Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-07-2022
Ran by Libor (administrator) on DESKTOP-PC0NS10 (Gigabyte Technology Co., Ltd. B250M-D2V) (01-08-2022 22:36:17)
Running from C:\Users\Libor\Desktop
Loaded Profiles: Libor
Platform: Microsoft Windows 10 Education Version 1803 17134.1845 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(BitTorrent Inc -> BitTorrent Inc.) C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Libor\AppData\Roaming\uTorrent\helper\helper.exe
(C:\Users\Libor\AppData\Roaming\uTorrent\uTorrent.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Libor\AppData\Roaming\uTorrent\updates\3.5.5_46348\utorrentie.exe <2>
(Discord Inc. -> Discord Inc.) C:\Users\Libor\AppData\Local\Discord\app-1.0.9005\Discord.exe <7>
(explorer.exe ->) (VideoLAN -> VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <19>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\WINWORD.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <21>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Privado Networks LLC -> Privado Networks AG) C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Privado Networks LLC -> Privado Networks AG) C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(services.exe ->) (Zemana D.O.O. Sarajevo -> Copyright 2018.) E:\Zemana AntiLogger\ZAM.exe <2>
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\Libor\AppData\Local\slack\app-4.23.0\slack.exe <7>
(Spotify AB -> Spotify Ltd) C:\Users\Libor\AppData\Roaming\Spotify\Spotify.exe <6>
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(svchost.exe ->) (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(svchost.exe ->) (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (No File)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [357944 2022-02-08] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [ZAM] => E:\Zemana AntiLogger\ZAM.exe [25160568 2019-02-14] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (No File)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe (No File)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4230544 2022-07-26] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [Discord] => C:\Users\Libor\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [EpicGamesLauncher] => E:\Fortnite\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33637856 2022-01-31] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [Chromium] => "c:\users\libor\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session (No File)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [Spotify] => C:\Users\Libor\AppData\Roaming\Spotify\Spotify.exe [19987360 2022-07-21] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [Overwolf] => E:\Curse forge\Overwolf\OverwolfLauncher.exe [1801048 2022-07-05] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [PrivadoVPN] => C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.exe [5021360 2022-01-27] (Privado Networks LLC -> Privado Networks AG)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\Libor\AppData\Local\slack\slack.exe [309568 2021-12-14] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\...\Run: [GoogleChromeAutoLaunch_BF390FCA195218BE7B8A0C32421611CA] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2673480 2022-07-18] (Google LLC -> Google LLC)
HKU\S-1-5-18\...\Run: [] => [X]
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Mozilla Firefox\firefox.exe -os-restarted -new-window about:blank [636792 2022-07-11] (Mozilla Corporation -> Mozilla Corporation)
HKLM\...\Print\Monitors\IppMon: C:\WINDOWS\system32\IPPMon.dll [251392 2020-05-06] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-22] (Google LLC -> Google LLC)
AppInit_DLLs: C:\PROGRA~2\KEYCRY~1\KEYCRY~4.DLL => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll [94568 2017-01-19] (Zemana Ltd. -> Zemana Ltd.)
AppInit_DLLs-x32: C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt32(1).dll [85864 2017-01-19] (Zemana Ltd. -> Zemana Ltd.)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {005EA3A3-FDDF-4AC2-8BA2-2581E7BEA842} - System32\Tasks\ProtonVPN Update => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [60736 2020-03-11] (ProtonVPN AG -> )
Task: {081B53C3-CD6A-4346-8ABD-B7255F3D24AB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {0C071466-6263-4A7F-80C1-9EDF7F17F4D8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {13E0C01A-7542-409B-8DE8-59DA9A4CA05C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {29BCBD62-2BD1-4B48-A2AC-818C567E0350} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {2DD630EB-B786-4EA5-9905-D8895C32AAF5} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-07-05] (Overwolf Ltd -> Overwolf LTD)
Task: {3649B003-E847-4B98-B5B2-374294A93CB9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3CE15AC5-0998-4EB2-9AA7-BD56E3EEFD94} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4ACDDEF5-7C7D-4EAA-83EC-58C6293EF028} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A1C99A3-A541-405B-B31B-6BB3B357791D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-08-25] (Google Inc -> Google Inc.)
Task: {5D173745-F2A2-42F6-91AE-DF183405DAAB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-08-25] (Google Inc -> Google Inc.)
Task: {609DA612-C3C9-4869-B3DA-83D9FF07004C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {67FF5211-521F-46F4-949B-29B35B39FF9B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6B7DE407-6730-44AB-9F27-D00529B7719C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {70128954-7C2C-4DB4-B6F7-E971DF689B6E} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset => {2755524D-68F2-4B39-A816-9DB31839C897}
Task: {A47145DC-34DA-4F7E-AF0C-BEAF8DC88138} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B2F3E3BC-C8F3-4105-A7A7-A0C13A7CD884} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BA63030C-5401-40FD-A254-2ABB9CF8B307} - System32\Tasks\Mumicekol\{48BAA870-EC0E-A24A-4429-6CF0382E6E42} => C:\Users\Libor\AppData\Roaming\Lilacehacor\Mumicekol.exe [0 2013-05-05] () <==== ATTENTION [zero byte File/Folder]
Task: {BD4F2604-25A6-4B47-977E-548E3A045027} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CBAB7CBC-1BB4-4046-95C1-35C053F8A542} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DEAB4C3D-703E-418C-8E72-B7FAE6CF0005} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E37DE71C-1664-4E4E-8D8E-D89E44FC3084} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EAC75302-456D-4551-8F41-12F64EF788DC} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {F2FDDF59-0982-4F2A-9DA5-AF5D2525640D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F9A937F2-1EEF-4E06-AEAF-6F095709AC20} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0f23f673-8c8e-48cb-b44b-cf8fb5425789}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{60f4a761-05cc-4319-8d60-dace46b1a8b2}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{7abe2c56-4355-437c-967a-075dd8238f28}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{d94ca6c6-98c9-4ad4-b48d-264b8299886c}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Libor\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-07]

FireFox:
========
FF DefaultProfile: irlv2t5i.default
FF ProfilePath: C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\irlv2t5i.default [2022-08-01]
FF user.js: detected! => C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\irlv2t5i.default\user.js [2019-11-01]
FF Homepage: Mozilla\Firefox\Profiles\irlv2t5i.default -> hxxps://www.facebook.com/?ref=tn_tnmn
FF Notifications: Mozilla\Firefox\Profiles\irlv2t5i.default -> hxxps://www.fotor.com; hxxps://spikenow.com; hxxps://mindflow.cz; hxxps://www.tiktok.com
FF Extension: (AdBlocker Ultimate) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\irlv2t5i.default\Extensions\adblockultimate@adblockultimate.net.xpi [2022-05-25]
FF Extension: (Ahrefs SEO Toolbar) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\irlv2t5i.default\Extensions\ahrefs@AhrefsPteLtd.xpi [2022-07-14]
FF Extension: (Tlačítko Uložit pro Pinterest) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\irlv2t5i.default\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2022-03-02]
FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\irlv2t5i.default\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2022-02-10]
FF HKLM\...\Firefox\Extensions: [{7bb202fa-9247-49c6-898c-ce0d36bc44e3}] - C:\Program Files (x86)\mypopupblocker\ff\my_popup_blocker-1.0.0-fx.xpi
FF Extension: (My Popup Blocker) - C:\Program Files (x86)\mypopupblocker\ff\my_popup_blocker-1.0.0-fx.xpi [2019-09-03]
FF HKLM-x32\...\Firefox\Extensions: [{7bb202fa-9247-49c6-898c-ce0d36bc44e3}] - C:\Program Files (x86)\mypopupblocker\ff\my_popup_blocker-1.0.0-fx.xpi
FF Plugin: @java.com/DTPlugin,version=10.79.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2018-06-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.79.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2018-06-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-04-07] (VideoLAN -> VideoLAN)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default [2022-08-01]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://www.kupi.cz; hxxps://www.tipsport.cz; hxxps://www.youtube.com
CHR Extension: (lock) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2022-07-07]
CHR Extension: (BuiltWith Technology Profiler) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\dapjbgnjinbpoindlpdmhochffioedbn [2022-05-12]
CHR Extension: (Tampermonkey) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-05-12]
CHR Extension: (MozBar) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp [2022-01-22]
CHR Extension: (Facebook Pixel Helper) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2021-03-10]
CHR Extension: (Datalayer Checker) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffljdddodmkedhkcjhpmdajhjdbkogke [2021-03-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-22]
CHR Extension: (Wappalyzer - Technology profiler) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2022-07-22]
CHR Extension: (Impact Deeplinking) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpcmmccnlhkdbaailjllkmfkebmckeo [2020-11-11]
CHR Extension: (Similarweb - Traffic Rank & Website Analysis) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoklmmgfnpapgjgcpechhaamimifchmp [2021-12-16]
CHR Extension: (Google Analytics Debugger) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiokjpcfnipnicblkgdklknjjeohnfln [2021-03-10]
CHR Extension: (Tag Assistant Legacy (by Google)) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\kejbdjndbnbjgmefkgdddjlbokphdefk [2021-09-25]
CHR Extension: (Helppier) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\komfkgoihfgcnnklcajfojdjjcfigdom [2022-03-21]
CHR Extension: (Loom – Free Screen Recorder & Screen Capture) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2022-07-31]
CHR Extension: (Email Tracker for Gmail, Mail Merge-Mailtrack) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2022-07-28]
CHR Extension: (WASP.inspector: Analytics Solution Profiler) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\niaoghengfohplclhbjnjheodgkejpih [2021-03-10]
CHR Extension: (MetaMask) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2022-07-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Tag Manager Injector) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooninanccdmjbcmghimhdfpeklpmlllg [2021-03-10]
CHR Extension: (vidIQ Vision for YouTube) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pachckjkecffpdphbpmfolblodfkgbhl [2022-07-28]
CHR Extension: (MailTracker: Free email tracker for Gmail) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgbdljpkijehgoacbjpolaomhkoffhnl [2021-10-22]
CHR Profile: C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-01-16]
CHR Profile: C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-06-26]
CHR Extension: (Slides) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-26]
CHR Extension: (Docs) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-26]
CHR Extension: (Google Drive) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-06-26]
CHR Extension: (YouTube) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-26]
CHR Extension: (Tampermonkey) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-06-26]
CHR Extension: (Sheets) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-26]
CHR Extension: (Google Docs Offline) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-06-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-26]
CHR Extension: (Gmail) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-06-26]
CHR Extension: (Chrome Media Router) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-26]
CHR Profile: C:\Users\Libor\AppData\Local\Google\Chrome\User Data\System Profile [2020-06-26]
CHR HKU\S-1-5-21-1593937946-2000894150-3306685890-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2022-02-25] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8348064 2018-12-18] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-01-14] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2022-01-10] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2506544 2020-02-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3429176 2020-02-22] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-07-05] (Overwolf Ltd -> Overwolf LTD)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2018-05-20] (Even Balance, Inc. -> )
R2 PrivadoVPN.Service; C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Service.exe [58032 2022-01-27] (Privado Networks LLC -> Privado Networks AG)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [101696 2020-03-11] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [60736 2020-03-11] (ProtonVPN AG -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5327176 2020-10-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WireGuardTunnel$PrivadoVPN; C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Wireguard.Service.exe [19120 2022-01-27] (Privado Networks LLC -> Privado Networks AG)
R2 ZAMSvc; E:\Zemana AntiLogger\ZAM.exe [25160568 2019-02-14] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\Video Converter Ultimate(CPC)\Transfer\DriverInstall.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 keycrypt; C:\WINDOWS\System32\DRIVERS\KeyCrypt64.sys [161408 2017-09-12] (Zemana Ltd. -> Zemana Ltd.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-01-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-01-10] (Malwarebytes Inc -> Malwarebytes)
R3 MpKslb5d8a17b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1C79A00D-9307-45CE-880F-0D49CF7F5F78}\MpKslDrv.sys [50448 2022-08-01] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-02-01] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-09-13] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-02-01] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2022-06-07] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2022-05-25] (Zemana Ltd. -> Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2022-05-25] (Zemana Ltd. -> Zemana Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-08-01 22:36 - 2022-08-01 22:36 - 000031267 ____C C:\Users\Libor\Desktop\FRST.txt
2022-08-01 22:03 - 2022-08-01 22:03 - 002370048 _____ (Farbar) C:\Users\Libor\Desktop\FRST64.exe
2022-08-01 21:39 - 2022-08-01 21:39 - 000061693 _____ C:\Users\Libor\Downloads\The-Boys-S03E05(0000371352).srt
2022-08-01 20:48 - 2022-08-01 20:49 - 000000000 ____D C:\WINDOWS\Panther
2022-07-31 23:27 - 2022-07-31 23:27 - 000053244 _____ C:\Users\Libor\Desktop\The-Boys-S03E04(0000370876).srt
2022-07-31 16:38 - 2022-07-31 16:38 - 000025222 _____ C:\Users\Libor\Downloads\[LimeTorrents.lol]The.Boys.S03E03.REPACK.720p.WEB.x265-MiNX[TGx].torrent
2022-07-31 13:06 - 2022-07-31 13:06 - 000059603 _____ C:\Users\Libor\Downloads\The-Boys-S03E02(0000370488).srt
2022-07-28 22:41 - 2022-07-28 22:41 - 000057066 _____ C:\Users\Libor\Downloads\The-Boys-S03E01(0000370487).srt
2022-07-28 17:44 - 2022-07-28 17:44 - 000000000 ___DC C:\Users\Libor\AppData\LocalLow\uTorrent
2022-07-27 16:45 - 2022-07-27 17:22 - 000000000 ____D C:\Users\Libor\Downloads\Esensino fotky
2022-07-26 11:23 - 2022-07-26 11:23 - 000564324 ____C C:\Users\Libor\Desktop\Affial.com - smlouva o spolupráci.pdf
2022-07-22 14:56 - 2022-07-22 15:00 - 000000000 ____D C:\Users\Libor\Downloads\harmonelo probio
2022-07-20 12:56 - 2022-07-20 12:56 - 000563682 ____C C:\Users\Libor\Desktop\Smlouva Siberica.pdf
2022-07-11 12:22 - 2022-07-11 12:40 - 000000000 ___DC C:\Users\Libor\Desktop\Kytky
2022-07-11 09:41 - 2022-07-29 11:12 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-07-06 15:23 - 2022-07-06 15:23 - 000042444 _____ C:\Users\Libor\Downloads\faktura_67.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-08-01 22:37 - 2018-01-10 23:09 - 000000000 ___DC C:\Users\Libor\AppData\Roaming\discord
2022-08-01 22:37 - 2017-08-20 16:12 - 000000000 ___DC C:\Users\Libor\AppData\Roaming\uTorrent
2022-08-01 22:36 - 2022-05-25 23:50 - 000671797 _____ C:\WINDOWS\ZAM.krnl.trace
2022-08-01 22:36 - 2022-05-25 23:50 - 000659194 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2022-08-01 22:36 - 2019-12-08 21:44 - 000000000 ____D C:\FRST
2022-08-01 22:35 - 2020-04-02 12:51 - 000000000 ___DC C:\Users\Libor\AppData\Roaming\Spotify
2022-08-01 22:34 - 2021-04-19 09:46 - 000000000 ___DC C:\Users\Libor\AppData\Roaming\Slack
2022-08-01 22:32 - 2018-05-14 20:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-01 22:27 - 2017-08-30 18:34 - 000000000 ____D C:\Program Files (x86)\Steam
2022-08-01 21:50 - 2017-08-25 18:33 - 000000000 ____D C:\Program Files (x86)\Google
2022-08-01 21:48 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-01 21:46 - 2018-01-10 23:09 - 000000000 ___DC C:\Users\Libor\AppData\Local\Discord
2022-08-01 21:38 - 2017-08-20 16:15 - 000000000 ___DC C:\Users\Libor\AppData\Roaming\vlc
2022-08-01 21:11 - 2019-03-29 00:07 - 000000000 ___DC C:\Users\Libor\AppData\Local\BitTorrentHelper
2022-08-01 21:00 - 2017-08-19 19:35 - 000000000 ___DC C:\Users\Libor\AppData\LocalLow\Mozilla
2022-08-01 20:45 - 2017-08-19 18:51 - 000000000 ____D C:\ProgramData\NVIDIA
2022-08-01 10:27 - 2018-05-15 22:43 - 000000000 ___DC C:\Users\Libor\AppData\Local\D3DSCache
2022-08-01 10:00 - 2022-05-04 18:29 - 000000000 ___DC C:\Users\Libor\AppData\Local\Zoom
2022-08-01 10:00 - 2019-09-24 11:00 - 000000000 ___DC C:\Users\Libor\AppData\Roaming\Zoom
2022-08-01 09:42 - 2020-10-28 13:05 - 000001129 ____C C:\Users\Libor\Desktop\Odměny za sales.txt
2022-08-01 00:51 - 2021-12-06 23:31 - 000000000 ____D C:\ProgramData\SecTaskMan
2022-07-31 22:37 - 2020-04-02 12:55 - 000000000 ___DC C:\Users\Libor\AppData\Local\Spotify
2022-07-31 21:50 - 2017-08-20 04:19 - 000000000 ____D C:\ProgramData\Riot Games
2022-07-30 23:34 - 2020-09-01 01:12 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-30 23:34 - 2020-09-01 01:12 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-07-28 17:49 - 2018-05-14 20:28 - 001689054 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-28 17:49 - 2018-04-12 17:51 - 000715202 _____ C:\WINDOWS\system32\perfh005.dat
2022-07-28 17:49 - 2018-04-12 17:51 - 000144496 _____ C:\WINDOWS\system32\perfc005.dat
2022-07-28 17:49 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2022-07-28 17:46 - 2022-02-21 21:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-28 17:43 - 2018-05-14 20:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-28 17:43 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-28 17:43 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-07-28 17:43 - 2017-08-25 18:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-07-28 11:21 - 2021-12-12 21:26 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1593937946-2000894150-3306685890-1001
2022-07-28 11:21 - 2018-05-14 20:26 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1593937946-2000894150-3306685890-1001
2022-07-28 11:21 - 2018-05-14 20:23 - 000002381 ____C C:\Users\Libor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-07-26 11:23 - 2017-11-18 13:10 - 000000000 ___DC C:\Users\Libor\AppData\Local\Packages
2022-07-25 14:22 - 2022-01-19 18:43 - 000012233 ____C C:\Users\Libor\Desktop\Nápady.xlsx
2022-07-24 22:36 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-22 09:52 - 2017-08-25 18:33 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-07-22 09:52 - 2017-08-25 18:33 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-07-20 11:40 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-15 09:32 - 2022-01-19 12:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-07-15 09:32 - 2017-08-25 18:36 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-07-14 10:48 - 2017-08-22 15:34 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-07-14 10:45 - 2017-08-22 15:34 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-07-14 09:56 - 2020-09-01 01:12 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-07-14 09:56 - 2020-09-01 01:12 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-07-11 11:33 - 2022-05-08 12:00 - 000000058 ____C C:\Users\Libor\Desktop\Barvy.txt
2022-07-04 23:10 - 2021-11-03 21:42 - 000014787 ____C C:\Users\Libor\Desktop\Crypto wishlist.xlsx

==================== Files in the root of some directories ========

2020-02-25 15:54 - 2020-02-25 15:54 - 000282898 ____C () C:\Users\Libor\AppData\Roaming\9x8_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================