Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-06-2023
Ran by Dan (administrator) on DESKTOP-MGTCFH9 (12-06-2023 13:49:43)
Running from D:\soft\Logy na viry.cz\FRST64.exe
Loaded Profiles: Dan
Platform: Microsoft Windows 10 Pro Version 22H2 19045.2965 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\G-Menu\G-Menu.exe ->) (TOP VICTORY ELECTRONICS (TAIWAN) CO., LTD. -> Zeasn) C:\G-Menu\resources\bin\G_Menu.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Creative Technology Ltd -> Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe
(explorer.exe ->) (A FOUR TECH CO., LTD. -> ) C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (TOP VICTORY ELECTRONICS (TAIWAN) CO., LTD. -> AOC) C:\G-Menu\G-Menu.exe <5>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.25\AsSysCtrlService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ) C:\Windows\System32\AsusUpdateCheck.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.94\AsusFanControlService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.51\atkexComSvc.exe
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtxSvc32.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(svchost.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3088752 2023-03-10] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194704 2023-04-05] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Creative.SBCommand] => C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe [207984 2022-11-08] (Creative Technology Ltd -> Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [739448 2023-03-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2605488 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2605488 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2227092603-2680403404-1919150376-1001\...\Run: [MicrosoftEdgeAutoLaunch_7AB6945E770A87556377684E74524938] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2227092603-2680403404-1919150376-1001\...\Run: [G-Menu] => C:\G-Menu\G-Menu.exe [110791592 2023-05-23] (TOP VICTORY ELECTRONICS (TAIWAN) CO., LTD. -> AOC)
HKU\S-1-5-21-2227092603-2680403404-1919150376-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody7\Bloody7\Bloody7.exe [20998160 2022-11-29] (A FOUR TECH CO., LTD. -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.110\Installer\chrmstp.exe [2023-06-06] (Google LLC -> Google LLC)
Startup: C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AORUS ENGINE.lnk [2023-06-12]
ShortcutTarget: AORUS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\autorun.exe () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {018D5E34-4FEE-480F-AB4D-215544018B03} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2227092603-2680403404-1919150376-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {03D018BF-3600-4930-858A-BEE7A8F1B40E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1BC80E65-126D-47F2-A1C1-C49D6DC562BE} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1469288 2020-10-19] (ASUSTeK Computer Inc. -> )
Task: {20980880-21E1-4DD8-9AB7-B1F3C1A1D0BE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557360 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {264F79FE-23F4-4399-8342-0F578DAA9A7D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {3004DF3B-5B89-4151-B714-61B211CA9196} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157544 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C6EB972-AC1E-4DAC-97E1-72BEC8C72D84} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4329008 2020-10-12] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {58F8F7FD-35F2-4629-A521-C65208356D6B} - System32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE => C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe [34686568 2022-12-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
Task: {5A21A1D1-4AC4-49D7-9BA5-73E33A3C0DB6} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170456 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {61E9BA52-5E75-4CD5-8835-2202F43C3BD4} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [672064 2022-12-02] (Advanced Micro Devices Inc. -> )
Task: {686D76D5-D488-48C3-B3AD-7401D3248F91} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {75473C63-BCF6-449F-BA1E-DA0CA3CF9B15} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {758819D8-A033-4609-8545-B353BD17B24E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7F845C6C-27BB-4F6B-B394-9E736AABFA2F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157544 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {801AF505-C9C2-433D-B487-E6C17B5A8CB3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557360 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {8AEE01DC-4D3B-4FCB-A1CD-A98CA9221861} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9E6E85C4-5AD5-44EE-B5DD-4CC8816D2042} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {ADA2F49A-5E16-4460-89FD-B6ABF14126BC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B9EC59D9-31F5-424C-B1BF-9657D1340AC2} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147632 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {BB527EBF-E889-4A0A-86C5-1162037290C2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA85A082-F9B1-46F2-8DC9-4349978C7170} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [679360 2022-09-13] (Advanced Micro Devices Inc. -> AMD)
Task: {D6C049F4-D132-4400-84A3-475EC9E9652C} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2115632 2020-10-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {E13B40D8-1243-4D3C-B5AB-1862CAA44C39} - System32\Tasks\GoogleUpdateTaskMachineUA{E9EDE3D7-0386-43A2-8D5C-8C44C07C60AE} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-24] (Google LLC -> Google LLC)
Task: {E99CEB0F-FFE8-475B-8485-DD33B9A798A2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ECFCCB4D-290F-4C40-97CA-44B6B4B20A3C} - System32\Tasks\GoogleUpdateTaskMachineCore{4BF19C4B-5D8E-400D-8378-78C451C3E631} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-24] (Google LLC -> Google LLC)
Task: {FD7F3CD4-3817-409F-B328-9B86005BE9D4} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2021-09-08] () [File not signed]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{5a87d8de-dfb1-4a5d-b466-587ebe285285}: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{bc36cf4b-ed0d-41d5-8030-19766cc66032}: [DhcpNameServer] 192.168.184.244

Edge: 
=======
Edge Profile: C:\Users\Dan\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-12]
Edge Extension: (Edge relevant text changes) - C:\Users\Dan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-21]

FireFox:
========
FF DefaultProfile: 36p5ehi5.default
FF ProfilePath: C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\36p5ehi5.default [2023-02-25]
FF ProfilePath: C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\676a30cf.default-release [2023-05-29]
FF Session Restore: Mozilla\Firefox\Profiles\676a30cf.default-release -> is enabled.
FF Extension: (AdBlocker Ultimate) - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\676a30cf.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-18]
FF Extension: (BetterTTV) - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\676a30cf.default-release\Extensions\firefox@betterttv.net.xpi [2023-05-18]
FF Extension: (Avast SecureLine VPN) - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\676a30cf.default-release\Extensions\secureline-vpn@avast.com.xpi [2023-03-08]
FF Extension: (Proton VPN: a Swiss VPN you can trust) - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\676a30cf.default-release\Extensions\vpn@proton.ch.xpi [2023-05-18]
FF Extension: (7TV) - C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\676a30cf.default-release\Extensions\{7ef0f00c-2ebe-4626-8ed7-3185847fcfad}.xpi [2023-03-01]
FF Plugin: @java.com/DTPlugin,version=11.371.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-03-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.371.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-03-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-06-12]

Chrome: 
=======
CHR Profile: C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default [2023-06-12]
CHR Notifications: Default -> hxxp://127.0.0.1; hxxps://www.prvni-lekarna.cz
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-22]
CHR Extension: (BetterTTV) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2023-04-21]
CHR Extension: (7TV) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ammjkodgmmoknidbanneddgankgfejfh [2023-06-01]
CHR Extension: (Avira Password Manager) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-03-24]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-04-26]
CHR Extension: (FrankerFaceZ) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2023-03-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-23]
CHR Extension: (Carbon Blackout) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ialnhggmaghopmhanfnjjneegopfpbdj [2023-06-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-02-24]
CHR Extension: (Hlídač Shopů) - C:\Users\Dan\AppData\Local\Google\Chrome\User Data\Default\Extensions\plmlonggbfebcjelncogcnclagkmkikk [2023-03-24]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.51\atkexComSvc.exe [442928 2020-10-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.25\AsSysCtrlService.exe [1360016 2020-10-12] (ASUSTeK Computer Inc. -> ) [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.94\AsusFanControlService.exe [2073136 2020-10-12] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [768408 2023-06-12] (ASUSTeK Computer Inc. -> )
R2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe [509888 2022-09-13] (Advanced Micro Devices Inc. -> AMD)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-03-10] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11774392 2023-06-07] (Microsoft Corporation -> Microsoft Corporation)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [458240 2020-03-12] (Creative Technology Ltd) [File not signed]
R2 CtxSvc32; C:\WINDOWS\sysWow64\CtxSvc32.exe [166368 2022-03-23] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11272296 2023-05-03] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2023-02-24] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-05-17] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2509944 2023-04-05] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3650416 2023-04-05] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3650416 2023-04-05] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-02-10] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.107.0521.0001\FileSyncHelper.exe [3445672 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2023-03-08] (Underwriters Laboratories Inc. -> Futuremark)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.107.0521.0001\OneDriveUpdaterService.exe [3781512 2023-06-09] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336256 2023-05-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [11060856 2023-03-10] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3c2bd4a1ec6d228e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [35136 2020-05-25] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 CtxHda; C:\WINDOWS\system32\drivers\CtxHda.sys [1226112 2022-03-23] (Creative Technology Ltd -> Creative Technology Ltd)
R3 CtxHdb; C:\WINDOWS\system32\DRIVERS\Ctxhdb.sys [62848 2022-03-23] (Creative Technology Ltd -> Creative Technology Ltd)
S3 DESerialPort; C:\WINDOWS\system32\DRIVERS\DimensionSerialPort.sys [26112 2020-03-21] (Dimension Engineering LLC -> )
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [198448 2023-04-05] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [118872 2023-04-05] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [244920 2023-04-05] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55440 2023-04-05] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81728 2023-04-05] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [123008 2023-04-05] (ESET, spol. s r.o. -> ESET)
R3 gdrv3; C:\Windows\gdrv3.sys [36352 2023-02-24] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2020-10-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 mi2c; C:\Windows\system32\drivers\mi2c.sys [20784 2023-02-24] (AOC International (Europe) GmbH -> Nicomsoft Ltd.)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [72792 2021-12-01] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R2 SSGDIO; C:\Windows\SysWOW64\DRIVERS\ssgdio64.sys [14608 2023-04-04] (ATI Technologies, Inc -> ATI Technologies Inc.)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-10-07] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22292248 2023-03-10] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-12 11:58 - 2023-06-12 11:58 - 000048824 _____ C:\Users\Dan\Desktop\Pohyb_26031782765_na_uctu_2100991410.pdf
2023-06-12 11:09 - 2023-06-12 10:58 - 008791352 _____ (Malwarebytes) C:\Users\Dan\Desktop\AdwCleaner.exe
2023-06-12 11:03 - 2023-06-12 11:03 - 000003456 _____ C:\WINDOWS\system32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE
2023-06-12 10:58 - 2023-06-12 11:02 - 000000000 ____D C:\AdwCleaner
2023-06-12 08:12 - 2023-06-12 08:12 - 000000112 ___SH C:\bootTel.dat
2023-06-12 07:48 - 2023-06-12 13:49 - 000000000 ____D C:\FRST
2023-06-11 15:50 - 2023-06-12 07:37 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-06-08 18:24 - 2023-06-08 18:24 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2023-06-08 18:24 - 2023-06-08 18:24 - 000000000 ____D C:\Users\Dan\AppData\Roaming\Disney Interactive Studios
2023-06-08 18:24 - 2023-06-08 18:24 - 000000000 ____D C:\Program Files\Reference Assemblies
2023-06-08 18:24 - 2023-06-08 18:24 - 000000000 ____D C:\Program Files\MSBuild
2023-06-08 18:24 - 2023-06-08 18:24 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2023-06-08 18:24 - 2023-06-08 18:24 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-06-08 08:56 - 2023-06-08 08:55 - 083602487 _____ C:\Users\Dan\Downloads\VID_20230608_085427.mp4
2023-06-03 10:09 - 2023-06-03 10:09 - 000049284 _____ C:\Users\Dan\Downloads\[SkT]CzechSexCasting.E308.Anna.De.Ville.XXX.1080p.MP4-WRB.torrent
2023-06-03 10:09 - 2023-06-03 10:09 - 000044907 _____ C:\Users\Dan\Downloads\[SkT]CzechSexCasting_E306_Greta_Foss_CZECH_XXX_1080p_MP4_-_WRB.torrent
2023-06-03 09:57 - 2023-06-03 09:57 - 000023829 _____ C:\Users\Dan\Downloads\[SkT]_Influencer_(2022)[WebRip][1080p]_=_CSFD_57%.torrent
2023-05-31 15:37 - 2023-05-25 15:02 - 001487384 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-05-31 15:37 - 2023-05-25 15:02 - 001226776 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-05-31 15:37 - 2023-05-25 15:02 - 000848952 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-05-31 15:37 - 2023-05-25 15:02 - 000848952 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-05-31 15:37 - 2023-05-25 15:02 - 000713776 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-05-31 15:37 - 2023-05-25 15:02 - 000713776 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-05-31 15:37 - 2023-05-25 15:02 - 000653368 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-05-31 15:37 - 2023-05-25 15:02 - 000653368 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-05-31 15:37 - 2023-05-25 15:02 - 000637024 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-05-31 15:37 - 2023-05-25 15:02 - 000637024 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-05-31 15:37 - 2023-05-25 14:58 - 000933912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-05-31 15:37 - 2023-05-25 14:58 - 000668648 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-05-31 15:37 - 2023-05-25 14:58 - 000503832 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-05-31 15:37 - 2023-05-25 14:57 - 002167824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-05-31 15:37 - 2023-05-25 14:57 - 001622056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-05-31 15:37 - 2023-05-25 14:57 - 001537560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-05-31 15:37 - 2023-05-25 14:57 - 001195560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-05-31 15:37 - 2023-05-25 14:57 - 000992808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-05-31 15:37 - 2023-05-25 14:57 - 000776232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-05-31 15:37 - 2023-05-25 14:57 - 000769064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-05-31 15:37 - 2023-05-25 14:56 - 014520320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-05-31 15:37 - 2023-05-25 14:56 - 012066816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-05-31 15:37 - 2023-05-25 14:56 - 006190592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-05-31 15:37 - 2023-05-25 14:56 - 005550080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-05-31 15:37 - 2023-05-25 14:56 - 003483136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-05-31 15:37 - 2023-05-25 14:56 - 000458224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-05-31 15:37 - 2023-05-25 14:55 - 005844504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-05-31 15:37 - 2023-05-25 14:55 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-05-31 15:37 - 2023-05-24 20:11 - 000107938 _____ C:\WINDOWS\system32\nvinfo.pb
2023-05-31 12:46 - 2023-05-31 12:46 - 000028232 _____ C:\Users\Dan\Downloads\[SkT]____Snezi!___Snowfall_-__2._serie_(CZ)[TvRip]_=_CSFD_79%.torrent
2023-05-31 00:07 - 2023-05-31 00:07 - 000653165 _____ C:\Users\Dan\Downloads\[SkT]Sněží!_____Snowfall(S01)-(S05)(2017-2022)(CZ)[WEB-DL][1080p]_=_CSFD_79%.torrent
2023-05-31 00:04 - 2023-05-31 00:04 - 000071734 _____ C:\Users\Dan\Downloads\[SkT]Snezi!___Snowfall_-_1._serie_(CZ)[WebRip][1080p][HEVC]_=_CSFD_79%.torrent
2023-05-29 20:45 - 2023-05-29 16:58 - 000092307 _____ C:\Users\Dan\Downloads\received_245400944805598.jpeg
2023-05-29 20:40 - 2023-06-12 10:57 - 000000000 ____D C:\Users\Dan\AppData\Roaming\Estmob
2023-05-29 20:40 - 2023-06-10 21:13 - 000000000 ____D C:\Users\Dan\AppData\Roaming\Send Anywhere
2023-05-29 20:40 - 2023-05-29 20:40 - 000000000 ____D C:\Users\Dan\AppData\Local\sendanywhere-updater
2023-05-29 20:39 - 2023-05-29 20:40 - 111990352 _____ (Estmob Inc.) C:\Users\Dan\Downloads\SendAnywhereSetup.exe
2023-05-29 20:29 - 2023-05-29 20:29 - 000000000 ____D C:\Users\Dan\AppData\Roaming\PhotoSync
2023-05-29 20:29 - 2023-05-29 20:29 - 000000000 ____D C:\Users\Dan\AppData\Local\touchbyte_GmbH
2023-05-27 13:38 - 2023-05-27 13:39 - 000000000 ____D C:\Users\Dan\Desktop\dira
2023-05-25 11:19 - 2023-05-25 11:19 - 000092281 _____ C:\Users\Dan\Downloads\[SkT]Zakon_gangu__Mayove___Mayans_M.C._-_1_serie_(CZ)[WebRip][1080p][HEVC]_=_CSFD_77%.torrent
2023-05-25 11:19 - 2023-05-25 11:19 - 000088933 _____ C:\Users\Dan\Downloads\[SkT]Zakon_gangu__Mayove___Mayans_M.C._-_3._serie_(CZ)[WebRip][1080p][HEVC]_=_CSFD_77%.torrent
2023-05-25 11:19 - 2023-05-25 11:19 - 000080881 _____ C:\Users\Dan\Downloads\[SkT]Zakon_gangu__Mayove___Mayans_M.C._-_2._serie_(CZ)[WebRip][1080p][HEVC]_=_CSFD_77%.torrent
2023-05-23 23:04 - 2023-05-23 23:04 - 000066577 _____ C:\Users\Dan\Downloads\[SkT]Vřískot_6___Scream_VI_(2023)(EN)[WEB-DL][2160p][HDR]_=_CSFD_69%.torrent
2023-05-23 22:19 - 2023-05-23 22:19 - 000000000 ____D C:\Users\Dan\AppData\Roaming\FLT
2023-05-23 22:18 - 2023-05-23 22:18 - 000000000 ____D C:\Users\Dan\AppData\LocalLow\Wishfully
2023-05-23 19:03 - 2023-05-23 19:03 - 000000827 _____ C:\Users\Dan\Desktop\Planet of Lana.lnk
2023-05-23 19:03 - 2023-05-23 19:03 - 000000827 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Planet of Lana.lnk
2023-05-23 17:54 - 2023-05-23 17:54 - 000028012 _____ C:\Users\Dan\Downloads\Planet_of_Lana-FLT.torrent
2023-05-23 16:59 - 2023-05-23 16:59 - 000002098 _____ C:\Users\Public\Desktop\Bloody7.lnk
2023-05-23 16:59 - 2023-05-23 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody
2023-05-23 16:58 - 2023-05-23 16:59 - 034668968 _____ C:\Users\Dan\Downloads\Bloody7_V2022.1129_MUI.exe
2023-05-23 14:04 - 2023-05-23 14:06 - 000000764 _____ C:\Users\Dan\Desktop\Nový textový dokument (2).txt
2023-05-23 11:08 - 2023-05-23 11:08 - 002687200 _____ C:\Users\Dan\Desktop\apg-09b-om-czklimatizacenavod.pdf
2023-05-23 09:27 - 2023-05-23 09:27 - 000127570 _____ C:\Users\Dan\Downloads\[SkT]McGregor_Forever(CZ_EN)(2023)(S01)[1080p](WEB-DL)__=_CSFD_50%.torrent
2023-05-22 16:01 - 2023-05-22 16:01 - 007978329 _____ C:\Users\Dan\Desktop\Návod k použití.pdf
2023-05-22 11:52 - 2023-05-22 11:52 - 002489666 _____ C:\Users\Dan\Downloads\20200702105627_475.zip
2023-05-22 11:52 - 2023-05-22 11:52 - 000000000 ____D C:\Users\Dan\Downloads\20200702105627_475
2023-05-19 19:34 - 2023-06-12 11:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-05-18 12:13 - 2023-05-28 14:48 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2023-05-17 18:42 - 2023-05-17 18:42 - 000012489 _____ C:\Users\Dan\Downloads\[SkT]Guy_Ritchie´s_The_Covenant_(2023)[WEBRip][1080p]_=_CSFD_81%.torrent
2023-05-17 17:09 - 2023-05-17 17:09 - 000071964 _____ C:\Users\Dan\Downloads\[SkT]Ant-Man_a_Wasp__Quantumania___Ant-Man_and_the_Wasp__Quantumania_(2023)(CZ_EN)[WEBrip][1080p]_=_CSFD_58%.torrent
2023-05-15 13:46 - 2023-05-15 13:46 - 000000000 ____D C:\Users\Dan\AppData\LocalLow\Playdead
2023-05-15 13:43 - 2023-05-15 13:43 - 000000222 _____ C:\Users\Dan\Desktop\Little Nightmares.url
2023-05-15 13:43 - 2023-05-15 13:43 - 000000222 _____ C:\Users\Dan\Desktop\Little Nightmares II.url
2023-05-15 11:26 - 2023-05-15 11:26 - 000088248 _____ C:\Users\Dan\Downloads\[SkT]_Matka___The_Mother(2023)(CZ_EN)[1080p](WEB-DL)(HEVC)(HDR10)_=_CSFD_50%.torrent
2023-05-15 11:18 - 2023-05-15 11:18 - 000017266 _____ C:\Users\Dan\Downloads\[SkT]Ukryt_v_zoo___The_Zookeeper's_Wife_(2017)(CZ)_=_CSFD_74% (1).torrent
2023-05-15 11:15 - 2023-05-15 11:15 - 001764240 _____ ( ) C:\Users\Dan\Downloads\utorrent_installer.exe
2023-05-15 11:14 - 2023-05-15 11:14 - 000017704 _____ C:\Users\Dan\Downloads\[SkT]Ukryt_v_zoo___The_Zookeeper's_Wife_(2017)(CZ)_=_CSFD_74%.torrent
2023-05-15 11:04 - 2023-05-15 11:04 - 000018331 _____ C:\Users\Dan\Downloads\[SkT]Jeji_pripad___North_Country_(2005)(CZ)_=_CSFD_80%.torrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-12 13:48 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-12 13:33 - 2023-04-21 10:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-12 13:25 - 2023-02-24 14:04 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-12 13:04 - 2023-02-24 14:14 - 000000000 ____D C:\Users\Dan\AppData\LocalLow\Mozilla
2023-06-12 12:25 - 2023-02-24 13:57 - 000000000 ____D C:\ProgramData\NVIDIA
2023-06-12 11:24 - 2023-04-21 10:47 - 001693656 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-12 11:24 - 2019-12-07 16:43 - 000716894 _____ C:\WINDOWS\system32\perfh005.dat
2023-06-12 11:24 - 2019-12-07 16:43 - 000145072 _____ C:\WINDOWS\system32\perfc005.dat
2023-06-12 11:24 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-12 11:17 - 2023-04-21 10:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-12 11:17 - 2023-02-24 21:20 - 000000000 ____D C:\Users\Dan\AppData\Roaming\G-Menu
2023-06-12 11:17 - 2023-02-24 13:50 - 000807280 _____ C:\WINDOWS\system32\wpbbin.exe
2023-06-12 11:17 - 2023-02-24 13:50 - 000768408 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2023-06-12 11:17 - 2023-02-24 13:50 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-12 11:17 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-06-12 11:07 - 2023-02-24 19:00 - 000000000 ____D C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-06-12 11:07 - 2023-02-24 18:46 - 000000000 ____D C:\Program Files (x86)\Steam
2023-06-12 11:06 - 2023-02-24 14:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-06-12 07:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-06-12 07:37 - 2023-02-24 14:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-06-11 20:41 - 2023-02-24 16:19 - 000000000 ____D C:\Users\Dan\AppData\Roaming\discord
2023-06-11 19:50 - 2023-02-24 16:19 - 000000000 ____D C:\Users\Dan\AppData\Local\Discord
2023-06-11 19:08 - 2023-02-24 14:14 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-06-11 01:43 - 2023-04-21 10:37 - 000000000 ____D C:\Users\Dan
2023-06-10 14:24 - 2023-02-24 15:21 - 000000000 ____D C:\Users\Dan\AppData\Local\UnrealEngine
2023-06-10 06:12 - 2023-03-04 22:00 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-06-10 02:24 - 2023-02-24 13:50 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-10 02:24 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-10 02:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-09 23:16 - 2023-04-21 10:45 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2227092603-2680403404-1919150376-1001
2023-06-09 23:16 - 2023-04-21 10:45 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-06-09 23:16 - 2023-03-03 20:40 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-09 21:13 - 2023-03-03 20:38 - 000000000 ____D C:\Program Files\Microsoft Office
2023-06-09 18:54 - 2023-02-24 14:07 - 000000000 ____D C:\Users\Dan\AppData\Local\D3DSCache
2023-06-09 14:15 - 2023-03-09 21:18 - 000000000 ____D C:\Users\Dan\Desktop\bazos
2023-06-08 18:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2023-06-08 18:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2023-06-08 18:24 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-08 13:44 - 2023-02-24 17:08 - 000000000 ____D C:\Users\Dan\AppData\Local\BitTorrentHelper
2023-06-08 13:44 - 2023-02-24 17:07 - 000000000 ____D C:\Users\Dan\AppData\Roaming\utorrent
2023-06-08 07:47 - 2023-03-11 20:49 - 000000000 ____D C:\Users\Dan\AppData\Local\ElevatedDiagnostics
2023-06-08 07:05 - 2023-02-24 14:01 - 000000000 ____D C:\Users\Dan\AppData\Local\Packages
2023-06-06 06:22 - 2023-02-24 14:04 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-06 06:22 - 2023-02-24 14:04 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-03 21:18 - 2023-02-24 14:01 - 000000000 ____D C:\Users\Dan\AppData\Local\NVIDIA
2023-06-01 08:02 - 2022-09-08 05:11 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-05-31 18:45 - 2023-02-24 16:44 - 000001018 _____ C:\Users\Public\Desktop\PotPlayer 64 bit.lnk
2023-05-29 22:34 - 2023-03-03 20:41 - 000000000 ____D C:\Users\Dan\AppData\Roaming\Microsoft\UProof
2023-05-28 14:48 - 2023-02-24 18:14 - 000000000 ____D C:\Users\Dan\AppData\Roaming\EasyAntiCheat
2023-05-26 11:55 - 2023-04-06 19:13 - 000000000 ____D C:\Users\Dan\AppData\Roaming\TS3Client
2023-05-25 14:53 - 2023-04-19 10:41 - 007857088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-05-25 14:53 - 2023-04-19 10:41 - 006735960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-05-24 14:47 - 2023-02-25 08:53 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2023-05-24 14:47 - 2023-02-25 08:53 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2023-05-24 14:44 - 2023-02-24 21:20 - 000000000 ____D C:\G-Menu
2023-05-23 18:57 - 2023-03-04 20:34 - 000000040 _____ C:\Users\Dan\Desktop\internet odpojeni.txt
2023-05-22 12:07 - 2023-04-05 00:24 - 000000000 ____D C:\Users\Dan\AppData\Roaming\AIMP
2023-05-22 11:14 - 2023-03-13 14:05 - 000000000 ____D C:\Users\Dan\AppData\Local\Battle.net
2023-05-19 02:20 - 2023-04-21 10:45 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{E9EDE3D7-0386-43A2-8D5C-8C44C07C60AE}
2023-05-19 02:20 - 2023-04-21 10:45 - 000003720 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{4BF19C4B-5D8E-400D-8378-78C451C3E631}
2023-05-18 14:55 - 2023-03-24 20:11 - 000000000 ____D C:\Users\Dan\Desktop\jidlo
2023-05-18 07:35 - 2023-02-24 14:40 - 000000000 ____D C:\ProgramData\Package Cache
2023-05-15 11:16 - 2023-02-24 17:07 - 000000894 _____ C:\Users\Dan\Desktop\µTorrent.lnk
2023-05-15 11:16 - 2023-02-24 17:07 - 000000874 _____ C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2023-05-13 07:18 - 2023-04-21 10:45 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-13 07:18 - 2023-04-21 10:45 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== Files in the root of some directories ========

2023-03-12 14:18 - 2023-03-12 14:39 - 000099384 _____ () C:\Users\Dan\AppData\Roaming\inst.exe
2023-03-12 14:18 - 2023-03-12 14:39 - 000007859 _____ () C:\Users\Dan\AppData\Roaming\pcouffin.cat
2023-03-12 14:18 - 2023-03-12 14:39 - 000001167 _____ () C:\Users\Dan\AppData\Roaming\pcouffin.inf
2023-03-12 14:18 - 2023-03-12 14:39 - 000000055 _____ () C:\Users\Dan\AppData\Roaming\pcouffin.log
2023-03-12 14:18 - 2023-03-12 14:39 - 000082816 _____ (VSO Software) C:\Users\Dan\AppData\Roaming\pcouffin.sys

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================