Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2022
Ran by stoup (administrator) on PANTHER (Gigabyte Technology Co., Ltd. Z390 AORUS ELITE) (19-01-2022 15:57:52)
Running from C:\App\Viry.cz
Loaded Profiles: stoup & postgres
Platform: Microsoft Windows 11 Home Version 21H2 22000.434 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoup\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoup\AppData\Roaming\uTorrent\updates\3.5.5_46124\utorrentie.exe <2>
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\stoup\AppData\Roaming\uTorrent\uTorrent.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe
(Electronic Arts, Inc. -> The Qt Company Ltd.) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtWebEngineProcess.exe <2>
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(Fine spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(Fine spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiESNAC.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSettings.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe
(Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SmartSurvey\GbtCareBotService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\CloudStation_Server\HomeCloud\HCLOUD.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Gigabyte Technology CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\Smart TimeLock\AlarmClock.exe
(Gigabyte Technology CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe <2>
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <32>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_48973fc6c96c696a\RstMwService.exe
(Jan Fiala -> Jan Fiala) C:\Program Files (x86)\PSPad editor\PSPad.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.62\msedgewebview2.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2112.1001.10.0_x64__8wekyb3d8bbwe\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2112.1001.10.0_x64__8wekyb3d8bbwe\XboxPcApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22000.345_none_04b3f78d4c83ab0f\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\TH8 Shifter\drivers\amd64\tmSHInstall.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <3>
(ND_Apps -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Nvidia Corporation -> ) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\nvsmartmaxapp.exe
(Nvidia Corporation -> ) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\nvsmartmaxapp64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenVPN Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\12\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\12\bin\postgres.exe <8>
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.5\bin\postgres.exe <7>
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe <6>
(Synology Inc. -> ) C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe
(Synology Inc. -> Synology Inc.) C:\Users\stoup\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-connect.exe
(Synology Inc. -> Synology Inc.) C:\Users\stoup\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-daemon.exe
(Synology Inc. -> Synology Inc.) C:\Users\stoup\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\stoup\AppData\Roaming\Telegram Desktop\Telegram.exe
(TrucksBook) [File not signed] C:\Program Files (x86)\TrucksBook Client\TB Client.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Viber Media S.à r.l. -> Viber Media S.Ã  r.l.) C:\Users\stoup\AppData\Local\Viber\Viber.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [881440 2019-06-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-12-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2021-12-10] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd) [File not signed]
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.62\Installer\setup.exe [3118472 2022-01-15] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2593128 2022-01-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2593128 2022-01-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2593128 2022-01-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33620960 2022-01-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [Viber] => C:\Users\stoup\AppData\Local\Viber\Viber.exe [51151120 2021-12-16] (Viber Media S.à r.l. -> Viber Media S.Ã  r.l.)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3524216 2021-12-09] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [PlariumPlay] => C:\Users\stoup\AppData\Local\Plarium\PlariumPlay\PlariumPlay --args -tray-start (No File)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2417016 2020-04-23] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [669112 2019-10-31] (OpenVPN Inc. -> )
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13799776 2021-12-21] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [Discord] => C:\Users\stoup\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [TB Client] => C:\Program Files (x86)\TrucksBook Client\TB Client.exe [1402880 2021-10-12] (TrucksBook) [File not signed]
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2022-01-13] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [ut] => C:\Users\stoup\AppData\Roaming\uTorrent\uTorrent.exe [1946664 2021-11-14] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-4144986950-140528119-314656625-1002\...\Run: [GoogleChromeAutoLaunch_980ED70427BE509B0E30FE17D5B49E57] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3524216 2021-12-09] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\97.0.13684.74\Installer\chrmstp.exe [2022-01-12] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-05] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{5EF9A232-5B5B-4768-95F2-3F601FB184E3}] -> C:\Windows\system32\AutoGreenCP.dll [2020-01-29] () [File not signed]
HKLM\Software\...\Authentication\Credential Providers: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> C:\Program Files\Fortinet\FortiClient\FortiCredentialProvider2.dll [2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> 
HKLM\Software\...\Authentication\Credential Provider Filters: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> C:\Program Files\Fortinet\FortiClient\FortiCredentialProvider2.dll [2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
Startup: C:\Users\stoup\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LibreOffice 6.4.lnk [2020-07-08]
ShortcutTarget: LibreOffice 6.4.lnk -> C:\Program Files\LibreOffice\program\quickstart.exe (The Document Foundation -> The Document Foundation)
Startup: C:\Users\stoup\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2022-01-19]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.)
Startup: C:\Users\stoup\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Telegram.lnk [2021-01-26]
ShortcutTarget: Telegram.lnk -> C:\Users\stoup\AppData\Roaming\Telegram Desktop\Telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00042C80-070F-4CF7-AF90-C56D3C51BBE4} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\Thermald.exe [389504 2021-06-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {09A542D7-6A92-4E9E-8699-B3C31C9C1DBA} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
Task: {10C744D9-9B4A-4AE6-89F4-BB21B0EF1560} - System32\Tasks\SmartSurvey => C:\Program Files (x86)\GIGABYTE\SmartSurvey\GbtCareBotCmd.exe [139696 2018-09-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {1651913E-7064-43FB-AFAD-0260DF61D280} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {308C4547-A266-49C6-9C71-76662CE94B4D} - System32\Tasks\CCleanerSkipUAC - stoup => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {322C5C89-4F99-4D09-8386-FB7DFBDB92B9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {38E69D95-C6E7-456B-8A9A-1B06EBA1EDE9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {3B90F541-74A5-4AD6-8E0C-AFB23F92D418} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
Task: {4112952E-A9D4-435E-9649-C46DE1A064B9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {412012C4-BD1B-447E-A8CE-CB07301466DF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {42A94D1B-8355-4FD0-AC5F-A07874B085D2} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [20352 2021-10-11] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {462B9BA7-E496-479C-8724-535620E41E2F} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NoUACCheck
Task: {65DE0A62-B539-4DF2-ADD8-664C33A060D2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)
Task: {69E59C9C-7C39-4645-8FDA-3BC9C79F6170} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\Sensord.exe [257408 2021-06-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {715787D0-1C71-46DE-A94E-713682ECA6A9} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2618072 2022-01-09] (Piriform Software Ltd -> Piriform Software)
Task: {73F265DA-B1C6-44D8-A301-011D2137CBA0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {770B2142-3FD5-41ED-8A0A-DC377A27529D} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [234880 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {78005CA2-5F54-4861-ADB5-19CBFC79BF0D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-01-22] (Google Inc -> Google Inc.)
Task: {7F47B3CF-90F4-4F8D-A8E6-5F12C6D4F926} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [17280 2021-04-08] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {902A21BE-2F81-4623-9AFB-F60B84A773BC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2020-01-22] (Google Inc -> Google Inc.)
Task: {9D1C8D1B-6584-414C-9D52-F40629881AC4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4144986950-140528119-314656625-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078440 2022-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1B19BBA-107D-4832-A297-DEA6E214E085} - System32\Tasks\Git for Windows Updater => C:\Program Files\Git\git-bash.exe [151120 2020-06-01] (Johannes Schindelin -> The Git Development Community)
Task: {B2168524-ABC1-433E-ADE6-3BB85993E674} - System32\Tasks\Opera scheduled assistant Autoupdate 1606898895 => C:\Users\stoup\AppData\Local\Programs\Opera\launcher.exe [2256592 2022-01-12] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\stoup\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {CB8D5C5E-8BAF-43D3-A453-CC4E21D0D809} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2618072 2022-01-09] (Piriform Software Ltd -> Piriform Software)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {CE19A165-FAAC-4D7A-908C-2A2E78BBEEC8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D24517E0-B355-4ADF-B86C-06F4129F190E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D421C622-9589-4992-B83E-85DF3E638ECF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D456E706-1247-44A1-9C4F-E4AD42FCAEBE} - System32\Tasks\Norton Security Scan for stoup => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.179\Nss.exe [848912 2019-02-15] (Symantec Corporation -> Symantec Corporation)
Task: {D997E86D-4A32-45F4-99EA-DA461001BE0B} - System32\Tasks\Opera scheduled Autoupdate 1606294033 => C:\Users\stoup\AppData\Local\Programs\Opera\launcher.exe [2256592 2022-01-12] (Opera Software AS -> Opera Software)
Task: {DB3A335A-0CE0-4066-9B91-B991BBF9A850} - System32\Tasks\Opera scheduled Autoupdate 1636910052 => C:\Users\stoup\AppData\Local\Programs\Opera\launcher.exe [2256592 2022-01-12] (Opera Software AS -> Opera Software)
Task: {E101AE4F-940B-40B8-83B2-42CE8EE2B336} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ED6E3DED-5C31-4519-9233-A4A7CE5BF5B6} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-4144986950-140528119-314656625-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078440 2022-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {EEBB34E9-0919-4D0A-9558-81D8DD421EB3} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4078440 2022-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF7C1EA8-6AFE-4755-847F-BB881B6110FA} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754104 2021-01-07] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {F09AA3CE-8449-40AE-B69E-23E4E8556AD2} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.101 10.0.0.138
Tcpip\..\Interfaces\{2d0eb473-15ad-47d8-809f-219efb040cf9}: [DhcpNameServer] 10.0.0.101 10.0.0.138

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\stoup\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-15]

FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-03-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-03-06] (Piriform Software Ltd -> Piriform Software)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default [2022-01-19]
CHR DownloadDir: D:\Downloads
CHR Notifications: Default -> hxxps://captchamodern.top; hxxps://meet.google.com
CHR HomePage: Default -> hxxps://validator.w3.org/check?uri=https%3A%2F%2Fmt.peeringdays.eu%2Flogin&charset=%28detect+automatically%29&doctype=Inline&group=0
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> google.com_
CHR Extension: (Prezentace) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-24]
CHR Extension: (Safe Torrent Scanner) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-01-05]
CHR Extension: (BetterTTV) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-12-09]
CHR Extension: (Dokumenty) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-24]
CHR Extension: (Lucidchart Diagrams) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2020-05-25]
CHR Extension: (Disk Google) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-28]
CHR Extension: (TV) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2020-01-24]
CHR Extension: (YouTube) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-24]
CHR Extension: (Star Legends) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\chcaflnbhnoegjedbjaamecefhglfamc [2020-01-24]
CHR Extension: (Box) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2020-01-24]
CHR Extension: (FrankerFaceZ) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2020-01-24]
CHR Extension: (Tabulky) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-24]
CHR Extension: (PicMonkey) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2020-01-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-01]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-05]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2020-01-24]
CHR Extension: (Pixlr Editor) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2020-01-24]
CHR Extension: (Open in VLC™ media player) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihpiinojhnfhpdmmacgmpoonphhimkaj [2022-01-07]
CHR Extension: (Dropbox) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2020-01-24]
CHR Extension: (Top Eleven) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn [2020-01-24]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2021-09-29]
CHR Extension: (Hangouts Google) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2020-08-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Synology Web Clipper) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcfbfimijgibligmbglggnbiobgjgmbk [2021-02-27]
CHR Extension: (Falling Sand Game) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdknckljjbdpkhgmcokoahffbdinafbo [2021-07-02]
CHR Extension: (Psykopaint) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2020-01-24]
CHR Extension: (Gmail) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-28]
CHR Extension: (RSS Feed Reader) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2021-09-08]
CHR Profile: C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-01-19]
CHR Profile: C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-01-04]
CHR Extension: (Prezentace) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-07]
CHR Extension: (Tabulky) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-07]
CHR Profile: C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-01-19]
CHR Extension: (Prezentace) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-26]
CHR Extension: (Safe Torrent Scanner) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-01-07]
CHR Extension: (Tabulky) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-26]
CHR Profile: C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-10-19]
CHR Extension: (Prezentace) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-01]
CHR Extension: (Safe Torrent Scanner) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-08-01]
CHR Extension: (Tabulky) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-01]
CHR Extension: (Chrome Media Router) - C:\Users\stoup\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-12]
CHR Profile: C:\Users\stoup\AppData\Local\Google\Chrome\User Data\System Profile [2022-01-19]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]

Opera: 
=======
OPR Profile: C:\Users\stoup\AppData\Roaming\Opera Software\Opera Stable [2021-11-17]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\stoup\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-11-14]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\stoup\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-11-14]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2705032 2021-09-07] (PROXIMA BETA PTE. LIMITED -> )
S3 AppleChargerSrv; C:\WINDOWS\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\97.0.13684.74\elevation_service.exe [1819536 2022-01-09] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-03-06] (Piriform Software Ltd -> Piriform Software)
S3 cfbackd; C:\Program Files\CleverFiles\Disk Drill\cfbackd.w32.exe [279040 2021-02-09] (CleverFiles) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [10060440 2022-01-18] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-05-04] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [147328 2021-07-12] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2021-12-10] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2021-12-10] (ESET, spol. s r.o. -> ESET)
R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [138640 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.002.0103.0004\FileSyncHelper.exe [3354520 2022-01-19] (Microsoft Corporation -> Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2020-01-15] (FUTUREMARK INC -> Futuremark)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1959776 2021-12-21] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-07-16] (GOG Sp. z o.o. -> GOG.com)
R2 GbtCareBotService; C:\Program Files (x86)\GIGABYTE\SmartSurvey\GbtCareBotService.exe [138160 2018-09-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11174464 2022-01-13] (Logitech Inc -> Logitech, Inc.)
R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [File not signed]
S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [127360 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.002.0103.0004\OneDriveUpdaterService.exe [3812248 2022-01-19] (Microsoft Corporation -> Microsoft Corporation)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-03-30] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479640 2021-03-30] (Electronic Arts, Inc. -> Electronic Arts)
R2 postgresql-x64-12; C:\Program Files\PostgreSQL\12\bin\pg_ctl.exe [116736 2020-03-23] (PostgreSQL Global Development Group) [File not signed]
R2 postgresql-x64-9.5; C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe [94208 2016-08-09] (PostgreSQL Global Development Group) [File not signed]
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-10-19] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294520 2021-12-09] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-15] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533824 2021-10-21] (Razer USA Ltd. -> Razer Inc.)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [File not signed]
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [371848 2021-08-03] (Synology Inc. -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12986664 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [140816 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
R2 tmSHInstall; C:\Program Files\Thrustmaster\TH8 Shifter\drivers\amd64\tmSHInstall.EXE [49368 2020-01-28] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_44dc4eefedc0d082\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [1732736 2021-09-08] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM)
S3 ACE-GAME; C:\WINDOWS\system32\drivers\ACE-GAME.sys [752768 2021-09-08] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-01-14] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2021-06-05] (Microsoft Corporation) [File not signed]
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [29224 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R1 dokan1; C:\WINDOWS\System32\DRIVERS\dokan1.sys [140280 2020-06-01] (ADAPP SASU -> Dokan Project)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183408 2021-10-12] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [124496 2021-10-12] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201984 2021-10-12] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43920 2021-10-12] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69736 2021-10-12] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-10-12] (ESET, spol. s r.o. -> ESET)
S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [27688 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [35400 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [47144 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [157752 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [83512 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [121384 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc)
R3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [71320 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [70536 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Corporation)
S3 gdrv; C:\WINDOWS\gdrv.sys [26792 2021-01-30] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv3; C:\WINDOWS\System32\drivers\gdrv3.sys [41480 2022-01-12] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2021-12-16] (Microsoft Windows -> Microsoft Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-10-14] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-10-14] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-10-14] (Logitech Inc -> Logitech)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2019-11-12] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.)
R3 R0RazerSynapseService; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.sys [14544 2022-01-19] (Noriyuki MIYAZAKI -> OpenLibSys.org)
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_006e; C:\WINDOWS\System32\drivers\RzDev_006e.sys [56152 2021-03-22] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0306; C:\WINDOWS\System32\drivers\RzDev_0306.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tmhidusb; C:\WINDOWS\system32\DRIVERS\tmhidusb.sys [419856 2021-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 tmsbulk; C:\WINDOWS\System32\Drivers\tmsbulk.sys [334576 2020-01-28] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2019. All rights reserved.)
S3 tmwbulk; C:\WINDOWS\System32\Drivers\tmwbulk.sys [381984 2021-03-24] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2021. All rights reserved.)
S1 UsbCharger; C:\WINDOWS\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-10-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
S1 EneTechIo; \??\C:\Windows\system32\drivers\ene.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-19 13:04 - 2022-01-19 13:05 - 000000000 ____D C:\AdwCleaner
2022-01-19 09:22 - 2022-01-19 15:58 - 000000000 ____D C:\FRST
2022-01-14 18:04 - 2022-01-19 10:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-01-14 01:21 - 2022-01-14 01:21 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2022-01-14 01:21 - 2022-01-14 01:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-01-14 01:21 - 2022-01-14 01:21 - 000000000 ____D C:\Program Files\LGHUB
2022-01-12 18:05 - 2022-01-12 18:05 - 000036352 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\gdrv3.sys
2022-01-12 18:01 - 2022-01-12 18:01 - 000041480 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\Drivers\gdrv3.sys
2022-01-12 05:17 - 2022-01-12 05:17 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-12 05:17 - 2022-01-12 05:17 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-12 05:17 - 2022-01-12 05:17 - 000339968 _____ C:\WINDOWS\system32\pku2u.dll
2022-01-12 05:17 - 2022-01-12 05:17 - 000247808 _____ C:\WINDOWS\SysWOW64\pku2u.dll
2022-01-12 05:17 - 2022-01-12 05:17 - 000015050 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-12 05:15 - 2022-01-12 05:15 - 000000000 ___HD C:\$WinREAgent
2022-01-07 15:09 - 2022-01-19 13:09 - 000000000 ____D C:\Users\stoup\AppData\LocalLow\uTorrent
2022-01-06 11:53 - 2022-01-19 08:46 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4144986950-140528119-314656625-1003
2022-01-04 11:00 - 2022-01-06 21:46 - 000000000 ____D C:\Users\stoup\AppData\Roaming\PrusaSlicer
2022-01-04 11:00 - 2022-01-04 11:00 - 000000000 ____D C:\Users\Public\Documents\Prusa3Dupdater
2022-01-04 10:56 - 2022-01-04 10:56 - 000000848 _____ C:\Users\Public\Desktop\PrusaSlicer 2.4.0.lnk
2022-01-04 10:56 - 2022-01-04 10:56 - 000000099 _____ C:\Users\Public\Desktop\PrusaPrinters - Community Hub.url
2022-01-04 10:56 - 2022-01-04 10:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prusa3D
2022-01-04 10:56 - 2022-01-04 10:56 - 000000000 ____D C:\ProgramData\Caphyon
2022-01-04 10:56 - 2022-01-04 10:56 - 000000000 ____D C:\Program Files\Prusa3D
2022-01-04 10:52 - 2022-01-04 10:52 - 000000000 ____D C:\Users\stoup\AppData\Local\AdvinstAnalytics
2022-01-03 14:42 - 2022-01-03 14:42 - 000000980 _____ C:\Users\stoup\Desktop\EverQuest2.exe – zástupce.lnk
2021-12-31 00:47 - 2021-12-31 00:48 - 000000000 ____D C:\Python310
2021-12-31 00:47 - 2021-12-31 00:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.10
2021-12-25 02:16 - 2021-12-25 02:16 - 000000000 ____D C:\Users\stoup\AppData\LocalLow\CampoSanto
2021-12-22 23:41 - 2021-12-22 23:42 - 057338493 _____ C:\Users\stoup\Downloads\11.Dobrodruhův průvodce Mečovým pobřežím_5e_CZ.pdf
2021-12-22 07:13 - 2022-01-10 01:31 - 000000000 ____D C:\WINDOWS\Minidump
2021-12-22 07:08 - 2021-12-22 07:08 - 000000112 ___SH C:\bootTel.dat
2021-12-21 00:52 - 2021-12-21 00:52 - 000000000 ____D C:\Users\stoup\AppData\Local\Viber
2021-12-20 12:02 - 2021-12-20 12:02 - 000000405 _____ C:\Users\stoup\Desktop\The Vanishing of Ethan Carter.url

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-01-19 15:57 - 2020-11-25 09:44 - 000000000 ____D C:\Users\stoup\AppData\Roaming\uTorrent
2022-01-19 15:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-19 15:55 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-19 15:46 - 2021-10-29 01:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-19 15:45 - 2020-01-24 22:23 - 000000000 ____D C:\Program Files (x86)\Steam
2022-01-19 15:23 - 2020-01-22 11:29 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-19 13:49 - 2020-01-24 22:57 - 000000000 ____D C:\Users\stoup\AppData\Local\D3DSCache
2022-01-19 13:26 - 2020-01-24 22:35 - 000000000 ____D C:\ProgramData\Mozilla
2022-01-19 13:25 - 2020-01-24 22:35 - 000000000 ____D C:\Users\stoup\AppData\LocalLow\Mozilla
2022-01-19 13:16 - 2021-10-29 01:18 - 001715112 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-19 13:16 - 2021-06-05 18:20 - 000724600 _____ C:\WINDOWS\system32\perfh005.dat
2022-01-19 13:16 - 2021-06-05 18:20 - 000150562 _____ C:\WINDOWS\system32\perfc005.dat
2022-01-19 13:16 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-01-19 13:16 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-01-19 13:11 - 2020-01-25 10:51 - 000000000 ____D C:\Program Files\CCleaner
2022-01-19 13:11 - 2020-01-22 11:39 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-19 13:10 - 2021-07-02 17:09 - 000000000 ____D C:\Users\stoup\AppData\Roaming\LGHUB
2022-01-19 13:10 - 2021-07-02 17:09 - 000000000 ____D C:\Users\stoup\AppData\Local\LGHUB
2022-01-19 13:10 - 2021-02-27 13:24 - 000000000 ___RD C:\Users\stoup\SynologyDrive
2022-01-19 13:10 - 2021-02-27 13:24 - 000000000 ___RD C:\Users\stoup\Shared with me
2022-01-19 13:10 - 2021-02-27 13:23 - 000000000 ____D C:\Users\stoup\AppData\Local\SynologyDrive
2022-01-19 13:10 - 2020-11-25 09:47 - 000000000 ____D C:\Users\stoup\AppData\Local\BitTorrentHelper
2022-01-19 13:10 - 2020-01-31 08:00 - 000000000 ____D C:\Users\stoup\AppData\Roaming\Telegram Desktop
2022-01-19 13:09 - 2021-10-29 01:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-19 13:09 - 2020-11-11 18:12 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-01-19 13:09 - 2020-01-24 22:15 - 000000000 ___RD C:\Users\stoup\OneDrive
2022-01-19 13:08 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-19 13:05 - 2020-11-25 09:45 - 000000000 ____D C:\Users\stoup\AppData\Roaming\Lavasoft
2022-01-19 13:05 - 2020-11-25 09:45 - 000000000 ____D C:\Users\stoup\AppData\Local\Lavasoft
2022-01-19 13:05 - 2020-11-25 09:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2022-01-19 13:05 - 2020-11-25 09:45 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2022-01-19 13:05 - 2020-11-25 09:44 - 000000000 ____D C:\ProgramData\Lavasoft
2022-01-19 10:13 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-19 10:13 - 2020-01-24 22:13 - 000000000 ____D C:\Users\stoup\AppData\Local\Packages
2022-01-19 10:13 - 2020-01-22 11:24 - 000000000 ____D C:\ProgramData\Packages
2022-01-19 10:12 - 2021-08-26 14:28 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-01-19 10:12 - 2020-01-24 22:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-01-19 09:21 - 2020-05-13 08:45 - 000000000 ____D C:\App
2022-01-19 08:56 - 2021-11-22 13:59 - 000000000 ____D C:\Users\stoup\AppData\Local\Adobe
2022-01-19 08:46 - 2021-12-11 22:45 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4144986950-140528119-314656625-1002
2022-01-19 08:46 - 2021-10-29 01:15 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-01-19 08:46 - 2020-03-10 14:03 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-19 08:43 - 2021-11-18 09:04 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7cc598ffdc1b8
2022-01-19 08:43 - 2021-10-29 01:15 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-19 00:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-01-19 00:08 - 2021-09-20 23:29 - 000000000 ____D C:\Users\stoup\AppData\Roaming\WhatsApp
2022-01-18 17:07 - 2021-11-01 14:18 - 000000000 ____D C:\Data
2022-01-18 14:41 - 2021-08-23 21:48 - 000000000 ____D C:\Users\stoup\Documents\ViberDownloads
2022-01-18 08:44 - 2021-11-14 18:14 - 000004162 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1636910052
2022-01-18 08:44 - 2021-11-14 18:14 - 000001405 _____ C:\Users\stoup\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2022-01-17 16:41 - 2020-01-31 09:01 - 000000000 ____D C:\Users\stoup\Downloads\Telegram Desktop
2022-01-17 15:31 - 2020-01-22 11:45 - 000000000 ____D C:\Temp
2022-01-15 09:16 - 2020-06-05 06:48 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-14 10:43 - 2021-04-04 14:39 - 000000016 _____ C:\Users\stoup\Desktop\drsny.txt
2022-01-14 05:04 - 2021-11-25 17:42 - 000000000 ____D C:\Users\stoup\AppData\Local\WhatsApp
2022-01-13 22:12 - 2021-10-23 01:39 - 000000000 ____D C:\Crash
2022-01-13 22:12 - 2020-01-30 22:27 - 000000000 ____D C:\Users\stoup\AppData\Local\CrashDumps
2022-01-12 19:52 - 2021-03-06 12:56 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2022-01-12 19:52 - 2021-03-06 12:56 - 000002352 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2022-01-12 19:52 - 2021-03-06 12:53 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2022-01-12 18:03 - 2021-11-22 14:08 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-01-12 18:03 - 2021-11-22 14:08 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-01-12 18:03 - 2021-11-22 14:08 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-01-12 17:35 - 2021-10-29 01:09 - 000497248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-12 17:33 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-12 17:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-01-12 17:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-12 17:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-12 17:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-12 17:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-12 17:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-12 17:33 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-12 05:18 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-12 05:11 - 2020-01-25 00:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-12 05:06 - 2020-01-25 00:27 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-07 15:08 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-01-07 11:25 - 2020-05-24 20:45 - 000000000 ____D C:\Users\stoup\AppData\Roaming\obs-studio
2022-01-05 23:25 - 2020-01-22 11:29 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-05 07:30 - 2020-01-24 23:10 - 000000000 ____D C:\Users\stoup\AppData\Roaming\ViberPC
2022-01-03 22:01 - 2020-11-11 18:12 - 000000000 ____D C:\Users\stoup\AppData\Roaming\TeamViewer
2022-01-03 21:51 - 2021-04-13 18:21 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2022-01-03 21:49 - 2021-04-12 20:56 - 000000000 ____D C:\Program Files\EA Games
2021-12-31 12:29 - 2021-11-23 15:21 - 000000000 ____D C:\Users\stoup\AppData\Roaming\Code
2021-12-31 00:47 - 2020-01-24 23:10 - 000000000 ____D C:\Users\stoup\AppData\Local\Package Cache
2021-12-31 00:47 - 2020-01-22 11:30 - 000000000 ____D C:\ProgramData\Package Cache
2021-12-31 00:34 - 2021-11-23 15:21 - 000000000 ____D C:\Users\stoup\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2021-12-28 16:27 - 2021-10-29 00:00 - 000000000 ____D C:\Users\postgres
2021-12-28 16:09 - 2021-10-23 01:21 - 000000658 _____ C:\Users\stoup\Desktop\EverQuest II.lnk
2021-12-25 08:54 - 2021-12-16 13:11 - 000000000 ____D C:\Users\stoup\AppData\Roaming\Advanced Combat Tracker
2021-12-23 15:40 - 2021-10-29 00:00 - 000000000 ____D C:\Users\stoup
2021-12-22 07:15 - 2020-01-24 22:47 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2021-12-20 12:50 - 2021-08-20 10:23 - 000000000 ____D C:\Users\stoup\Documents\My Games

==================== Files in the root of some directories ========

2021-02-15 15:12 - 2021-02-15 21:23 - 000000128 _____ () C:\Users\stoup\AppData\Roaming\winscp.rnd
2020-01-31 08:00 - 2020-01-31 08:37 - 000020295 _____ () C:\Users\stoup\AppData\Local\PlariumPlay.log
2021-02-19 16:02 - 2021-02-19 16:02 - 000000760 _____ () C:\Users\stoup\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================