Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-11-2021
Ran by janku (administrator) on HONZASTOLNIPC (Gigabyte Technology Co., Ltd. B450 AORUS ELITE) (27-11-2021 08:15:50)
Running from C:\Users\janku\Desktop
Loaded Profiles: janku
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1348 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\iPSNotifier.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Dassault Systèmes) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\135.4.4221\QtWebEngineProcess.exe <2>
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eOppFrame.exe <2>
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\53.0.8.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxCalendarAppImm.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21102.134.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy\YourPhoneAppProxy.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenVPN Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(WhatsApp, Inc -> WhatsApp) C:\Users\janku\AppData\Local\WhatsApp\app-2.2144.11\WhatsApp.exe <7>
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9274312 2018-05-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [167496 2021-11-07] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8807712 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [M17A] => C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [77312 2017-10-19] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2017-04-05] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2892800 2017-03-30] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3331264 2020-01-20] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35342976 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [669112 2019-10-31] (OpenVPN Inc. -> )
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [CCleanerBrowserAutoLaunch_BB5E4E00FC9EEB828B9BA6E297B7571B] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2521976 2021-11-22] (Piriform Software Ltd -> Piriform Software)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\HP 6e12 Status Monitor: C:\WINDOWS\system32\hpinksts6e12LM.dll [331664 2012-08-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-02-13] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\96.0.13177.58\Installer\chrmstp.exe [2021-11-24] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-19] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iPSNotifier.lnk [2021-10-25]
ShortcutTarget: iPSNotifier.lnk -> C:\Program Files (x86)\Brother\iPrint&Scan\iPSNotifier.exe (Brother Industries, Ltd.) [File not signed]
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D61EA48-03C4-4DDA-8B9B-A4C68AA2A4DF} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [251824 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {1BF0EB22-3832-49D3-B7D7-14C9A44CCAB7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {27241366-DBEA-4511-823A-CBFA4196B9D5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-11-12] (Piriform Software Ltd -> Piriform)
Task: {38BFD6B1-415A-42AB-AED3-CF40A60AF131} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
Task: {5555873B-3C78-4AD3-A604-66F348A88439} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {55778932-DEDA-49EE-BB5E-C6E9F2BF0BB3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {56DAF7E1-F47E-4CD4-8A4A-1E7B9C1F506C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {5B7DD509-A1D6-4A53-B0EB-C2988273967A} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [682936 2021-11-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {625E4AF0-EF6D-4295-B261-93C7C44A9078} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {6D96A033-E699-4821-88DD-2BE368A90DEB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108888 2021-11-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {7851F4F9-444D-4633-B91E-EE6B4D63B0E8} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
Task: {85216A45-30DC-4AF9-9DE8-98E0FF4A76C3} - System32\Tasks\CCleanerSkipUAC - janku => C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {88B94E13-C247-4CDF-BDC1-61CB4F8021DC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {9D5C37B5-C4EA-4B7E-88F4-8C7F72085B3A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2521976 2021-11-22] (Piriform Software Ltd -> Piriform Software)
Task: {B7705071-7D8B-459A-A1D9-B30211A35FDC} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2521976 2021-11-22] (Piriform Software Ltd -> Piriform Software)
Task: {C22A6FFE-59D3-472B-A0ED-4659FB89001D} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {C49D295E-6CF2-4F89-9B18-15D71761DB2E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108888 2021-11-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {DA37481F-6430-4BA7-891D-E8EDEBCF2F8B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {EB119A6B-D0E9-4F5D-952B-B286C2203B77} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{45bf29a5-4a66-4120-8b56-a2abd9cf7279}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{600e0e16-08d5-4b1c-a8ab-fc4cc8692d0a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{81d1d0f0-d28b-4694-afdd-782681bd819a}: [DhcpNameServer] 192.168.42.129

Edge: 
=======
Edge Profile: C:\Users\janku\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-08]
Edge HomePage: Default -> hxxp://www.attirerpage.com/?type=hp&ts=1466065239&z=0959ac5e5ea8af072c9a168g5zaqeqfefq4w1oaz5b&from=wpm0616&uid=KINGSTONXSH103S3120G_50026B72440243CD

FireFox:
========
FF DefaultProfile: 4lxn1sj5.default-1544816275958
FF ProfilePath: C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958 [2021-11-27]
FF Homepage: Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958 -> google.com
FF Extension: (No Name) - C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-11-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-03-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-03-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-11-27]

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default [2021-11-27]
CHR Extension: (Překladač Google) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-14]
CHR Extension: (Prezentace) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-15]
CHR Extension: (Adobe Acrobat) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-16]
CHR Extension: (Tabulky) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-11-12]
CHR Extension: (#sorryjako: Nakupujte bez Babiše) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhohilofdfodlljeibhkdcdfcijhhmje [2019-11-18]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-24]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-10-24]
CHR Extension: (Prezentace) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-04]
CHR Extension: (Seznam doplněk - Email) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2021-07-04]
CHR Extension: (Adobe Acrobat) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-07-04]
CHR Extension: (Tabulky) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-04]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-07-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-04]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2021-07-04]
CHR Extension: (Chrome Media Router) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-04]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-24]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\janku\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

Opera: 
=======
OPR Profile: C:\Users\janku\AppData\Roaming\Opera Software\Opera Stable [2021-10-24]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.cz/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [298496 2017-03-22] (Brother Industries, Ltd.) [File not signed]
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\96.0.13177.58\elevation_service.exe [1721904 2021-11-22] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd -> Disc Soft Ltd)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [121344 2017-08-08] (Dassault Systèmes) [File not signed]
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142768 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [3139904 2021-11-07] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [3139904 2021-11-07] (ESET, spol. s r.o. -> ESET)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [File not signed]
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125872 2019-05-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2021-09-21] (Microsoft) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [20480 2021-09-21] (Microsoft) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-05-03] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-05-03] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183408 2021-10-20] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [124496 2021-10-20] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-08] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201984 2021-10-20] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43920 2021-10-20] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69736 2021-10-20] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-10-20] (ESET, spol. s r.o. -> ESET)
R3 gdrv; C:\WINDOWS\gdrv.sys [26792 2018-10-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2019-09-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv3; C:\WINDOWS\gdrv3.sys [36352 2021-05-12] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-08-09] (Google LLC -> Google, Inc.)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2019-09-05] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2020-03-12] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429288 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-06] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-25 15:26 - 2021-11-25 15:26 - 000368609 _____ C:\Users\janku\Desktop\priloha_971409126_0_MHaH_Mojmirovcu_Budova_E-Prigo_spolUaSR_VYZVA.pdf
2021-11-24 18:40 - 2021-11-24 18:40 - 005793536 _____ C:\Users\janku\Desktop\1-Leták_akce.pdf
2021-11-23 22:39 - 2021-11-24 10:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-11-23 22:02 - 2021-11-23 22:02 - 031709082 _____ C:\Users\janku\Desktop\211123 RD Petřvald - opraveno.pdf
2021-11-21 19:32 - 2021-11-21 19:32 - 000178181 _____ C:\Users\janku\Desktop\WhatsApp Image 2021-11-19 at 09.15.49.jpeg
2021-11-21 19:32 - 2021-11-21 19:32 - 000152055 _____ C:\Users\janku\Desktop\WhatsApp Image 2021-11-19 at 09.15.48.jpeg
2021-11-19 20:18 - 2021-11-20 09:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2021-11-16 20:08 - 2021-11-16 20:08 - 000000000 ____D C:\Users\janku\Desktop\Photos
2021-11-16 17:13 - 2021-11-16 17:14 - 012320408 _____ C:\Users\janku\Desktop\Photos.zip
2021-11-15 20:12 - 2021-11-15 20:12 - 000104887 _____ C:\Users\janku\Downloads\iokerecv.pdf
2021-11-13 22:44 - 2021-11-13 22:44 - 000008250 _____ C:\Users\janku\Desktop\MĚSÍČKOVÁ MAST   respirace.odt
2021-11-13 08:22 - 2021-11-13 08:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-11-12 19:18 - 2021-11-19 17:43 - 000000000 ____D C:\Users\janku\AppData\Local\WhatsApp
2021-11-12 10:46 - 2021-11-12 10:47 - 000000004 ____H C:\ProgramData\cm-lock
2021-11-11 13:18 - 2021-11-11 13:18 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-11 13:18 - 2021-11-11 13:18 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-11 13:18 - 2021-11-11 13:18 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-11 13:18 - 2021-11-11 13:18 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-11 13:11 - 2021-11-11 13:11 - 000000000 ___HD C:\$WinREAgent
2021-11-11 02:09 - 2021-11-11 02:09 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-11-11 02:09 - 2021-11-11 02:09 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-11-11 02:09 - 2021-11-11 02:09 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-11-11 02:09 - 2021-11-11 02:09 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-11-08 17:21 - 2021-11-08 17:21 - 000015558 _____ C:\Users\janku\Desktop\Fixlog.zip
2021-11-08 17:15 - 2021-11-08 17:15 - 000000008 __RSH C:\ProgramData\ntuser.pol
2021-11-08 17:14 - 2021-11-27 08:15 - 000000000 ____D C:\Users\janku\Desktop\FRST-OlderVersion
2021-11-08 17:14 - 2021-11-08 17:14 - 000078517 _____ C:\Users\janku\Desktop\Fixlog.txt
2021-11-06 21:38 - 2021-11-06 21:39 - 006635768 _____ C:\Users\janku\Downloads\Photos(17).zip
2021-11-06 20:45 - 2021-11-06 20:45 - 002562793 _____ C:\Users\janku\Downloads\Photos(16).zip
2021-11-06 18:03 - 2021-11-06 18:03 - 002702013 _____ C:\Users\janku\Downloads\Photos(15).zip
2021-11-06 14:27 - 2021-11-06 14:27 - 000856885 _____ C:\Users\janku\Downloads\Photos(14).zip
2021-11-06 13:56 - 2021-11-06 14:02 - 402413200 _____ (Happy Foto CZ ) C:\Users\janku\Downloads\HappyFoto.exe
2021-11-06 13:56 - 2021-11-06 13:57 - 094667472 _____ C:\Users\janku\Downloads\HappyFoto smart moments.exe
2021-11-04 11:37 - 2021-11-04 11:37 - 000001152 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-11-04 11:37 - 2021-11-04 11:37 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-11-02 15:44 - 2021-11-02 15:45 - 028905724 _____ C:\Users\janku\Desktop\Půdorysy Petřvald (1).pdf
2021-10-31 16:12 - 2021-10-31 16:12 - 008553680 _____ (Malwarebytes) C:\Users\janku\Desktop\adwcleaner_8.3.0.exe
2021-10-29 13:29 - 2021-10-29 13:30 - 013626066 _____ C:\Users\janku\Downloads\Photos-001(1).zip
2021-10-29 12:31 - 2021-10-29 12:31 - 002878950 _____ C:\Users\janku\Downloads\Photos-001.zip

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-27 08:16 - 2021-10-24 20:48 - 000030163 _____ C:\Users\janku\Desktop\FRST.txt
2021-11-27 08:16 - 2021-10-24 20:47 - 000000000 ____D C:\FRST
2021-11-27 08:16 - 2017-06-05 18:14 - 000000000 ____D C:\Users\janku\AppData\Roaming\WhatsApp
2021-11-27 08:15 - 2021-10-24 20:47 - 002311680 _____ (Farbar) C:\Users\janku\Desktop\FRST64.exe
2021-11-27 08:05 - 2017-03-03 21:42 - 000000000 ____D C:\Users\janku\AppData\LocalLow\Mozilla
2021-11-27 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-27 07:53 - 2016-05-03 10:50 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-27 07:45 - 2020-08-20 20:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-11-27 07:34 - 2019-02-05 07:16 - 000000000 ____D C:\ProgramData\Mozilla
2021-11-27 07:33 - 2016-09-30 10:49 - 000000000 ____D C:\Program Files\CCleaner
2021-11-27 07:31 - 2017-11-13 12:18 - 000000000 ____D C:\Users\janku\AppData\Local\Dropbox
2021-11-27 07:30 - 2017-06-15 06:11 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2021-11-27 07:30 - 2016-05-03 08:20 - 000000000 ___RD C:\Users\janku\OneDrive
2021-11-26 22:21 - 2017-06-15 06:11 - 000000000 ____D C:\ProgramData\NVIDIA
2021-11-26 20:46 - 2016-05-03 08:59 - 000000000 ____D C:\KMPlayer
2021-11-26 17:09 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-26 17:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-25 21:08 - 2020-06-10 15:33 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-24 21:04 - 2021-03-06 11:58 - 000002393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2021-11-24 21:04 - 2021-03-06 11:57 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2021-11-24 10:29 - 2021-10-10 14:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-11-24 10:29 - 2016-05-03 08:25 - 000001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-11-23 22:00 - 2017-10-31 06:34 - 000000000 ____D C:\Users\janku\AppData\Local\Packages
2021-11-22 22:12 - 2021-02-03 16:48 - 000002063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-11-20 09:11 - 2016-05-03 08:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-11-19 15:54 - 2017-06-06 17:27 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-19 15:54 - 2017-06-06 17:27 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-11-18 20:02 - 2020-08-20 20:30 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-11-18 20:02 - 2020-08-20 20:30 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-11-17 22:10 - 2020-08-20 20:30 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1967644643-3473992454-2983207395-1001
2021-11-17 22:10 - 2020-08-20 20:21 - 000002432 _____ C:\Users\janku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-11-17 12:38 - 2020-08-20 20:30 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-11-16 17:53 - 2020-08-20 20:30 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{522E3D32-2483-4D21-9340-BE3C4D9F01B1}
2021-11-13 08:22 - 2017-11-10 10:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-11-13 08:18 - 2016-05-03 10:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-11-12 19:18 - 2017-06-05 18:14 - 000002254 _____ C:\Users\janku\Desktop\WhatsApp.lnk
2021-11-12 19:18 - 2017-06-05 18:14 - 000000000 ____D C:\Users\janku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-11-12 19:18 - 2017-06-05 18:14 - 000000000 ____D C:\Users\janku\AppData\Local\SquirrelTemp
2021-11-12 10:53 - 2020-08-20 20:28 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-11-12 10:53 - 2019-12-07 15:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2021-11-12 10:53 - 2019-12-07 15:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2021-11-12 10:53 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-11-12 10:46 - 2020-08-20 20:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-12 10:46 - 2020-08-20 20:18 - 000008192 ___SH C:\DumpStack.log.tmp
2021-11-12 00:10 - 2020-08-20 20:19 - 000453696 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-12 00:10 - 2019-12-07 10:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2021-11-12 00:10 - 2017-11-13 12:18 - 000000934 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-11-12 00:10 - 2017-11-13 12:18 - 000000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-11-12 00:08 - 2019-12-07 15:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-11-12 00:08 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-11-12 00:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-12 00:08 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-11 17:51 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-11 13:18 - 2015-10-30 09:13 - 000413754 __RSH C:\bootmgr
2021-11-11 13:11 - 2016-05-03 10:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-11 13:09 - 2016-05-03 10:51 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-11 10:07 - 2020-08-20 20:30 - 000003892 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-11-11 10:07 - 2020-08-20 20:30 - 000003660 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-11-08 17:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-11-08 17:14 - 2015-10-30 08:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-11-07 23:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-11-06 14:11 - 2017-11-10 11:42 - 000000000 ___RD C:\Users\janku\Dropbox
2021-10-31 16:25 - 2016-05-26 09:34 - 000000000 ____D C:\Users\janku\Graphisoft
2021-10-31 16:23 - 2017-08-13 21:21 - 000000000 ____D C:\Users\janku\Documents\BIMx
2021-10-31 16:14 - 2016-06-20 08:23 - 000000000 ____D C:\AdwCleaner

==================== Files in the root of some directories ========

2016-11-26 12:00 - 2020-02-14 11:51 - 000005632 _____ () C:\Users\janku\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-08-10 19:37 - 2020-08-10 19:37 - 000000017 _____ () C:\Users\janku\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================