Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01.07.2024
Ran by jkkoc (administrator) on LENOVO (LENOVO 82JQ) (12-07-2024 10:04:11)
Running from C:\Users\jkkoc\Downloads\FRST64.exe
Loaded Profiles: jkkoc
Platform: Microsoft Windows 11 Pro Version 23H2 22631.3737 (X64) Language: Čeština (Česko)
Default browser: "C:\Users\jkkoc\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(A-Volute SAS -> A-Volute) C:\Windows\System32\NhNotifSys.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe
(C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG  sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe <2>
(C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG  sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(C:\Program Files\Elastic\Elasticsearch\6.2.3\bin\elasticsearch.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Java\jre1.8.0_333\bin\java.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\JetBrains\PhpStorm 2021.3.1\bin\phpstorm64.exe ->) (JetBrains s.r.o. -> JetBrains s.r.o.) C:\Program Files\JetBrains\PhpStorm 2021.3.1\bin\fsnotifier.exe
(C:\Program Files\Oracle\VirtualBox\VBoxSVC.exe ->) (Oracle Corporation -> Oracle and/or its affiliates) C:\Program Files\Oracle\VirtualBox\VirtualBoxVM.exe <3>
(C:\Program Files\PostgreSQL\11\bin\pg_ctl.exe ->) (PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\11\bin\postgres.exe <8>
(C:\Users\jkkoc\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\jkkoc\AppData\Local\Programs\Opera\111.0.5168.43\opera_crashreporter.exe
(C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoNotificationUx.exe
(Discord Inc. -> Discord Inc.) C:\Users\jkkoc\AppData\Local\Discord\app-1.0.9152\Discord.exe <6>
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyUtility.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <8>
(explorer.exe ->) (GOG  sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(explorer.exe ->) (JetBrains s.r.o. -> JetBrains s.r.o.) C:\Program Files\JetBrains\PhpStorm 2021.3.1\bin\phpstorm64.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\jkkoc\AppData\Local\Programs\Opera\opera.exe <46>
(explorer.exe ->) (PrintNode -> ) C:\Program Files (x86)\PrintNode\PrintNode.exe
(GOG  sp. z o.o -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) () [File not signed] C:\Program Files\OpenVPN Connect\agent_ovpnconnect_1638964996365.exe
(services.exe ->) () [File not signed] C:\Program Files\OpenVPN Connect\ovpnhelper_service.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Elasticsearch, Inc. -> Elasticsearch BV) C:\Program Files\Elastic\Elasticsearch\6.2.3\bin\elasticsearch.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_804d30e159655f8c\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Oracle America, Inc. -> ) C:\Program Files\MySQL\MySQL Server 8.0\bin\mysqld.exe <2>
(services.exe ->) (Oracle Corporation -> Oracle and/or its affiliates) C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe
(services.exe ->) (PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\11\bin\pg_ctl.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5d66730f577c60c7\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25992.9000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.3801_none_e919caea4301d33a\TiWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2402.27001-0\SecurityHealthHost.exe <2>
(svchost.exe ->) (Oracle Corporation -> Oracle and/or its affiliates) C:\Program Files\Oracle\VirtualBox\VBoxSVC.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_5d66730f577c60c7\RtkAudUService64.exe [3495840 2022-09-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [195256 2024-05-29] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3312208 2019-05-04] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9248144 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2023-12-15] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3199377002-728603182-1310565619-1001\...\Run: [TogglDesktop] => C:\Users\jkkoc\AppData\Local\TogglDesktop\TogglDesktop.exe [1779136 2023-06-22] (Toggl OÜ -> Toggl)
HKU\S-1-5-21-3199377002-728603182-1310565619-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13872608 2023-06-13] (GOG  sp. z o.o -> GOG.com)
HKU\S-1-5-21-3199377002-728603182-1310565619-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11432352 2024-06-27] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3199377002-728603182-1310565619-1001\...\Run: [Discord] => C:\Users\jkkoc\AppData\Local\Discord\Update.exe [1522176 2022-06-08] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3199377002-728603182-1310565619-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\jkkoc\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-3199377002-728603182-1310565619-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\jkkoc\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-3199377002-728603182-1310565619-1001\...\RunOnce: [Uninstall 24.111.0602.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\jkkoc\AppData\Local\Microsoft\OneDrive\24.111.0602.0003" [0 2024-07-02] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-21-3199377002-728603182-1310565619-1001\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2022-09-04]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.127\Installer\chrmstp.exe [2024-06-26] (Google LLC -> Google LLC)
Startup: C:\Users\jkkoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\QTTabBar Desktop Extension StartUp.QTTabGroup [2022-01-26] () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PrintNode.lnk [2022-01-26]
ShortcutTarget: PrintNode.lnk -> C:\Program Files (x86)\PrintNode\PrintNode.exe (PrintNode -> )
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {682C3179-D4B9-4B02-AE1F-142941E8056E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {E65EBA21-2BD9-4950-956E-91B7EC4D98BB} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5472312 2024-06-13] (Microsoft Windows -> Microsoft Corporation)
Task: {8B3F37C7-A51B-4A89-ACB4-FD5BDC84CFA4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-27] (Dropbox, Inc -> Dropbox, Inc.)
Task: {8D4A2FF4-401F-411F-A310-B09DA0DA1EE1} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-27] (Dropbox, Inc -> Dropbox, Inc.)
Task: {842A9EAD-64C2-4444-9A78-387F9C0AB9E0} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{85EC677E-F3FD-47FF-ABB0-9794D36D41E0} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC)
Task: {EFCDEAA7-79DD-44AF-9217-1BC8D5A44023} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-3199377002-728603182-1310565619-1001 => C:\Users\jkkoc\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [88408 2021-12-29] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {7634D905-52B5-40DB-8762-663174BB7842} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\Windows\system32\rundll32.exe [73728 2024-05-15] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (No File)
Task: {B7492333-C436-46A1-851C-3040325CA467} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {3938D62F-9B3D-4EBC-B0CF-6C5FBD0E9926} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3199377002-728603182-1310565619-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-17] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {E275FC04-2F71-451D-8EA0-0797FE5007B3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {65B0209A-2F0B-4219-94D0-0B96F7B87E61} - System32\Tasks\MySQL\Installer\ManifestUpdate => C:\Program Files (x86)\MySQL\MySQL Installer for Windows\MySQLInstallerConsole.exe [73416 2021-11-04] (Oracle America, Inc. -> Oracle Corporation)
Task: {B9DA18B6-FFA5-404F-A175-F30ED4EAE173} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {061E7E12-B125-4B52-9F7F-79F23C20BB98} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E76F89F6-36DC-4BAD-A65A-CB7C76D6AFDB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4BD982F6-C758-4B81-9A47-7FE71526760C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {810ABEFD-B12F-45F7-A0F5-0E9BEE1EA2D1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {042566E2-E0C2-4996-9EDA-1A1090F21C06} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {316F6BEA-2676-4F5E-9026-4CD003BD1B4A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F034182F-EA49-420D-B7FB-B36189E5DE49} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E9823260-C404-4D79-8FF4-638D7523F354} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8A51C019-6AE1-49A0-8086-AC83CA47D685} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-12-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {31688447-D5AF-4219-B0C3-FFC7C9465984} - System32\Tasks\Opera scheduled Autoupdate 1643198393 => C:\Users\jkkoc\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-06-25] (Opera Norway AS -> Opera Software)
Task: {932AB2C0-3F9E-4345-9C0C-32105036647B} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1904552 2023-08-15] (Lenovo -> )
Task: {5EC8A63D-269A-461D-998F-78F6E13C26CC} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1904552 2023-08-15] (Lenovo -> )

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{bd4d5294-61bc-46db-9ed4-eec3c1431238}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{bd4d5294-61bc-46db-9ed4-eec3c1431238}: [DhcpDomain] home
Tcpip\..\Interfaces\{bd4d5294-61bc-46db-9ed4-eec3c1431238}\7516C6C634C657263416666656: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{bd4d5294-61bc-46db-9ed4-eec3c1431238}\7516C6C634C657263416666656: [DhcpDomain] Dlink
Tcpip\..\Interfaces\{bfa63a47-1b01-4a3c-a52d-c55f50341fdd}: [DhcpNameServer] 10.0.0.138

Edge: 
=======
Edge Profile: C:\Users\jkkoc\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-11]
Edge Extension: (Dokumenty Google offline) - C:\Users\jkkoc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-27]
Edge Extension: (Edge relevant text changes) - C:\Users\jkkoc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-27]

FireFox:
========
FF DefaultProfile: xukqri7s.default
FF ProfilePath: C:\Users\jkkoc\AppData\Roaming\Mozilla\Firefox\Profiles\xukqri7s.default [2022-01-26]
FF ProfilePath: C:\Users\jkkoc\AppData\Roaming\Mozilla\Firefox\Profiles\ujuavrbn.default-release [2024-07-12]
FF Session Restore: Mozilla\Firefox\Profiles\ujuavrbn.default-release -> is enabled.
FF Extension: (Lush – Soft) - C:\Users\jkkoc\AppData\Roaming\Mozilla\Firefox\Profiles\ujuavrbn.default-release\Extensions\lush-soft-colorway@mozilla.org.xpi [2023-04-19]
FF Plugin: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2022-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2022-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-12-15] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-12-15] (Adobe Inc. -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2024-07-12]

Chrome: 
=======
CHR Profile: C:\Users\jkkoc\AppData\Local\Google\Chrome\User Data\Default [2024-06-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\jkkoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jkkoc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-09-24]

Opera: 
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-12-15] (Adobe Inc. -> Adobe Inc.)
R2 agent_ovpnconnect; C:\Program Files\OpenVPN Connect\agent_ovpnconnect_1638964996365.exe [3195904 2021-12-08] () [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-27] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-27] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\203.4.4857\DropboxElevationService.exe [1659288 2024-07-09] (Dropbox, Inc -> Dropbox, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5584248 2024-05-29] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3903168 2024-05-29] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3903168 2024-05-29] (ESET, spol. s r.o. -> ESET)
R2 Elasticsearch; C:\Program Files\Elastic\Elasticsearch\6.2.3\bin\elasticsearch.exe [454408 2018-03-13] (Elasticsearch, Inc. -> Elasticsearch BV)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2346464 2023-06-13] (GOG  sp. z o.o -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7178720 2023-05-03] (GOG  sp. z o.o -> GOG.com)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2022-06-24] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe [178536 2024-05-24] (Lenovo -> Lenovo)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-05-22] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MySQL80; C:\Program Files\MySQL\MySQL Server 8.0\bin\mysqld.exe [51125416 2021-12-17] (Oracle America, Inc. -> )
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1930888 2022-03-29] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_804d30e159655f8c\Display.NvContainer\NVDisplay.Container.exe [1275432 2024-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ovpnhelper_service; C:\Program Files\OpenVPN Connect\ovpnhelper_service.exe [3020800 2021-12-08] () [File not signed]
R2 postgresql-x64-11; C:\Program Files\PostgreSQL\11\bin\pg_ctl.exe [106496 2021-11-09] (PostgreSQL Global Development Group) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-05-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 SFTP Drive V2; C:\Program Files\nsoftware\SFTP Drive V2\SFTPDrive.exe [3136672 2021-07-26] (/N SOFTWARE INC. -> /n software inc. - www.nsoftware.com)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14610864 2022-01-24] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [805224 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-05-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-05-22] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 cbfsconnect2017; C:\Windows\system32\drivers\cbfsconnect2017.sys [481296 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [218432 2024-05-29] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [119008 2024-05-29] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2024-05-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [259752 2024-05-29] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57832 2024-05-29] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [84120 2024-05-29] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [125952 2024-05-29] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 MTKBTFilterX64; C:\WINDOWS\system32\DRIVERS\mtkbtfilterx.sys [286424 2022-05-14] (MEDIATEK INC. -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\drivers\mtkwl6ex.sys [1439976 2022-05-15] (MEDIATEK INC. -> MediaTek Inc.)
R3 NahimicBTLink; C:\WINDOWS\System32\drivers\NahimicBTLink.sys [85144 2021-09-13] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85144 2021-09-13] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [239256 2024-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 tap_ovpnconnect; C:\WINDOWS\System32\drivers\tap_ovpnconnect.sys [40128 2021-12-08] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [254616 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [265488 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1061392 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [20496 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-05-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602520 2024-05-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-22] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-07-12 10:04 - 2024-07-12 10:04 - 000030778 _____ C:\Users\jkkoc\Downloads\FRST.txt
2024-07-12 10:03 - 2024-07-12 10:04 - 000000000 ____D C:\FRST
2024-07-12 10:03 - 2024-07-12 10:03 - 002395648 _____ (Farbar) C:\Users\jkkoc\Downloads\FRST64.exe
2024-07-12 09:08 - 2024-07-12 09:08 - 000011737 _____ C:\Users\jkkoc\Downloads\gastrozone_desadv (14).csv
2024-07-12 08:48 - 2024-07-12 08:50 - 000000000 ___HD C:\$WinREAgent
2024-07-12 08:05 - 2024-07-12 08:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2024-07-09 13:02 - 2024-07-09 13:02 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2024-06-30 10:24 - 2024-06-30 10:24 - 000727012 _____ C:\WINDOWS\system32\perfh005.dat
2024-06-30 10:24 - 2024-06-30 10:24 - 000151244 _____ C:\WINDOWS\system32\perfc005.dat
2024-06-29 21:22 - 2024-06-29 21:22 - 000000000 ____D C:\WINDOWS\Firmware
2024-06-29 14:23 - 2024-06-29 14:23 - 000002016 _____ C:\Users\Public\Desktop\ESET Zabezpečené bankovnictví a prohlížení webu.lnk
2024-06-29 14:20 - 2024-06-29 14:20 - 000000000 ____D C:\Users\jkkoc\AppData\Local\ESET
2024-06-29 14:19 - 2024-06-29 14:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2024-06-29 14:19 - 2024-06-29 14:19 - 000000000 ____D C:\ProgramData\ESET
2024-06-29 14:19 - 2024-06-29 14:19 - 000000000 ____D C:\Program Files\ESET
2024-06-29 14:18 - 2024-06-29 14:18 - 010262528 ____N (ESET) C:\Users\jkkoc\Downloads\eset_internet_security_live_installer.exe
2024-06-27 09:52 - 2024-06-27 09:52 - 000015145 _____ C:\Users\jkkoc\Downloads\gastrozone_desadv (30).csv
2024-06-27 09:29 - 2024-06-27 09:29 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-06-17 10:51 - 2024-06-17 10:51 - 000012252 _____ C:\Users\jkkoc\Downloads\rechberger return 17.6.csv
2024-06-17 10:11 - 2024-06-17 10:11 - 000418701 _____ C:\Users\jkkoc\Downloads\exception--2024-06-17--09-59--4445b72f94.html
2024-06-17 08:56 - 2024-06-17 08:56 - 000024821 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-06-17 08:55 - 2024-06-17 08:55 - 000010353 _____ C:\Users\jkkoc\Downloads\gastrozone_desadv (29).csv
2024-06-13 17:01 - 2024-06-13 17:01 - 000024821 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-06-13 08:03 - 2024-06-13 08:03 - 000000000 ____D C:\Users\jkkoc\AppData\LocalLow\NVIDIA
2024-06-13 08:01 - 2024-05-23 18:02 - 001487496 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-06-13 08:01 - 2024-05-23 18:02 - 001424080 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-06-13 08:01 - 2024-05-23 18:02 - 001424080 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-06-13 08:01 - 2024-05-23 18:02 - 001246416 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-06-13 08:01 - 2024-05-23 18:02 - 001246416 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-06-13 08:01 - 2024-05-23 18:02 - 001226888 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-06-13 08:01 - 2024-05-23 18:02 - 000850632 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-06-13 08:01 - 2024-05-23 18:02 - 000850632 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-06-13 08:01 - 2024-05-23 18:02 - 000731336 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-06-13 08:01 - 2024-05-23 18:02 - 000731336 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-06-13 08:00 - 2024-05-23 18:02 - 015095424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 012375168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 006747368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 006462616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 005860488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 005550104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 003620392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 002170904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 001624624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 001541168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 001198640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 000996888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 000958616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 000853656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-06-13 08:00 - 2024-05-23 18:02 - 000810120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-06-13 08:00 - 2024-05-23 18:02 - 000773656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 000670872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 000504968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-06-13 08:00 - 2024-05-23 18:02 - 000293400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-06-13 08:00 - 2024-05-23 18:02 - 000114118 _____ C:\WINDOWS\system32\nvinfo.pb

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-07-12 10:00 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-07-12 08:57 - 2022-01-26 14:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-07-12 08:55 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-07-12 08:55 - 2022-01-26 14:31 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-07-12 08:49 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-07-12 08:49 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-07-12 08:48 - 2022-11-27 16:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-07-12 08:48 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-07-12 08:47 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-07-12 08:39 - 2022-08-08 13:06 - 000000000 ____D C:\Users\jkkoc\AppData\Local\Discord
2024-07-12 08:06 - 2022-01-27 08:58 - 000000000 ____D C:\Users\jkkoc\AppData\Roaming\Dropbox
2024-07-12 08:06 - 2022-01-27 08:57 - 000000000 ____D C:\Users\jkkoc\AppData\Local\Dropbox
2024-07-12 08:05 - 2023-06-03 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Northgard [GOG.com]
2024-07-12 08:05 - 2022-01-27 08:58 - 000000000 ____D C:\Program Files (x86)\Dropbox
2024-07-12 08:03 - 2022-11-27 16:12 - 000003638 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-12 08:03 - 2022-11-27 16:12 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-12 08:03 - 2022-01-26 13:56 - 000000000 ____D C:\Users\jkkoc\AppData\Local\Packages
2024-07-12 08:03 - 2022-01-26 13:56 - 000000000 ____D C:\ProgramData\Packages
2024-07-11 15:18 - 2022-01-26 13:59 - 000000000 ____D C:\ProgramData\NVIDIA
2024-07-11 15:14 - 2022-11-27 16:12 - 000004212 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1643198393
2024-07-11 15:14 - 2022-01-26 13:59 - 000001422 _____ C:\Users\jkkoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-07-11 15:13 - 2022-01-26 20:46 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-07-11 15:13 - 2022-01-26 20:46 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-07-11 15:12 - 2022-01-26 14:42 - 000000000 ____D C:\Users\jkkoc\.VirtualBox
2024-07-02 19:46 - 2022-11-27 16:12 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3199377002-728603182-1310565619-1001
2024-07-02 19:46 - 2022-11-27 16:12 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3199377002-728603182-1310565619-1001
2024-07-02 19:46 - 2022-01-26 13:58 - 000002413 _____ C:\Users\jkkoc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-07-01 12:16 - 2022-08-08 13:06 - 000000000 ____D C:\Users\jkkoc\AppData\Roaming\discord
2024-07-01 12:14 - 2022-08-08 13:06 - 000002279 _____ C:\Users\jkkoc\Desktop\Discord.lnk
2024-07-01 12:14 - 2022-01-26 13:56 - 000000000 ____D C:\Users\jkkoc\AppData\Local\D3DSCache
2024-07-01 12:10 - 2022-10-11 17:07 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-07-01 12:10 - 2022-10-11 17:07 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-06-30 10:24 - 2022-11-27 16:18 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-06-30 10:21 - 2022-11-27 16:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-06-30 10:21 - 2022-03-09 21:49 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-06-30 10:20 - 2022-01-26 15:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-06-30 10:20 - 2022-01-26 14:42 - 000000000 ____D C:\ProgramData\VirtualBox
2024-06-30 02:46 - 2024-05-17 16:01 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-06-30 02:46 - 2022-11-27 16:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-06-30 02:46 - 2022-02-01 11:29 - 000000000 ____D C:\Program Files\TeamViewer
2024-06-30 02:46 - 2022-01-27 08:58 - 000000920 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2024-06-30 02:46 - 2022-01-27 08:58 - 000000916 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2024-06-30 02:46 - 2022-01-26 20:46 - 000012288 ___SH C:\DumpStack.log.tmp
2024-06-30 02:46 - 2022-01-26 16:47 - 000000000 ____D C:\WINDOWS\system32\${ES_TMPDIR}
2024-06-30 02:43 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-06-29 14:19 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-06-27 09:28 - 2022-01-26 15:10 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-06-26 22:18 - 2022-09-24 08:59 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-06-26 22:18 - 2022-09-24 08:59 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-06-21 07:48 - 2022-11-27 16:12 - 000003980 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2024-06-21 07:48 - 2022-11-27 16:12 - 000003748 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2024-06-18 20:02 - 2022-09-22 16:58 - 000000000 ____D C:\Users\jkkoc\AppData\Roaming\Kodi
2024-06-18 17:06 - 2022-06-01 00:05 - 000000000 ____D C:\Users\jkkoc\AppData\Local\CrashDumps
2024-06-18 17:06 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-06-17 22:32 - 2022-01-26 15:38 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-06-17 22:31 - 2022-11-27 16:09 - 000501312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-06-17 22:31 - 2022-01-26 14:02 - 000000000 ____D C:\WINDOWS\TempInst
2024-06-17 22:30 - 2023-10-17 22:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-06-17 22:30 - 2022-05-07 12:14 - 000000000 ____D C:\WINDOWS\InboxApps
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-06-17 22:30 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-06-17 22:30 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-06-17 09:01 - 2022-05-07 12:14 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2024-06-17 09:01 - 2022-05-07 12:14 - 000024383 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2024-06-17 08:56 - 2022-11-27 16:10 - 003216384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-06-13 08:04 - 2022-01-26 14:15 - 000000000 ____D C:\Users\jkkoc\AppData\Local\NVIDIA
2024-06-13 08:03 - 2022-01-26 13:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation

==================== Files in the root of some directories ========

2022-01-26 20:27 - 2024-05-27 09:37 - 000000128 _____ () C:\Users\jkkoc\AppData\Roaming\winscp.rnd
2022-01-29 18:13 - 2023-09-03 08:19 - 000001480 _____ () C:\Users\jkkoc\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2023-12-25 20:13 - 2023-12-25 20:16 - 000000128 _____ () C:\Users\jkkoc\AppData\Local\PUTTY.RND

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================