26] (Brother Industries, Ltd.) [File not signed]
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\MountPoints2: {52779098-1107-11e6-bd69-50e5493588a0} - "N:\setup.EXE" /AUTORUN
HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Host.HONZASTOLNIPC\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Host.HONZASTOLNIPC\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581440 2017-04-26] (Brother Industries, Ltd.) [File not signed]
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\HP 6e12 Status Monitor: C:\WINDOWS\system32\hpinksts6e12LM.dll [331664 2012-08-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-02-13] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\94.0.12470.84\Installer\chrmstp.exe [2021-10-18] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-20] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iPSNotifier.lnk [2021-08-20]
ShortcutTarget: iPSNotifier.lnk -> C:\Program Files (x86)\Brother\iPrint&Scan\iPSNotifier.exe (Brother Industries, Ltd.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {086E6B08-80A7-4611-B03E-05100FC7562C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {0D61EA48-03C4-4DDA-8B9B-A4C68AA2A4DF} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [251824 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {24EBF6C0-91AF-4888-A3B7-0ADA58296027} - System32\Tasks\eovOJeTCheckTask => C:\Program Files (x86)\eovOJeT\eovOJeT\bin\eovOJeT_server.exe
Task: {38BFD6B1-415A-42AB-AED3-CF40A60AF131} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
Task: {3F4CE40F-E125-4D74-8CA8-6B8C22E2E16D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {4AFD785D-1062-4AD3-A57E-EC425EEB1CED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-06-06] (Google Inc -> Google Inc.)
Task: {5555873B-3C78-4AD3-A604-66F348A88439} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {55778932-DEDA-49EE-BB5E-C6E9F2BF0BB3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {56DAF7E1-F47E-4CD4-8A4A-1E7B9C1F506C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {57E84BB7-8CD4-4199-AFF4-8981FCF967E0} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {625E4AF0-EF6D-4295-B261-93C7C44A9078} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {7005988D-1B0A-4E09-98F2-F763AB56900B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-06-06] (Google Inc -> Google Inc.)
Task: {7103C237-9381-4D0E-BEDA-A6B739AA4E20} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform)
Task: {7654FC86-07F0-4B7F-98A8-434EC52665AC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110424 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {7851F4F9-444D-4633-B91E-EE6B4D63B0E8} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
Task: {7D41576D-A2D2-42B7-BDB4-0793584246FC} - System32\Tasks\eovOJeTBrowserUpdateUA => C:\Program Files (x86)\eovOJeT\eovOJeT\bin\eovOJeT_server.exe
Task: {85216A45-30DC-4AF9-9DE8-98E0FF4A76C3} - System32\Tasks\CCleanerSkipUAC - janku => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8B9E3797-AE7D-4E46-98EA-79D196A95471} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [680888 2021-10-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {9D5C37B5-C4EA-4B7E-88F4-8C7F72085B3A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2357208 2021-10-08] (Piriform Software Ltd -> Piriform Software)
Task: {A16A1DDA-C32F-41EF-9FC9-29B120B38DAA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B0732C0D-9EC7-4DB7-8D78-C05FCB123497} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110424 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {B7705071-7D8B-459A-A1D9-B30211A35FDC} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2357208 2021-10-08] (Piriform Software Ltd -> Piriform Software)
Task: {C10E5D53-A874-4AFF-9DC6-07329267BA56} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C22A6FFE-59D3-472B-A0ED-4659FB89001D} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {DA37481F-6430-4BA7-891D-E8EDEBCF2F8B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {F20BDCC3-A9B0-4052-B3D2-276550E6E07F} - System32\Tasks\eovOJeTBrowserUpdateCore => C:\Program Files (x86)\eovOJeT\eovOJeT\bin\eovOJeT_server.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{45bf29a5-4a66-4120-8b56-a2abd9cf7279}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{600e0e16-08d5-4b1c-a8ab-fc4cc8692d0a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{81d1d0f0-d28b-4694-afdd-782681bd819a}: [DhcpNameServer] 192.168.42.129

Edge: 
=======
Edge HomeButtonPage: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> hxxp//www.attirerpage.com/?type=hp&ts=1466065239&z=0959ac5e5ea8af072c9a168g5zaqeqfefq4w1oaz5b&from=wpm0616&uid=KINGSTONXSH103S3120G_50026B72440243CD
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\janku\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-24]
Edge HomePage: Default -> hxxp//www.attirerpage.com/?type=hp&ts=1466065239&z=0959ac5e5ea8af072c9a168g5zaqeqfefq4w1oaz5b&from=wpm0616&uid=KINGSTONXSH103S3120G_50026B72440243CD
Edge StartupUrls: Default -> "hxxp//www.attirerpage.com/?type=hp&ts=1466065239&z=0959ac5e5ea8af072c9a168g5zaqeqfefq4w1oaz5b&from=wpm0616&uid=KINGSTONXSH103S3120G_50026B72440243CD"

FireFox:
========
FF DefaultProfile: 4lxn1sj5.default-1544816275958
FF ProfilePath: C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958 [2021-10-24]
FF Homepage: Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958 -> google.com
FF NewTab: Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958 -> hxxps//securesearch.org/homepage?hp=2&pId=PF170501&iDate=2020-02-13 08:47:39&bName=
FF Notifications: Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958 -> hxxps//cz.pinterest.com; hxxps//calendar.google.com
FF Extension: (No Name) - C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-03-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-03-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-10-24]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default [2021-10-24]
CHR Notifications: Default -> hxxps//calendar.google.com; hxxps//cz.pinterest.com; hxxps//www.freefilm.to
CHR NewTab: Default ->  Not-active:"chrome-extension://bgjpfhpjcgdppjbgnpnjllokbmcdllig/speeddial/html/temporaryNewTab.html"
CHR Extension: (Překladač Google) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-14]
CHR Extension: (Prezentace) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (Seznam doplněk - Email) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-06]
CHR Extension: (YouTube) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-15]
CHR Extension: (Adobe Acrobat) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-10-22]
CHR Extension: (Tabulky) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-10-13]
CHR Extension: (#sorryjako: Nakupujte bez Babiše) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhohilofdfodlljeibhkdcdfcijhhmje [2019-11-18]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-24]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-10-24]
CHR Extension: (Prezentace) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-04]
CHR Extension: (Seznam doplněk - Email) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2021-07-04]
CHR Extension: (Adobe Acrobat) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-07-04]
CHR Extension: (Tabulky) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-04]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-07-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-04]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2021-07-04]
CHR Extension: (Chrome Media Router) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-04]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-24]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\janku\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

Opera: 
=======
OPR Profile: C:\Users\janku\AppData\Roaming\Opera Software\Opera Stable [2021-10-24]
OPR DefaultSuggestURL: Opera Stable -> hxxps//www.google.cz/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [298496 2017-03-22] (Brother Industries, Ltd.) [File not signed]
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\94.0.12470.84\elevation_service.exe [1436280 2021-10-08] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9251696 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-13] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-10-09] (Dropbox, Inc -> Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd -> Disc Soft Ltd)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [121344 2017-08-08] (Dassault Systèmes) [File not signed]
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142768 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [3141480 2021-10-20] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [3141480 2021-10-20] (ESET, spol. s r.o. -> ESET)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [File not signed]
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125872 2019-05-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5414976 2021-10-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2021-03-01] (Microsoft) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [20480 2021-03-01] (Microsoft) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-05-03] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-05-03] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183408 2021-10-20] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [124496 2021-10-20] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-08] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201984 2021-10-20] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43920 2021-10-20] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69736 2021-10-20] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-10-20] (ESET, spol. s r.o. -> ESET)
R3 gdrv; C:\WINDOWS\gdrv.sys [26792 2018-10-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2019-09-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv3; C:\WINDOWS\gdrv3.sys [36352 2021-05-12] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-08-09] (Google LLC -> Google, Inc.)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2019-09-05] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2020-03-12] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429288 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-06] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-10-24 21:48 - 2021-10-24 21:48 - 000034845 _____ C:\Users\janku\Desktop\FRST.txt
2021-10-24 21:47 - 2021-10-24 21:48 - 000000000 ____D C:\FRST
2021-10-24 21:47 - 2021-10-24 21:47 - 002310656 _____ (Farbar) C:\Users\janku\Desktop\FRST64.exe
2021-10-24 21:34 - 2021-10-24 21:34 - 000527842 _____ C:\Users\janku\Desktop\ŘEZY.pdf
2021-10-24 21:21 - 2021-10-24 21:21 - 000000004 ____H C:\ProgramData\cm-lock
2021-10-24 18:00 - 2021-10-24 17:29 - 028905724 _____ C:\Users\janku\Desktop\Půdorysy Petřvald - kopie (2).pdf
2021-10-24 17:28 - 2021-10-24 17:29 - 028905724 _____ C:\Users\janku\Desktop\Půdorysy Petřvald.pdf
2021-10-24 10:40 - 2021-10-24 10:41 - 044397304 _____ C:\Users\janku\Desktop\posuvne-systemy_2021.pdf
2021-10-23 12:36 - 2021-10-23 12:38 - 000000000 ____D C:\Users\janku\AppData\Local\WhatsApp
2021-10-15 21:40 - 2021-10-15 21:45 - 135548112 _____ (WhatsApp) C:\Users\janku\Desktop\WhatsAppSetup.exe
2021-10-13 09:28 - 2021-10-13 09:28 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-13 09:28 - 2021-10-13 09:28 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-10-13 09:28 - 2021-10-13 09:28 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-10-13 09:28 - 2021-10-13 09:28 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-13 09:28 - 2021-10-13 09:28 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-10-13 09:28 - 2021-10-13 09:28 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-10-13 09:28 - 2021-10-13 09:28 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2021-10-13 09:28 - 2021-10-13 09:28 - 000011495 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-13 09:28 - 2021-10-13 09:28 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2021-10-13 09:28 - 2021-10-13 09:28 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2021-10-13 09:27 - 2021-10-13 09:27 - 001823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-13 09:27 - 2021-10-13 09:27 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-13 09:27 - 2021-10-13 09:27 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-13 09:27 - 2021-10-13 09:27 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-13 09:27 - 2021-10-13 09:27 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-10-13 09:27 - 2021-10-13 09:27 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-10-13 09:22 - 2021-10-13 09:22 - 000000000 ___HD C:\$WinREAgent
2021-10-12 20:54 - 2021-10-12 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-10-10 18:53 - 2021-10-10 18:53 - 000639873 _____ C:\Users\janku\Desktop\2911438562.pdf
2021-10-10 15:55 - 2021-10-10 15:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-10-09 20:36 - 2021-10-09 20:36 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-10-09 20:36 - 2021-10-09 20:36 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-10-09 20:36 - 2021-10-09 20:36 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-10-09 20:36 - 2021-10-09 20:36 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-10-09 10:00 - 2021-10-14 00:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-10-06 20:04 - 2021-10-06 20:03 - 000352246 _____ C:\Users\janku\Desktop\orlová byt.jpeg
2021-10-06 13:01 - 2021-10-06 13:01 - 000048749 _____ C:\Users\janku\Desktop\Pohyb_23757000920_na_uctu_2000567719.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-10-24 21:43 - 2016-09-30 11:49 - 000000000 ____D C:\Program Files\CCleaner
2021-10-24 21:41 - 2020-08-19 14:43 - 000000000 ___DC C:\WINDOWS\Panther
2021-10-24 21:41 - 2020-07-20 22:41 - 000000000 ____D C:\Users\janku\AppData\Roaming\XnView
2021-10-24 21:41 - 2017-04-05 10:10 - 000000000 ____D C:\Users\janku\AppData\Local\CrashDumps
2021-10-24 21:41 - 2016-05-03 11:50 - 000000000 ____D C:\Users\janku\AppData\Roaming\DAEMON Tools Lite
2021-10-24 21:39 - 2017-04-06 09:05 - 000000000 ____D C:\Program Files\trend micro
2021-10-24 21:38 - 2016-05-26 10:34 - 000000000 ____D C:\Users\janku\Graphisoft
2021-10-24 21:32 - 2017-03-03 22:42 - 000000000 ____D C:\Users\janku\AppData\LocalLow\Mozilla
2021-10-24 21:30 - 2017-08-13 22:21 - 000000000 ____D C:\Users\janku\Documents\BIMx
2021-10-24 21:26 - 2020-08-20 21:28 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-24 21:26 - 2019-12-07 16:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-24 21:26 - 2019-12-07 16:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-24 21:26 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-24 21:23 - 2016-05-03 11:50 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-24 21:22 - 2017-11-13 13:18 - 000000000 ____D C:\Users\janku\AppData\Local\Dropbox
2021-10-24 21:22 - 2016-05-03 09:20 - 000000000 ___RD C:\Users\janku\OneDrive
2021-10-24 21:21 - 2020-08-20 21:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-24 21:21 - 2020-08-20 21:18 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-24 21:21 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-24 21:21 - 2017-06-15 07:11 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-24 21:21 - 2017-06-15 07:11 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2021-10-24 21:20 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2021-10-24 21:07 - 2020-08-20 21:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-24 10:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-23 23:55 - 2017-06-05 19:14 - 000000000 ____D C:\Users\janku\AppData\Roaming\WhatsApp
2021-10-23 18:37 - 2020-06-10 16:33 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-23 18:37 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-23 13:24 - 2017-10-31 07:34 - 000000000 ____D C:\Users\janku\AppData\Local\Packages
2021-10-23 12:37 - 2017-06-05 19:14 - 000002254 _____ C:\Users\janku\Desktop\WhatsApp.lnk
2021-10-23 12:37 - 2017-06-05 19:14 - 000000000 ____D C:\Users\janku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-10-23 12:37 - 2017-06-05 19:14 - 000000000 ____D C:\Users\janku\AppData\Local\SquirrelTemp
2021-10-22 16:54 - 2016-05-03 09:59 - 000000000 ____D C:\KMPlayer
2021-10-21 13:02 - 2020-08-20 21:30 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-10-21 12:51 - 2019-09-23 19:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-10-20 22:12 - 2017-06-06 18:27 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-20 22:12 - 2017-06-06 18:27 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-10-20 11:20 - 2018-05-14 16:51 - 000201984 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2021-10-20 11:20 - 2018-05-14 16:51 - 000183408 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2021-10-20 11:20 - 2018-05-14 16:51 - 000124496 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2021-10-20 11:20 - 2018-05-14 16:51 - 000107456 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2021-10-20 11:20 - 2018-05-14 16:51 - 000069736 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2021-10-20 11:20 - 2018-05-14 16:51 - 000043920 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2021-10-19 10:38 - 2016-05-03 11:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-18 22:02 - 2021-03-06 12:58 - 000002393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2021-10-18 22:02 - 2021-03-06 12:57 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2021-10-18 07:22 - 2021-02-22 13:55 - 000000000 ____D C:\Users\janku\Desktop\návody
2021-10-17 18:44 - 2020-08-20 21:30 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{522E3D32-2483-4D21-9340-BE3C4D9F01B1}
2021-10-16 00:03 - 2021-02-03 17:48 - 000002070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-10-15 18:57 - 2020-08-20 21:30 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1967644643-3473992454-2983207395-1001
2021-10-15 18:57 - 2020-08-20 21:21 - 000002432 _____ C:\Users\janku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-14 22:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-14 14:01 - 2016-05-03 10:59 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-10-14 00:08 - 2020-08-20 21:19 - 000453696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-14 00:08 - 2016-05-03 09:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-10-14 00:07 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-14 00:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-13 09:30 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-13 09:28 - 2015-10-30 10:13 - 000414038 __RSH C:\bootmgr
2021-10-13 09:21 - 2016-05-03 11:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-13 09:19 - 2016-05-03 11:51 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-12 20:55 - 2017-11-10 11:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-10-10 15:55 - 2016-05-03 09:25 - 000001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-10-10 08:30 - 2020-08-20 21:30 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-10 08:30 - 2020-08-20 21:30 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-09 08:56 - 2018-05-14 20:00 - 000000000 ____D C:\Users\janku\AppData\Local\PlaceholderTileLogoFolder
2021-10-06 20:03 - 2018-11-28 12:01 - 000000000 ____D C:\Users\janku\Documents\Scanned Documents
2021-10-05 22:55 - 2020-08-20 21:21 - 000000000 ____D C:\Users\janku
2021-10-01 16:15 - 2021-01-22 09:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-01 16:06 - 2020-08-20 21:30 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 16:06 - 2020-08-20 21:30 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

==================== Files in the root of some directories ========

2016-11-26 13:00 - 2020-02-14 12:51 - 000005632 _____ () C:\Users\janku\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-08-10 20:37 - 2020-08-10 20:37 - 000000017 _____ () C:\Users\janku\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================