Pomalý start PC i několik minut, prosím o kontrolu logu
Napsal: 07 dub 2021 21:37
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-04-2021
Ran by lenha (administrator) on PRACOVNA-PC (07-04-2021 22:23:04)
Running from C:\Users\lenha\Downloads
Loaded Profiles: lenha
Platform: Windows 10 Pro Version 20H2 19042.906 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\System\HsMgr64.exe
() [File not signed] C:\Windows\SysWOW64\HsMgr.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(CMedia) [File not signed] C:\Program Files\UNi Xonar Audio\Customapp\AsusAudioCenter.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(eM Client, s.r.o. -> eM Client s.r.o.) C:\Program Files (x86)\eM Client\MailClient.exe <2>
(HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> ) C:\Program Files (x86)\LocalServiceComponents\LocalServiceControl.exe
(Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> ) C:\Windows\System32\OpenSSH\sshd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_2a9c326825912d0e\NVWMI\nvWmi64.exe <2>
(Opera Software AS -> Opera Software) C:\Program Files\75.0.3969.149\opera.exe <86>
(Opera Software AS -> Opera Software) C:\Program Files\75.0.3969.149\opera_crashreporter.exe
(Polar Electro Oy) [File not signed] C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\Khadas\Tone Driver\W10_x64\KhadasUsbAudioCpl.exe
(xBlock Ventures OÜ -> Kryptex) C:\Users\lenha\AppData\Local\Programs\kryptex-app\Kryptex.exe <4>
(ZONER software, a.s. -> ZONER software) C:\Users\lenha\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\MediaServer.exe
(ZONER software, a.s. -> ZONER software) C:\Users\lenha\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTray.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe [684000 2019-12-25] (MiniTool Software Limited -> )
HKLM\...\Run: [Cmaudio8788] => C:\WINDOWS\Syswow64\cmicnfgp.dll [8048640 2016-06-29] (C-Media Corporation) [File not signed]
HKLM\...\Run: [Cmaudio8788GX] => C:\WINDOWS\syswow64\HsMgr.exe [200704 2008-07-11] () [File not signed]
HKLM\...\Run: [Cmaudio8788GX64] => C:\WINDOWS\system\HsMgr64.exe [282112 2008-07-11] () [File not signed]
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2429664 2021-03-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1151872 2016-11-18] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-05] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6023488 2019-09-18] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [MTSM] => C:\Program Files\MiniTool ShadowMaker\SMMonitor.exe [1060320 2019-12-12] (MiniTool Software Limited -> )
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81376496 2020-01-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [LocalServiceControl] => C:\Program Files (x86)\LocalServiceComponents\LocalServiceControl.exe [418280 2020-10-27] (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [220744 2012-02-02] (Geek Software GmbH -> Geek Software GmbH)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Opera Browser Assistant] => C:\Program Files\assistant\browser_assistant.exe [2785304 2020-02-05] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Zoner Media Server 19] => C:\Users\lenha\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\MediaServer.exe [3010664 2021-03-19] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3672920 2020-02-20] (Invincea, Inc. -> Sandboxie Holdings, LLC)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Discord] => C:\Users\lenha\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-03-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-06-09] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [eM Client] => C:\Program Files (x86)\eM Client\MailClient.exe [253544 2021-03-24] (eM Client, s.r.o. -> eM Client s.r.o.)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Weto Bulletin] => C:\Weto\Liberta\Program\Weto_Bulletin.exe [116736 2012-07-06] (WETO AG) [File not signed]
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Polar FlowSync] => C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe [1397248 2018-09-17] (Polar Electro Oy) [File not signed]
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Kryptex] => C:\Users\lenha\AppData\Local\Programs\kryptex-app\Kryptex.exe [123476056 2020-12-27] (xBlock Ventures OÜ -> Kryptex)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Users\lenha\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTRAY.EXE [807016 2021-03-19] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [ASRock A-Tuning] => [X]
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\MountPoints2: {05e14e8c-7b5d-11ea-9c79-7085c2f0b7f6} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\MountPoints2: {946d73a4-8356-11eb-9d13-a8a15931c4b0} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\MountPoints2: {e191e0a8-570d-11eb-9cb8-a8a15931c4b0} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\MountPoints2: {edaed124-56a2-11e9-9bda-8ff6be44138e} - "H:\jetflash220.exe"
HKLM\...\Print\Monitors\EPSON L3050 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBR4E.DLL [183296 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Imaging Edge Desktop.lnk [2020-02-27]
ShortcutTarget: Imaging Edge Desktop.lnk -> C:\Program Files\Sony\Imaging Edge Desktop\ied.exe (Sony Imaging Products & Solutions Inc. -> Sony)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Khadas Tone Control Panel Autostart.lnk [2021-01-11]
ShortcutTarget: Khadas Tone Control Panel Autostart.lnk -> C:\Program Files\Khadas\Tone Driver\W10_x64\KhadasUsbAudioCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
Startup: C:\Users\lenha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2020-01-21]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc.) [File not signed]
BootExecute: autocheck autochk * icarus_rvrt.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0498BAA6-A20D-4CD8-9058-DF4AB1C27490} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-07] (Google Inc -> Google LLC)
Task: {0A914616-B87D-4B49-A922-4A8DF857D731} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
Task: {0D41C3D5-878B-4D11-A527-D31D45E62729} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MpCmdRun.exe [566384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0EC7F1B7-0EAB-48F6-A76A-F727C6DAF71F} - System32\Tasks\EPSON L3050 Series Update {21693B0D-2FF8-4FB1-AD56-25E6F8528FF4} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR4E.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {16F1A0F1-0E04-4338-9DCD-D2688F290236} - System32\Tasks\Opera scheduled assistant Autoupdate 1613514752 => C:\Users\TEMP\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\TEMP\AppData\Local\Programs\Opera\assistant" $(Arg0) <==== ATTENTION
Task: {1D525249-1759-44A2-B938-17A2A1D1C46A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2108ADEB-3376-463C-B7DE-383CB61C1854} - System32\Tasks\KryptexElevation => C:\Users\lenha\AppData\Local\Programs\kryptex-app\Kryptex.exe [123476056 2020-12-27] (xBlock Ventures OÜ -> Kryptex)
Task: {25372256-2A8E-445A-8005-E2D3B0B15982} - System32\Tasks\SoftwareInformerService => C:\Program Files\Software Informer\softinfo.exe [1689600 2018-01-31] (Informer Technologies, Inc.) [File not signed]
Task: {255B1B6A-28CC-4618-84BE-ED3AF0B42F6A} - System32\Tasks\Opera scheduled Autoupdate 1553555294 => c:\program files\launcher.exe [1886872 2021-04-01] (Opera Software AS -> Opera Software) <==== ATTENTION
Task: {44039B3E-3633-4AED-A00E-4D7ACEC3949F} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe [6270472 2018-10-01] (ASRock Incorporation -> )
Task: {4585101A-2F7A-4C53-9BCE-4E3883ACDDBD} - System32\Tasks\ASC_SkipUac_lenha => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [8803600 2020-01-13] (IObit Information Technology -> IObit)
Task: {4612974F-DEF3-4C39-A8B0-076C30E3A61F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-08-29] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4759EC57-4670-46E3-A28F-FD866F43A41A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {52616CCD-D7BF-4413-A0E9-26D89FA29817} - System32\Tasks\Opera scheduled Autoupdate 1613514748 => C:\Users\TEMP\AppData\Local\Programs\Opera\launcher.exe <==== ATTENTION
Task: {5562D1D4-78EF-4BBF-9125-D9D7927B5C23} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57EF60BF-509F-4C61-942A-2F6B66CF1548} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [5493472 2021-03-08] (Avast Software s.r.o. -> Avast Software)
Task: {61D7D0EB-DAD7-4C57-A85A-4F89342D5107} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [3181328 2020-01-07] (IObit Information Technology -> IObit)
Task: {659B31BC-5D15-418D-ACFA-8D99DFE33EBC} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-09] (Adobe Inc. -> Adobe)
Task: {6AD507E4-4413-4309-BF00-D9A88408F70C} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-06-09] (Garmin International, Inc. -> )
Task: {6C0C946E-9D7A-4BF3-898C-90F2D7B3687A} - System32\Tasks\WD Discovery Service Task lenha => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [75504 2020-01-08] (Western Digital Technologies, Inc. -> )
Task: {6C313491-6E72-44F9-89BA-69D510117176} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {73161538-9AD8-42B8-9B72-FFECC3F3BBD2} - System32\Tasks\KryptexElevationFromStartup => C:\Users\lenha\AppData\Local\Programs\kryptex-app\Kryptex.exe [123476056 2020-12-27] (xBlock Ventures OÜ -> Kryptex)
Task: {7A6293E7-281B-46ED-AC8E-55A6A85E13AA} - System32\Tasks\Driver Downloader automatic scan and new device notifications => C:\Program Files (x86)\Driver Downloader\DDTray.exe [1887960 2019-12-12] (PDE publications -> PDE Publications Limited)
Task: {7B8FC7A8-5E22-45A4-9192-BE55C6BEBC23} - System32\Tasks\Zoner.Updater.S-1-5-21-4160050988-2886862043-3056562062-1001 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [2099400 2021-03-29] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {7F731B79-3A8A-45FC-99F8-6CC2B89FA6EC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {860FDF61-DF6A-4DF6-8674-6772F84A4FFB} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [218336 2017-05-02] (Tweaking LLC -> Tweaking.com)
Task: {87C287F3-0535-46E4-9CAE-BE77D830DB99} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {88D8D16F-38F1-490C-BBF7-F54B141DAFB5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MpCmdRun.exe [566384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8B79E8C9-9F34-4BF9-BB21-187F314B9E38} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-07] (Google Inc -> Google LLC)
Task: {90B77C5C-1C77-4ACE-810E-72415648F7AE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {95080C30-DE98-4AA6-A3E3-7989547D2743} - System32\Tasks\WD Device Agent Task lenha => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [720624 2020-01-08] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {97D4FA77-5E8F-4C80-BFEE-DD634263028F} - System32\Tasks\Opera scheduled assistant Autoupdate 1579852411 => C:\Program Files\launcher.exe [1886872 2021-04-01] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\assistant" $(Arg0) <==== ATTENTION
Task: {9D17D618-51EA-415D-8762-FCAE0075390B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A839CEE9-DAFC-4519-A350-B9A1A93A61B8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AFBA4541-55B6-4281-865F-3F46515CC5D4} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {B4E450D4-3F79-4A2C-B0D8-8FE18D518F4D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MpCmdRun.exe [566384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C6BCC864-2878-4187-849E-26332685C641} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {D1DD7EC9-D3A7-4E8F-B2AB-8C6DBAF74A87} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-08-29] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D599FCC7-17B2-41FC-91D8-375C841C7AB9} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1549536 2021-03-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D85721F2-5D2F-4ED4-85EC-C41A6C3E4ABC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MpCmdRun.exe [566384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DB369A1E-F348-4D0E-B3B7-43585012DFD3} - System32\Tasks\EPSON L3050 Series Update {7E0FC872-FB17-4390-BF5D-67FB9DBC00CA} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR4E.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {E4FB9DA6-75CD-4487-8016-72AC712A37CA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EFE6509A-286F-479D-A66C-1F696ADC05F4} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4665568 2021-03-11] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid bdb3cda0-e315-4a8d-aaaa-0656510e1ec8
Task: {FEF3CF4F-7368-4692-8A9F-D1141E2B6681} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\EPSON L3050 Series Update {21693B0D-2FF8-4FB1-AD56-25E6F8528FF4}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR4E.EXE:/EXE:{21693B0D-2FF8-4FB1-AD56-25E6F8528FF4} /F:UpdateWORKGROUP\PRACOVNA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON L3050 Series Update {7E0FC872-FB17-4390-BF5D-67FB9DBC00CA}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR4E.EXE:/EXE:{7E0FC872-FB17-4390-BF5D-67FB9DBC00CA} /F:UpdateWORKGROUP\PRACOVNA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{3081b8aa-756f-4b3d-8e32-483205253e4f}: [NameServer] 192.168.163.1,8.8.8.8
Tcpip\..\Interfaces\{53506ece-3a48-4e52-9ff0-fa5e34a7a9c8}: [NameServer] 93.93.32.32
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\lenha\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-15]
Edge Extension: (Chrome Media Router) - C:\Users\lenha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-14]
FireFox:
========
FF DefaultProfile: ldiv0qu8.default
FF ProfilePath: C:\Users\lenha\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\ldiv0qu8.default [2021-03-09]
FF DownloadDir: F:\Download
FF Homepage: Moonchild Productions\Pale Moon\Profiles\ldiv0qu8.default -> www.google.cz
FF Extension: (Czech (CZ) Language Pack) - C:\Users\lenha\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\ldiv0qu8.default\Extensions\langpack-cs@palemoon.org.xpi [2019-06-16] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2019-04-01] [Legacy] [not signed]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2016-05-17] (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default [2021-04-01]
CHR Notifications: Default -> hxxps://cz.pinterest.com; hxxps://www.facebook.com; hxxps://www.hudy.cz
CHR HomePage: Default -> hxxp://start.icq.com/
CHR StartupUrls: Default -> "hxxp://www.google.cz/","hxxp://mysearch.avg.co ... 2014-02-05 20:53:54&v=17.3.1.204&pid=safeguard&sg=0&sap=hp","hxxp://istart.webssearches.com/?type=hp&ts=1409078797&from=exp&uid=SamsungXSSDX840XEVOX120GB_S1D5NEAD831031K","hxxp://news.ap-linux.com/"
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTabSwitcher.html"
CHR DefaultSearchURL: Default -> hxxp://www.google.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> gg
CHR Extension: (Prezentace) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-01]
CHR Extension: (Dokumenty) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-01]
CHR Extension: (Disk Google) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-01]
CHR Extension: (Seznam doplněk - Email) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-30]
CHR Extension: (James White) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2020-01-01]
CHR Extension: (YouTube) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-01]
CHR Extension: (Moje IP adresa) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccfphbgnmmhjfalloifioeeeokjemobf [2020-01-01]
CHR Extension: (Tabulky) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-30]
CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-02-12]
CHR Extension: (Avast Online Security) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-04-02]
CHR Extension: (Mapy Google) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2020-01-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-01]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-30]
CHR Extension: (Gmail) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-01]
CHR Extension: (Chrome Media Router) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-30]
CHR Profile: C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-02-16]
CHR Profile: C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-08-07]
CHR DefaultSearchURL: Profile 1 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> mcafee
CHR Extension: (Prezentace) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-02]
CHR Extension: (Dokumenty) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-02]
CHR Extension: (Disk Google) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-02]
CHR Extension: (YouTube) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-02]
CHR Extension: (Tabulky) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-02]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-01-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-02]
CHR Extension: (Gmail) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-02]
CHR Extension: (Chrome Media Router) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-02]
CHR Profile: C:\Users\lenha\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-26]
Opera:
=======
OPR Profile: C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable [2021-04-07]
OPR Notifications: Opera Stable -> hxxps://app.stormgain.com; hxxps://cz.pinterest.com; hxxps://hifipig.com; hxxps://hothardware.com; hxxps://id.aliexpress.com; hxxps://kryptoguru.cz; hxxps://kryptomagazin.cz; hxxps://playfmrussia.ru; hxxps://prom.ua; hxxps://web.whatsapp.com; hxxps://wp.aliexpress.com; hxxps://www.aliexpress.com; hxxps://www.banggood.com; hxxps://www.cefarm24.pl; hxxps://www.exasoft.cz; hxxps://www.expondo.cz; hxxps://www.facebook.com; hxxps://www.milujemefotografii.cz; hxxps://www.olympusobchod.cz; hxxps://www.podnikatel.cz; hxxps://www.reddit.com; hxxps://www.techradar.com; hxxps://www.ubuy.cz; hxxps://zaptyt.ru
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Session Restore: Opera Stable -> is enabled.
OPR Extension: (Translator) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2020-06-25]
OPR Extension: (Rich Hints Agent) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-03-10]
OPR Extension: (Open in PDF Viewer) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\iabonojeikmegigkkgjmdicdciollhfk [2020-02-01]
OPR Extension: (I don't care about cookies) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\iambaeepkgdclnmbfdnnohkjjpdglbeo [2021-03-08]
OPR Extension: (Google™ Translator) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\jgnebchahhepphmokjeohhoebakpfggp [2019-07-30]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2021-03-29]
OPR Extension: (Alitools - nákupní asistent) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\nkekkheibgkgeepapinkalkongndfajn [2021-03-19]
StartMenuInternet: (HKU\S-1-5-21-4160050988-2886862043-3056562062-1001) OperaStable - "c:\program files\Launcher.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
S4 AdvancedSystemCareService13; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1290000 2019-12-27] (IObit Information Technology -> IObit)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2979032 2019-02-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [103840 2019-03-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [12414176 2021-03-11] (Avast Software s.r.o. -> AVAST Software)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-08-29] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-08-29] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-09-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-15] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
S4 MTAgentService; C:\Program Files\MiniTool ShadowMaker\AgentService.exe [776160 2019-12-12] (MiniTool Software Limited -> )
S4 MTSchedulerService; C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe [226784 2019-12-12] (MiniTool Software Limited -> )
R2 NVWMI; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_2a9c326825912d0e\NVWMI\nvWmi64.exe [4440864 2021-03-13] (NVIDIA Corporation -> NVIDIA Corporation)
S4 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [319320 2020-02-20] (Invincea, Inc. -> Sandboxie Holdings, LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5361256 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S4 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [365080 2019-07-23] (Synology Inc. -> ) [File not signed]
S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [366720 2019-11-25] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\NisSrv.exe [2624088 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MsMpEng.exe [128384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S4 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2020-01-26] (Alcorlink Corp. -> )
S3 AsrDrv104; C:\WINDOWS\SysWOW64\Drivers\AsrDrv104.sys [34536 2021-04-05] (ASROCK Incorporation -> ASRock Incorporation) [File not signed]
S3 AsrSetupDrv103; C:\WINDOWS\SysWOW64\Drivers\AsrSetupDrv103.sys [34568 2020-01-14] (ASROCK Incorporation -> RW-Everything) [File not signed]
S3 AthDfu; C:\WINDOWS\System32\Drivers\AthDfu.sys [55336 2019-03-21] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider)
S3 atillk64; C:\Users\lenha\Downloads\atiflash293plus\293plus\atillk64.sys [14608 2021-01-13] (ATI Technologies, Inc -> ATI Technologies Inc.)
R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2818168 2016-06-22] (WDKTestCert rwang,130952419263277043 -> C-Media Inc)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [66128 2019-03-26] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-01-26] (Martin Malik - REALiX -> REALiX(tm))
S3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [32520 2018-07-05] (IObit Information Technology -> IObit)
S3 KhadasUsbAudio; C:\WINDOWS\System32\drivers\KhadasUsbAudio.sys [381496 2020-11-18] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 KhadasUsbAudioks; C:\WINDOWS\System32\drivers\KhadasUsbAudioks.sys [53816 2020-11-18] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )
S3 RTL2832UBDA; C:\Windows\SysWOW64\drivers\RTL2832UBDA.sys [133368 2015-07-30] (Astrometa Co.,Ltd -> REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832UUSB; C:\WINDOWS\System32\Drivers\RTL2832UUSB.sys [39288 2015-07-30] (Astrometa Co.,Ltd -> Astrometa)
S3 RTL2832UUSB; C:\Windows\SysWOW64\Drivers\RTL2832UUSB.sys [39288 2015-07-30] (Astrometa Co.,Ltd -> Astrometa)
S3 RTL2832U_IRHID; C:\Windows\SysWOW64\drivers\RTL2832U_IRHID.sys [49624 2013-11-22] (Realtek Semiconductor Corp -> Realtek)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [224496 2020-02-20] (Invincea, Inc. -> Sandboxie Holdings, LLC)
S3 TUSBAudio; C:\WINDOWS\System32\drivers\TUSBAudio.sys [275072 2017-05-16] (Microsoft Windows Hardware Compatibility Publisher -> Thesycon Software Solutions GmbH & Co. KG)
S3 TUSBAudioks; C:\WINDOWS\System32\drivers\TUSBAudioks.sys [52352 2017-05-16] (Microsoft Windows Hardware Compatibility Publisher -> Thesycon Software Solutions GmbH & Co. KG)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421112 2021-04-05] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72936 2021-04-05] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-04-07 22:23 - 2021-04-07 22:23 - 000044478 _____ C:\Users\lenha\Downloads\FRST.txt
2021-04-07 22:21 - 2021-04-07 22:21 - 002298368 _____ (Farbar) C:\Users\lenha\Downloads\FRST64.exe
2021-04-07 16:41 - 2021-04-07 16:41 - 000038618 _____ C:\Users\lenha\Downloads\Mindfactory_Rechnung_9614975.pdf
2021-04-07 15:52 - 2021-04-07 15:53 - 015656796 _____ C:\Users\lenha\Downloads\tv_channels_41176315521175_plus.m3u
2021-04-07 15:50 - 2021-04-07 15:50 - 000000000 ____D C:\Users\lenha\AppData\Local\nViewCpl1
2021-04-07 15:49 - 2021-04-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
2021-04-07 15:49 - 2021-04-07 15:49 - 000000000 ____D C:\WINDOWS\system32\NV
2021-04-07 15:49 - 2021-04-07 15:49 - 000000000 ____D C:\WINDOWS\LastGood
2021-04-07 14:57 - 2021-04-07 14:57 - 116318208 _____ C:\Users\lenha\Downloads\emclient-v8.2.1233.msi
2021-04-07 12:47 - 2021-04-07 12:48 - 000544851 _____ C:\Users\lenha\Downloads\Palit.jpeg
2021-04-06 11:53 - 2021-04-06 11:53 - 000013723 _____ C:\Program Files\installation_status.json
2021-04-06 11:53 - 2021-04-06 11:53 - 000004132 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1553555294
2021-04-06 11:53 - 2021-04-06 11:53 - 000001057 _____ C:\Users\lenha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-04-06 11:53 - 2021-04-06 11:53 - 000000057 _____ C:\Program Files\pref_default_overrides
2021-04-06 11:53 - 2021-04-06 11:53 - 000000000 ____D C:\Program Files\old_status
2021-04-06 11:53 - 2021-04-06 11:53 - 000000000 ____D C:\Program Files\75.0.3969.149
2021-04-06 11:53 - 2021-04-01 19:48 - 001886872 _____ (Opera Software) C:\Program Files\launcher.exe
2021-04-06 11:53 - 2020-02-17 01:00 - 000003072 _____ C:\Program Files\Resources.pri
2021-04-06 11:53 - 2020-02-17 01:00 - 000000317 _____ C:\Program Files\launcher.visualelementsmanifest.xml
2021-04-05 22:41 - 2021-04-05 22:41 - 000003566 _____ C:\WINDOWS\system32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-05 22:41 - 2021-04-05 22:41 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-04-05 22:37 - 2021-04-05 22:37 - 016848795 _____ C:\Users\lenha\Downloads\B550 Steel Legend(1.90)ROM.zip
2021-04-05 22:37 - 2021-04-05 22:37 - 016707511 _____ C:\Users\lenha\Downloads\B550 Steel Legend(1.50)ROM.zip
2021-04-05 22:34 - 2021-04-05 22:34 - 000034536 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrDrv104.sys
2021-04-05 22:34 - 2021-04-05 22:34 - 000001344 _____ C:\ProgramData\Plocha\A-Tuning.lnk
2021-04-05 22:34 - 2021-04-05 22:34 - 000000000 ____D C:\WINDOWS\ASRock
2021-04-05 22:33 - 2021-04-05 22:33 - 000000000 ____D C:\Users\lenha\Downloads\MotherboardUtility(v3.0.378)
2021-04-05 22:32 - 2021-04-05 22:32 - 058654579 _____ C:\Users\lenha\Downloads\MotherboardUtility(v3.0.378).zip
2021-04-05 22:28 - 2021-04-05 22:28 - 000665160 _____ (DriverFix) C:\Users\lenha\Downloads\driverfixwebdl-8294580204.exe
2021-04-05 22:26 - 2021-04-05 22:26 - 003169936 _____ C:\Users\lenha\Downloads\cpu-z-portable-1-95.zip
2021-04-05 22:26 - 2021-04-05 22:26 - 000000000 ____D C:\Users\lenha\Downloads\cpu-z-portable-1-95
2021-04-05 22:13 - 2021-04-05 22:13 - 005114352 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-05 19:50 - 2021-04-05 19:50 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-05 00:28 - 2021-04-05 00:28 - 001149297 _____ C:\Users\lenha\Downloads\lisovaci_stroje_ostatni (1).pdf
2021-04-01 23:56 - 2021-03-13 06:05 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-04-01 23:56 - 2021-03-13 06:05 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-04-01 23:56 - 2021-03-13 06:05 - 001452304 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-04-01 23:56 - 2021-03-13 06:05 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-04-01 23:56 - 2021-03-13 06:05 - 001191696 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 001094864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 001094864 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 000948936 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 000948936 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-04-01 23:54 - 2021-04-01 23:55 - 497445152 _____ (NVIDIA Corporation) C:\Users\lenha\Downloads\461.92-quadro-rtx-desktop-notebook-win10-64bit-international-dch-whql.exe
2021-04-01 23:51 - 2021-04-01 23:52 - 409682040 _____ (NVIDIA Corporation) C:\Users\lenha\Downloads\412.16-quadro-desktop-notebook-win10-64bit-international-whql.exe
2021-04-01 23:49 - 2021-04-05 22:42 - 000000000 ____D C:\NVIDIA
2021-04-01 23:48 - 2021-04-01 23:48 - 271229944 _____ (NVIDIA Corporation) C:\Users\lenha\Downloads\377.11-quadro-grid-desktop-notebook-win8-win7-64bit-international-whql.exe
2021-03-31 12:26 - 2021-03-31 12:26 - 004409064 _____ C:\Users\lenha\Downloads\AB_CryptoBox_750HD_V1.15.22455_04-02-2021.7z
2021-03-31 07:38 - 2021-03-31 07:38 - 000001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eM Client.lnk
2021-03-31 07:38 - 2021-03-31 07:38 - 000000000 ____D C:\Program Files (x86)\eM Client
2021-03-29 12:49 - 2021-03-29 12:49 - 002227424 _____ C:\Users\lenha\Downloads\winbox64.exe
2021-03-29 12:41 - 2021-03-29 12:42 - 000059323 _____ C:\Users\lenha\Downloads\reklamace TS Bohemia zdroj.pdf
2021-03-29 12:33 - 2021-03-29 12:33 - 328736768 _____ C:\Users\lenha\Downloads\LibreOffice_7.1.1_Win_x64.msi
2021-03-26 21:00 - 2021-04-07 15:46 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-03-26 21:00 - 2021-03-26 21:00 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-03-26 20:58 - 2021-03-26 20:58 - 000009036 _____ C:\Users\lenha\Downloads\priloha_888467562_0_Aktivační kód.pdf
2021-03-25 17:46 - 2021-03-25 17:46 - 000000000 ___HD C:\Program Files\.opera
2021-03-25 14:08 - 2021-03-25 14:08 - 004227646 _____ C:\Users\lenha\Downloads\AB_CryptoBox_700HD_V1_15_22438_22-01-2021.rar
2021-03-25 14:07 - 2021-03-25 14:07 - 004141062 _____ C:\Users\lenha\Downloads\700HD_MCAS_V1.15.21821_28-05-2020.zip
2021-03-23 20:18 - 2021-03-23 20:19 - 612179027 _____ C:\Users\lenha\Downloads\470.05.rar
2021-03-22 18:23 - 2021-03-22 18:23 - 000000000 ____D C:\Program Files\74.0.3911.232
2021-03-21 17:51 - 2021-03-21 17:51 - 010470570 _____ C:\Users\lenha\Downloads\WhatsApp Video 2021-03-21 at 16.24.10.mp4
2021-03-16 23:23 - 2021-03-16 23:23 - 000038595 _____ C:\Users\lenha\Downloads\Mindfactory_Rechnung_9638600.pdf
2021-03-14 12:03 - 2021-03-14 12:03 - 009598192 _____ ( ) C:\Users\lenha\Downloads\LocalServiceComponents (6).exe
2021-03-13 19:12 - 2021-03-13 19:17 - 1572053875 _____ C:\Users\lenha\Downloads\moode-r701-iso (1).zip
2021-03-11 23:16 - 2021-03-11 23:16 - 000124303 _____ C:\Users\lenha\Downloads\Tone2_Pro_Firmware_V1.00_210109.zip
2021-03-11 23:16 - 2021-03-11 23:16 - 000124303 _____ C:\Users\lenha\Downloads\Tone2_Pro_Firmware_V1.00_210109 (1).zip
2021-03-11 23:13 - 2021-03-11 23:14 - 186993485 _____ C:\Users\lenha\Downloads\Tone2_Pro_Landingpage_201123 (1).zip
2021-03-11 23:12 - 2021-03-11 23:12 - 038414625 _____ C:\Users\lenha\Downloads\Tone2_Pro_Photos_201229.zip
2021-03-11 20:11 - 2021-03-11 20:12 - 319794816 _____ C:\Users\lenha\Downloads\Update_ILCE7M3V400.exe
2021-03-11 13:35 - 2021-03-11 13:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-03-11 13:35 - 2021-03-11 13:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-11 13:35 - 2021-03-11 13:35 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-11 13:35 - 2021-03-11 13:35 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 13:35 - 2021-03-11 13:35 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-04-07 22:23 - 2019-03-22 20:08 - 000000000 ____D C:\FRST
2021-04-07 22:04 - 2019-06-06 13:02 - 000000000 ____D C:\ProgramData\AVAST Software
2021-04-07 16:45 - 2020-11-16 09:39 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-07 16:45 - 2019-12-07 16:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2021-04-07 16:45 - 2019-12-07 16:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2021-04-07 16:45 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-04-07 16:41 - 2019-03-22 04:38 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-07 16:39 - 2021-01-12 00:18 - 000000000 ____D C:\Users\lenha\AppData\Roaming\Kryptex
2021-04-07 16:39 - 2020-11-16 09:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-07 16:39 - 2020-11-15 04:07 - 000000000 ____D C:\ProgramData\ssh
2021-04-07 16:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-07 16:39 - 2019-03-22 00:03 - 000000000 ____D C:\Users\lenha\AppData\Roaming\eM Client
2021-04-07 16:36 - 2019-12-07 11:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-04-07 16:00 - 2021-01-31 13:57 - 005242920 _____ C:\WINDOWS\SysWOW64\STPackager.1
2021-04-07 15:50 - 2019-03-22 20:00 - 000000000 ____D C:\Users\lenha\AppData\Local\D3DSCache
2021-04-07 15:49 - 2019-03-21 23:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-04-07 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-06 20:17 - 2019-03-25 13:27 - 000000000 ____D C:\Users\lenha\AppData\Local\CrashDumps
2021-04-06 12:35 - 2019-04-20 19:37 - 000000000 ____D C:\Users\lenha\AppData\Roaming\vlc
2021-04-06 11:53 - 2019-03-26 01:08 - 000000000 ____D C:\Program Files\Assets
2021-04-06 11:53 - 2019-03-26 00:22 - 000000869 _____ C:\Program Files\installer_prefs.json.backup
2021-04-06 11:53 - 2019-03-26 00:22 - 000000869 _____ C:\Program Files\installer_prefs.json
2021-04-05 22:46 - 2020-03-13 13:29 - 000001684 _____ C:\WINDOWS\Sandboxie.ini
2021-04-05 22:34 - 2020-01-07 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2021-04-05 22:34 - 2020-01-07 22:42 - 000000000 ____D C:\Program Files (x86)\ASRock Utility
2021-04-05 22:24 - 2019-03-22 04:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-05 19:52 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-05 19:51 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-05 19:50 - 2020-11-16 09:30 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-05 19:44 - 2020-11-05 01:48 - 000000000 ___HD C:\$WinREAgent
2021-04-05 17:57 - 2020-11-16 09:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-03 14:35 - 2020-06-07 00:46 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-03 14:35 - 2020-06-07 00:46 - 000002276 _____ C:\ProgramData\Plocha\Microsoft Edge.lnk
2021-04-03 14:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-02 00:00 - 2021-02-13 01:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-04-02 00:00 - 2019-03-23 23:31 - 000000000 ____D C:\Users\lenha\AppData\Local\NVIDIA
2021-04-02 00:00 - 2019-03-22 04:38 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-04-02 00:00 - 2019-03-21 23:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-03-29 19:33 - 2020-01-19 17:44 - 000000066 _____ C:\WINDOWS\SysWOW64\res.bmp
2021-03-29 12:12 - 2019-09-05 00:17 - 000000000 ____D C:\ProgramData\Zoner
2021-03-29 11:46 - 2020-11-15 04:10 - 000000000 ____D C:\Users\lenha
2021-03-25 22:25 - 2019-03-22 22:56 - 000005464 _____ C:\Users\lenha\advanced_ip_scanner_MAC.bin
2021-03-25 22:25 - 2019-03-22 22:56 - 000000015 _____ C:\Users\lenha\advanced_ip_scanner_Comments.bin
2021-03-25 22:25 - 2019-03-22 22:56 - 000000015 _____ C:\Users\lenha\advanced_ip_scanner_Aliases.bin
2021-03-20 00:12 - 2019-09-05 00:17 - 000001604 _____ C:\Users\lenha\AppData\Roaming\Microsoft\Windows\Start Menu\Zoner Photo Studio X.lnk
2021-03-18 09:46 - 2019-03-22 16:34 - 000000000 ____D C:\Users\lenha\AppData\Local\ElevatedDiagnostics
2021-03-14 12:03 - 2020-01-26 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LocalServiceComponents
2021-03-14 12:03 - 2020-01-26 22:02 - 000000000 ____D C:\Program Files (x86)\LocalServiceComponents
2021-03-14 00:31 - 2020-11-15 04:10 - 000000000 ____D C:\Users\DevToolsUser
2021-03-14 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-03-11 14:44 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
==================== Files in the root of some directories ========
2021-04-06 11:53 - 2021-04-06 11:53 - 000013723 _____ () C:\Program Files\installation_status.json
2019-03-26 00:22 - 2021-04-06 11:53 - 000000869 _____ () C:\Program Files\installer_prefs.json
2019-03-26 00:22 - 2021-04-06 11:53 - 000000869 _____ () C:\Program Files\installer_prefs.json.backup
2021-04-06 11:53 - 2021-04-01 19:48 - 001886872 _____ (Opera Software) C:\Program Files\launcher.exe
2021-04-06 11:53 - 2020-02-17 01:00 - 000000317 _____ () C:\Program Files\launcher.visualelementsmanifest.xml
2021-04-06 11:53 - 2021-04-06 11:53 - 000000057 _____ () C:\Program Files\pref_default_overrides
2021-04-06 11:53 - 2020-02-17 01:00 - 000003072 _____ () C:\Program Files\Resources.pri
2019-03-26 00:22 - 2019-03-26 01:08 - 000001016 _____ () C:\Program Files\server_tracking_data
2019-04-25 20:40 - 2019-04-25 20:40 - 000000600 _____ () C:\Users\lenha\AppData\Roaming\winscp.rnd
2019-05-02 01:03 - 2019-05-02 01:03 - 000000000 _____ () C:\Users\lenha\AppData\Local\oobelibMkey.log
2019-04-25 20:59 - 2020-04-05 00:21 - 000000128 _____ () C:\Users\lenha\AppData\Local\PUTTY.RND
2019-06-27 13:31 - 2019-06-27 13:31 - 000000001 _____ () C:\Users\lenha\AppData\Local\RawCopy.1.10.agreement
2020-03-02 14:01 - 2020-03-02 14:01 - 000000218 _____ () C:\Users\lenha\AppData\Local\recently-used.xbel
2020-11-20 22:47 - 2020-11-20 22:47 - 000000017 _____ () C:\Users\lenha\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by lenha (administrator) on PRACOVNA-PC (07-04-2021 22:23:04)
Running from C:\Users\lenha\Downloads
Loaded Profiles: lenha
Platform: Windows 10 Pro Version 20H2 19042.906 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\System\HsMgr64.exe
() [File not signed] C:\Windows\SysWOW64\HsMgr.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(CMedia) [File not signed] C:\Program Files\UNi Xonar Audio\Customapp\AsusAudioCenter.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(eM Client, s.r.o. -> eM Client s.r.o.) C:\Program Files (x86)\eM Client\MailClient.exe <2>
(HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> ) C:\Program Files (x86)\LocalServiceComponents\LocalServiceControl.exe
(Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> ) C:\Windows\System32\OpenSSH\sshd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_2a9c326825912d0e\NVWMI\nvWmi64.exe <2>
(Opera Software AS -> Opera Software) C:\Program Files\75.0.3969.149\opera.exe <86>
(Opera Software AS -> Opera Software) C:\Program Files\75.0.3969.149\opera_crashreporter.exe
(Polar Electro Oy) [File not signed] C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Thesycon Software Solutions GmbH & Co. KG -> ) C:\Program Files\Khadas\Tone Driver\W10_x64\KhadasUsbAudioCpl.exe
(xBlock Ventures OÜ -> Kryptex) C:\Users\lenha\AppData\Local\Programs\kryptex-app\Kryptex.exe <4>
(ZONER software, a.s. -> ZONER software) C:\Users\lenha\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\MediaServer.exe
(ZONER software, a.s. -> ZONER software) C:\Users\lenha\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTray.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 11\updatechecker.exe [684000 2019-12-25] (MiniTool Software Limited -> )
HKLM\...\Run: [Cmaudio8788] => C:\WINDOWS\Syswow64\cmicnfgp.dll [8048640 2016-06-29] (C-Media Corporation) [File not signed]
HKLM\...\Run: [Cmaudio8788GX] => C:\WINDOWS\syswow64\HsMgr.exe [200704 2008-07-11] () [File not signed]
HKLM\...\Run: [Cmaudio8788GX64] => C:\WINDOWS\system\HsMgr64.exe [282112 2008-07-11] () [File not signed]
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2429664 2021-03-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1151872 2016-11-18] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-05] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [868328 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6023488 2019-09-18] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [MTSM] => C:\Program Files\MiniTool ShadowMaker\SMMonitor.exe [1060320 2019-12-12] (MiniTool Software Limited -> )
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81376496 2020-01-08] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [LocalServiceControl] => C:\Program Files (x86)\LocalServiceComponents\LocalServiceControl.exe [418280 2020-10-27] (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [220744 2012-02-02] (Geek Software GmbH -> Geek Software GmbH)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Opera Browser Assistant] => C:\Program Files\assistant\browser_assistant.exe [2785304 2020-02-05] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Zoner Media Server 19] => C:\Users\lenha\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\MediaServer.exe [3010664 2021-03-19] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3672920 2020-02-20] (Invincea, Inc. -> Sandboxie Holdings, LLC)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Discord] => C:\Users\lenha\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-03-06] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-06-09] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [eM Client] => C:\Program Files (x86)\eM Client\MailClient.exe [253544 2021-03-24] (eM Client, s.r.o. -> eM Client s.r.o.)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Weto Bulletin] => C:\Weto\Liberta\Program\Weto_Bulletin.exe [116736 2012-07-06] (WETO AG) [File not signed]
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Polar FlowSync] => C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe [1397248 2018-09-17] (Polar Electro Oy) [File not signed]
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Kryptex] => C:\Users\lenha\AppData\Local\Programs\kryptex-app\Kryptex.exe [123476056 2020-12-27] (xBlock Ventures OÜ -> Kryptex)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Users\lenha\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTRAY.EXE [807016 2021-03-19] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\Run: [ASRock A-Tuning] => [X]
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\MountPoints2: {05e14e8c-7b5d-11ea-9c79-7085c2f0b7f6} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\MountPoints2: {946d73a4-8356-11eb-9d13-a8a15931c4b0} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\MountPoints2: {e191e0a8-570d-11eb-9cb8-a8a15931c4b0} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-4160050988-2886862043-3056562062-1001\...\MountPoints2: {edaed124-56a2-11e9-9bda-8ff6be44138e} - "H:\jetflash220.exe"
HKLM\...\Print\Monitors\EPSON L3050 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBR4E.DLL [183296 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Imaging Edge Desktop.lnk [2020-02-27]
ShortcutTarget: Imaging Edge Desktop.lnk -> C:\Program Files\Sony\Imaging Edge Desktop\ied.exe (Sony Imaging Products & Solutions Inc. -> Sony)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Khadas Tone Control Panel Autostart.lnk [2021-01-11]
ShortcutTarget: Khadas Tone Control Panel Autostart.lnk -> C:\Program Files\Khadas\Tone Driver\W10_x64\KhadasUsbAudioCpl.exe (Thesycon Software Solutions GmbH & Co. KG -> )
Startup: C:\Users\lenha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2020-01-21]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc.) [File not signed]
BootExecute: autocheck autochk * icarus_rvrt.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0498BAA6-A20D-4CD8-9058-DF4AB1C27490} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-07] (Google Inc -> Google LLC)
Task: {0A914616-B87D-4B49-A922-4A8DF857D731} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
Task: {0D41C3D5-878B-4D11-A527-D31D45E62729} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MpCmdRun.exe [566384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0EC7F1B7-0EAB-48F6-A76A-F727C6DAF71F} - System32\Tasks\EPSON L3050 Series Update {21693B0D-2FF8-4FB1-AD56-25E6F8528FF4} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR4E.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {16F1A0F1-0E04-4338-9DCD-D2688F290236} - System32\Tasks\Opera scheduled assistant Autoupdate 1613514752 => C:\Users\TEMP\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\TEMP\AppData\Local\Programs\Opera\assistant" $(Arg0) <==== ATTENTION
Task: {1D525249-1759-44A2-B938-17A2A1D1C46A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2108ADEB-3376-463C-B7DE-383CB61C1854} - System32\Tasks\KryptexElevation => C:\Users\lenha\AppData\Local\Programs\kryptex-app\Kryptex.exe [123476056 2020-12-27] (xBlock Ventures OÜ -> Kryptex)
Task: {25372256-2A8E-445A-8005-E2D3B0B15982} - System32\Tasks\SoftwareInformerService => C:\Program Files\Software Informer\softinfo.exe [1689600 2018-01-31] (Informer Technologies, Inc.) [File not signed]
Task: {255B1B6A-28CC-4618-84BE-ED3AF0B42F6A} - System32\Tasks\Opera scheduled Autoupdate 1553555294 => c:\program files\launcher.exe [1886872 2021-04-01] (Opera Software AS -> Opera Software) <==== ATTENTION
Task: {44039B3E-3633-4AED-A00E-4D7ACEC3949F} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe [6270472 2018-10-01] (ASRock Incorporation -> )
Task: {4585101A-2F7A-4C53-9BCE-4E3883ACDDBD} - System32\Tasks\ASC_SkipUac_lenha => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [8803600 2020-01-13] (IObit Information Technology -> IObit)
Task: {4612974F-DEF3-4C39-A8B0-076C30E3A61F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-08-29] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4759EC57-4670-46E3-A28F-FD866F43A41A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {52616CCD-D7BF-4413-A0E9-26D89FA29817} - System32\Tasks\Opera scheduled Autoupdate 1613514748 => C:\Users\TEMP\AppData\Local\Programs\Opera\launcher.exe <==== ATTENTION
Task: {5562D1D4-78EF-4BBF-9125-D9D7927B5C23} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57EF60BF-509F-4C61-942A-2F6B66CF1548} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [5493472 2021-03-08] (Avast Software s.r.o. -> Avast Software)
Task: {61D7D0EB-DAD7-4C57-A85A-4F89342D5107} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [3181328 2020-01-07] (IObit Information Technology -> IObit)
Task: {659B31BC-5D15-418D-ACFA-8D99DFE33EBC} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-09] (Adobe Inc. -> Adobe)
Task: {6AD507E4-4413-4309-BF00-D9A88408F70C} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-06-09] (Garmin International, Inc. -> )
Task: {6C0C946E-9D7A-4BF3-898C-90F2D7B3687A} - System32\Tasks\WD Discovery Service Task lenha => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [75504 2020-01-08] (Western Digital Technologies, Inc. -> )
Task: {6C313491-6E72-44F9-89BA-69D510117176} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {73161538-9AD8-42B8-9B72-FFECC3F3BBD2} - System32\Tasks\KryptexElevationFromStartup => C:\Users\lenha\AppData\Local\Programs\kryptex-app\Kryptex.exe [123476056 2020-12-27] (xBlock Ventures OÜ -> Kryptex)
Task: {7A6293E7-281B-46ED-AC8E-55A6A85E13AA} - System32\Tasks\Driver Downloader automatic scan and new device notifications => C:\Program Files (x86)\Driver Downloader\DDTray.exe [1887960 2019-12-12] (PDE publications -> PDE Publications Limited)
Task: {7B8FC7A8-5E22-45A4-9192-BE55C6BEBC23} - System32\Tasks\Zoner.Updater.S-1-5-21-4160050988-2886862043-3056562062-1001 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [2099400 2021-03-29] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {7F731B79-3A8A-45FC-99F8-6CC2B89FA6EC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {860FDF61-DF6A-4DF6-8674-6772F84A4FFB} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [218336 2017-05-02] (Tweaking LLC -> Tweaking.com)
Task: {87C287F3-0535-46E4-9CAE-BE77D830DB99} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {88D8D16F-38F1-490C-BBF7-F54B141DAFB5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MpCmdRun.exe [566384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8B79E8C9-9F34-4BF9-BB21-187F314B9E38} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-10-07] (Google Inc -> Google LLC)
Task: {90B77C5C-1C77-4ACE-810E-72415648F7AE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {95080C30-DE98-4AA6-A3E3-7989547D2743} - System32\Tasks\WD Device Agent Task lenha => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [720624 2020-01-08] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {97D4FA77-5E8F-4C80-BFEE-DD634263028F} - System32\Tasks\Opera scheduled assistant Autoupdate 1579852411 => C:\Program Files\launcher.exe [1886872 2021-04-01] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\assistant" $(Arg0) <==== ATTENTION
Task: {9D17D618-51EA-415D-8762-FCAE0075390B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A839CEE9-DAFC-4519-A350-B9A1A93A61B8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AFBA4541-55B6-4281-865F-3F46515CC5D4} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {B4E450D4-3F79-4A2C-B0D8-8FE18D518F4D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MpCmdRun.exe [566384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C6BCC864-2878-4187-849E-26332685C641} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {D1DD7EC9-D3A7-4E8F-B2AB-8C6DBAF74A87} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-08-29] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D599FCC7-17B2-41FC-91D8-375C841C7AB9} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1549536 2021-03-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D85721F2-5D2F-4ED4-85EC-C41A6C3E4ABC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MpCmdRun.exe [566384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DB369A1E-F348-4D0E-B3B7-43585012DFD3} - System32\Tasks\EPSON L3050 Series Update {7E0FC872-FB17-4390-BF5D-67FB9DBC00CA} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR4E.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {E4FB9DA6-75CD-4487-8016-72AC712A37CA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EFE6509A-286F-479D-A66C-1F696ADC05F4} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4665568 2021-03-11] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid bdb3cda0-e315-4a8d-aaaa-0656510e1ec8
Task: {FEF3CF4F-7368-4692-8A9F-D1141E2B6681} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\EPSON L3050 Series Update {21693B0D-2FF8-4FB1-AD56-25E6F8528FF4}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR4E.EXE:/EXE:{21693B0D-2FF8-4FB1-AD56-25E6F8528FF4} /F:UpdateWORKGROUP\PRACOVNA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON L3050 Series Update {7E0FC872-FB17-4390-BF5D-67FB9DBC00CA}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR4E.EXE:/EXE:{7E0FC872-FB17-4390-BF5D-67FB9DBC00CA} /F:UpdateWORKGROUP\PRACOVNA-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{3081b8aa-756f-4b3d-8e32-483205253e4f}: [NameServer] 192.168.163.1,8.8.8.8
Tcpip\..\Interfaces\{53506ece-3a48-4e52-9ff0-fa5e34a7a9c8}: [NameServer] 93.93.32.32
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\lenha\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-15]
Edge Extension: (Chrome Media Router) - C:\Users\lenha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-14]
FireFox:
========
FF DefaultProfile: ldiv0qu8.default
FF ProfilePath: C:\Users\lenha\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\ldiv0qu8.default [2021-03-09]
FF DownloadDir: F:\Download
FF Homepage: Moonchild Productions\Pale Moon\Profiles\ldiv0qu8.default -> www.google.cz
FF Extension: (Czech (CZ) Language Pack) - C:\Users\lenha\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\ldiv0qu8.default\Extensions\langpack-cs@palemoon.org.xpi [2019-06-16] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2019-04-01] [Legacy] [not signed]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2016-05-17] (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default [2021-04-01]
CHR Notifications: Default -> hxxps://cz.pinterest.com; hxxps://www.facebook.com; hxxps://www.hudy.cz
CHR HomePage: Default -> hxxp://start.icq.com/
CHR StartupUrls: Default -> "hxxp://www.google.cz/","hxxp://mysearch.avg.co ... 2014-02-05 20:53:54&v=17.3.1.204&pid=safeguard&sg=0&sap=hp","hxxp://istart.webssearches.com/?type=hp&ts=1409078797&from=exp&uid=SamsungXSSDX840XEVOX120GB_S1D5NEAD831031K","hxxp://news.ap-linux.com/"
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTabSwitcher.html"
CHR DefaultSearchURL: Default -> hxxp://www.google.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> gg
CHR Extension: (Prezentace) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-01]
CHR Extension: (Dokumenty) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-01]
CHR Extension: (Disk Google) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-01]
CHR Extension: (Seznam doplněk - Email) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-30]
CHR Extension: (James White) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2020-01-01]
CHR Extension: (YouTube) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-01]
CHR Extension: (Moje IP adresa) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccfphbgnmmhjfalloifioeeeokjemobf [2020-01-01]
CHR Extension: (Tabulky) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-30]
CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-02-12]
CHR Extension: (Avast Online Security) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-04-02]
CHR Extension: (Mapy Google) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2020-01-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-01]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-30]
CHR Extension: (Gmail) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-01]
CHR Extension: (Chrome Media Router) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-30]
CHR Profile: C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-02-16]
CHR Profile: C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-08-07]
CHR DefaultSearchURL: Profile 1 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: Profile 1 -> mcafee
CHR Extension: (Prezentace) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-02]
CHR Extension: (Dokumenty) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-02]
CHR Extension: (Disk Google) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-02]
CHR Extension: (YouTube) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-02]
CHR Extension: (Tabulky) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-02]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-01-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-02]
CHR Extension: (Gmail) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-02]
CHR Extension: (Chrome Media Router) - C:\Users\lenha\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-02]
CHR Profile: C:\Users\lenha\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-26]
Opera:
=======
OPR Profile: C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable [2021-04-07]
OPR Notifications: Opera Stable -> hxxps://app.stormgain.com; hxxps://cz.pinterest.com; hxxps://hifipig.com; hxxps://hothardware.com; hxxps://id.aliexpress.com; hxxps://kryptoguru.cz; hxxps://kryptomagazin.cz; hxxps://playfmrussia.ru; hxxps://prom.ua; hxxps://web.whatsapp.com; hxxps://wp.aliexpress.com; hxxps://www.aliexpress.com; hxxps://www.banggood.com; hxxps://www.cefarm24.pl; hxxps://www.exasoft.cz; hxxps://www.expondo.cz; hxxps://www.facebook.com; hxxps://www.milujemefotografii.cz; hxxps://www.olympusobchod.cz; hxxps://www.podnikatel.cz; hxxps://www.reddit.com; hxxps://www.techradar.com; hxxps://www.ubuy.cz; hxxps://zaptyt.ru
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Session Restore: Opera Stable -> is enabled.
OPR Extension: (Translator) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2020-06-25]
OPR Extension: (Rich Hints Agent) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-03-10]
OPR Extension: (Open in PDF Viewer) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\iabonojeikmegigkkgjmdicdciollhfk [2020-02-01]
OPR Extension: (I don't care about cookies) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\iambaeepkgdclnmbfdnnohkjjpdglbeo [2021-03-08]
OPR Extension: (Google™ Translator) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\jgnebchahhepphmokjeohhoebakpfggp [2019-07-30]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2021-03-29]
OPR Extension: (Alitools - nákupní asistent) - C:\Users\lenha\AppData\Roaming\Opera Software\Opera Stable\Extensions\nkekkheibgkgeepapinkalkongndfajn [2021-03-19]
StartMenuInternet: (HKU\S-1-5-21-4160050988-2886862043-3056562062-1001) OperaStable - "c:\program files\Launcher.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
S4 AdvancedSystemCareService13; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1290000 2019-12-27] (IObit Information Technology -> IObit)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2979032 2019-02-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [103840 2019-03-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [12414176 2021-03-11] (Avast Software s.r.o. -> AVAST Software)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-08-29] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-08-29] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-09-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-15] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
S4 MTAgentService; C:\Program Files\MiniTool ShadowMaker\AgentService.exe [776160 2019-12-12] (MiniTool Software Limited -> )
S4 MTSchedulerService; C:\Program Files\MiniTool ShadowMaker\SchedulerService.exe [226784 2019-12-12] (MiniTool Software Limited -> )
R2 NVWMI; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_2a9c326825912d0e\NVWMI\nvWmi64.exe [4440864 2021-03-13] (NVIDIA Corporation -> NVIDIA Corporation)
S4 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [493544 2018-12-21] (Sony Imaging Products & Solutions Inc. -> Sony Corporation)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [319320 2020-02-20] (Invincea, Inc. -> Sandboxie Holdings, LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5361256 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S4 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [365080 2019-07-23] (Synology Inc. -> ) [File not signed]
S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [366720 2019-11-25] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\NisSrv.exe [2624088 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.6-0\MsMpEng.exe [128384 2021-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S4 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2020-01-26] (Alcorlink Corp. -> )
S3 AsrDrv104; C:\WINDOWS\SysWOW64\Drivers\AsrDrv104.sys [34536 2021-04-05] (ASROCK Incorporation -> ASRock Incorporation) [File not signed]
S3 AsrSetupDrv103; C:\WINDOWS\SysWOW64\Drivers\AsrSetupDrv103.sys [34568 2020-01-14] (ASROCK Incorporation -> RW-Everything) [File not signed]
S3 AthDfu; C:\WINDOWS\System32\Drivers\AthDfu.sys [55336 2019-03-21] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider)
S3 atillk64; C:\Users\lenha\Downloads\atiflash293plus\293plus\atillk64.sys [14608 2021-01-13] (ATI Technologies, Inc -> ATI Technologies Inc.)
R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2818168 2016-06-22] (WDKTestCert rwang,130952419263277043 -> C-Media Inc)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [66128 2019-03-26] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-01-26] (Martin Malik - REALiX -> REALiX(tm))
S3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [32520 2018-07-05] (IObit Information Technology -> IObit)
S3 KhadasUsbAudio; C:\WINDOWS\System32\drivers\KhadasUsbAudio.sys [381496 2020-11-18] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 KhadasUsbAudioks; C:\WINDOWS\System32\drivers\KhadasUsbAudioks.sys [53816 2020-11-18] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-05-29] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-05-29] (MiniTool Solution Ltd -> )
S3 RTL2832UBDA; C:\Windows\SysWOW64\drivers\RTL2832UBDA.sys [133368 2015-07-30] (Astrometa Co.,Ltd -> REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832UUSB; C:\WINDOWS\System32\Drivers\RTL2832UUSB.sys [39288 2015-07-30] (Astrometa Co.,Ltd -> Astrometa)
S3 RTL2832UUSB; C:\Windows\SysWOW64\Drivers\RTL2832UUSB.sys [39288 2015-07-30] (Astrometa Co.,Ltd -> Astrometa)
S3 RTL2832U_IRHID; C:\Windows\SysWOW64\drivers\RTL2832U_IRHID.sys [49624 2013-11-22] (Realtek Semiconductor Corp -> Realtek)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [224496 2020-02-20] (Invincea, Inc. -> Sandboxie Holdings, LLC)
S3 TUSBAudio; C:\WINDOWS\System32\drivers\TUSBAudio.sys [275072 2017-05-16] (Microsoft Windows Hardware Compatibility Publisher -> Thesycon Software Solutions GmbH & Co. KG)
S3 TUSBAudioks; C:\WINDOWS\System32\drivers\TUSBAudioks.sys [52352 2017-05-16] (Microsoft Windows Hardware Compatibility Publisher -> Thesycon Software Solutions GmbH & Co. KG)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421112 2021-04-05] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72936 2021-04-05] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-04-07 22:23 - 2021-04-07 22:23 - 000044478 _____ C:\Users\lenha\Downloads\FRST.txt
2021-04-07 22:21 - 2021-04-07 22:21 - 002298368 _____ (Farbar) C:\Users\lenha\Downloads\FRST64.exe
2021-04-07 16:41 - 2021-04-07 16:41 - 000038618 _____ C:\Users\lenha\Downloads\Mindfactory_Rechnung_9614975.pdf
2021-04-07 15:52 - 2021-04-07 15:53 - 015656796 _____ C:\Users\lenha\Downloads\tv_channels_41176315521175_plus.m3u
2021-04-07 15:50 - 2021-04-07 15:50 - 000000000 ____D C:\Users\lenha\AppData\Local\nViewCpl1
2021-04-07 15:49 - 2021-04-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
2021-04-07 15:49 - 2021-04-07 15:49 - 000000000 ____D C:\WINDOWS\system32\NV
2021-04-07 15:49 - 2021-04-07 15:49 - 000000000 ____D C:\WINDOWS\LastGood
2021-04-07 14:57 - 2021-04-07 14:57 - 116318208 _____ C:\Users\lenha\Downloads\emclient-v8.2.1233.msi
2021-04-07 12:47 - 2021-04-07 12:48 - 000544851 _____ C:\Users\lenha\Downloads\Palit.jpeg
2021-04-06 11:53 - 2021-04-06 11:53 - 000013723 _____ C:\Program Files\installation_status.json
2021-04-06 11:53 - 2021-04-06 11:53 - 000004132 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1553555294
2021-04-06 11:53 - 2021-04-06 11:53 - 000001057 _____ C:\Users\lenha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-04-06 11:53 - 2021-04-06 11:53 - 000000057 _____ C:\Program Files\pref_default_overrides
2021-04-06 11:53 - 2021-04-06 11:53 - 000000000 ____D C:\Program Files\old_status
2021-04-06 11:53 - 2021-04-06 11:53 - 000000000 ____D C:\Program Files\75.0.3969.149
2021-04-06 11:53 - 2021-04-01 19:48 - 001886872 _____ (Opera Software) C:\Program Files\launcher.exe
2021-04-06 11:53 - 2020-02-17 01:00 - 000003072 _____ C:\Program Files\Resources.pri
2021-04-06 11:53 - 2020-02-17 01:00 - 000000317 _____ C:\Program Files\launcher.visualelementsmanifest.xml
2021-04-05 22:41 - 2021-04-05 22:41 - 000003566 _____ C:\WINDOWS\system32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-05 22:41 - 2021-04-05 22:41 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-04-05 22:37 - 2021-04-05 22:37 - 016848795 _____ C:\Users\lenha\Downloads\B550 Steel Legend(1.90)ROM.zip
2021-04-05 22:37 - 2021-04-05 22:37 - 016707511 _____ C:\Users\lenha\Downloads\B550 Steel Legend(1.50)ROM.zip
2021-04-05 22:34 - 2021-04-05 22:34 - 000034536 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrDrv104.sys
2021-04-05 22:34 - 2021-04-05 22:34 - 000001344 _____ C:\ProgramData\Plocha\A-Tuning.lnk
2021-04-05 22:34 - 2021-04-05 22:34 - 000000000 ____D C:\WINDOWS\ASRock
2021-04-05 22:33 - 2021-04-05 22:33 - 000000000 ____D C:\Users\lenha\Downloads\MotherboardUtility(v3.0.378)
2021-04-05 22:32 - 2021-04-05 22:32 - 058654579 _____ C:\Users\lenha\Downloads\MotherboardUtility(v3.0.378).zip
2021-04-05 22:28 - 2021-04-05 22:28 - 000665160 _____ (DriverFix) C:\Users\lenha\Downloads\driverfixwebdl-8294580204.exe
2021-04-05 22:26 - 2021-04-05 22:26 - 003169936 _____ C:\Users\lenha\Downloads\cpu-z-portable-1-95.zip
2021-04-05 22:26 - 2021-04-05 22:26 - 000000000 ____D C:\Users\lenha\Downloads\cpu-z-portable-1-95
2021-04-05 22:13 - 2021-04-05 22:13 - 005114352 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-05 19:50 - 2021-04-05 19:50 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-05 00:28 - 2021-04-05 00:28 - 001149297 _____ C:\Users\lenha\Downloads\lisovaci_stroje_ostatni (1).pdf
2021-04-01 23:56 - 2021-03-13 06:05 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-04-01 23:56 - 2021-03-13 06:05 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-04-01 23:56 - 2021-03-13 06:05 - 001452304 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-04-01 23:56 - 2021-03-13 06:05 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-04-01 23:56 - 2021-03-13 06:05 - 001191696 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 001094864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 001094864 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 000948936 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-04-01 23:56 - 2021-03-13 06:05 - 000948936 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-04-01 23:54 - 2021-04-01 23:55 - 497445152 _____ (NVIDIA Corporation) C:\Users\lenha\Downloads\461.92-quadro-rtx-desktop-notebook-win10-64bit-international-dch-whql.exe
2021-04-01 23:51 - 2021-04-01 23:52 - 409682040 _____ (NVIDIA Corporation) C:\Users\lenha\Downloads\412.16-quadro-desktop-notebook-win10-64bit-international-whql.exe
2021-04-01 23:49 - 2021-04-05 22:42 - 000000000 ____D C:\NVIDIA
2021-04-01 23:48 - 2021-04-01 23:48 - 271229944 _____ (NVIDIA Corporation) C:\Users\lenha\Downloads\377.11-quadro-grid-desktop-notebook-win8-win7-64bit-international-whql.exe
2021-03-31 12:26 - 2021-03-31 12:26 - 004409064 _____ C:\Users\lenha\Downloads\AB_CryptoBox_750HD_V1.15.22455_04-02-2021.7z
2021-03-31 07:38 - 2021-03-31 07:38 - 000001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eM Client.lnk
2021-03-31 07:38 - 2021-03-31 07:38 - 000000000 ____D C:\Program Files (x86)\eM Client
2021-03-29 12:49 - 2021-03-29 12:49 - 002227424 _____ C:\Users\lenha\Downloads\winbox64.exe
2021-03-29 12:41 - 2021-03-29 12:42 - 000059323 _____ C:\Users\lenha\Downloads\reklamace TS Bohemia zdroj.pdf
2021-03-29 12:33 - 2021-03-29 12:33 - 328736768 _____ C:\Users\lenha\Downloads\LibreOffice_7.1.1_Win_x64.msi
2021-03-26 21:00 - 2021-04-07 15:46 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-03-26 21:00 - 2021-03-26 21:00 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-03-26 20:58 - 2021-03-26 20:58 - 000009036 _____ C:\Users\lenha\Downloads\priloha_888467562_0_Aktivační kód.pdf
2021-03-25 17:46 - 2021-03-25 17:46 - 000000000 ___HD C:\Program Files\.opera
2021-03-25 14:08 - 2021-03-25 14:08 - 004227646 _____ C:\Users\lenha\Downloads\AB_CryptoBox_700HD_V1_15_22438_22-01-2021.rar
2021-03-25 14:07 - 2021-03-25 14:07 - 004141062 _____ C:\Users\lenha\Downloads\700HD_MCAS_V1.15.21821_28-05-2020.zip
2021-03-23 20:18 - 2021-03-23 20:19 - 612179027 _____ C:\Users\lenha\Downloads\470.05.rar
2021-03-22 18:23 - 2021-03-22 18:23 - 000000000 ____D C:\Program Files\74.0.3911.232
2021-03-21 17:51 - 2021-03-21 17:51 - 010470570 _____ C:\Users\lenha\Downloads\WhatsApp Video 2021-03-21 at 16.24.10.mp4
2021-03-16 23:23 - 2021-03-16 23:23 - 000038595 _____ C:\Users\lenha\Downloads\Mindfactory_Rechnung_9638600.pdf
2021-03-14 12:03 - 2021-03-14 12:03 - 009598192 _____ ( ) C:\Users\lenha\Downloads\LocalServiceComponents (6).exe
2021-03-13 19:12 - 2021-03-13 19:17 - 1572053875 _____ C:\Users\lenha\Downloads\moode-r701-iso (1).zip
2021-03-11 23:16 - 2021-03-11 23:16 - 000124303 _____ C:\Users\lenha\Downloads\Tone2_Pro_Firmware_V1.00_210109.zip
2021-03-11 23:16 - 2021-03-11 23:16 - 000124303 _____ C:\Users\lenha\Downloads\Tone2_Pro_Firmware_V1.00_210109 (1).zip
2021-03-11 23:13 - 2021-03-11 23:14 - 186993485 _____ C:\Users\lenha\Downloads\Tone2_Pro_Landingpage_201123 (1).zip
2021-03-11 23:12 - 2021-03-11 23:12 - 038414625 _____ C:\Users\lenha\Downloads\Tone2_Pro_Photos_201229.zip
2021-03-11 20:11 - 2021-03-11 20:12 - 319794816 _____ C:\Users\lenha\Downloads\Update_ILCE7M3V400.exe
2021-03-11 13:35 - 2021-03-11 13:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-03-11 13:35 - 2021-03-11 13:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-11 13:35 - 2021-03-11 13:35 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-11 13:35 - 2021-03-11 13:35 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 13:35 - 2021-03-11 13:35 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-04-07 22:23 - 2019-03-22 20:08 - 000000000 ____D C:\FRST
2021-04-07 22:04 - 2019-06-06 13:02 - 000000000 ____D C:\ProgramData\AVAST Software
2021-04-07 16:45 - 2020-11-16 09:39 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-07 16:45 - 2019-12-07 16:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2021-04-07 16:45 - 2019-12-07 16:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2021-04-07 16:45 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-04-07 16:41 - 2019-03-22 04:38 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-07 16:39 - 2021-01-12 00:18 - 000000000 ____D C:\Users\lenha\AppData\Roaming\Kryptex
2021-04-07 16:39 - 2020-11-16 09:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-07 16:39 - 2020-11-15 04:07 - 000000000 ____D C:\ProgramData\ssh
2021-04-07 16:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-07 16:39 - 2019-03-22 00:03 - 000000000 ____D C:\Users\lenha\AppData\Roaming\eM Client
2021-04-07 16:36 - 2019-12-07 11:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-04-07 16:00 - 2021-01-31 13:57 - 005242920 _____ C:\WINDOWS\SysWOW64\STPackager.1
2021-04-07 15:50 - 2019-03-22 20:00 - 000000000 ____D C:\Users\lenha\AppData\Local\D3DSCache
2021-04-07 15:49 - 2019-03-21 23:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-04-07 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-06 20:17 - 2019-03-25 13:27 - 000000000 ____D C:\Users\lenha\AppData\Local\CrashDumps
2021-04-06 12:35 - 2019-04-20 19:37 - 000000000 ____D C:\Users\lenha\AppData\Roaming\vlc
2021-04-06 11:53 - 2019-03-26 01:08 - 000000000 ____D C:\Program Files\Assets
2021-04-06 11:53 - 2019-03-26 00:22 - 000000869 _____ C:\Program Files\installer_prefs.json.backup
2021-04-06 11:53 - 2019-03-26 00:22 - 000000869 _____ C:\Program Files\installer_prefs.json
2021-04-05 22:46 - 2020-03-13 13:29 - 000001684 _____ C:\WINDOWS\Sandboxie.ini
2021-04-05 22:34 - 2020-01-07 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2021-04-05 22:34 - 2020-01-07 22:42 - 000000000 ____D C:\Program Files (x86)\ASRock Utility
2021-04-05 22:24 - 2019-03-22 04:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-05 19:52 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-05 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-05 19:51 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-05 19:50 - 2020-11-16 09:30 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-05 19:44 - 2020-11-05 01:48 - 000000000 ___HD C:\$WinREAgent
2021-04-05 17:57 - 2020-11-16 09:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-03 14:35 - 2020-06-07 00:46 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-03 14:35 - 2020-06-07 00:46 - 000002276 _____ C:\ProgramData\Plocha\Microsoft Edge.lnk
2021-04-03 14:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-02 00:00 - 2021-02-13 01:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-04-02 00:00 - 2019-03-23 23:31 - 000000000 ____D C:\Users\lenha\AppData\Local\NVIDIA
2021-04-02 00:00 - 2019-03-22 04:38 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-04-02 00:00 - 2019-03-21 23:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-03-29 19:33 - 2020-01-19 17:44 - 000000066 _____ C:\WINDOWS\SysWOW64\res.bmp
2021-03-29 12:12 - 2019-09-05 00:17 - 000000000 ____D C:\ProgramData\Zoner
2021-03-29 11:46 - 2020-11-15 04:10 - 000000000 ____D C:\Users\lenha
2021-03-25 22:25 - 2019-03-22 22:56 - 000005464 _____ C:\Users\lenha\advanced_ip_scanner_MAC.bin
2021-03-25 22:25 - 2019-03-22 22:56 - 000000015 _____ C:\Users\lenha\advanced_ip_scanner_Comments.bin
2021-03-25 22:25 - 2019-03-22 22:56 - 000000015 _____ C:\Users\lenha\advanced_ip_scanner_Aliases.bin
2021-03-20 00:12 - 2019-09-05 00:17 - 000001604 _____ C:\Users\lenha\AppData\Roaming\Microsoft\Windows\Start Menu\Zoner Photo Studio X.lnk
2021-03-18 09:46 - 2019-03-22 16:34 - 000000000 ____D C:\Users\lenha\AppData\Local\ElevatedDiagnostics
2021-03-14 12:03 - 2020-01-26 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LocalServiceComponents
2021-03-14 12:03 - 2020-01-26 22:02 - 000000000 ____D C:\Program Files (x86)\LocalServiceComponents
2021-03-14 00:31 - 2020-11-15 04:10 - 000000000 ____D C:\Users\DevToolsUser
2021-03-14 00:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-03-11 14:44 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-11 14:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
==================== Files in the root of some directories ========
2021-04-06 11:53 - 2021-04-06 11:53 - 000013723 _____ () C:\Program Files\installation_status.json
2019-03-26 00:22 - 2021-04-06 11:53 - 000000869 _____ () C:\Program Files\installer_prefs.json
2019-03-26 00:22 - 2021-04-06 11:53 - 000000869 _____ () C:\Program Files\installer_prefs.json.backup
2021-04-06 11:53 - 2021-04-01 19:48 - 001886872 _____ (Opera Software) C:\Program Files\launcher.exe
2021-04-06 11:53 - 2020-02-17 01:00 - 000000317 _____ () C:\Program Files\launcher.visualelementsmanifest.xml
2021-04-06 11:53 - 2021-04-06 11:53 - 000000057 _____ () C:\Program Files\pref_default_overrides
2021-04-06 11:53 - 2020-02-17 01:00 - 000003072 _____ () C:\Program Files\Resources.pri
2019-03-26 00:22 - 2019-03-26 01:08 - 000001016 _____ () C:\Program Files\server_tracking_data
2019-04-25 20:40 - 2019-04-25 20:40 - 000000600 _____ () C:\Users\lenha\AppData\Roaming\winscp.rnd
2019-05-02 01:03 - 2019-05-02 01:03 - 000000000 _____ () C:\Users\lenha\AppData\Local\oobelibMkey.log
2019-04-25 20:59 - 2020-04-05 00:21 - 000000128 _____ () C:\Users\lenha\AppData\Local\PUTTY.RND
2019-06-27 13:31 - 2019-06-27 13:31 - 000000001 _____ () C:\Users\lenha\AppData\Local\RawCopy.1.10.agreement
2020-03-02 14:01 - 2020-03-02 14:01 - 000000218 _____ () C:\Users\lenha\AppData\Local\recently-used.xbel
2020-11-20 22:47 - 2020-11-20 22:47 - 000000017 _____ () C:\Users\lenha\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================